[keycloak-user] Exception in keycloak
Luis Rodríguez Fernández
uo67113 at gmail.com
Fri May 25 05:38:11 EDT 2018
Hello Pulkit,
mmm, may I ask you to check the xml namespace of the IdP response? Look for
xmlns:samlp atribute of samlp:Response element.
E.g. this is how my IdP (ADFS[1]) responses look like:
https://gist.github.com/lurodrig/34fa5092da4cef85d1f3cfaa2ac3025a
Hope it helps,
Luis
ps: perhaps it would be a good idea if you provide a bit more of details on
your scenario/setup. It is not a matter of amount of data but being
specific ;)
[1] https://en.wikipedia.org/wiki/Active_Directory_Federation_Services
2018-05-24 14:10 GMT+02:00 Pulkit Srivastava <pulkitsrivastavajd at gmail.com>:
> Hi,
> I am getting below exception while getting redirected from keycloak to my
> application.
>
> Any idea how to resolve this.
>
>
> org.opensaml.ws.security.SecurityPolicyException: Validation of protocol
> message signature failed
>
> Incoming SAML message is invalid.
>
> Thanks,
> Pulkit
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
--
"Ever tried. Ever failed. No matter. Try Again. Fail again. Fail better."
- Samuel Beckett
More information about the keycloak-user
mailing list