Univention Bugzilla – Attachment 10468 Details for
Bug 51932
Only the first saml authentication works
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
saml message broken login
s2 (text/plain), 8.07 KB, created by
Jürn Brodersen
on 2020-08-31 12:03:26 CEST
(
hide
)
Description:
saml message broken login
Filename:
MIME Type:
Creator:
Jürn Brodersen
Created:
2020-08-31 12:03:26 CEST
Size:
8.07 KB
patch
obsolete
><samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8ad8dd9d63cb58961ccc443d713584bff66017ee51" Version="2.0" IssueInstant="2020-08-31T09:56:20Z" Destination="https://ucs-8750.univention.intranet/univention/saml/" InResponseTo="id-1N3qWhviXuQcq9Vs4"><saml:Issuer>https://ucs-sso.univention.intranet/simplesamlphp/saml2/idp/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> > <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> > <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> > <ds:Reference URI="#_8ad8dd9d63cb58961ccc443d713584bff66017ee51"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>lE3+mXqdRumkDgGcr4Y1xw/tY0PcdQ/oqaOQwaXCA64=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TwRbZsRYGXrwvLxt9X00WEKZpdIKfa12eLKt+UAS037JxtRQnIoEEE6jsdZe+FxLOE8ab8qe4fj7fOEaYMNclyICoG7y+KItTtoPYwBeQOarUF9/nVxfU59sZsfEO0fZdeWVaGifPUZXnXJYGXKaCh5NOdbqxPaSNUT5BmZmRV3hbYBqiwDIaLi2HyD2kX8KB7m5K3c/h/gTbA0fsDAZYSH7AEQZEAwn0mhjrW8C8MemgdkgucPS3QuWi8wS8Dh4Cag98nU4fLQleiWZqp8ELoHEojLjKid7tzyLDWqMtedgaw7g0r8jSrH3k53gRx+7I0VxzsAB0ktvBsqWD+ErkQ==</ds:SignatureValue> ><ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/></samlp:Status><saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_0c8866bb1f966c10ebc03eb7efa1a71d1a18a1e7c1" Version="2.0" IssueInstant="2020-08-31T09:56:20Z"><saml:Issuer>https://ucs-sso.univention.intranet/simplesamlphp/saml2/idp/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> > <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> > <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> > <ds:Reference URI="#_0c8866bb1f966c10ebc03eb7efa1a71d1a18a1e7c1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>LkOxXmpWBSKxBFoKl9P+DLLHT4T4d7+Z3LC4keS/Igw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MTH4Sy+LN7Aq4Oa0osfNDkKH2Q5Zl/M1Veph/zA0z2iDBQXfAIr1EDlp1/F/YpKE83GdYEbPAH57aOjPqdZRu5eB46xeXvbsCBAJXS9NC7t76dGQFaT7pxQ8279ksckBIOKc2VIDjBrbXUJ8ckGHnAM32sPScN50BMWMtS3eqVXx3oQBFwMW1s9WIVte9f2FKbcBRg8ou3gH5BSL7dWEcEYpHdMx8JViTveIozcHP0fQUag+cRkrA9Y9pnUy1TGi1jTBkwZXPg4GY/OrsnGmqCf1JQJJaKlP9QZuHpfY/ea/T8mOSyDD9JCk52d+x6uBnZA/JQFMW3e0dM1cipbo0g==</ds:SignatureValue> ><ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><saml:Subject><saml:NameID SPNameQualifier="https://ucs-8750.univention.intranet/univention/saml/metadata" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_4712c50ca08a06410fd86b09614411fab638b8be7d</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData NotOnOrAfter="2020-08-31T10:01:20Z" Recipient="https://ucs-8750.univention.intranet/univention/saml/" InResponseTo="id-1N3qWhviXuQcq9Vs4"/></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2020-08-31T09:55:50Z" NotOnOrAfter="2020-08-31T10:01:20Z"><saml:AudienceRestriction><saml:Audience>https://ucs-8750.univention.intranet/univention/saml/metadata</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2020-08-31T09:56:13Z" SessionNotOnOrAfter="2020-08-31T21:56:13Z" SessionIndex="_c398a6d59cbc7e72f629c9510dd97acb761a545976"><saml:AuthnContext><saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml:AuthnContextClassRef></saml:AuthnContext></saml:AuthnStatement><saml:AttributeStatement><saml:Attribute Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">Administrator</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=10468">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 51932
:
10467
| 10468 |
10469
|
10624
|
10625