Open spshar opened 3 years ago
Don't include the -----BEGIN/END CERTIFICATE----- headers/footers into Custom Certificate
@jangaraj thanks for the hint, but I can't check anymore, because due to changes in Rochetchat licensing, we had to switch to another messenger. The ticket may be closed
@spshar can you clarify what you mean? Our source code has not changed license. It’s been MIT licensed since it was open sourced. This has not changed
This is offtopic. Yes, the license has not changed, but the terms of service have changed. Everyone is interested in push notifications, but they are provided as part of other additional services and licenses that are not interesting to us. I thing in this case the cost of a license for an on-premise server is very high, so this was an incentive to change the messenger.
Description:
After setting up SAML SSO with Azure IdP, I cannot login to the Rocket.Chat after authorizing with Azure, the login window appears again and again, there is a line with error in the Rocket.Chat logs:
steffo:meteor-accounts-saml ➔ info Assertion Signature WRONG
Steps to reproduce:
Expected behavior:
Successful login
Actual behavior:
Login form request loop.
Server Setup Information:
Client Setup Information
Additional context
SAML attribute values contain Cyrillic characters
Successful test sign-on with SAML SSO from Azure:![Test sign-on with SAML SSO](https://user-images.githubusercontent.com/75074006/100346497-27c79a00-300e-11eb-8a9a-812e41a06bba.png)
Azure SAML Signing Certificate option:![Azure_saml_sign_option](https://user-images.githubusercontent.com/75074006/100346665-69f0db80-300e-11eb-8662-cf2e0b5e2bbc.png)
Rocket.Chat Certificate option:![Certificate_buer](https://user-images.githubusercontent.com/75074006/100346715-812fc900-300e-11eb-94ac-44ecf2739f89.png)
Relevant logs:
Rocket.Chat server of validating Assertion Signature: