search

pondersource / nextcloud-mfa-awareness

Make Nextcloud aware of whether the current user is logged in with Multi-Factor Authentication
MIT License
0 stars 2 forks source link

error on SAML server #87

Closed michielbdejong closed 7 months ago

michielbdejong commented 9 months ago

When following the new dev-stock instructions

Screenshot 2023-10-04 at 21 48 09
michielbdejong commented 8 months ago

https://nc1.docker/index.php/apps/user_saml/saml/metadata shows:

<md:EntityDescriptor validUntil="2023-10-27T10:37:48Z" cacheDuration="PT604800S" entityID="https://nc1.docker/index.php/apps/user_saml/saml/metadata">
<md:SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
<md:NameIDFormat>
urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
</md:NameIDFormat>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://nc1.docker/index.php/apps/user_saml/saml/acs" index="1"/>
</md:SPSSODescriptor>
</md:EntityDescriptor>
michielbdejong commented 8 months ago

I'll compare to https://github.com/pondersource/nextcloud-mfa-awareness, I probably did something wrong while copying the SimpleSAMLPHP container setup from there

michielbdejong commented 8 months ago 
docker exec -it sunet-ssp curl https://nc1.docker/index.php/apps/user_saml/saml/metadata
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.haxx.se/docs/sslcerts.html

curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
michielbdejong commented 8 months ago

Hm but the error does still occur if I use http://nc1.docker