Samle App - MetaData Administration - different entityID for download

spring-attic / spring-security-saml

SAML extension for the Spring Security project

Other

419 stars 484 forks source link

Samle App - MetaData Administration - different entityID for download #192

Open bthalmayr opened 7 years ago

bthalmayr commented 7 years ago

It seems that the entityID shown in the MetaData Administration differs from the entityID in the MetaData downloaded.

Within the MetaData Administration the entityID is the one chosen during the configuration, but in the downloaded MetaData 'saml/metadata' is appended.

If the downloaded MetaData is used at the IdP, SAML request flow fails as the issuers do not match.

bthalmayr commented 7 years ago

MetaData shown in the MetaData administration starts with ...

<?xml version="1.0" encoding="UTF-8"?><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="app.partner.xyz" entityID="app.partner.xyz">

whereas MetaData dowloaded starts with ...

<?xml version="1.0" encoding="UTF-8"?><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="http___app.partner.xyz_8282_app_saml_metadata" entityID="http://app.partner.xyz:8282/app/saml/metadata">