search

ulisesbocchio / spring-boot-security-saml-samples

Samples using spring-security-saml
MIT License
49 stars 59 forks source link

Infinite Loop #16

Closed trblft closed 6 years ago

trblft commented 6 years ago

Hi again, Still implementing the -props example. I now have infinite Loop between those two urls.

https://localhost:8443/saml/SAMLAssertionConsumer https://idp-interne.insee.test/idp/profile/SAML2/POST/SSO

Despite the process seems to work

2018-02-08 14:01:37.716 DEBUG 4364 --- [nio-8443-exec-9] o.s.s.saml.storage.HttpSessionStorage : Storing message a1a3jf8hce4h444b45599988788j298 to session 1529A14836B1EF6B90C436CCA8BF6515 2018-02-08 14:01:37.716 INFO 4364 --- [nio-8443-exec-9] o.s.security.saml.log.SAMLDefaultLogger : AuthNRequest;SUCCESS;0:0:0:0:0:0:0:1;https://localhost:8443;https://idp-interne.insee.test/idp/shibboleth;;;

In this page they say it may come from userDetails implementation. https://stackoverflow.com/questions/36126760/infinite-loop-for-saml-request-in-spring-saml

My application.yml file looks like

spring:
  jpa:
    database: POSTGRESQL
    database-platform: org.hibernate.dialect.PostgreSQLDialect
    generate-ddl: true
    show-sql: true
    hibernate:
      ddl-auto: update
  datasource:
    platform: postgres
    driverClassName: org.postgresql.Driver
    url: jdbc:postgresql://localhost:5432/gco
    username: gco_user
    password: gco1234
  thymeleaf:
    cache: false
    suffix: .html
    mode: LEGACYHTML5
    encoding: UTF-8
gco:
  queries:
    agents-query: select idep, password, active from agent where idep=?
    roles-query: select a.idep, r.name from agent a inner join agent_role ar on(a.id=ar.agent_id) inner join role r on(ar.role_id=r.id) where a.idep=?
logging:
  level:
    org:
      springframework: 
        security:
          saml: DEBUG
security:
  user:
    name: user
    password: password
saml:
  sso:
    discovery-processing-url: https://id-provider.insee.test/samlds
    metadata-generator:
      entity-id: https://localhost:8443/
    default-success-url: /home
    idp-selection-page-url: /idpselection
    logout:
      default-target-url: /
    idp:
      metadata-location: classpath:/config/metadata/IDP/idp-interne.insee.test.xml
      local-metadata-location: classpath:/config/metadata/SP/SPMetadata.xml
    metadata-manager:
      refresh-check-interval: 0
    extended-metadata:
      idp-discovery-enabled: true
    key-manager: 
      store-location: classpath:/config/certificate/keystore
      store-pass: secret
      default-key: saml
      key-passwords:
        saml: secret
trblft commented 6 years ago

Can you confirm that https://localhost:8443/saml/SAMLAssertionConsumer is the right url? I really need to be sure. Another element that may help is that I got that SAMLResponse from idp, how can I check this is what my UserService expects? Sorry I bother you with this but it looks like I'm really close to get it working...

<?xml version="1.0" encoding="UTF-8"?>
<saml2p:Response Destination="https://localhost:8443/saml/SAMLAssertionConsumer" ID="_eb4c30ee7f25d20a8803f7f3b7744b62"
 InResponseTo="a3h8g3bc71348igc35eg647eb21daf3" IssueInstant="2018-02-09T15:06:33.904Z" Version="2.0" xmlns:saml2p="urn
:oasis:names:tc:SAML:2.0:protocol"><saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://idp-intern
e.insee.test/idp/shibboleth</saml2:Issuer><saml2p:Status><saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:S
uccess"/></saml2p:Status><saml2:EncryptedAssertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"><xenc:EncryptedD
ata Id="_ad897e4681dac8d6d042ad286240605e" Type="http://www.w3.org/2001/04/xmlenc#Element" xmlns:xenc="http://www.w3.or
g/2001/04/xmlenc#"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" xmlns:xenc="http://ww
w.w3.org/2001/04/xmlenc#"/><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey Id="_3c56022be5
dd321c88073062fd23da99" Recipient="https://localhost:8443" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"><xenc:Encrypt
ionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"><d
s:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"/></xenc
:EncryptionMethod><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIDHTCCAgWgAwIBAgIGAUSxQwwtMA0GCSqGSIb3DQEBBQUAMDcxCzAJ
BgNVBAYTAmZyMRMwEQYD
VQQKDAppbnNlZS1zYW1sMRMwEQYDVQQLDApvaW9zYW1sLXNwMB4XDTE0MDMxMTEzMDkyNVoXDTI0
MDMwODEzMDkyNVowJDENMAsGA1UEAwwEbnVsbDETMBEGA1UECwwKb2lvc2FtbC1zcDCCASIwDQYJ
KoZIhvcNAQEBBQADggEPADCCAQoCggEBAPhgyhUFvwPbcQQSNSTUANCylBuUhflgG1ZdHmqazT3c
MXh5cuMNvPJXnC8RtptMJC1E4O57oFyMDJtIGjCyIPyuS0n8x/IzvFuSMXR+EICAO/OHtMnVMF58
StRBbNI8bzJRuIXf0MgA0rzwhXx3271AUhyEyeyGF0eMC1/Nmt7ir+Ewna72zdenpYE5NStZpLPC
/0JBrGaS+IRdOU0M6PxhKtzOHH0U8RylDpjL9nGHXjfV3ie1p4fYZNztGBIfllgFJ9zYCMJWIYJn
rb3+tASVTbMw9tt+eAcFS67Qw2iuWWXCjLzB4JBZ8bmCNINxzA0kQWcXCfy8ufaM2y9QU8UCAwEA
AaNCMEAwHQYDVR0OBBYEFD9x5ef8mb4yChz5MdyUqc49cPxTMB8GA1UdIwQYMBaAFD9x5ef8mb4y
Chz5MdyUqc49cPxTMA0GCSqGSIb3DQEBBQUAA4IBAQC9Lw+V6shEBmCGFDp7Vky3wP6plFN+LcWu
J7ipg/VJIt2cL+8Sx2PelelNfN+SXjwpq2KaD9FJbG3TMUcHEa6ntM2vadkwV3b62YdK68KAS7ed
/wAFJhuzlMrC0a6jj3brMYSewR/Cz5cC4gsTps6XPnyRBqGQPZhU5MmkFa/5UdUjiRfW7au4aFG/
GXa4MEQSVvyC2kTxnQfay4B7fItXsSqzD1kxmfGhIUsRTJqarBitadRqZGnUqQQsThqFXi9+86U0
TNCJWpmSrje5Edm5cXmwx5Bjxl0vUreIDamnn84cUXN7/PKHk3+AQxaqjFAIr3Zqvm5iQk4A1gSG
L036</ds:X509Certificate></ds:X509Data></ds:KeyInfo><xenc:CipherData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"><xe
nc:CipherValue>zOgservSPgV+0005uHYVATvbvkTe+udqIURkX7u/eKaFc41t/mDzH4t8CiPoRTVCaFU0Jp1ww5GA
Ia0XUnMIyoxAZURLiHhhx9Jts6qGLvlkTViyDOmtdl7S4IhRkFatrzRCAsVPQ8jbFFNQtru6ZICS
Z8E0sghV4EYOK1jD7HzO0d+2pax9YD1gqgpz7+r+pkt9blPNm423IOSF2Op8zerEFV6vpoFgWz2J
lIRmXmH4HRa1HCt50n2BSMqq0VPwykcWgki3SAO+1kedMFO2+z72FMe4aTzd1opW71sFBzFsRvZe
WSm9QFgoOipyL4FRnRyY3t4W/xx2Wb4DEvmtUA==</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></ds:KeyInfo><xenc:Cip
herData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"><xenc:CipherValue>JH7nhnyTr0fgTfB+klsAuCPItTzxW75mhN7mPlL2DECJt+
u98rFdOrvfgP+j8BZ71Ybwa3lPP4t0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</xenc:CipherValue></xenc:CipherData></xenc:EncryptedData></saml2:Encrypted
Assertion></saml2p:Response>
trblft commented 6 years ago

The problem was bad url in 

saml:
  sso:
    sso-processing-url: /saml/SAMLAssertionConsumer

You can close this!

anuria1809 commented 2 years ago

Hi @trblft I am facing the same issue, however if i run my application as a war in an external tomcat it works absolutely fine, the issue is observed when trying to run the application in embedded tomcat. Can you please elaborate how you fixed this issue?