Skip to Content

Unable to Decode SAML2.0 Assertion to get access token from Gateway Server

Feb 19 at 08:42 AM


avatar image


I am trying to get an access token from the gateway server by passing the SAML2.0 assertion. However, I am getting error as :
{ "error": "invalid_grant", "error_description": "Provided authorization grant is invalid. Exception was Error in ST program SAML2_ASSERTION when importing XML data. For more information, consult the kernel traces or the OAuth 2.0 trouble shooting SAP note 1688545" }

Logs in the gateway server shows the below error:

System expected the element '{urn:oasis:names:tc:SAML:2.0:assertion}Assertion'

SAML Assertion which I am passing to the server is embeded under <Response></Response> tag. And the SAML assertion template given in SAP Note 1688545, starts directly with <Assertion></Assertion> tag. Is this the root cause? I

Please refer the attached screen shots of the assertion templates.

Any help would be highly appreciated.


Vikas Trivedi

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

0 Answers