12-02-2011 2:28 PM
Hi all,
I am using a BEA Weglogic Portal to call a webpage running on CE 7.11, using SAML Artifacts to do SSO on to CE. However it is failing.
The point at which it is failing is:
Return values of HttpGetterCallback(): REQUEST_PARAMETER(SAMLart) = '<null>', IS_SECURE = 'false', SESSION_ATTRIBUTE(SAMLLoginModuleDataBuffer) = '<null>'. This is in the SAML Login module.
The trace file is:
Entering method with (APID=GSP&SAMLart=AAFcjp3yBTYKn2J62j3tgr1ZGCZqZGqcLOxsnkRDk%2BtD%2FV3o9rlZzXNR&TARGET=http://gbdertsapp1:50000/eso/fsvendor/vendordesktop/index)
Entering method with (AAFcjp3yBTYKn2J62j3tgr1ZGCZqZGqcLOxsnkRDk+tD/V3o9rlZzXNR, false)
The access to 'Artifact Receiver' should use a secure connection, but was done using an insecure connection. This is currently possible because configuration setting 'PermitInsecureConnections'is set to 'true'.
Entering method with (5C8E9DF205360A9F627ADA3DED82BD5918266A64)
Exiting method with com.sap.security.core.server.saml.service.configuration.SAMLPartnerInbound[GSP]
Exiting method with TARGET
sendRedirect(http://CEServer:50000/eso/fsvendor/vendordesktop/index?SAMLart=AAFcjp3yBTYKn2J62j3tgr1ZGCZqZGqcLOxsnkRDk%2BtD%2FV3o9rlZzXNR)
Exiting method
Entering method
Option 'Mode' has value 'Standalone'
Return values of HttpGetterCallback(): REQUEST_PARAMETER(SAMLart) = '<null>', IS_SECURE = 'false', SESSION_ATTRIBUTE(SAMLLoginModuleDataBuffer) = '<null>'
No artifacts found. Exiting with 'false'.
Exiting method
Any ideas?
Thanks
Paul
01-04-2012 5:21 PM
Just an update on this. We were trying to do SAML SSO on to SAP Sourcing, which sits on top of CE. This was failing but when we did it to the SAML test destination on CE it worked fine. After raising a message with SAP they stated that their documentation is wrong (SAP Sourcing does not support SAML, even though it uses UME for authentication!).
Paul
01-04-2012 9:27 PM
Well certainly that attracts attention to how it uses UME to authenticate, as it is the web application server which is SAML certified and not the application itself.
Is there anything odd running over the gateway logs?
Cheers,
Julius