CAS OOB exception

Liam Hoekenga liamr at umich.edu
Fri May 24 11:25:19 EDT 2019 

We're trying to configure a CAS SP.

Acc'd to the logs, the (sanitized) entityID is "
https://testing.vialivetext.com/auth/cas/callback?organization_id=12345678abc&redirect_url=&url
"

I tried creating metadata for it, which it wasn't pleased with.  I had to
replace the occurrences of "&" with "&" to get the IDP to load..

<EntityDescriptor entityID="
https://testing.vialivetext.com/auth/cas/callback?organization_id=12345678abc&redirect_url=&url"
xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
    <SPSSODescriptor protocolSupportEnumeration="
https://www.apereo.org/cas/protocol">
        <SingleLogoutService
                Binding="https://www.apereo.org/cas/protocol/logout"
                Location="urn:mace:shibboleth:profile:CAS:logout"/>
        <AssertionConsumerService
                Binding="https://www.apereo.org/cas/protocol/login"
                Location="https://testing.vialivetext.com/sso/"
                index="1"/>
    </SPSSODescriptor>
</EntityDescriptor>

It ignores the metadata, and drops back to the service registry (where I
did add appropriate regex for their hostname).   When the IDP fields the
authn request, it returns an OOB exception:

2019-05-24 11:21:57,271 - DEBUG
[net.shibboleth.idp.cas.flow.impl.BuildRelyingPartyContextAction:103] -
x.x.x.x - Querying
net.shibboleth.idp.cas.service.impl.MetadataServiceRegistry for CAS service
URL
https://testing.vialivetext.com/auth/cas/callback?organization_id=12345678abc&redirect_url=&url
2019-05-24 11:21:57,272 - ERROR [net.shibboleth.idp.cas:-2] - x.x.x.x -
Uncaught runtime exception
java.lang.ArrayIndexOutOfBoundsException: 1
at
net.shibboleth.utilities.java.support.net.URLBuilder.<init>(URLBuilder.java:119)
2019-05-24 11:21:57,283 - WARN
[org.opensaml.profile.action.impl.LogEvent:105] - 141.213.175.211 - A
non-proceed event occurred while processing the request: RuntimeException
2019-05-24 11:21:57,302 - INFO [Shibboleth-Audit.SSO:275] - x.x.x.x -
20190524T152157Z||||https://www.apereo.org/cas/protocol/login|||||||||

Any ideas?
Liam
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20190524/768478ab/attachment.html>

More information about the users mailing list