OIDC client resolver

Wessel, Keith kwessel at illinois.edu
Wed Apr 8 11:58:04 EDT 2020

Silly question, Kevin, but did you uncomment the bean in conf/oidc-relying-party.xml that tells it where on disk to find your static OIDC client metadata?

You can attempt to reload this component and see if you get any errors in the logs at load time with reload-service.sh -id shibboleth.ClientInformationResolverService

-----Original Message-----
From: users <users-bounces at shibboleth.net> On Behalf Of Kevin Foote
Sent: Wednesday, April 8, 2020 10:42 AM
To: Shib Users <users at shibboleth.net>
Subject: OIDC client resolver 

Hi All

We are now trying to make use of the org.geant OIDC plugin within our 3.4 IdP (yes I know move to v4).
The plugin has been installed and configured in our dev IdP instance for some time now sitting idle.
I have just updated it to the 1.1.1 version suggested by the documentation.

We are now in a position to begin exploring the use of this plugin and we are trying to generate some useful client activity.

With a simple client we are seeing the following error.

=====                                                                                                                                                                                                                                                                       2020-04-07 15:58:20,296 - DEBUG [net.shibboleth.idp.profile.impl.WebFlowMessageHandlerAdaptor:195] - Profile Action WebFlowMessageHandlerAdaptor: Invoking message handler on message context containing a message of type 'com.nimbusds.openid.connect.sdk.AuthenticationRequest'
2020-04-07 15:58:20,307 - ERROR [org.geant.idpextension.oidc.profile:-2] - Uncaught runtime exception
net.shibboleth.utilities.java.support.component.UninitializedComponentException: Component 'shibboleth.ClientInformationResolver' has not yet been initialized and cannot be used.
        at net.shibboleth.utilities.java.support.component.ComponentSupport.ifNotInitializedThrowUninitializedComponentException(ComponentSupport.java:107)

Is the IdP saying "I dont know that client” ?

Is this indicating something is off with my oidc “metadata” ? 

"scope": "openid phone",
"redirect_uris": ["http://localhost:8080/example/pcke.html"],
"client_id": "iam_oidc_sb”,                                                                                                                                                                                                                                                            "response_types": ["id_token","code"]

Any help appreciated .. newbie OIDC user here :D


For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net

More information about the users mailing list