IdP v4 SLO issues when wilcard certificates for websites
glipscomb at csu.edu.au
Tue Aug 18 00:24:40 UTC 2020
From: users <users-bounces at shibboleth.net> On Behalf Of Cantor, Scott
Sent: Tuesday, 18 August 2020 09:22
To: Shib Users <users at shibboleth.net>
Subject: Re: IdP v4 SLO issues when wilcard certificates for websites
On 8/17/20, 6:57 PM, "users on behalf of Lipscomb, Gary" <users-bounces at shibboleth.net on behalf of glipscomb at csu.edu.au> wrote:
> Is there anything that I can provide to assist in troubleshooting this case?
I don't think there's anything to troubleshoot unless my theory here is wrong. I would file a bug with a complete log trace on DEBUG (everything, messages, all of it) attached along with the SP's metadata. I will most likely just resolve it as working as expected.
> Shibboleth SP 3.1.0
Anything that recent shouldn't have this problem unless its metadata is wrong. Unless it's been manipulated, it should be signing the LogoutResponse. I don't see any way to get this error unless the message isn't signed (or signed with the wrong or undocumented key).
For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
More information about the users