SP logging users out after one second of being authenticated

erki at cloudek.eu erki at cloudek.eu
Mon Aug 22 08:34:21 UTC 2022 

Hey!

 

I have a strange issue with SP 3.2.3

The users are authenticated by the IDP, the message is sent to the SP and a
sessioon is made. One second later the sessioon is removed and I can not see
any reason in the log, why the session is removed. The local logout has been
disabled in the shibboleth config.

 

 

2022-07-22 14:44:23 DEBUG OpenSAML.MessageDecoder.SAML2POST [2] [default]:
decoded SAML message:

<Response Destination="https://test.com/Shibboleth.sso/SAML2/POST"
ID="id2db38dbf7da4409a8b8fc76d7f12a1e0" Version="2.0"
IssueInstant="2022-07-22T06:44:23Z" InResponseTo="_fe7056

bb7c2d3f65d522d998fb857656" xmlns="urn:oasis:names:tc:SAML:2.0:protocol">

  <Issuer
xmlns="urn:oasis:names:tc:SAML:2.0:assertion">https://logintest.bnm/Saml2/Me
tadata/ <https://logintest.bnm/Saml2/Metadata/%3c/Issuer%3e%3cSignature>
</Issuer><Signature
xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><Canonicalizati

onMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"
/><SignatureMethod
Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" /><Reference
URI="#id2db38dbf7da4409a8b8fc76d7f1

2a1e0"><Transforms><Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"
/><Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"
/></Transforms><DigestMethod

Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"
/><DigestValue>r6obi/uqMqRz000BZg9golEMWy3Yp0F3fJydnyLCf6c=</DigestValue></R
eference></SignedInfo><SignatureValue>ImQMAF47EBy3zolxDdGe/mX4

/3CTdmo8zTCgI0Uesy3zr/v09DhKv5CaZD7YjKJYR1S+R3kzRq2OhTP406qxzBxyi4dn+uwQWO6R
3/VIASf+DCNLgEgTO7D3hc+M/r/ou5d0v3KdtiKqLRbThnW7BEtxDJxUsKtrsmqXDk2JZffiZM5b
ko0YL1Du4O21ntDzErMgJayyyS/ZnD1wwQs0sE

nf/Va6h3dK0+YiGg+wz8AagS+4Uwz/b8cvOf0tu+f+PdVFlpi9Kdu5hj3WSrMke+cb9ZHI1DED50
kVJanJGVAhU/lySSvGcbkZx9OSuAjSBrgMyAeA9zZ0gMlVVsnk0A==</SignatureValue><KeyI
nfo><X509Data><X509Certificate>MIIDkDC

CAnigAwIBAgIUPRFU7xpNEqbH+OyJDkbW/1kI4vUwDQYJKoZIhvcNAQELBQAwZjELMAkGA1UEBhM
CTVkxCzAJBgNVBAgMAktMMR0wGwYDVQQKDBRCYW5rIE5lZ2FyYSBNYWxheXNpYTEMMAoGA1UECww
DSUFNMR0wGwYDVQQDDBRCYW5rIE5lZ2FyYSBNY

WxheXNpYTAeFw0yMjA2MzAwODA4NDlaFw0zNzA2MjYwODA4NDlaMGYxCzAJBgNVBAYTAk1ZMQswC
QYDVQQIDAJLTDEdMBsGA1UECgwUQmFuayBOZWdhcmEgTWFsYXlzaWExDDAKBgNVBAsMA0lBTTEdM
BsGA1UEAwwUQmFuayBOZWdhcmEgTWFsYXlzaWE

wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSNwzV8DVMva7MQXcBPlGOMaRhEanqL0g
jx/3yBvCXsggVp950TyOnBBSRIsl++roMn7hM+4vnzuPfYH7fmlP2NBN+GuvOmFEGQUSt/9AXHVM
VZUh7r47hWEp0sjS9QUvTxFVW/1mfOfcYxePYR

rJvk1UhAfJY2tlpHu1RSUnxOjt3oZnTthT71q1SmhjkW9qwETepmhsRYAmOjo+TK5ySbAuP4jT9D
ghfCKZZVtUhtsxLFcjCvF9IBzAdux0A6Rl9qKjFfSP5bzxQ6dI4p+Q3CLlDqDp/tejSJUwFn4Mcl
QUfbA295AIUUTV3j6P7MAh3NX5721wxyAReTAb

bajwrAgMBAAGjNjA0MBMGA1UdJQQMMAoGCCsGAQUFBwMCMB0GA1UdDgQWBBS0gSq/2eEJTKV4wZ3
tIqbaxs9pCzANBgkqhkiG9w0BAQsFAAOCAQEAzOe5YSvkRohbjx9fQmMA3Pu0iB4iD/WN4bGVLhN
hDeNbs1sCgjHRRCHRQ7Yg3q2pYnYQtAxsyM41o

+MrTrJXWczSup77zVDWKunhFBCvG5NLDQkjsLze4udrPhGya4DU61xE9gTng08AWUi2fYI2mGLfM
uSUkWBw+SRKd3yBce/4vvpixv/aLHIQ/PpcOaP8pMt7gS9DlbATBGApE1blGOgxZiVFPBG8cYa9p
+6TfAmhIT0eOV0rlqnei+JFPxI8coskx7H22dm

xl0YSRsckol78hRYCJH2mXhsG7Gf5W2Y8nxWOlFVre5goWmqXvtCOIGc/w4ApGtMsJ30xNCYtnA=
=</X509Certificate></X509Data></KeyInfo></Signature>

  <Status>

    <StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" />

  </Status>

  <saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
Version="2.0" ID="_f67fd87a-18d7-4b0f-9d43-5622c84c9f33"
IssueInstant="2022-07-22T06:44:23Z">

    <saml2:Issuer>https://logintest.bnm/Saml2/Metadata/
<https://logintest.bnm/Saml2/Metadata/%3c/saml2:Issuer> </saml2:Issuer>

    <saml2:Subject>

      <saml2:NameID
Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">user1</saml2:
NameID>

      <saml2:SubjectConfirmation
Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">

        <saml2:SubjectConfirmationData NotOnOrAfter="2022-07-22T06:46:23Z"
InResponseTo="_fe7056bb7c2d3f65d522d998fb857656"
Recipient="https://test.com/Shibboleth.sso/SAML2/POST"

/>

      </saml2:SubjectConfirmation>

    </saml2:Subject>

    <saml2:Conditions NotOnOrAfter="2022-07-22T06:46:23Z"
NotBefore="2022-07-22T06:44:21Z">

      <saml2:AudienceRestriction>

        <saml2:Audience>https://test.com/shibboleth
<https://test.com/shibboleth%3c/saml2:Audience> </saml2:Audience>

      </saml2:AudienceRestriction>

    </saml2:Conditions>

    <saml2:AuthnStatement AuthnInstant="2022-07-22T06:44:23Z"
SessionIndex="_7e3c1bcd-f180-4f78-83e1-7680920793aa">

      <saml2:AuthnContext>

 
<saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecifi
ed</saml2:AuthnContextClassRef>

      </saml2:AuthnContext>

    </saml2:AuthnStatement>

    <saml2:AttributeStatement>

      <saml2:Attribute Name="samaccountname">

        <saml2:AttributeValue>user1</saml2:AttributeValue>

      </saml2:Attribute>

      <saml2:Attribute Name="emailid">

        <saml2:AttributeValue>test7a at bnm</saml2:AttributeValue>

      </saml2:Attribute>

    </saml2:AttributeStatement>

  </saml2:Assertion>

</Response>

2022-07-22 14:44:23 DEBUG XMLTooling.XMLObjectBuilder [2] [default]: located
XMLObjectBuilder for element name:
{urn:oasis:names:tc:SAML:2.0:protocol}Response

..

2022-07-22 14:44:23 DEBUG Shibboleth.SessionCache [2] [default]: storing new
session...

2022-07-22 14:44:23 DEBUG XMLTooling.StorageService [2] [default]: inserted
record (session) in context (_0428cf2f940ac1484cf4e686ca42af09) with
expiration (1658475863)

2022-07-22 14:44:23 DEBUG XMLTooling.StorageService [2] [default]: inserted
record (iamst_user1) in context (NameID) with expiration (1658501063)

2022-07-22 14:44:23 INFO Shibboleth.SessionCache [2] [default]: new session
created: ID (_0428cf2f940ac1484cf4e686ca42af09) IdP
(https://logintest.bnm/Saml2/Metadata/) Protocol(urn:oa

sis:names:tc:SAML:2.0:protocol) Address (6.51.58.49)

2022-07-22 14:44:23 DEBUG XMLTooling.StorageService [2] [default]: deleted
record (0e6c21fc0e95ef75de55d335180933289890ae9c1ee33f0367c0742ce3d02e08) in
context (RelayState)

2022-07-22 14:44:23 DEBUG Shibboleth.Listener [2] [default]: dispatching
message (find::StorageService::SessionCache)

2022-07-22 14:44:23 DEBUG XMLTooling.StorageService [2] [default]: updated
expiration of valid records in context (_0428cf2f940ac1484cf4e686ca42af09)
to (1658475863)

2022-07-22 14:44:23 DEBUG Shibboleth.Listener [2] [default]: dispatching
message (touch::StorageService::SessionCache)

2022-07-22 14:44:23 DEBUG XMLTooling.StorageService [2] [default]: updated
expiration of valid records in context (_0428cf2f940ac1484cf4e686ca42af09)
to (1658475863)

2022-07-22 14:44:23 DEBUG Shibboleth.Listener [2] [default]: dispatching
message (touch::StorageService::SessionCache)

2022-07-22 14:44:23 DEBUG XMLTooling.StorageService [2] [default]: updated
expiration of valid records in context (_0428cf2f940ac1484cf4e686ca42af09)
to (1658475863)

2022-07-22 14:44:24 DEBUG Shibboleth.Listener [2] [default]: dispatching
message (touch::StorageService::SessionCache)

2022-07-22 14:44:24 DEBUG Shibboleth.Listener [3] [default]: dispatching
message (find::StorageService::SessionCache)

2022-07-22 14:44:24 DEBUG XMLTooling.StorageService [3] [default]: updated
expiration of valid records in context (_0428cf2f940ac1484cf4e686ca42af09)
to (1658475864)

2022-07-22 14:44:24 DEBUG XMLTooling.StorageService [2] [default]: updated
expiration of valid records in context (_0428cf2f940ac1484cf4e686ca42af09)
to (1658475864)

2022-07-22 14:44:24 DEBUG Shibboleth.Listener [4] [default]: dispatching
message (find::StorageService::SessionCache)

2022-07-22 14:44:24 DEBUG XMLTooling.StorageService [4] [default]: updated
expiration of valid records in context (_0428cf2f940ac1484cf4e686ca42af09)
to (1658475864)

2022-07-22 14:44:24 DEBUG Shibboleth.Listener [4] [default]: dispatching
message (touch::StorageService::SessionCache)

2022-07-22 14:44:24 DEBUG XMLTooling.StorageService [4] [default]: updated
expiration of valid records in context (_0428cf2f940ac1484cf4e686ca42af09)
to (1658475864)

2022-07-22 14:44:25 DEBUG Shibboleth.Listener [4] [default]: dispatching
message (default/Logout::run::SAML2LI)

2022-07-22 14:44:25 DEBUG Shibboleth.SessionCache [4] [default]: searching
for session (_0428cf2f940ac1484cf4e686ca42af09)

2022-07-22 14:44:25 DEBUG Shibboleth.SessionCache [4] [default]:
reconstituting session and checking validity

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
DOM element (saml2:NameID)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
attributes for DOM element (saml2:NameID)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
generic attribute

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: found
namespace declaration, adding it to the list of namespaces on the XMLObject

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child nodes of DOM element (saml2:NameID)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (0)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: starting to
marshal saml:NameID

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: XMLObject has
a usable cached DOM, reusing it

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObjectBuilder [4] [default]: located
XMLObjectBuilder for element name: xenc:EncryptedData

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
DOM element (xenc:EncryptedData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
attributes for DOM element (xenc:EncryptedData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
generic attribute

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: found
namespace declaration, adding it to the list of namespaces on the XMLObject

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child nodes of DOM element (xenc:EncryptedData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (0)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObjectBuilder [4] [default]: located
XMLObjectBuilder for element name: xenc:EncryptionMethod

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child element (xenc:EncryptionMethod)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
DOM element (xenc:EncryptionMethod)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
attributes for DOM element (xenc:EncryptionMethod)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
generic attribute

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child nodes of DOM element (xenc:EncryptionMethod)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: element had no
children

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (1)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObjectBuilder [4] [default]: located
XMLObjectBuilder for element name: xenc:CipherData

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child element (xenc:CipherData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
DOM element (xenc:CipherData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child nodes of DOM element (xenc:CipherData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (0)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObjectBuilder [4] [default]: located
XMLObjectBuilder for element name: xenc:CipherValue

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child element (xenc:CipherValue)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
DOM element (xenc:CipherValue)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child nodes of DOM element (xenc:CipherValue)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (0)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (1)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (2)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for children with propagation set to true

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for (xenc:EncryptionMethod)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for (xenc:CipherData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for children with propagation set to true

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for (xenc:CipherValue)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for (xenc:EncryptedData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObjectBuilder [4] [default]: located
XMLObjectBuilder for element name: xenc:EncryptedKey

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
DOM element (xenc:EncryptedKey)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
attributes for DOM element (xenc:EncryptedKey)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: found
namespace declaration, adding it to the list of namespaces on the XMLObject

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child nodes of DOM element (xenc:EncryptedKey)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (0)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObjectBuilder [4] [default]: located
XMLObjectBuilder for element name: xenc:EncryptionMethod

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child element (xenc:EncryptionMethod)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
DOM element (xenc:EncryptionMethod)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
attributes for DOM element (xenc:EncryptionMethod)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
generic attribute

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child nodes of DOM element (xenc:EncryptionMethod)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: element had no
children

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (1)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObjectBuilder [4] [default]: located
XMLObjectBuilder for element name: xenc:CipherData

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child element (xenc:CipherData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
DOM element (xenc:CipherData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child nodes of DOM element (xenc:CipherData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (0)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObjectBuilder [4] [default]: located
XMLObjectBuilder for element name: xenc:CipherValue

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child element (xenc:CipherValue)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
DOM element (xenc:CipherValue)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: unmarshalling
child nodes of DOM element (xenc:CipherValue)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (0)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (1)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: processing
text content at position (2)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for children with propagation set to true

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for (xenc:EncryptionMethod)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for (xenc:CipherData)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for children with propagation set to true

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for (xenc:CipherValue)

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: releasing
cached DOM representation for (xenc:EncryptedKey)

2022-07-22 14:44:25 DEBUG Shibboleth.SessionCache [4] [default]:
unmarshalled attribute (ID: uid) with 1 value

2022-07-22 14:44:25 DEBUG Shibboleth.SessionCache [4] [default]:
unmarshalled attribute (ID: test) with 1 value

2022-07-22 14:44:25 DEBUG OpenSAML.MessageEncoder.SAML2Redirect [4]
[default]: validating input

2022-07-22 14:44:25 DEBUG OpenSAML.MessageEncoder.SAML2 [4] [default]:
tracking request (_1ae78033a825b0687e8a2b2bf1467bb5) against RelayState
token (corr:1658472265_0529)

2022-07-22 14:44:25 DEBUG OpenSAML.MessageEncoder.SAML2Redirect [4]
[default]: marshalling, deflating, base64-encoding the message

2022-07-22 14:44:25 DEBUG XMLTooling.XMLObject [4] [default]: starting to
marshal samlp:LogoutRequest

.

2022-07-22 14:44:25 DEBUG OpenSAML.MessageEncoder.SAML2Redirect [4]
[default]: marshalled message:

<samlp:LogoutRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
Destination=https://logintest.bnm/Saml2/Logout
ID="_1ae78033a825b0687e8a2b2bf1467bb5" IssueInstant="2022-07-2

2T06:44:25Z" Version="2.0"><saml:Issuer
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://test.com/shibbole
th
<https://test.com/shibboleth%3c/saml:Issuer%3e%3csamlp:Extensions%3e%3caslo:
Asynchronous> </saml:Issuer><samlp:Extensions><aslo:Asynchronous xmlns:asl

o="urn:oasis:names:tc:SAML:2.0:protocol:ext:async-slo"/></samlp:Extensions><
saml:EncryptedID
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><xenc:EncryptedData
xmlns:xenc="http://www.w3.

org/2001/04/xmlenc#" Type=http://www.w3.org/2001/04/xmlenc#Element>

<xenc:EncryptionMethod
Algorithm=http://www.w3.org/2001/04/xmlenc#aes256-cbc/>

<ds:KeyInfo xmlns:ds=http://www.w3.org/2000/09/xmldsig#
<http://www.w3.org/2000/09/xmldsig> ><xenc:EncryptedKey
xmlns:xenc=http://www.w3.org/2001/04/xmlenc#
<http://www.w3.org/2001/04/xmlenc> >

<xenc:EncryptionMethod
Algorithm=http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p/>

<xenc:CipherData>

<xenc:CipherValue>o5lXUxD9I7OF/O4y9j95BhCiPJOrnkMcM9nwUYGR5+9NLGg7CyU7EnHaOQ
nQ+J1GqkJ92AQ8GLX5

V2/6c7m1pDacjhUXte3Sx9z0XA5065gRjTN1Asqt1wuCVku6obLyqoj0Nz2PCmXD2RHCSvqCAj2T

v5RZkVxn/7liAhZqnegHRohHQhQDALY2o/59vciLuVmiE/DBlgsetLUAzdCcy0oJVKtjdhSc8Xs4

oIzBaPEljW2xyBO6GeRWVln0tPEAdMimbKDWeiqlS8W9LBa8Hu2Y+Cmif+rVKTxx096iTjfSKSry

kbqN0m5U91GDFeTkeHzsQqQezA1Q6g2dOTr1NQ==</xenc:CipherValue>

</xenc:CipherData>

</xenc:EncryptedKey></ds:KeyInfo>

<xenc:CipherData>

<xenc:CipherValue>g1ljGsVHNO3wuso2A0QENuAcKpjlSVck8/6VlxBmaxjRajBmoz1Ky/6X8D
+pS45x/N/4a6UwYKXx

IYs8adV760d9lyrE7glcKSCv3rWuDnmmbgl+jGVPVc250vuazAo6gYWYP5P2lseHEPCK+ZL10p+S

pxpP+IRWPW/10zda1+aok6DxWYoFW1ad3jwT9Z8bjK/Dm45Dhcjx06P0EMkOMrhdMdp5BnlBpGz9

EbWu7eg=</xenc:CipherValue>

</xenc:CipherData></xenc:EncryptedData></saml:EncryptedID><samlp:SessionInde
x>_7e3c1bcd-f180-4f78-83e1-7680920793aa</samlp:SessionIndex></samlp:LogoutRe
quest>

2022-07-22 14:44:25 DEBUG OpenSAML.MessageEncoder.SAML2Redirect [4]
[default]: signing the message

2022-07-22 14:44:25 DEBUG OpenSAML.MessageEncoder.SAML2Redirect [4]
[default]: message encoded, sending redirect to client

2022-07-22 14:44:25 INFO Shibboleth.SessionCache [4] [default]: removed
session (_0428cf2f940ac1484cf4e686ca42af09)

 

What am I missing? 

 

Regards,

Erki

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20220822/8687d501/attachment.htm>

More information about the users mailing list