Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-11082

NPE when IDP Proxy List in SP entity on IDP Proxy instance contains an invalid IDP entity id

    Details

    • Type: Bug
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 13.5.1, 6.0.0.4, 6.5.0, 5.5.2
    • Fix Version/s: None
    • Component/s: SAML

      Description

      IDP Proxy scenario requires SP entity on IDP Proxy instance to have IDP entity ID in the IDP Proxy List property. If the value provided is not a valid entity ID, the SSO process will result in an NPE, as follows:

      java.lang.NullPointerException
              com.sun.identity.saml2.profile.IDPProxyUtil.sendProxyAuthnRequest(IDPProxyUtil.java:186)
              org.forgerock.openam.saml2.UtilProxySAMLAuthenticator.redirectToAuth(UtilProxySAMLAuthenticator.java:557)
              org.forgerock.openam.saml2.UtilProxySAMLAuthenticator.authenticate(UtilProxySAMLAuthenticator.java:297)
              com.sun.identity.saml2.profile.IDPSSOFederate.process(IDPSSOFederate.java:236)
              com.sun.identity.saml2.profile.IDPSSOFederate.doSSOFederate(IDPSSOFederate.java:142)
              com.sun.identity.saml2.profile.IDPSSOFederate.doSSOFederate(IDPSSOFederate.java:102)
              org.apache.jsp.saml2.jsp.idpSSOFederate_jsp._jspService(idpSSOFederate_jsp.java:195)
              org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
              javax.servlet.http.HttpServlet.service(HttpServlet.java:729)
              org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:438)
              org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:396)
              org.apache.jasper.servlet.JspServlet.service(JspServlet.java:340)
              javax.servlet.http.HttpServlet.service(HttpServlet.java:729)
              org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
              org.forgerock.openam.validation.ResponseValidationFilter.doFilter(ResponseValidationFilter.java:44)
              com.sun.identity.setup.AMSetupFilter.doFilter(AMSetupFilter.java:111)
              org.forgerock.openam.audit.context.AuditContextFilter.doFilter(AuditContextFilter.java:51)
      

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              n4al Nemanja Lukic
            • Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

              • Created:
                Updated: