Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-14987

encryption algorithm can not be selected / configured via console

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 13.0.0, 13.5.0, 13.5.1, 13.5.2, 14.0.0, 14.1.0, 14.1.1, 14.5.0, 14.5.1, 5.5.1, 6.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.0.0.4, 6.0.0.5, 6.5.0, 6.0.0.6, 6.5.0.1, 6.5.1, 6.5.0.2
    • Fix Version/s: None
    • Component/s: console, SAML
    • Labels:
    • Environment:
      Oracle JDK 1.8.0_201-b09
      Apache Tomcat/9.0.8
      AM 6.5.1
    • Support Ticket IDs:

      Description

      Bug description

      Encryption algorithm for SAML can not be configured via AM console

      How to reproduce the issue

      1. Setup AM as hosted SAML IdP
      2. Register remote SP that supports various encryption algorithms
      3. Login to AM console
      4. Try to select encryption algorithm

      E.g. included the following the 'encryption' KeyDescriptor within the SP meta data file ...

            <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
            <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
            <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc">
              <xenc:KeySize xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">256</xenc:KeySize>
            </md:EncryptionMethod>
            <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      
      Expected behaviour
      Algorithm and KeySize should be selectable
      
      Current behaviour
      Only the first encryption algorithm present in the SAML SP meta data file is displayed an can be used.
      

      Work around

      delete and re-import SP meta data via ssoadm

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                bthalmayr Bernhard Thalmayr
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated: