Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-16289

Fedlet fails with NPE when default digest method is missing from FederationConfig.properties

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 7.0.0, 6.5.3
    • Fix Version/s: 7.0.0, 6.5.3
    • Component/s: SAML

      Description

      Bug description

      When using the fedlet with encryption enabled, the following stacktrace can be seen in the logs:

      o.f.o.f.RuntimeExceptionFilter.lambda$onRuntimeException$0 | The following RuntimeException was caught : 
      java.lang.NullPointerException: http://www.w3.org/2009/xmlenc11#mgf1sha256
              at org.forgerock.util.Reject.checkNotNull(Reject.java:82)
              at org.forgerock.util.Reject.ifNull(Reject.java:240)
              at com.sun.identity.saml2.key.RsaOaepConfig.<init>(RsaOaepConfig.java:42)
              at com.sun.identity.saml2.xmlenc.FMEncProvider.encrypt(FMEncProvider.java:177)
              at com.sun.identity.saml2.xmlenc.FMEncProvider.encrypt(FMEncProvider.java:94)
              at com.sun.identity.saml2.assertion.impl.NameIDImpl.encrypt(NameIDImpl.java:124)
      

      How to reproduce the issue

      Use the latest fedlet with NameID encryption enabled and FederationConfig.properties that does not have the com.sun.identity.saml.xmlsig.digestAlgorithm property defined.

      Expected behaviour

      encryption works fine with reasonable defaults

      Current behaviour

      encryption fails with runtime exception.

      Work around

      Define com.sun.identity.saml.xmlsig.digestAlgorithm property in FederationConfing.properties with the value of http://www.w3.org/2001/04/xmlenc#sha256 for example.

        Attachments

          Activity

            People

            • Assignee:
              peter.major Peter Major [X] (Inactive)
              Reporter:
              peter.major Peter Major [X] (Inactive)
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: