Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-17354

SP initated SSO fails in 6.5.2.2 with encrypted assertions.

    XMLWordPrintable

    Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Done
    • 6.5.2.2, 6.5.2.3
    • None
    • SAML
    • Rank:
      1|i03i5j:
    • AM Sustaining Sprint 82, AM Sustaining Sprint 83, AM Sustaining Sprint 84, AM Sustaining Sprint 85, AM Sustaining Sprint 86
    • 3
    • No
    • No
    • No

      Description

      Bug description

      With the upgrade of xmlsec to version 2.1.4, Single-Sign-On with Encryption on fails with java exception.

       

      java.lang.NullPointerException

      at java.base/com.sun.crypto.provider.RSACipher.engineUnwrap(RSACipher.java:438)

      at java.base/javax.crypto.Cipher.unwrap(Cipher.java:2587)

      at org.apache.xml.security.encryption.XMLCipher.decryptKey(XMLCipher.java:1497)

      at com.sun.identity.saml2.xmlenc.FMEncProvider.getEncryptionKey(FMEncProvider.java:585)

      How to reproduce the issue

      Details steps outlining how to recreate the issue (remove this text)

      1. Setup 2 OpenAM servers for SAML
      2. Enable Encrypted Assertions with algorithm "http://www.w3.org/2001/04/xmlenc#tripledes-cbc"
      3. Perform an SP Initiated SSO request
      Expected behaviour
      Successful SSO
      
      Current behaviour
      SSO Failure 
      

      Work around

      None.

       

        Attachments

          Activity

            People

            sfraser Sam Fraser
            sfraser Sam Fraser
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 8h
                8h
                Remaining:
                Remaining Estimate - 0h
                0h
                Logged:
                Time Spent - 8h
                8h