[OPENAM-11268] SAML2 IDP metadata missing NameIDMappingService elements should not error on save Created: 13/Jun/17 Updated: 24/Jan/19 Resolved: 24/Jan/19
|Affects Version/s:||12.0.0, 13.0.0, 13.5.0, 14.0.0, 14.1.0|
|Reporter:||Mark de Reeper||Assignee:||Sam Fraser|
|Remaining Estimate:||Not Specified|
|Time Spent:||Not Specified|
|Original Estimate:||Not Specified|
|Support Ticket IDs:|
|Needs QA verification:||
|Are the reproduction steps defined?:||
No (add reasons in the comment)
The NameIDMappingService element in the metadata of a remote IDP is not a required element according to the SAML2 spec and OpenAM loads IDP metadata without this element without issue but when in the Services tab of the loaded metadata and hitting Save, OpenAM shows an error box in the console:
Where idpentity is the entity ID of the loaded metadata and the following is seen in the container logs:
To workaround this issue, add a URL into the "NameID Mapping" field at the bottom of the Services page (based on one of the values from the other service location entries) and Save.
Even without this workaround, the changes made to the Services page appear to be applied even though it generates the error.
|Comment by Sam Fraser [ 24/Jan/19 ]|