2:52 p.m.
Ja, jag har slagit på detta men det verkar inte bli någon felloggning.
Svarade i föregående mail om loggning till Paul Scott.
Ja, jag utnyttjar en del plugins. Men SAML verkar inte komma så långt.
SAML requesten är:
<samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
AssertionConsumerServiceURL="https://app.ref.iasystemet.se/Authentication/LoginSSO/irf/Shibboleth.sso/SAML2/POST"
Destination="https://testidpshibboleth.irf.se/idp/profile/SAML2/Redirect/SSO"
ID="_c91ea4fe1c0f7c8632213777e5e113e1"
IssueInstant="2024-10-14T12:23:50Z"
ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
Version="2.0"><saml:Issuer
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://app.ref.iasystemet.se/Authentication/LoginSSO/irf/shibboleth</saml:Issuer><samlp:NameIDPolicy
AllowCreate="1" /></samlp:AuthnRequest>
Enligt felmeddelandet så hittas ju inte
https://testidpshibboleth.irf.se/idp/profile/SAML2/Redirect/SSO så den
där requesten skickas inte antagligen.
/Mats
On 2024-10-14 13:37, Mikael Lindmark wrote:Ja, jag har ett SA
Jag antar att du har slagit på debug-loggning och
använder
SAML-tracing plugin i webbläsaren? /Mikael L
------------------------------------------------------------------------
*Från:* Mats Luspa via Saml-admins <saml-admins(a)lists.sunet.se>
*Skickat:* den 14 oktober 2024 13:20
*Till:* saml-admins(a)lists.sunet.se <saml-admins(a)lists.sunet.se>
*Ämne:* [Saml-admins] Re: Uppgradering till Jetty 12
Hej!
Jag använder inte start.ini. Det som görs i start.ini är flyttat till
/etc/default/jetty.
I Jetty 10 använde jag dock start.ini.
Jag har alltså ingen start.ini i Jetty 11 och det fungerar.
Allt verkar vara igång när jag kollar på processen enligt:
jetty 14584 1 0 10:34 ? 00:00:00 xargs /usr/bin/java
jetty 14586 14584 0 10:34 ? 00:00:04 /usr/bin/java
-Djava.io.tmpdir=/tmp -Djetty.home=/opt/jetty-home-12.0.14
-Djetty.base=/opt/jetty-base-12 -Didp.home=/opt/shibboleth-idp
-Dlogback.configurationFile=resources/logback.xml --class-path
/opt/jetty-base-12/resources:/opt/jetty-home-12.0.14/lib/logging/slf4j-api-2.0.13.jar:/opt/jetty-base-12/lib/logging/logback-classic-1.5.6.jar:/opt/jetty-base-12/lib/logging/logback-core-1.5.6.jar:/opt/jetty-home-12.0.14/lib/jetty-http-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-server-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-xml-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-util-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-io-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-session-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-security-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-ee-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-plus-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-jndi-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-deploy-12.0.14.jar:/opt/jetty-home-12.0.14/lib/jetty-rewrite-12.0.14.jar
org.eclipse.jetty.xml.XmlConfiguration idp.home=/opt/shibboleth-idp
java.version=17.0.12 jetty.base=/opt/jetty-base-12
jetty.base.uri=file:///opt/jetty-base-12
jetty.home=/opt/jetty-home-12.0.14
jetty.home.uri=file:///opt/jetty-home-12.0.14
jetty.pid=/opt/jetty-base/jetty.pid jetty.requestlog.dir=logs
jetty.server.default.showContexts=false jetty.ssl.port=443
jetty.ssl.sniHostCheck=false
jetty.sslContext.keyStorePassword=j0110Qshibboleth
jetty.sslContext.keyStorePath=/opt/jetty-base/credentials/wildcard_irf_se_sectigo.pkcs12
jetty.sslContext.keyStoreType=PKCS12
jetty.sslContext.renegotiationAllowed=false
jetty.state=/opt/jetty-base/jetty.state
jetty.webapp.addHiddenClasses=ch.qos.logback.,org.slf4j.
logback.configurationFile=resources/logback.xml logback.version=1.5.6
runtime.feature.alpn=true slf4j.version=2.0.13
/opt/jetty-home-12.0.14/etc/jetty-bytebufferpool.xml
/opt/jetty-home-12.0.14/etc/jetty-pid.xml
/opt/jetty-home-12.0.14/etc/jetty-threadpool.xml
/opt/jetty-home-12.0.14/etc/jetty.xml
/opt/jetty-home-12.0.14/etc/sessions/id-manager.xml
/opt/jetty-home-12.0.14/etc/jetty-ee-webapp.xml
/opt/jetty-home-12.0.14/etc/jetty-state.xml
/opt/jetty-home-12.0.14/etc/jetty-deploy.xml
/opt/jetty-home-12.0.14/etc/jetty-http.xml
/opt/jetty-home-12.0.14/etc/jetty-ssl.xml
/opt/jetty-home-12.0.14/etc/jetty-ssl-context.xml
/opt/jetty-home-12.0.14/etc/jetty-https.xml
/opt/jetty-home-12.0.14/etc/console-capture.xml
/opt/jetty-base-12/etc/jetty-requestlog.xml
/opt/jetty-home-12.0.14/etc/jetty-rewrite.xml
/opt/jetty-base-12/etc/jetty-rewrite-rules.xml
root 14817 8900 0 11:18 pts/5 00:00:00 grep --color=auto
jetty
/Mats
On 2024-10-14 12:49, Paul Scott wrote:
personuppgifter<https://eur01.safelinks.protection.outlook.com/?url=http…
<https://www.kau.se/gdpr>>.
--
--
Mats Luspa
Phone: +46 (0)980 79 022
Cellular phone: +46 (0)725813330
Institutet för rymdfysik Fax: +46 (0)980 79 050
Swedish Institute of Space Physics email:matsl@irf.se
Visiting/Delivery address: Bengt Hultqvists väg 1, SE-981 92 Kiruna
Postal address: Box 812, SE-981 28 Kiruna
--
PGP Public Key:https://www.irf.se/pgp/matsl
Digital vcard:https://www.irf.se/vcard/mats.luspa
Har du kopierat start.ini från din gamla
jetty-base till start.d
mappen?
Den finns inte i git-repot av någon anledning.
/Paul.
On Mon, 2024-10-14 at 12:43 +0200, Mats Luspa via Saml-admins wrote:
> Hej!
>
> Jag har testat att göra uppgradering till Jetty 12 från Jetty 11
> enligt instruktioner i
>
https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwiki.sune…
<https://wiki.sunet.se/display/SWAMID/Uppgradera+Jetty>
> och
https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fshibbolet…
<https://shibboleth.atlassian.net/wiki/spaces/IDP5/pages/351610470>
> 6/Jetty12.
>
> I bilagan kommer de steg som jag genomfört.
>
> Jetty verkar starta upp. Men när jag går in på en SSO-sida får jag
> följande felmeddelande:
>
> HTTP ERROR 404 Not Found
> URI:
>
https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftestidpsh…
<https://testidpshibboleth.irf.se/idp/profile/SAML2/Redirect/SSO?SAMLR>
equest=nZJPb4JAEMW%2FCtm7rCIa2IgJ1UNNbCVCe%2BilWWCQTWCX7ixt%2Ffblj432
4qHX2Xnze%2FNmV8jrqmFha0p5hI8W0FjfdSWRDQ8BabVkiqNAJnkNyEzG4vBpzxx7yhq
tjMpURawQEbQRSm6UxLYGHYP%2BFBm8HPcBKY1pkFHKm8bWUNiC4xkN1GBsBNqjQRqR8V
5P9%2BokZBwfqNAFjUuRpqoCU9qIivZgh0aHOCHWtnMq5KC5EkxfzBu8yropPaQr0s5tI
Sq4TDlCLjRkhnYsYu22AXn3wffm%2BSLN5t6yyNx07vnu0vOX3gJc8JdF14bYwk6i4dIE
xJk67mQ2nczcZOqxhcfmzhuxoksoD0LmQp7uJ5iOTcgekySajJu9gsZhq66BrFf9HdgA1
jeXuT%2BW%2F56DrP8f%2FjXFFb0xMTpq2HNH3W0jVYnsbIVVpb42GriBgMwIXY%2BSvx
9r%2FQM%3D&RelayState=https%3A%2F%2Fapp.ref.iasystemet.se%2FAuthentic
ation%2FLoginSSO%2Firf
STATUS: 404
MESSAGE: Not Found
Powered by Jetty:// 12.0.14
Vad kan orsaka detta?
/MVH Mats
När du skickar e-post till Karlstads universitet behandlar vi dina
When you send an e-mail to Karlstad University,
we will process your
personal
data<https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fw…
<https://www.kau.se/en/gdpr>>.
_______________________________________________
Saml-admins mailing list -- saml-admins(a)lists.sunet.se
To unsubscribe send an email to saml-admins-leave(a)lists.sunet.se
--
--
Mats Luspa
Phone: +46 (0)980 79 022
Cellular phone: +46 (0)725813330
Institutet för rymdfysik Fax: +46 (0)980 79 050
Swedish Institute of Space Physics email: matsl(a)irf.se
Visiting/Delivery address: Bengt Hultqvists väg 1, SE-981 92 Kiruna
Postal address: Box 812, SE-981 28 Kiruna
--
PGP Public Key:
https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.irf.s…
<https://www.irf.se/pgp/matsl>
Digital vcard:
https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.irf.s…
<https://www.irf.se/vcard/mats.luspa>
_______________________________________________
Saml-admins mailing list --saml-admins(a)lists.sunet.se
To unsubscribe send an email tosaml-admins-leave(a)lists.sunet.se