1 Reply Latest reply on Feb 23, 2015 12:53 PM by Phillip Brand

    SAML Error

    Kyle Guillot

      I get the following error when trying to configure and use SAML.

      HTTP Status 500 - org.opensaml.saml2.metadata.provider.MetadataProviderException: User specified binding is not supported by the Identity Provider using profile urn:oasis:names:tc:SAML:2.0:profiles:SSO:browser


       

      javax.servlet.ServletException: org.opensaml.saml2.metadata.provider.MetadataProviderException: User specified binding is not supported by the Identity Provider using profile urn:oasis:names:tc:SAML:2.0:profiles:SSO:browser

      org.springframework.security.saml.SAMLEntryPoint.commence(SAMLEntryPoint.java:158)

      com.tableausoftware.domain.user.saml.SAMLExtendedEntryPoint.commence(SAMLExtendedEntryPoint.java:76)

      org.springframework.security.web.access.ExceptionTranslationFilter.sendStartAuthentication(ExceptionTranslationFilter.java:186)

      org.springframework.security.web.access.ExceptionTranslationFilter.handleSpringSecurityException(ExceptionTranslationFilter.java:168)

      org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:131)

      org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

      org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:103)

      org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

      org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:113)

      org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

      org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:54)

      org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

      org.springframework.security.web.savedrequest.RequestCacheAwareFilter.doFilter(RequestCacheAwareFilter.java:45)

      org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

      org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:186)

      org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:166)

      org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

      org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:87)

      org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

      org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192)

      org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:160)

      org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346)

      org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:259)

      org.jruby.rack.RackFilter.doFilter(RackFilter.java:54)

        • 1. Re: SAML Error
          Phillip Brand

          (Old thread, but in case anyone else finds this via Google...)

           

          Support let us know this is usually caused by the IdP metadata trying to use HTTP-Redirect binding when it should use HTTP-POST. Changing the IdP metadata fixed it for us.