[wsf-dev] ECP test harness
Peter Pritchard
pjpritch at mac.com
Thu Mar 13 09:09:29 PDT 2008
Hey all,
I'm trying to run the ECP plugin against whatever I can to make sure
it works right ... (which means it doesn't yet) ... although I am
about to check in more changes today ...
Any and or all test harness / staging server links would be most
appreciated.
I was going to send this email to Scott, but I guess I'm looking for
help in general, not just targeting Scott.
The ECP now handles the response given from https://sp.example.org/cgi-bin/printenv
kinda ...
anyway, I get the response from the SP, and send a POST via
XMLHttpRequest, with the filtered samlp:AuthnRequest node, like so ...
<?xml version="1.0" encoding="ISO-8859-1"?>
<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/
" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
<SOAP-ENV:Body>
<samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol
" AssertionConsumerServiceURL="https://sp.example.org/Shibboleth.sso/SAML2/ECP
" ID="_fe0693b191d2daa228cfae76e1439d2a"
IssueInstant="2008-03-13T15:10:55Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS
" Version="2.0"><saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion
">https://sp.example.org/shibboleth</saml:Issuer><samlp:NameIDPolicy
AllowCreate="1"/><samlp:Scoping><samlp:IDPList><samlp:IDPEntry
ProviderID="https://idp.example.org/shibboleth"/></samlp:IDPList></
samlp:Scoping></samlp:AuthnRequest>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
to url (taken from IDPEntry providerID ) https://idp.example.org/shibboleth
with
Content-Type: text/xml
SOAPAction: ""
and I get a 404 response ... is this just because the IdP is not set
up right, or because I'm doing something wrong ...
any thoughts?
NOTE: I was expecting to get a 'Loc' attribute from the IDPEntry
node ... and in other places I have seen other variants ... anyone
have an IdP to test the ECP against?
NOTE #2: Am I supposed to have an IdP url cached on the ECP plugin
side (by providerID) or get it from the user or UserAgent?
- Peter Pritchard
peter.openliberty at zenn.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openliberty.org/pipermail/wsf-dev_lists.openliberty.org/attachments/20080313/d853555c/attachment.html
More information about the Wsf-dev
mailing list