Foros de discusión
SAML: UserScreenNameException
Martijn Jongen, modificado hace 7 años.
SAML: UserScreenNameException
New Member Mensajes: 9 Fecha de incorporación: 1/06/16 Mensajes recientes
Hello,
I'm one step further in my attempts to connect LR to WSO2 IDP. However, for some reason I get the UserScreenNameException. I think I've set all settings and mappings correct.
In the Attribute Mapping section of SAML admin I've put:
screenName=http://wso2.org/claims/im
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
The SAML response and the stout is attached.
What am I missing here?
Update: I've enabled debug logging and see this:
09:43:15,237 DEBUG [http-bio-8080-exec-12][WebSsoProfileImpl:554] SAML authenticated user ZBJ.LOCAL/test@carbon.super
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:76] Resolving user with name ID format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent and value ZBJ.LOCAL/test@carbon.super
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:333] Importing user with identifier ZBJ.LOCAL/test@carbon.super of type screenName
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=im_emailAddress=emailaddress_firstName=givenname_lastName=claims/lastname [Sanitized]
09:43:15,252 WARN [http-bio-8080-exec-12][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=zbj.local/test@carbon.super}
09:43:15,252 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[test], http://wso2.org/claims/lastname=[tweedenaam], http://wso2.org/claims/emailaddress=[testemail@mail.com], http://wso2.org/claims/givenname=[Eerstenaam]}
09:43:15,252 ERROR [http-bio-8080-exec-12][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
com.liferay.portal.UserScreenNameException
How is that possible?
Regards,
Martijn
I'm one step further in my attempts to connect LR to WSO2 IDP. However, for some reason I get the UserScreenNameException. I think I've set all settings and mappings correct.
In the Attribute Mapping section of SAML admin I've put:
screenName=http://wso2.org/claims/im
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
The SAML response and the stout is attached.
What am I missing here?
Update: I've enabled debug logging and see this:
09:43:15,237 DEBUG [http-bio-8080-exec-12][WebSsoProfileImpl:554] SAML authenticated user ZBJ.LOCAL/test@carbon.super
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:76] Resolving user with name ID format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent and value ZBJ.LOCAL/test@carbon.super
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:333] Importing user with identifier ZBJ.LOCAL/test@carbon.super of type screenName
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=im_emailAddress=emailaddress_firstName=givenname_lastName=claims/lastname [Sanitized]
09:43:15,252 WARN [http-bio-8080-exec-12][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=zbj.local/test@carbon.super}
09:43:15,252 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[test], http://wso2.org/claims/lastname=[tweedenaam], http://wso2.org/claims/emailaddress=[testemail@mail.com], http://wso2.org/claims/givenname=[Eerstenaam]}
09:43:15,252 ERROR [http-bio-8080-exec-12][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
com.liferay.portal.UserScreenNameException
How is that possible?
Regards,
Martijn
Archivos adjuntos:
Soumyashree Mishra, modificado hace 7 años.
RE: SAML: UserScreenNameException
Junior Member Mensajes: 32 Fecha de incorporación: 18/04/16 Mensajes recientes
Hi Martijn ,
I think the Attribute Mapping provided in SAML Admin is not being properly read. The mapping provided is
yet, in the logs you can see the attribute mapping being read as
Regards,
Soumya
I think the Attribute Mapping provided in SAML Admin is not being properly read. The mapping provided is
screenName=http://wso2.org/claims/im
yet, in the logs you can see the attribute mapping being read as
screenName=im
.Martijn Jongen:
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=im_emailAddress=emailaddress_firstName=givenname_lastName=claims/lastname [Sanitized]
09:43:15,252 WARN [http-bio-8080-exec-12][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=zbj.local/test@carbon.super}
09:43:15,252 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[test], http://wso2.org/claims/lastname=[tweedenaam], http://wso2.org/claims/emailaddress=[testemail@mail.com], http://wso2.org/claims/givenname=[Eerstenaam]}
09:43:15,252 ERROR [http-bio-8080-exec-12][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
com.liferay.portal.UserScreenNameException
Regards,
Soumya
Martijn Jongen, modificado hace 7 años.
RE: SAML: UserScreenNameException
New Member Mensajes: 9 Fecha de incorporación: 1/06/16 Mensajes recientes
Actually I tried both, neither work
Soumyashree Mishra, modificado hace 7 años.
RE: SAML: UserScreenNameException
Junior Member Mensajes: 32 Fecha de incorporación: 18/04/16 Mensajes recientes
Hi Martjin,
The SAML attribute mapping works in this way. In the SP end, the property vs claims mapping is specified through the SAML Admin i.e. in your case
From the IDP end, you get the claim vs property-value mapping in the SAML response. i.e
The SAML plugin should be translating this two inputs into
From the logs that you have shared, I think this is not happening in your case. You might be getting the result mapping as screenname=null, hence the UserScreenNameException.
Can you check what is the value updated in the userAttributeMappings column of SAMLSPIDPCONNECTION table in lportal schema? It should be same to the mapping you have updated through SAML Admin page.
Regards,
Soumya
The SAML attribute mapping works in this way. In the SP end, the property vs claims mapping is specified through the SAML Admin i.e. in your case
screenName=http://wso2.org/claims/im
.From the IDP end, you get the claim vs property-value mapping in the SAML response. i.e
http://wso2.org/claims/im=test
.The SAML plugin should be translating this two inputs into
screenname=test
.From the logs that you have shared, I think this is not happening in your case. You might be getting the result mapping as screenname=null, hence the UserScreenNameException.
Can you check what is the value updated in the userAttributeMappings column of SAMLSPIDPCONNECTION table in lportal schema? It should be same to the mapping you have updated through SAML Admin page.
Regards,
Soumya
Martijn Jongen, modificado hace 7 años.
RE: SAML: UserScreenNameException
New Member Mensajes: 9 Fecha de incorporación: 1/06/16 Mensajes recientes
Hi,
yes the values match the GUI,
screenName=http://wso2.org/claims/im
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
13:44:35,900 WARN [http-bio-8080-exec-6][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=zbj.local/test@carbon.super}
13:44:35,900 DEBUG [http-bio-8080-exec-6][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[test], http://wso2.org/claims/lastname=[tweedenaam], http://wso2.org/claims/emailaddress=[testemail@mail.com], http://wso2.org/claims/givenname=[Eerstenaam]}
At first it looks like LifeRay is trying to find a local user with the screenname zbj.local/test@carbon.super, this value comes from the saml2:NameID value.
The mapping however seems to work fine in the second log line, as test is mapped to the im value.
Are there any other logging options I can enable to see what's happening?
Regards,
yes the values match the GUI,
screenName=http://wso2.org/claims/im
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
13:44:35,900 WARN [http-bio-8080-exec-6][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=zbj.local/test@carbon.super}
13:44:35,900 DEBUG [http-bio-8080-exec-6][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[test], http://wso2.org/claims/lastname=[tweedenaam], http://wso2.org/claims/emailaddress=[testemail@mail.com], http://wso2.org/claims/givenname=[Eerstenaam]}
At first it looks like LifeRay is trying to find a local user with the screenname zbj.local/test@carbon.super, this value comes from the saml2:NameID value.
The mapping however seems to work fine in the second log line, as test is mapped to the im value.
Are there any other logging options I can enable to see what's happening?
Regards,
Martijn Jongen, modificado hace 7 años.
RE: SAML: UserScreenNameException
New Member Mensajes: 9 Fecha de incorporación: 1/06/16 Mensajes recientes
Here's another trace from the logfile, now with a different user name and with the optional nameID domain name and user store info removed, still however same same
18:14:11,529 DEBUG [http-bio-8080-exec-2][WebSsoProfileImpl:554] SAML authenticated user martijn.jongen
18:14:11,529 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:76] Resolving user with name ID format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent and value martijn.jongen
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,529 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:333] Importing user with identifier martijn.jongen of type screenName
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,545 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=http://wso2.org/claims/im_emailAddress=http://wso2.org/claims/emailaddress_firstName=http://wso2.org/claims/givenname_lastName=http://wso2.org/claims/lastname [Sanitized]
18:14:11,545 WARN [http-bio-8080-exec-2][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=martijn.jongen}
18:14:11,560 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[martijn.jongen], http://wso2.org/claims/lastname=[Jongen Last], http://wso2.org/claims/emailaddress=[martijn.jongen@zbj.local], http://wso2.org/claims/givenname=[Martijn First]}
18:14:11,560 ERROR [http-bio-8080-exec-2][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
com.liferay.portal.UserScreenNameException
18:14:11,529 DEBUG [http-bio-8080-exec-2][WebSsoProfileImpl:554] SAML authenticated user martijn.jongen
18:14:11,529 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:76] Resolving user with name ID format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent and value martijn.jongen
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,529 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:333] Importing user with identifier martijn.jongen of type screenName
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,545 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=http://wso2.org/claims/im_emailAddress=http://wso2.org/claims/emailaddress_firstName=http://wso2.org/claims/givenname_lastName=http://wso2.org/claims/lastname [Sanitized]
18:14:11,545 WARN [http-bio-8080-exec-2][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=martijn.jongen}
18:14:11,560 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[martijn.jongen], http://wso2.org/claims/lastname=[Jongen Last], http://wso2.org/claims/emailaddress=[martijn.jongen@zbj.local], http://wso2.org/claims/givenname=[Martijn First]}
18:14:11,560 ERROR [http-bio-8080-exec-2][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
com.liferay.portal.UserScreenNameException
Soumyashree Mishra, modificado hace 7 años.
RE: SAML: UserScreenNameException
Junior Member Mensajes: 32 Fecha de incorporación: 18/04/16 Mensajes recientes
Hi Martjin,
The final attribute map as per the logs is incorrect. It should be in the lines of screenname=[martijn.jongen] for the code to successfully read the attribute values for screenname, emailaddress,etc.
Regards,
Soumya
Martijn Jongen:
18:14:11,560 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[martijn.jongen], http://wso2.org/claims/lastname=[Jongen Last], http://wso2.org/claims/emailaddress=[martijn.jongen@zbj.local], http://wso2.org/claims/givenname=[Martijn First]}
The final attribute map as per the logs is incorrect. It should be in the lines of screenname=[martijn.jongen] for the code to successfully read the attribute values for screenname, emailaddress,etc.
Regards,
Soumya
Martijn Jongen, modificado hace 7 años.
RE: SAML: UserScreenNameException
New Member Mensajes: 9 Fecha de incorporación: 1/06/16 Mensajes recientes
Hi,
I've updated the mapping and there is a slight difference in the log now for the line
19:30:07,455 DEBUG [http-bio-9080-exec-9][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=im_emailAddress=emailaddress_firstName=givenname_lastName=lastname [Sanitized]
this used to be
19:08:40,910 DEBUG [http-bio-9080-exec-2][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=http://wso2.org/claims/im_emailAddress=http://wso2.org/claims/emailaddress_firstName=http://wso2.org/claims/givenname_lastName=http://wso2.org/claims/lastname [Sanitized]
but the error is on the next line, which has not changed.
19:30:07,455 DEBUG [http-bio-9080-exec-9][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[martijnjongen], http://wso2.org/claims/lastname=[Jongen Last], http://wso2.org/claims/emailaddress=[martijn.jongen@zbj.local], http://wso2.org/claims/givenname=[Martijn First]}
19:30:07,455 ERROR [http-bio-9080-exec-9][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
Is the mapping stored in any other place?
I've updated the mapping and there is a slight difference in the log now for the line
19:30:07,455 DEBUG [http-bio-9080-exec-9][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=im_emailAddress=emailaddress_firstName=givenname_lastName=lastname [Sanitized]
this used to be
19:08:40,910 DEBUG [http-bio-9080-exec-2][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=http://wso2.org/claims/im_emailAddress=http://wso2.org/claims/emailaddress_firstName=http://wso2.org/claims/givenname_lastName=http://wso2.org/claims/lastname [Sanitized]
but the error is on the next line, which has not changed.
19:30:07,455 DEBUG [http-bio-9080-exec-9][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[martijnjongen], http://wso2.org/claims/lastname=[Jongen Last], http://wso2.org/claims/emailaddress=[martijn.jongen@zbj.local], http://wso2.org/claims/givenname=[Martijn First]}
19:30:07,455 ERROR [http-bio-9080-exec-9][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
Is the mapping stored in any other place?
Martijn Jongen, modificado hace 7 años.
RE: SAML: UserScreenNameException
New Member Mensajes: 9 Fecha de incorporación: 1/06/16 Mensajes recientes
Ok all, big shame on me! Finally found it. It turned out I had the mapping reversed
It works now, up to the next challenge (logout, roles) but that's for tomorrow. Thread can be closed. Thanks for the support!
It works now, up to the next challenge (logout, roles) but that's for tomorrow. Thread can be closed. Thanks for the support!
Albin M., modificado hace 7 años.
RE: SAML: UserScreenNameException
New Member Mensajes: 2 Fecha de incorporación: 10/02/16 Mensajes recientes
Hi,
I have the same issue, and I tried every combination of attribute mapping. None of them works for me.
This is my current Attribute Mapping added trough SAML Admin UI:
screenName=http://wso2.org/claims/givenname
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
Here is log:
Can you please post your working Attribute Mapping?
Thanks!
Albin
I have the same issue, and I tried every combination of attribute mapping. None of them works for me.
This is my current Attribute Mapping added trough SAML Admin UI:
screenName=http://wso2.org/claims/givenname
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
Here is log:
21:33:03,766 DEBUG [ajp-nio-8009-exec-9][DefaultUserResolver:98] Resolving user with name ID format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent and value test4
21:33:03,766 DEBUG [ajp-nio-8009-exec-9][DefaultUserResolver:354] Importing user with identifier test4 of type screenName
21:33:03,766 DEBUG [ajp-nio-8009-exec-9][DefaultUserResolver:216] Attributes mapping for wso2idp screenName=http://wso2.org/claims/givenname_emailAddress=http://wso2.org/claims/emailaddress_firstName=http://wso2.org/claims/givenname_lastName=http://wso2.org/claims/lastname [Sanitized]
21:33:03,769 DEBUG [ajp-nio-8009-exec-9][DefaultUserResolver:132] Adding user with attributes map {http://wso2.org/claims/im=[test4], http://wso2.org/claims/emailaddress=[test4@bihnet.ba], http://wso2.org/claims/lastname=[Test4LastName], http://wso2.org/claims/givenname=[Test4FirstName]}
21:33:03,770 ERROR [ajp-nio-8009-exec-9][BaseSamlStrutsAction:46] com.liferay.portal.kernel.exception.UserScreenNameException$MustNotBeNull: Screen name must not be null for user 34527
com.liferay.portal.kernel.exception.UserScreenNameException$MustNotBeNull: Screen name must not be null for user 34527
at com.liferay.portal.service.impl.UserLocalServiceImpl.validateScreenName(UserLocalServiceImpl.java:6572)
at com.liferay.portal.service.impl.UserLocalServiceImpl.validate(UserLocalServiceImpl.java:6310)
at com.liferay.portal.service.impl.UserLocalServiceImpl.addUserWithWorkflow(UserLocalServiceImpl.java:700)
at com.liferay.portal.service.impl.UserLocalServiceImpl.addUser(UserLocalServiceImpl.java:570)
at sun.reflect.GeneratedMethodAccessor1287.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:153)
at com.liferay.portal.spring.transaction.DefaultTransactionExecutor.execute(DefaultTransactionExecutor.java:85)
at com.liferay.portal.spring.transaction.TransactionInterceptor.invoke(TransactionInterceptor.java:58)
at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:127)
at com.liferay.portal.service.ServiceContextAdvice.invoke(ServiceContextAdvice.java:40)
at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:127)
at com.liferay.portal.spring.aop.ChainableMethodAdvice.invoke(ChainableMethodAdvice.java:56)
at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:127)
at com.liferay.portal.spring.aop.ServiceBeanAopProxy.invoke(ServiceBeanAopProxy.java:173)
at com.sun.proxy.$Proxy76.addUser(Unknown Source)
at com.liferay.portal.kernel.service.UserLocalServiceUtil.addUser(UserLocalServiceUtil.java:384)
at com.liferay.saml.resolver.DefaultUserResolver.addUser(DefaultUserResolver.java:167)
at com.liferay.saml.resolver.DefaultUserResolver.importUser(DefaultUserResolver.java:376)
at com.liferay.saml.resolver.DefaultUserResolver.resolveUser(DefaultUserResolver.java:118)
at com.liferay.saml.resolver.UserResolverUtil.resolveUser(UserResolverUtil.java:41)
at com.liferay.saml.profile.WebSsoProfileImpl.doProcessResponse(WebSsoProfileImpl.java:559)
at com.liferay.saml.profile.WebSsoProfileImpl.processResponse(WebSsoProfileImpl.java:156)
at com.liferay.saml.profile.WebSsoProfileUtil.processResponse(WebSsoProfileUtil.java:47)
at com.liferay.saml.hook.action.AssertionConsumerServiceAction.doExecute(AssertionConsumerServiceAction.java:42)
at com.liferay.saml.hook.action.BaseSamlStrutsAction.execute(BaseSamlStrutsAction.java:43)
at com.liferay.portal.kernel.struts.BaseStrutsAction.execute(BaseStrutsAction.java:39)
at sun.reflect.GeneratedMethodAccessor1130.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at com.liferay.portal.kernel.bean.ClassLoaderBeanHandler.invoke(ClassLoaderBeanHandler.java:67)
at com.sun.proxy.$Proxy708.execute(Unknown Source)
at com.liferay.portal.struts.ActionAdapter.execute(ActionAdapter.java:50)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:425)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:228)
at com.liferay.portal.struts.PortalRequestProcessor.process(PortalRequestProcessor.java:169)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1913)
at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:462)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:648)
at com.liferay.portal.servlet.MainServlet.callParentService(MainServlet.java:568)
at com.liferay.portal.servlet.MainServlet.service(MainServlet.java:545)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:729)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:292)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:207)
at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:240)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:119)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.monitoring.internal.servlet.filter.MonitoringFilter.processFilter(MonitoringFilter.java:180)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.security.sso.ntlm.internal.servlet.filter.NtlmPostFilter.processFilter(NtlmPostFilter.java:107)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.uploadservletrequest.UploadServletRequestFilter.processFilter(UploadServletRequestFilter.java:93)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.strip.StripFilter.processFilter(StripFilter.java:336)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.gzip.GZipFilter.processFilter(GZipFilter.java:125)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.secure.SecureFilter.processFilter(SecureFilter.java:307)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.jsoncontenttype.JSONContentTypeFilter.processFilter(JSONContentTypeFilter.java:42)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.sharepoint.SharepointFilter.processFilter(SharepointFilter.java:88)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.virtualhost.VirtualHostFilter.processFilter(VirtualHostFilter.java:260)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at org.tuckey.web.filters.urlrewrite.RuleChain.handleRewrite(RuleChain.java:176)
at org.tuckey.web.filters.urlrewrite.RuleChain.doRules(RuleChain.java:145)
at org.tuckey.web.filters.urlrewrite.UrlRewriter.processRequest(UrlRewriter.java:92)
at org.tuckey.web.filters.urlrewrite.UrlRewriteFilter.doFilter(UrlRewriteFilter.java:394)
at com.liferay.portal.servlet.filters.urlrewrite.UrlRewriteFilter.processFilter(UrlRewriteFilter.java:65)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:168)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:168)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilter.doFilter(InvokerFilter.java:115)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:240)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:207)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:212)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:106)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:502)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:141)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:79)
at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:616)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:88)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:522)
at org.apache.coyote.ajp.AbstractAjpProcessor.process(AbstractAjpProcessor.java:868)
at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:672)
at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1500)
at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1456)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
at java.lang.Thread.run(Thread.java:745)
Can you please post your working Attribute Mapping?
Thanks!
Albin
Raihaan Cassim, modificado hace 7 años.
RE: SAML: UserScreenNameException
New Member Mensajes: 14 Fecha de incorporación: 31/08/16 Mensajes recientes
Hi,
Could I also ask that you post your working attribute mapping? It seems that I get errors for any user other than the test user created when configuring Liferay at start up.
Thanks
Could I also ask that you post your working attribute mapping? It seems that I get errors for any user other than the test user created when configuring Liferay at start up.
Thanks
Soumyashree Mishra, modificado hace 7 años.
RE: SAML: UserScreenNameException
Junior Member Mensajes: 32 Fecha de incorporación: 18/04/16 Mensajes recientes
Hi Raihaan,
Could you please update the attribute mapping as below and check:
http://wso2.org/claims/givenname=screenName
http://wso2.org/claims/emailaddress=emailAddress
http://wso2.org/claims/givenname=firstName
http://wso2.org/claims/lastname=lastName
Regards,
Soumya
Could you please update the attribute mapping as below and check:
http://wso2.org/claims/givenname=screenName
http://wso2.org/claims/emailaddress=emailAddress
http://wso2.org/claims/givenname=firstName
http://wso2.org/claims/lastname=lastName
Regards,
Soumya
Raihaan Cassim, modificado hace 7 años.
RE: SAML: UserScreenNameException
New Member Mensajes: 14 Fecha de incorporación: 31/08/16 Mensajes recientesSoumyashree Mishra:
Hi Raihaan,
Could you please update the attribute mapping as below and check:
http://wso2.org/claims/givenname=screenName
http://wso2.org/claims/emailaddress=emailAddress
http://wso2.org/claims/givenname=firstName
http://wso2.org/claims/lastname=lastName
Regards,
Soumya
Thanks - this actually worked.
Initially it continued to fail with pretty much the same error. The step that goes with this is to define a custom claim dialect in IS and NOT use the local claim dialect.
Naresh Reddy Kallamadi, modificado hace 6 años.
RE: SAML: UserScreenNameException
Regular Member Mensajes: 120 Fecha de incorporación: 9/07/14 Mensajes recientes
Hi Raihaan & Soumya,
I too have same problem I tried swapping attribute mapping still no luck for me. Can you tell me is there any other thing u want me to do it?
Thanks,
Naresh kallamadi.
I too have same problem I tried swapping attribute mapping still no luck for me. Can you tell me is there any other thing u want me to do it?
Thanks,
Naresh kallamadi.