掲示板
SAML: UserScreenNameException
7年前 に Martijn Jongen によって更新されました。
SAML: UserScreenNameException
New Member 投稿: 9 参加年月日: 16/06/01 最新の投稿
Hello,
I'm one step further in my attempts to connect LR to WSO2 IDP. However, for some reason I get the UserScreenNameException. I think I've set all settings and mappings correct.
In the Attribute Mapping section of SAML admin I've put:
screenName=http://wso2.org/claims/im
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
The SAML response and the stout is attached.
What am I missing here?
Update: I've enabled debug logging and see this:
09:43:15,237 DEBUG [http-bio-8080-exec-12][WebSsoProfileImpl:554] SAML authenticated user ZBJ.LOCAL/test@carbon.super
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:76] Resolving user with name ID format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent and value ZBJ.LOCAL/test@carbon.super
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:333] Importing user with identifier ZBJ.LOCAL/test@carbon.super of type screenName
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=im_emailAddress=emailaddress_firstName=givenname_lastName=claims/lastname [Sanitized]
09:43:15,252 WARN [http-bio-8080-exec-12][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=zbj.local/test@carbon.super}
09:43:15,252 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[test], http://wso2.org/claims/lastname=[tweedenaam], http://wso2.org/claims/emailaddress=[testemail@mail.com], http://wso2.org/claims/givenname=[Eerstenaam]}
09:43:15,252 ERROR [http-bio-8080-exec-12][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
com.liferay.portal.UserScreenNameException
How is that possible?
Regards,
Martijn
I'm one step further in my attempts to connect LR to WSO2 IDP. However, for some reason I get the UserScreenNameException. I think I've set all settings and mappings correct.
In the Attribute Mapping section of SAML admin I've put:
screenName=http://wso2.org/claims/im
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
The SAML response and the stout is attached.
What am I missing here?
Update: I've enabled debug logging and see this:
09:43:15,237 DEBUG [http-bio-8080-exec-12][WebSsoProfileImpl:554] SAML authenticated user ZBJ.LOCAL/test@carbon.super
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:76] Resolving user with name ID format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent and value ZBJ.LOCAL/test@carbon.super
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:333] Importing user with identifier ZBJ.LOCAL/test@carbon.super of type screenName
09:43:15,237 DEBUG [http-bio-8080-exec-12][CompanyThreadLocal:35] getCompanyId 20154
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=im_emailAddress=emailaddress_firstName=givenname_lastName=claims/lastname [Sanitized]
09:43:15,252 WARN [http-bio-8080-exec-12][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=zbj.local/test@carbon.super}
09:43:15,252 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[test], http://wso2.org/claims/lastname=[tweedenaam], http://wso2.org/claims/emailaddress=[testemail@mail.com], http://wso2.org/claims/givenname=[Eerstenaam]}
09:43:15,252 ERROR [http-bio-8080-exec-12][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
com.liferay.portal.UserScreenNameException
How is that possible?
Regards,
Martijn
7年前 に Soumyashree Mishra によって更新されました。
RE: SAML: UserScreenNameException
Junior Member 投稿: 32 参加年月日: 16/04/18 最新の投稿
Hi Martijn ,
I think the Attribute Mapping provided in SAML Admin is not being properly read. The mapping provided is
yet, in the logs you can see the attribute mapping being read as
Regards,
Soumya
I think the Attribute Mapping provided in SAML Admin is not being properly read. The mapping provided is
screenName=http://wso2.org/claims/imyet, in the logs you can see the attribute mapping being read as
screenName=imMartijn Jongen:
09:43:15,237 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=im_emailAddress=emailaddress_firstName=givenname_lastName=claims/lastname [Sanitized]
09:43:15,252 WARN [http-bio-8080-exec-12][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=zbj.local/test@carbon.super}
09:43:15,252 DEBUG [http-bio-8080-exec-12][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[test], http://wso2.org/claims/lastname=[tweedenaam], http://wso2.org/claims/emailaddress=[testemail@mail.com], http://wso2.org/claims/givenname=[Eerstenaam]}
09:43:15,252 ERROR [http-bio-8080-exec-12][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
com.liferay.portal.UserScreenNameException
Regards,
Soumya
7年前 に Martijn Jongen によって更新されました。
RE: SAML: UserScreenNameException
New Member 投稿: 9 参加年月日: 16/06/01 最新の投稿
Actually I tried both, neither work 
7年前 に Soumyashree Mishra によって更新されました。
RE: SAML: UserScreenNameException
Junior Member 投稿: 32 参加年月日: 16/04/18 最新の投稿
Hi Martjin,
The SAML attribute mapping works in this way. In the SP end, the property vs claims mapping is specified through the SAML Admin i.e. in your case
From the IDP end, you get the claim vs property-value mapping in the SAML response. i.e
The SAML plugin should be translating this two inputs into
From the logs that you have shared, I think this is not happening in your case. You might be getting the result mapping as screenname=null, hence the UserScreenNameException.
Can you check what is the value updated in the userAttributeMappings column of SAMLSPIDPCONNECTION table in lportal schema? It should be same to the mapping you have updated through SAML Admin page.
Regards,
Soumya
The SAML attribute mapping works in this way. In the SP end, the property vs claims mapping is specified through the SAML Admin i.e. in your case
screenName=http://wso2.org/claims/imFrom the IDP end, you get the claim vs property-value mapping in the SAML response. i.e
http://wso2.org/claims/im=testThe SAML plugin should be translating this two inputs into
screenname=testFrom the logs that you have shared, I think this is not happening in your case. You might be getting the result mapping as screenname=null, hence the UserScreenNameException.
Can you check what is the value updated in the userAttributeMappings column of SAMLSPIDPCONNECTION table in lportal schema? It should be same to the mapping you have updated through SAML Admin page.
Regards,
Soumya
7年前 に Martijn Jongen によって更新されました。
RE: SAML: UserScreenNameException
New Member 投稿: 9 参加年月日: 16/06/01 最新の投稿
Hi,
yes the values match the GUI,
screenName=http://wso2.org/claims/im
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
13:44:35,900 WARN [http-bio-8080-exec-6][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=zbj.local/test@carbon.super}
13:44:35,900 DEBUG [http-bio-8080-exec-6][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[test], http://wso2.org/claims/lastname=[tweedenaam], http://wso2.org/claims/emailaddress=[testemail@mail.com], http://wso2.org/claims/givenname=[Eerstenaam]}
At first it looks like LifeRay is trying to find a local user with the screenname zbj.local/test@carbon.super, this value comes from the saml2:NameID value.
The mapping however seems to work fine in the second log line, as test is mapped to the im value.
Are there any other logging options I can enable to see what's happening?
Regards,
yes the values match the GUI,
screenName=http://wso2.org/claims/im
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
13:44:35,900 WARN [http-bio-8080-exec-6][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=zbj.local/test@carbon.super}
13:44:35,900 DEBUG [http-bio-8080-exec-6][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[test], http://wso2.org/claims/lastname=[tweedenaam], http://wso2.org/claims/emailaddress=[testemail@mail.com], http://wso2.org/claims/givenname=[Eerstenaam]}
At first it looks like LifeRay is trying to find a local user with the screenname zbj.local/test@carbon.super, this value comes from the saml2:NameID value.
The mapping however seems to work fine in the second log line, as test is mapped to the im value.
Are there any other logging options I can enable to see what's happening?
Regards,
7年前 に Martijn Jongen によって更新されました。
RE: SAML: UserScreenNameException
New Member 投稿: 9 参加年月日: 16/06/01 最新の投稿
Here's another trace from the logfile, now with a different user name and with the optional nameID domain name and user store info removed, still however same same
18:14:11,529 DEBUG [http-bio-8080-exec-2][WebSsoProfileImpl:554] SAML authenticated user martijn.jongen
18:14:11,529 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:76] Resolving user with name ID format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent and value martijn.jongen
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,529 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:333] Importing user with identifier martijn.jongen of type screenName
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,545 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=http://wso2.org/claims/im_emailAddress=http://wso2.org/claims/emailaddress_firstName=http://wso2.org/claims/givenname_lastName=http://wso2.org/claims/lastname [Sanitized]
18:14:11,545 WARN [http-bio-8080-exec-2][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=martijn.jongen}
18:14:11,560 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[martijn.jongen], http://wso2.org/claims/lastname=[Jongen Last], http://wso2.org/claims/emailaddress=[martijn.jongen@zbj.local], http://wso2.org/claims/givenname=[Martijn First]}
18:14:11,560 ERROR [http-bio-8080-exec-2][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
com.liferay.portal.UserScreenNameException
18:14:11,529 DEBUG [http-bio-8080-exec-2][WebSsoProfileImpl:554] SAML authenticated user martijn.jongen
18:14:11,529 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:76] Resolving user with name ID format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent and value martijn.jongen
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,529 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:333] Importing user with identifier martijn.jongen of type screenName
18:14:11,529 DEBUG [http-bio-8080-exec-2][CompanyThreadLocal:35] getCompanyId 20154
18:14:11,545 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=http://wso2.org/claims/im_emailAddress=http://wso2.org/claims/emailaddress_firstName=http://wso2.org/claims/givenname_lastName=http://wso2.org/claims/lastname [Sanitized]
18:14:11,545 WARN [http-bio-8080-exec-2][UserPersistenceImpl:4269] No User exists with the key {companyId=20154, screenName=martijn.jongen}
18:14:11,560 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[martijn.jongen], http://wso2.org/claims/lastname=[Jongen Last], http://wso2.org/claims/emailaddress=[martijn.jongen@zbj.local], http://wso2.org/claims/givenname=[Martijn First]}
18:14:11,560 ERROR [http-bio-8080-exec-2][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
com.liferay.portal.UserScreenNameException
7年前 に Soumyashree Mishra によって更新されました。
RE: SAML: UserScreenNameException
Junior Member 投稿: 32 参加年月日: 16/04/18 最新の投稿
Hi Martjin,
The final attribute map as per the logs is incorrect. It should be in the lines of screenname=[martijn.jongen] for the code to successfully read the attribute values for screenname, emailaddress,etc.
Regards,
Soumya
Martijn Jongen:
18:14:11,560 DEBUG [http-bio-8080-exec-2][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[martijn.jongen], http://wso2.org/claims/lastname=[Jongen Last], http://wso2.org/claims/emailaddress=[martijn.jongen@zbj.local], http://wso2.org/claims/givenname=[Martijn First]}
The final attribute map as per the logs is incorrect. It should be in the lines of screenname=[martijn.jongen] for the code to successfully read the attribute values for screenname, emailaddress,etc.
Regards,
Soumya
7年前 に Martijn Jongen によって更新されました。
RE: SAML: UserScreenNameException
New Member 投稿: 9 参加年月日: 16/06/01 最新の投稿
Hi,
I've updated the mapping and there is a slight difference in the log now for the line
19:30:07,455 DEBUG [http-bio-9080-exec-9][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=im_emailAddress=emailaddress_firstName=givenname_lastName=lastname [Sanitized]
this used to be
19:08:40,910 DEBUG [http-bio-9080-exec-2][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=http://wso2.org/claims/im_emailAddress=http://wso2.org/claims/emailaddress_firstName=http://wso2.org/claims/givenname_lastName=http://wso2.org/claims/lastname [Sanitized]
but the error is on the next line, which has not changed.
19:30:07,455 DEBUG [http-bio-9080-exec-9][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[martijnjongen], http://wso2.org/claims/lastname=[Jongen Last], http://wso2.org/claims/emailaddress=[martijn.jongen@zbj.local], http://wso2.org/claims/givenname=[Martijn First]}
19:30:07,455 ERROR [http-bio-9080-exec-9][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
Is the mapping stored in any other place?
I've updated the mapping and there is a slight difference in the log now for the line
19:30:07,455 DEBUG [http-bio-9080-exec-9][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=im_emailAddress=emailaddress_firstName=givenname_lastName=lastname [Sanitized]
this used to be
19:08:40,910 DEBUG [http-bio-9080-exec-2][DefaultUserResolver:195] Attributes mapping for wso2idp screenName=http://wso2.org/claims/im_emailAddress=http://wso2.org/claims/emailaddress_firstName=http://wso2.org/claims/givenname_lastName=http://wso2.org/claims/lastname [Sanitized]
but the error is on the next line, which has not changed.
19:30:07,455 DEBUG [http-bio-9080-exec-9][DefaultUserResolver:110] Adding user with attributes map {http://wso2.org/claims/im=[martijnjongen], http://wso2.org/claims/lastname=[Jongen Last], http://wso2.org/claims/emailaddress=[martijn.jongen@zbj.local], http://wso2.org/claims/givenname=[Martijn First]}
19:30:07,455 ERROR [http-bio-9080-exec-9][BaseSamlStrutsAction:45] com.liferay.portal.UserScreenNameException
Is the mapping stored in any other place?
7年前 に Martijn Jongen によって更新されました。
RE: SAML: UserScreenNameException
New Member 投稿: 9 参加年月日: 16/06/01 最新の投稿
Ok all, big shame on me! Finally found it. It turned out I had the mapping reversed 
It works now, up to the next challenge (logout, roles) but that's for tomorrow. Thread can be closed. Thanks for the support!
It works now, up to the next challenge (logout, roles) but that's for tomorrow. Thread can be closed. Thanks for the support!
7年前 に Albin M. によって更新されました。
RE: SAML: UserScreenNameException
New Member 投稿: 2 参加年月日: 16/02/10 最新の投稿
Hi,
I have the same issue, and I tried every combination of attribute mapping. None of them works for me.
This is my current Attribute Mapping added trough SAML Admin UI:
screenName=http://wso2.org/claims/givenname
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
Here is log:
Can you please post your working Attribute Mapping?
Thanks!
Albin
I have the same issue, and I tried every combination of attribute mapping. None of them works for me.
This is my current Attribute Mapping added trough SAML Admin UI:
screenName=http://wso2.org/claims/givenname
emailAddress=http://wso2.org/claims/emailaddress
firstName=http://wso2.org/claims/givenname
lastName=http://wso2.org/claims/lastname
Here is log:
21:33:03,766 DEBUG [ajp-nio-8009-exec-9][DefaultUserResolver:98] Resolving user with name ID format urn:oasis:names:tc:SAML:2.0:nameid-format:persistent and value test4
21:33:03,766 DEBUG [ajp-nio-8009-exec-9][DefaultUserResolver:354] Importing user with identifier test4 of type screenName
21:33:03,766 DEBUG [ajp-nio-8009-exec-9][DefaultUserResolver:216] Attributes mapping for wso2idp screenName=http://wso2.org/claims/givenname_emailAddress=http://wso2.org/claims/emailaddress_firstName=http://wso2.org/claims/givenname_lastName=http://wso2.org/claims/lastname [Sanitized]
21:33:03,769 DEBUG [ajp-nio-8009-exec-9][DefaultUserResolver:132] Adding user with attributes map {http://wso2.org/claims/im=[test4], http://wso2.org/claims/emailaddress=[test4@bihnet.ba], http://wso2.org/claims/lastname=[Test4LastName], http://wso2.org/claims/givenname=[Test4FirstName]}
21:33:03,770 ERROR [ajp-nio-8009-exec-9][BaseSamlStrutsAction:46] com.liferay.portal.kernel.exception.UserScreenNameException$MustNotBeNull: Screen name must not be null for user 34527
com.liferay.portal.kernel.exception.UserScreenNameException$MustNotBeNull: Screen name must not be null for user 34527
at com.liferay.portal.service.impl.UserLocalServiceImpl.validateScreenName(UserLocalServiceImpl.java:6572)
at com.liferay.portal.service.impl.UserLocalServiceImpl.validate(UserLocalServiceImpl.java:6310)
at com.liferay.portal.service.impl.UserLocalServiceImpl.addUserWithWorkflow(UserLocalServiceImpl.java:700)
at com.liferay.portal.service.impl.UserLocalServiceImpl.addUser(UserLocalServiceImpl.java:570)
at sun.reflect.GeneratedMethodAccessor1287.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:153)
at com.liferay.portal.spring.transaction.DefaultTransactionExecutor.execute(DefaultTransactionExecutor.java:85)
at com.liferay.portal.spring.transaction.TransactionInterceptor.invoke(TransactionInterceptor.java:58)
at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:127)
at com.liferay.portal.service.ServiceContextAdvice.invoke(ServiceContextAdvice.java:40)
at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:127)
at com.liferay.portal.spring.aop.ChainableMethodAdvice.invoke(ChainableMethodAdvice.java:56)
at com.liferay.portal.spring.aop.ServiceBeanMethodInvocation.proceed(ServiceBeanMethodInvocation.java:127)
at com.liferay.portal.spring.aop.ServiceBeanAopProxy.invoke(ServiceBeanAopProxy.java:173)
at com.sun.proxy.$Proxy76.addUser(Unknown Source)
at com.liferay.portal.kernel.service.UserLocalServiceUtil.addUser(UserLocalServiceUtil.java:384)
at com.liferay.saml.resolver.DefaultUserResolver.addUser(DefaultUserResolver.java:167)
at com.liferay.saml.resolver.DefaultUserResolver.importUser(DefaultUserResolver.java:376)
at com.liferay.saml.resolver.DefaultUserResolver.resolveUser(DefaultUserResolver.java:118)
at com.liferay.saml.resolver.UserResolverUtil.resolveUser(UserResolverUtil.java:41)
at com.liferay.saml.profile.WebSsoProfileImpl.doProcessResponse(WebSsoProfileImpl.java:559)
at com.liferay.saml.profile.WebSsoProfileImpl.processResponse(WebSsoProfileImpl.java:156)
at com.liferay.saml.profile.WebSsoProfileUtil.processResponse(WebSsoProfileUtil.java:47)
at com.liferay.saml.hook.action.AssertionConsumerServiceAction.doExecute(AssertionConsumerServiceAction.java:42)
at com.liferay.saml.hook.action.BaseSamlStrutsAction.execute(BaseSamlStrutsAction.java:43)
at com.liferay.portal.kernel.struts.BaseStrutsAction.execute(BaseStrutsAction.java:39)
at sun.reflect.GeneratedMethodAccessor1130.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at com.liferay.portal.kernel.bean.ClassLoaderBeanHandler.invoke(ClassLoaderBeanHandler.java:67)
at com.sun.proxy.$Proxy708.execute(Unknown Source)
at com.liferay.portal.struts.ActionAdapter.execute(ActionAdapter.java:50)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:425)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:228)
at com.liferay.portal.struts.PortalRequestProcessor.process(PortalRequestProcessor.java:169)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1913)
at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:462)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:648)
at com.liferay.portal.servlet.MainServlet.callParentService(MainServlet.java:568)
at com.liferay.portal.servlet.MainServlet.service(MainServlet.java:545)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:729)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:292)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:207)
at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:240)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:119)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.monitoring.internal.servlet.filter.MonitoringFilter.processFilter(MonitoringFilter.java:180)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.security.sso.ntlm.internal.servlet.filter.NtlmPostFilter.processFilter(NtlmPostFilter.java:107)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.uploadservletrequest.UploadServletRequestFilter.processFilter(UploadServletRequestFilter.java:93)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.strip.StripFilter.processFilter(StripFilter.java:336)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.gzip.GZipFilter.processFilter(GZipFilter.java:125)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.secure.SecureFilter.processFilter(SecureFilter.java:307)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.jsoncontenttype.JSONContentTypeFilter.processFilter(JSONContentTypeFilter.java:42)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.sharepoint.SharepointFilter.processFilter(SharepointFilter.java:88)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.BaseFilter.processFilter(BaseFilter.java:142)
at com.liferay.portal.servlet.filters.virtualhost.VirtualHostFilter.processFilter(VirtualHostFilter.java:260)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at org.tuckey.web.filters.urlrewrite.RuleChain.handleRewrite(RuleChain.java:176)
at org.tuckey.web.filters.urlrewrite.RuleChain.doRules(RuleChain.java:145)
at org.tuckey.web.filters.urlrewrite.UrlRewriter.processRequest(UrlRewriter.java:92)
at org.tuckey.web.filters.urlrewrite.UrlRewriteFilter.doFilter(UrlRewriteFilter.java:394)
at com.liferay.portal.servlet.filters.urlrewrite.UrlRewriteFilter.processFilter(UrlRewriteFilter.java:65)
at com.liferay.portal.kernel.servlet.BaseFilter.doFilter(BaseFilter.java:48)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDoFilter(InvokerFilterChain.java:207)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:112)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:168)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:168)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.processDirectCallFilter(InvokerFilterChain.java:188)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilterChain.doFilter(InvokerFilterChain.java:96)
at com.liferay.portal.kernel.servlet.filters.invoker.InvokerFilter.doFilter(InvokerFilter.java:115)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:240)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:207)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:212)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:106)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:502)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:141)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:79)
at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:616)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:88)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:522)
at org.apache.coyote.ajp.AbstractAjpProcessor.process(AbstractAjpProcessor.java:868)
at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:672)
at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1500)
at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1456)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
at java.lang.Thread.run(Thread.java:745)Can you please post your working Attribute Mapping?
Thanks!
Albin
7年前 に Raihaan Cassim によって更新されました。
RE: SAML: UserScreenNameException
New Member 投稿: 14 参加年月日: 16/08/31 最新の投稿
Hi,
Could I also ask that you post your working attribute mapping? It seems that I get errors for any user other than the test user created when configuring Liferay at start up.
Thanks
Could I also ask that you post your working attribute mapping? It seems that I get errors for any user other than the test user created when configuring Liferay at start up.
Thanks
7年前 に Soumyashree Mishra によって更新されました。
RE: SAML: UserScreenNameException
Junior Member 投稿: 32 参加年月日: 16/04/18 最新の投稿
Hi Raihaan,
Could you please update the attribute mapping as below and check:
http://wso2.org/claims/givenname=screenName
http://wso2.org/claims/emailaddress=emailAddress
http://wso2.org/claims/givenname=firstName
http://wso2.org/claims/lastname=lastName
Regards,
Soumya
Could you please update the attribute mapping as below and check:
http://wso2.org/claims/givenname=screenName
http://wso2.org/claims/emailaddress=emailAddress
http://wso2.org/claims/givenname=firstName
http://wso2.org/claims/lastname=lastName
Regards,
Soumya
7年前 に Raihaan Cassim によって更新されました。
RE: SAML: UserScreenNameException
New Member 投稿: 14 参加年月日: 16/08/31 最新の投稿Soumyashree Mishra:
Hi Raihaan,
Could you please update the attribute mapping as below and check:
http://wso2.org/claims/givenname=screenName
http://wso2.org/claims/emailaddress=emailAddress
http://wso2.org/claims/givenname=firstName
http://wso2.org/claims/lastname=lastName
Regards,
Soumya
Thanks - this actually worked.
Initially it continued to fail with pretty much the same error. The step that goes with this is to define a custom claim dialect in IS and NOT use the local claim dialect.
6年前 に Naresh Reddy Kallamadi によって更新されました。
RE: SAML: UserScreenNameException
Regular Member 投稿: 120 参加年月日: 14/07/09 最新の投稿
Hi Raihaan & Soumya,
I too have same problem I tried swapping attribute mapping still no luck for me. Can you tell me is there any other thing u want me to do it?
Thanks,
Naresh kallamadi.
I too have same problem I tried swapping attribute mapping still no luck for me. Can you tell me is there any other thing u want me to do it?
Thanks,
Naresh kallamadi.