Issues Importing SP Metadata to SSOCircle Spring Security SAML Extention

Question

I'm running the Spring Security SAML Extension sample program and I'm able to generate the Service Provider metadata. However, when I try to import the SP metadata to SSOCircle, I get the following error:

Meta Data Import

Your data could not be imported Reason:

DefaultValidationEventHandler: [FATAL_ERROR]: Unexpected end of element {urn:oasis:names:tc:SAML:2.0:metadata}:Extensions Location: line 4 Entity descriptor "localhost" under realm "/" has invalid syntax.

I tried following the suggestions in this post, but when I turn off discovery, it no longer shows the page and SSOCircle is shown and it says: Error occurred Reason: The SAML Request is invalid.

Any ideas on what I'm doing wrong? BTW, I'm using the 1.0.0.RELEASE version of the SAML Extension.

Thanks!

Answer 1

Make sure that property includeDiscoveryExtension is set to false on your MetadataGenerator bean. When enabled, this setting generates an Extensions element which is problematic with SSOCircle. Then verify that the generated metadata doesn't really include any Extensions element.

You might also be trying to import an SP with entity identifier which already exists in SSOCircle. So make sure to set a unique entityId for your SP by setting property entityId on MetadataGenerator bean to e.g. urn:nualphaman:test.