Wso2IS中SAML断言的签名验证失败
我在wso2 esb页面中启用了SSO,以前它工作得很好,但因为我们更改了IS和esb中的证书。现在,在尝试通过IS i get:Signature登录ESB时,SAML断言的签名验证失败:签名无效。 我还向wso2is和wso2esb密钥库添加了Esb和IS证书。 但错误依然存在Wso2IS中SAML断言的签名验证失败,wso2,single-sign-on,wso2esb,wso2is,Wso2,Single Sign On,Wso2esb,Wso2is,我在wso2 esb页面中启用了SSO,以前它工作得很好,但因为我们更改了IS和esb中的证书。现在,在尝试通过IS i get:Signature登录ESB时,SAML断言的签名验证失败:签名无效。 我还向wso2is和wso2esb密钥库添加了Esb和IS证书。 但错误依然存在 2015-05-28 09:59:17,281 log_level=WARN thread=http-nio-9443-exec-24 logger=org.apache.xml.security.signatur
2015-05-28 09:59:17,281 log_level=WARN thread=http-nio-9443-exec-24 logger=org.apache.xml.security.signature.XMLSignature [Signature verification failed.]
2015-05-28 09:59:17,281 log_level=WARN thread=http-nio-9443-exec-24 logger=org.wso2.carbon.identity.sso.saml.util.SAMLSSOUtil [Signature Validation Failed for the SAML Assertion : Signature is invalid.]
2015-05-28 09:59:17,281 log_level=DEBUG thread=http-nio-9443-exec-24 logger=org.wso2.carbon.identity.sso.saml.util.SAMLSSOUtil [org.wso2.carbon.identity.base.IdentityException: Signature Validation Failed for the SAML Assertion : Signature is invalid.]
2015-05-28 09:59:17,281 log_level=WARN thread=http-nio-9443-exec-24 logger=org.wso2.carbon.identity.sso.saml.processors.SPInitSSOAuthnRequestProcessor [Signature validation for Authentication Request failed.]
2015-05-28 09:59:33,747 log_level=DEBUG thread=pool-29-thread-1 logger=org.wso2.carbon.identity.application.authentication.framework.store.SessionCleanUpService [Start running the Session Data cleanup task.]
2015-05-28 09:59:33,759 log_level=DEBUG thread=pool-29-thread-1 logger=org.wso2.carbon.identity.application.authentication.framework.store.SessionCleanUpService [Stop running the Session Data cleanup task.]
如果同时更改WSO2IS和WSO2ESB的密钥库,则需要导出WSO2IS主密钥库的证书并将其导入WSO2ESB的主密钥库。然后,您需要指定用于将证书导入WSO2ESB主密钥库的
别名。这必须在以下属性下的/repository/conf/security/authenticators.xml
文件中配置
wso2carbon