Error on Add UAA SP configuration to UAA IdP

[bisbos]

Hi,

I am following the steps to configure SAML federation between UAA Service Provider (UAA SP) and UAA Identity Provider (UAA IdP)

On the Step 12,
./create-saml-sp.sh -n -m uaa-sp-metadata.xml -i

I am getting the error
uaac error
JSON::ParserError: 776: unexpected token at 'Invalid provider configuration.'

Could you please help me to resolve this issue

[irinaepshteyn]

Command you provided above to add service provider configuration is missing service provider name:
./create-saml-sp.sh -n uaa_sp_name -m uaa-sp-metadata.xml -i

It could be any arbitrary string without special characters

[bisbos]

I executed it using the following command and getting the error
./create-saml-sp.sh -n testsp -m uaa-sp-metadata.xml -i

[bisbos]

I am executing UAA in docker container and using mysql DB to manage the users and clients

I downloaded the IDP metadata from the url (Docker Host is 192.168.99.100) http://192.168.99.100:8080/saml/idp/metadata

I downloaded the SP metadata (uaa-sp-metadata.xml) from the url http://192.168.99.100:8081/saml/metadata/cloudfoundry-saml-login

Then I executed the command ./create-saml-sp.sh -n testsp -m uaa-sp-metadata.xml -i

[irinaepshteyn]

Could you please provide SP metadata (uaa-sp-metadata.xml)

[bisbos]

Added the file to the repository
https://github.com/bisbos/bis

[DarioAmiri]

@bisbos Just a few extra questions?

1. It seems like you are federating UAA to itself on the same zone. Why are you doing this?
2. What is the error response you are getting from UAA? If you don't see one, modify the script by adding a "-v" to every curl command or "-t" to every uaac command in the script and please post the results.

[bisbos]

I am running separate instances of uaa for SP and IDP eventhough I am using the same zone uaa

The response I am getting with "-t" with uaac command
400 Bad Request
RESPONSE HEADERS:
Server: Apache-Coyote/1.1
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
X-Xss-Protection: 1; mode=block
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Content-Type: application/json;charset=UTF-8
Content-Length: 31
Date: Tue, 03 May 2016 17:13:42 GMT
Connection: close
RESPONSE BODY:
uaac error
JSON::ParserError: 776: unexpected token at 'Invalid provider configuration.'
/Users/bbose/.rbenv/versions/2.2.3/lib/ruby/gems/2.2.0/gems/json_pure-1.8.3/lib/json/common.rb:155:in parse' /Users/bbose/.rbenv/versions/2.2.3/lib/ruby/gems/2.2.0/gems/json_pure-1.8.3/lib/json/common.rb:155:inparse'
/Users/bbose/.rbenv/versions/2.2.3/lib/ruby/gems/2.2.0/gems/cf-uaac-3.2.0/lib/cli/curl.rb:88:in print_response' /Users/bbose/.rbenv/versions/2.2.3/lib/ruby/gems/2.2.0/gems/cf-uaac-3.2.0/lib/cli/curl.rb:38:inblock in class:CurlCli'
/Users/bbose/.rbenv/versions/2.2.3/lib/ruby/gems/2.2.0/gems/cf-uaac-3.2.0/lib/cli/base.rb:272:in block (2 levels) in run' /Users/bbose/.rbenv/versions/2.2.3/lib/ruby/gems/2.2.0/gems/cf-uaac-3.2.0/lib/cli/base.rb:258:ineach'
/Users/bbose/.rbenv/versions/2.2.3/lib/ruby/gems/2.2.0/gems/cf-uaac-3.2.0/lib/cli/base.rb:258:in block in run' /Users/bbose/.rbenv/versions/2.2.3/lib/ruby/gems/2.2.0/gems/cf-uaac-3.2.0/lib/cli/base.rb:257:ineach'
/Users/bbose/.rbenv/versions/2.2.3/lib/ruby/gems/2.2.0/gems/cf-uaac-3.2.0/lib/cli/base.rb:257:in run' /Users/bbose/.rbenv/versions/2.2.3/lib/ruby/gems/2.2.0/gems/cf-uaac-3.2.0/bin/uaac:18:in<top (required)>'
/Users/bbose/.rbenv/versions/2.2.3/bin/uaac:23:in load' /Users/bbose/.rbenv/versions/2.2.3/bin/uaac:23:in

'

[irinaepshteyn]

@bisbos I added this issue to our board. You could follow the progress here: https://rally1.rallydev.com/#/30377833713d/detail/userstory/55374590406