Getting an Error while trying to download Shibboleth2 configuration files

By: Etienne Pouliot user 21 Apr 2016 at 11:53 a.m. CDT

3 Responses
Etienne Pouliot gravatar
Whenever I try to download the Shiboleth2 files I get an error saying :"System error please try again" Here is the log entry I get whien I click the download buttong in oxtrust.log: ``` 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: memoryfree 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] memoryfree => 1.98 GB 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: memorysize 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] memorysize => 7.80 GB 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: swapfree 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] swapfree => 7.47 GB 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: swapsize 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] swapsize => 8.00 GB 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: hostname 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] hostname => b2940fdf6979 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: ipaddress 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] ipaddress => 172.17.0.62 2016-04-21 15:04:00,401 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: load_average 2016-04-21 15:04:00,402 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: bandwidth_usage 2016-04-21 15:04:00,402 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting bandwidth attributes 2016-04-21 15:04:00,402 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: uptime_seconds 2016-04-21 15:04:00,402 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] uptime_seconds => 4123359 2016-04-21 15:04:00,402 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting df attributes 2016-04-21 15:04:00,406 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting httpd attributes 2016-04-21 15:04:00,788 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Appliance status update finished 2016-04-21 15:04:05,001 DEBUG [org.gluu.oxtrust.ldap.service.AttributeService] objectClassTypes=[inetOrgPerson, gluuPerson, eduPerson, ox-39949DAAD4B16ADF0001A707132F] 2016-04-21 15:04:07,038 DEBUG [org.gluu.oxtrust.ldap.service.AttributeService] objectClassTypes=[inetOrgPerson, gluuPerson, eduPerson, ox-39949DAAD4B16ADF0001A707132F] 2016-04-21 15:04:07,040 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: birthdate 2016-04-21 15:04:07,040 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: c 2016-04-21 15:04:07,040 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: displayName 2016-04-21 15:04:07,040 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: mail 2016-04-21 15:04:07,040 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: emailVerified 2016-04-21 15:04:07,040 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: givenName 2016-04-21 15:04:07,040 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: gender 2016-04-21 15:04:07,041 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: iname 2016-04-21 15:04:07,041 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: inum 2016-04-21 15:04:07,041 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: sn 2016-04-21 15:04:07,041 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: updatedAt 2016-04-21 15:04:07,041 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: locale 2016-04-21 15:04:07,041 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: memberOf 2016-04-21 15:04:07,041 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: middleName 2016-04-21 15:04:07,041 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: nickname 2016-04-21 15:04:07,042 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: address 2016-04-21 15:04:07,042 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: o 2016-04-21 15:04:07,042 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: userPassword 2016-04-21 15:04:07,042 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: persistentId 2016-04-21 15:04:07,042 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: phoneNumberVerified 2016-04-21 15:04:07,042 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: picture 2016-04-21 15:04:07,042 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: preferredLanguage 2016-04-21 15:04:07,042 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: preferredUsername 2016-04-21 15:04:07,042 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: profile 2016-04-21 15:04:07,042 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: secretAnswer 2016-04-21 15:04:07,043 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: secretQuestion 2016-04-21 15:04:07,043 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: zoneinfo 2016-04-21 15:04:07,043 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: transientId 2016-04-21 15:04:07,043 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: uid 2016-04-21 15:04:07,043 DEBUG [org.gluu.oxtrust.action.CustomAttributeAction] attribute: website 2016-04-21 15:04:07,261 WARN [org.jboss.seam.ui.renderkit.DefaultActionRendererBase] Must set an id for the default action source 2016-04-21 15:04:07,267 WARN [org.jboss.seam.ui.renderkit.DefaultActionRendererBase] Must set an id for the default action source 2016-04-21 15:04:10,940 ERROR [org.xdi.util.io.ResponseHelper] Failed to add file 39949DAAD4B16ADF0002CF813D440006F9EE0FB1-sp-metadata.key to zip archive 2016-04-21 15:04:10,940 ERROR [org.gluu.oxtrust.action.UpdateTrustRelationshipAction] Failed to add /opt/idp/ssl/39949DAAD4B16ADF0002CF813D440006F9EE0FB1-sp-metadata.key to zip 2016-04-21 15:04:10,940 ERROR [org.xdi.util.io.ResponseHelper] Failed to add file 39949DAAD4B16ADF0002CF813D440006F9EE0FB1-sp-metadata.crt to zip archive 2016-04-21 15:04:10,940 ERROR [org.gluu.oxtrust.action.UpdateTrustRelationshipAction] Failed to add /opt/idp/ssl/39949DAAD4B16ADF0002CF813D440006F9EE0FB1-sp-metadata.crt to zip 2016-04-21 15:04:10,992 ERROR [org.jboss.seam.exception.Exceptions] handled and logged exception javax.el.ELException: java.lang.NullPointerException at org.jboss.el.util.ReflectionUtil.invokeMethod(ReflectionUtil.java:339) at org.jboss.el.util.ReflectionUtil.invokeMethod(ReflectionUtil.java:348) at org.jboss.el.parser.AstPropertySuffix.invoke(AstPropertySuffix.java:58) at org.jboss.el.parser.AstValue.invoke(AstValue.java:96) at org.jboss.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:276) at org.jboss.seam.core.Expressions$2.invoke(Expressions.java:222) at org.jboss.seam.navigation.Page.preRender(Page.java:311) at org.jboss.seam.navigation.Pages.preRender(Pages.java:351) at org.jboss.seam.jsf.SeamPhaseListener.preRenderPage(SeamPhaseListener.java:565) at org.jboss.seam.jsf.SeamPhaseListener.beforeRenderResponse(SeamPhaseListener.java:476) at org.jboss.seam.jsf.SeamPhaseListener.beforeServletPhase(SeamPhaseListener.java:147) at org.jboss.seam.jsf.SeamPhaseListener.beforePhase(SeamPhaseListener.java:117) at com.sun.faces.lifecycle.Phase.handleBeforePhase(Phase.java:228) at com.sun.faces.lifecycle.Phase.doPhase(Phase.java:99) at com.sun.faces.lifecycle.LifecycleImpl.render(LifecycleImpl.java:139) at javax.faces.webapp.FacesServlet.service(FacesServlet.java:594) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:748) at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:486) at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:411) at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:338) at org.jboss.seam.web.RewriteFilter.process(RewriteFilter.java:98) at org.jboss.seam.web.RewriteFilter.doFilter(RewriteFilter.java:57) at org.jboss.seam.servlet.SeamFilter$FilterChainImpl.doFilter(SeamFilter.java:69) at org.jboss.seam.web.LoggingFilter.doFilter(LoggingFilter.java:60) at org.jboss.seam.servlet.SeamFilter$FilterChainImpl.doFilter(SeamFilter.java:69) at org.jboss.seam.web.IdentityFilter.doFilter(IdentityFilter.java:40) at org.jboss.seam.servlet.SeamFilter$FilterChainImpl.doFilter(SeamFilter.java:69) at org.jboss.seam.web.MultipartFilter.doFilter(MultipartFilter.java:90) at org.jboss.seam.servlet.SeamFilter$FilterChainImpl.doFilter(SeamFilter.java:69) at org.jboss.seam.web.ExceptionFilter.doFilter(ExceptionFilter.java:64) at org.jboss.seam.servlet.SeamFilter$FilterChainImpl.doFilter(SeamFilter.java:69) at org.jboss.seam.web.RedirectFilter.doFilter(RedirectFilter.java:45) at org.jboss.seam.servlet.SeamFilter$FilterChainImpl.doFilter(SeamFilter.java:69) at org.jboss.seam.servlet.SeamFilter$FilterChainImpl.doFilter(SeamFilter.java:73) at org.jboss.seam.servlet.SeamFilter.doFilter(SeamFilter.java:158) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:505) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:170) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:423) at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1079) at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:625) at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:318) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) at java.lang.Thread.run(Thread.java:745) Caused by: java.lang.NullPointerException at org.gluu.oxtrust.action.UpdateTrustRelationshipAction.downloadConfiguration(UpdateTrustRelationshipAction.java:871) at sun.reflect.GeneratedMethodAccessor4496.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:606) at org.jboss.seam.util.Reflections.invoke(Reflections.java:22) at org.jboss.seam.intercept.RootInvocationContext.proceed(RootInvocationContext.java:32) at org.jboss.seam.intercept.SeamInvocationContext.proceed(SeamInvocationContext.java:56) at org.jboss.seam.transaction.RollbackInterceptor.aroundInvoke(RollbackInterceptor.java:28) at org.jboss.seam.intercept.SeamInvocationContext.proceed(SeamInvocationContext.java:68) at org.jboss.seam.core.BijectionInterceptor.aroundInvoke(BijectionInterceptor.java:79) at org.jboss.seam.intercept.SeamInvocationContext.proceed(SeamInvocationContext.java:68) at org.jboss.seam.core.MethodContextInterceptor.aroundInvoke(MethodContextInterceptor.java:44) at org.jboss.seam.intercept.SeamInvocationContext.proceed(SeamInvocationContext.java:68) at org.jboss.seam.security.SecurityInterceptor.aroundInvoke(SecurityInterceptor.java:163) at org.jboss.seam.intercept.SeamInvocationContext.proceed(SeamInvocationContext.java:68) at org.jboss.seam.intercept.RootInterceptor.invoke(RootInterceptor.java:107) at org.jboss.seam.intercept.JavaBeanInterceptor.interceptInvocation(JavaBeanInterceptor.java:196) at org.jboss.seam.intercept.JavaBeanInterceptor.invoke(JavaBeanInterceptor.java:114) at org.gluu.oxtrust.action.UpdateTrustRelationshipAction_$$_javassist_seam_76.downloadConfiguration(UpdateTrustRelationshipAction_$$_javassist_seam_76.java) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:606) at org.jboss.el.util.ReflectionUtil.invokeMethod(ReflectionUtil.java:335) ... 55 more ``` Here is the xml of my SP in my test environnement : ``` <?xml version="1.0"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://simplesaml.promutuel.local/simplesaml/module.php/saml/sp/metadata.php/default-sp"> <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://simplesaml.promutuel.local/simplesaml/module.php/saml/sp/saml2-logout.php/default-sp"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://simplesaml.promutuel.local/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://simplesaml.promutuel.local/simplesaml/module.php/saml/sp/saml1-acs.php/default-sp" index="1"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://simplesaml.promutuel.local/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://simplesaml.promutuel.local/simplesaml/module.php/saml/sp/saml1-acs.php/default-sp/artifact" index="3"/> </md:SPSSODescriptor> <md:ContactPerson contactType="technical"> <md:GivenName>Administrator</md:GivenName> <md:EmailAddress>etienne.pouliot@promutuel.ca</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor> ```
None
closed

Answers

By William Lowe user 21 Apr 2016 at 11:57 a.m. CDT

Copy
William Lowe gravatar
Etienne, Just to confirm, you're using the Gluu Server Docker Edition (formerly known as Enterprise Edition) ? Thanks, Will

By Etienne Pouliot user 21 Apr 2016 at 11:58 a.m. CDT

Copy
Etienne Pouliot gravatar
We are, version 2.4.3.

By Mohib Zico staff 21 Apr 2016 at 1:28 p.m. CDT

Copy
Mohib Zico gravatar
Etienne, This feature ( download Shibboleth2.zip configuration file ) is actually for 'Generate' scenario: - You have one SP where you are going to configure and install Shibboleth SP to protect it's resource. - If the above case is true.. only then you should use this feature. - In order to 'get' the shibboleth2.zip file, you just need to provide the SP's hostname where you are planning to configure Shibboleth SP. - So..you provided the hostname and use 'Generate' method and Gluu Server will 'generate' couple of configuration files ( with the help of your provided hostname + SAML cert if available ) which you will use inside of your Shibboleth SP server to quickly configure it with Gluu Server to make the SSO. As you already have metadata from your SP and most probably you are using SimpleSAMLPhp to setup your SP... so it's not worthy for you to use these 'Shibboleth2.zip' files.

Post an answer