c# - SAML SingleLogoutServices endpoint location error -
i trying locate documentation or on error have encountered:
id4453: saml service 'singlelogoutservices' has endpoint location or response location 'https://<server>/saml/' outside of application path '/saml'. [invalidoperationexception: id4453: saml service 'singlelogoutservices' has endpoint location or response location 'https://<server>/saml/' outside of application path '/saml'.] microsoft.identitymodel.web.saml2authenticationmodule.validatepathcasing(serviceprovidersinglesignondescriptor serviceproviderdescriptor) +657 microsoft.identitymodel.web.saml2authenticationmodule.readselfmetadata(stream stream, string filename, string& entityid, endpointconfiguration& endpointconfiguration, boolean& signauthenticationrequests, x509certificate2& signingcertificate) +219 microsoft.identitymodel.web.saml2authenticationmodule..ctor() +265 the web.config of site is:
<?xml version="1.0" encoding="utf-8"?> <configuration> <configsections> <section name="microsoft.identitymodel" type="microsoft.identitymodel.configuration.microsoftidentitymodelsection, microsoft.identitymodel, version=3.5.0.0, culture=neutral, publickeytoken=31bf3856ad364e35" /> <section name="microsoft.identitymodel.saml" type="microsoft.identitymodel.web.configuration.microsoftidentitymodelsamlsection, microsoft.identitymodel.protocols" /> </configsections> <connectionstrings> <add name="..." connectionstring="..." providername="system.data.sqlclient" /> </connectionstrings> <appsettings> <add key="apppath" value="https://<server>/login.aspx" /> </appsettings> <system.web> <authorization> <deny users="?" /> </authorization> <compilation debug="true" targetframework="4.0"> <assemblies> <add assembly="microsoft.identitymodel, version=3.5.0.0, culture=neutral, publickeytoken=31bf3856ad364e35" /> </assemblies> </compilation> <authentication mode="windows" /> <httpmodules> <add name="saml2authenticationmodule" type="microsoft.identitymodel.web.saml2authenticationmodule" /> <add name="sessionauthenticationmodule" type="microsoft.identitymodel.web.sessionauthenticationmodule" /> </httpmodules> </system.web> <system.webserver> <validation validateintegratedmodeconfiguration="false" /> <modules> <add name="saml2authenticationmodule" type="microsoft.identitymodel.web.saml2authenticationmodule" /> <add name="sessionauthenticationmodule" type="microsoft.identitymodel.web.sessionauthenticationmodule" /> </modules> </system.webserver> <microsoft.identitymodel> <service> <audienceuris> <add value="https://<server>/saml/" /> </audienceuris> <certificatevalidation certificatevalidationmode="none" /> <issuernameregistry type="microsoft.identitymodel.tokens.configurationbasedissuernameregistry"> <trustedissuers> <add name="http://<adfs server>/adfs/services/trust" thumbprint="...." /> </trustedissuers> </issuernameregistry> <servicetokenresolver type="microsoft.identitymodel.tokens.x509certificatestoretokenresolver" /> <securitytokenhandlers> <securitytokenhandlerconfiguration savebootstraptokens="true"> </securitytokenhandlerconfiguration> </securitytokenhandlers> </service> </microsoft.identitymodel> <microsoft.identitymodel.saml metadata="myconfig.xml"> <identityproviders> <metadata file="partner-metadata.xml" /> </identityproviders> </microsoft.identitymodel.saml> </configuration> i unable find supporting doco or web ref point me in right direction.
all appreciated.
fyi - might encounter issue, path case sensitive. key line is:
https://<server>/saml/' outside of application path '/saml'. i had web site in capitals link used in lower case:
<add value="https://<server>/saml/" /> matched case , solved problem.
Comments
Post a Comment