Hi,
We are having some strange behaviour when configured with SAML
Problem:
Liferay is setup as IDP, we have one service provider.
Once
logged in from Liferay when we visit service provider's page then
everything works, we dont need to login again there.
Once we
return to Portal and then do a logout we are getting error
com.liferay.saml.runtime.SamlException:
org.opensaml.ws.security.SecurityPolicyException: Inbound message
issuer was not authenticated.
at
com.liferay.saml.opensaml.integration.internal.profile.ExceptionHandlerUtil.handleException(ExceptionHandlerUtil.java:34)
at
com.liferay.saml.opensaml.integration.internal.profile.SingleLogoutProfileImpl.processSingleLogout(SingleLogoutProfileImpl.java:252)
at
com.liferay.saml.web.internal.portlet.action.SingleLogoutAction.doExecute(SingleLogoutAction.java:62)
at
com.liferay.saml.web.internal.portlet.action.BaseSamlStrutsAction.execute(BaseSamlStrutsAction.java:51)
at
com.liferay.portal.kernel.struts.BaseStrutsAction.execute(BaseStrutsAction.java:39)
at
com.liferay.portal.struts.ActionAdapter.execute(ActionAdapter.java:50)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:425)
Suspect: I guess signature is being passsed null.
Now once when we login back again into portal, then we are getting error
[SecurityPortletContainerWrapper:363] User 0 is not allowed to
access URL https://unnayan.indianoil.co.in/web/guest/employee-login
and portlet com_liferay_login_web_portlet_LoginPortlet
Then we have to clear cookies again so user can login.
