[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[upki-fed:01098] Re: Shibboleth IdPのShibboleth SP化について

Subject: [upki-fed:01098] Re: Shibboleth IdPのShibboleth SP化について
Date: Tue, 29 Nov 2016 11:03:16 +0900
From: Tatsumi Hosokawa <xxxxxxxx@xxxxxxxxxxxxxx>

$B1'MeMM(B

$B$"$j$,$H$&$4$6$$$^$9!#(B

$B$d$O$j$=$Nr7o$r=q$$$F$b$$$$$+$b$7$l$^$;$s$,!"(B
$B$H$j$"$($:%F%9%H$H$7$F$O@.8y$H$$$&$3$H$G!#(B

$B$A$J$_$K%m%0$O(B

2016-11-29 09:32:15,581 - ERROR [net.shibboleth.idp.profile.impl.ResolveAttributes:257] - Profile Action ResolveAttributes: Error resolving attributes
net.shibboleth.idp.attribute.resolver.NoResultAnErrorResolutionException: No entries returned from search
	at net.shibboleth.idp.attribute.resolver.dc.ldap.impl.StringAttributeValueMappingStrategy.map(StringAttributeValueMappingStrategy.java:62)
2016-11-29 09:32:15,604 - WARN [net.shibboleth.idp.profile.logic.AbstractAttributePredicate:88] - No AttributeContext located for evaluation
2016-11-29 09:32:15,633 - WARN [org.opensaml.profile.action.impl.LogEvent:76] - An error event occurred while processing the request: ContextCheckDenied

$B$N$h$&$J46$8$K$J$j$^$9!#$3$l$GBg$-$JLdBj$J$/;H$($=$&$G$9$M!#(B

$B3'MM!"M-MQ$J>pJs$"$j$,$H$&$4$6$$$^$7$?!*(B

$B:Y@n(B

On 2016/11/28 18:48, URA Hiroshi wrote:

$B:Y@nMM(B

Mon, 28 Nov 2016 17:04:09 +0900, Tatsumi Hosokawa <xxxxxxxx@xxxxxxxxxxxxxx> said:

$B;DG0$J$,$iF0:n$OJQ$o$i$J$$$h$&$G$9!#(B

2016-11-28 17:02:43,459 - ERROR
[net.shibboleth.idp.profile.impl.ResolveAttributes:257] - Profile
Action ResolveAttributes: Error resolving attributes
net.shibboleth.idp.attribute.resolver.NoResultAnErrorResolutionException:
No entries returned from search
	at
	net.shibboleth.idp.attribute.resolver.dc.ldap.impl.StringAttributeValueMappingStrategy.map(StringAttributeValueMappingStrategy.java:62)
2016-11-28 17:02:44,779 - WARN
[net.shibboleth.idp.consent.flow.ar.impl.AbstractAttributeReleaseAction:155]
- Profile Action PopulateAttributeReleaseContext: Unable to locate
attribute context

$B$N$h$&$J%(%i!<$O=P$k$N$G$9$,!"(BSP$B$K$O%j%@%$%l%/%H$5$l$F$7$^$&$h$&$G$9!#(B


$B$J$k$[$I!"(BLDAPConnector$B<+BN$O%(%i!<$H$J$k$,!"(BSP$B$X$NB0@-Aw?.$K$O1F6A$,(B
$B$J$$$N$G$9$M!#(B

context-check-intercept-config.xml$B$G!"B0@-$r;}$C$F$$$k%f!<%6$N$_B0@-(B
$BAw?.$r5v2D$9$k$G$7$g$&$+!#(B

  https://wiki.shibboleth.net/confluence/display/IDP30/ActivationConditions#ActivationConditions-AttributeChecking

  <!-- Check that an eduPersonPrincipalName exists -->
  <bean class="net.shibboleth.idp.profile.logic.SimpleAttributePredicate">
      <property name="attributeValueMap">
          <map>
              <entry key="eppn">
                  <list>
                      <value>*</value>
                  </list>
              </entry>
          </map>
      </property>
  </bean>


--
$B1'Me(B $BGn;V(B (URA Hiroshi) / xxx@xxxxxxxxxx
$B3t<02q



--
$B7DXf5A=N(BITC$BK\It(B  $B:Y@nC#8J(B  xxxxxxxx@xxxxxxxxxxxxxx
Tel. 03-5427-1685  Fax. 03-5427-1722

References:
- [upki-fed:01093] Re: Shibboleth IdPのShibboleth SP化について
  - From: Tatsumi Hosokawa
- [upki-fed:01094] Re: Shibboleth IdP$B$N(BShibboleth SP$B2=(B$B$K$D$$$F(B
  - From: URA Hiroshi
- [upki-fed:01095] Re: Shibboleth IdPのShibboleth SP化について
  - From: Tatsumi Hosokawa
- [upki-fed:01096] Re: Shibboleth IdP$B$N(BShibboleth SP$B2=(B$B$K$D$$$F(B
  - From: URA Hiroshi

Prev by Date: [upki-fed:01097] Re: Shibboleth IdPのShibboleth SP化について
Next by Date: [upki-fed:01099] Shibboleth SPから得た属性値の環境変数を、アプリに渡す前に手を加えるには？
Previous by thread: [upki-fed:01117] LDAP Connectorでのエラー時にIdP上でエラー表示 (Re: [upki-fed:01097] Shibboleth IdPのShibboleth SP化について)
Next by thread: [upki-fed:01120] Re: Shibboleth IdPのShibboleth SP化について
Index(es):
- Date
- Thread