堆栈内存溢出
  简体   繁体   English

WSO2身份服务器:SAML SSO重定向URI被转换为主机名的IP地址

[英]WSO2 Identity Server: SAML SSO Redirect URI is being converted to IP address of hostname

 原文  2016-12-08 23:14:35       facebook/ saml-2.0/ wso2is

问题描述

I have configured the travelocity app to work running on a localhost with the Identity Server running on the local host. 我已将travelocity应用程序配置为可以在本地主机上运行,​​而Identity Server则可以在本地主机上运行。 Works well 效果很好

Then I rebuild the travelocity app to work with an external IS - changing the travelocity.properties SAML2.IdPURL OAuth2.TokenURL OpenId.ProviderURL to point to a public IS with valid SSL Certs 然后,我重建travelocity应用程序以与外部IS一起使用-更改travelocity.properties SAML2.IdPURL OAuth2.TokenURL OpenId.ProviderURL以指向具有有效SSL证书的公共IS

When I supplied https://www.mydomainname.com/commonauth in the Facebook "Valid OAuth redirect URIs" - the travelocity throws up an error "URL Blocked: This redirect failed because the redirect URI is not whitelisted in the app's Client OAuth Settings. Make sure Client and Web OAuth Login are on and add all your app domains as Valid OAuth Redirect URIs." 当我在Facebook“有效的OAuth重定向URI”中提供https://www.mydomainname.com/commonauth时-travelocity抛出错误“ URL阻止:此重定向失败,因为该重定向URI未在应用程序的客户端OAuth设置中列入白名单请确保已打开“客户端和Web OAuth登录”,并将所有应用程序域添加为有效OAuth重定向URI。” with the redirect contain the IP Address of the server rather than the domain name of the server 重定向包含服务器的IP地址而不是服务器的域名

When I supply the IP address for commonauth, it fails with "SAML2 Response Issuer verification failed " - I am assuming it is because the ssl certs doesn't match the ipaddress. 当我提供用于commonauth的IP地址时,它会失败,并显示“ SAML2 Response Issuer验证失败”-我认为这是因为ssl证书与ipaddress不匹配。

So why and where is the redirect-uri being converted to IP-Address? 那么,为什么将uri重定向到IP地址?在哪里? And mainly how can I resolve this? 主要如何解决这个问题?

2 个解决方案

解决方案1
 0  2016-12-09 07:06:41

您可以通过博客[ 1 ]中的步骤来验证所执行的步骤。

解决方案2
 0 已采纳  2016-12-10 08:04:29

You need to change the SAML2.IdPEntityId property in the travelocity.properties to match the value of the 您需要在travelocity.properties中更改SAML2.IdPEntityId属性,以与

Residentity IDP --> Inbound Authentication Configs --> SAML --> SAML issuer value. 身份IDP->入站身份验证配置-> SAML-> SAML颁发者值。

After you configure your IS with a hostname. 在使用主机名配置IS之后。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 WSO2 IS 5.3.0中具有Facebook联合身份验证的SAML SSO失败 - SAML SSO with Facebook Federated Authentication fails in WSO2 IS 5.3.0 WSO2 Identity Server 5.3.0-如何获取联合身份验证器ID - WSO2 Identity Server 5.3.0 - How to get federated authenticator ID wso2身份服务器使用Oauth2.0登录Facebook - wso2 identity server facebook login with Oauth2.0 WSO2 IS Facebook用户在SAML响应中的角色 - WSO2 IS Role of Facebook user in SAML response wso 2身份服务器:使用Facebook作为身份提供者 - wso 2 identity server: using Facebook as identity provider Facebook OAuth重定向到IP地址 - Facebook OAuth redirect to IP address Azure Web应用程序-无法将主机名解析为有效的IP地址 - Azure Web app - Could not resolve the hostname into a valid IP address Facebook对象调试程序 - 无法将主机名解析为有效的IP地址 - Facebook Object Debugger - Could not resolve the hostname into a valid IP address 在Asp.Net Identity中设置redirect_uri - Setting the redirect_uri in Asp.Net Identity 向我发送应用程序取消授权回调的Facebook服务器的IP地址是什么? - What is the IP address of the Facebook server that sends me app deauthorization callbacks?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM