ComponentSpace

Forums



"Unexpected Token" Error on InitiateSSO()


"Unexpected Token" Error on InitiateSSO()

Author
Message
DanMcD_FEI
DanMcD_FEI
New Member
New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)

Group: Forum Members
Posts: 19, Visits: 106
We have a SAML Identify Provider setup and we're trying to add a new partner using IdPI. They use auth0 for their SSO and have configured it for SAML. The SSO works but has a problem on their end because their application can't redirect the request to the correct URL. They believe we can fix this by adding an additional parameter to the Assertion Consumber Service URL. However, when I add the additional parameter (&organization=fei) to the ACS, it throws an error on our end when we call the InitiateSSO() method. The error is as follows:

Message: '=' is an unexpected token. The expected token is ';'. Line 51, position 111.
...
at ComponentSpace.SAML2.SAMLIdentityProvider.InitiateSSO(HttpResponse httpResponse, String userName, IDictionary`2 attributes, String relayState, String partnerSP)
at CMSWebParts_FEI_controls_ctrl_SSO_SAML_CS.sso_idpi()

Line 51 is the entry for the SP's ACS url in our saml.config file. If we leave off the second parameter, it works fine. If we add it, we get an error. Is it not possible to add a second QueryString Parameter to the ACS url?
ComponentSpace
ComponentSpace
ComponentSpace Development
ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)

Group: Administrators
Posts: 3.2K, Visits: 11K
Please enable SAML trace and send the generated log file as an email attachment to [email protected] mentioning your forum post.

https://www.componentspace.com/Forums/17/Enabing-SAML-Trace

Also include your saml.config with any passwords removed.

Thanks.

Regards
ComponentSpace Development
DanMcD_FEI
DanMcD_FEI
New Member
New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)

Group: Forum Members
Posts: 19, Visits: 106
ComponentSpace - 2/8/2023
Please enable SAML trace and send the generated log file as an email attachment to [email protected] mentioning your forum post.

https://www.componentspace.com/Forums/17/Enabing-SAML-Trace

Also include your saml.config with any passwords removed.

Thanks.

I enabled this, but all it logged was the content of our saml.config file. That doesn't seem right.

I also discovered that this error occurs when SSO is attempted with any of our partners, not just the partner with the entry that is causing the error. Could this be a parsing issue?
ComponentSpace
ComponentSpace
ComponentSpace Development
ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)

Group: Administrators
Posts: 3.2K, Visits: 11K
That's odd on both counts.

The log would be very helpful. Please ensure the account under which your application is running has write permission to the log folder. The log should includes details of the SSO etc.

In the meantime, if you could send your saml.config that would be helpful. 

Regards
ComponentSpace Development
DanMcD_FEI
DanMcD_FEI
New Member
New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)

Group: Forum Members
Posts: 19, Visits: 106
ComponentSpace - 2/8/2023
That's odd on both counts.

The log would be very helpful. Please ensure the account under which your application is running has write permission to the log folder. The log should includes details of the SSO etc.

In the meantime, if you could send your saml.config that would be helpful. 

I've sent both, with some additional information I discovered this afternoon. 
DanMcD_FEI
DanMcD_FEI
New Member
New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)New Member (28 reputation)

Group: Forum Members
Posts: 19, Visits: 106
ComponentSpace - 2/8/2023
That's odd on both counts.

The log would be very helpful. Please ensure the account under which your application is running has write permission to the log folder. The log should includes details of the SSO etc.

In the meantime, if you could send your saml.config that would be helpful. 

Mitchell helped me determine the error. The & in the ACS URL was causing an XML parsing error. I had to replace it with %26. 

Thank you for the rapid assistance. 
ComponentSpace
ComponentSpace
ComponentSpace Development
ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)

Group: Administrators
Posts: 3.2K, Visits: 11K
You're welcome. Thanks for the update.

Regards
ComponentSpace Development
GO


Similar Topics


Execution: 0.000. 5 queries. Compression Enabled.
Login
Existing Account
Email Address:


Password:


Select a Forum....












Forums, Documentation & Knowledge Base - ComponentSpace


Search