Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-18368

[GSS](7.2.z) [HAL-1669] Cannot add IDP resource in keycloak-saml subsystem using EAP admin console

    Details

    • Target Release:
    • Steps to Reproduce:
      Hide

      1. Install the saml-eap7-adapte on EAP 7.2.
      2. Run the EAP 7.2.
      3. Open the keycloak-saml configuration page below.
      http://localhost:9990/console/index.html#generic-subsystem;address=%255C0subsystem%255C2keycloak-saml
      4. Add secure-deployment, add SP and add IDP.
      You will get the following error as an operation failed message in the console.

      "WFLYCTL0155: 'SingleSignOnService' may not be null"
      
      Show
      1. Install the saml-eap7-adapte on EAP 7.2. 2. Run the EAP 7.2. 3. Open the keycloak-saml configuration page below. http://localhost:9990/console/index.html#generic-subsystem;address=%255C0subsystem%255C2keycloak-saml 4. Add secure-deployment, add SP and add IDP. You will get the following error as an operation failed message in the console. "WFLYCTL0155: 'SingleSignOnService' may not be null"
    • Workaround Description:
      Hide

      Using CLI.
      Example:

      /subsystem=keycloak-saml/secure-deployment=sd-test:add()
      /subsystem=keycloak-saml/secure-deployment=sd-test/SP=sp-test:add()
      /subsystem=keycloak-saml/secure-deployment=sd-test/SP=sp-test/IDP=idp-test:add(SingleSignOnService={requestBinding="POST",bindingUrl="http://localhost:8180/idp/"},SingleLogoutService={requestBinding="POST", responseBinding="POST", postBindingUrl="http://localhost:8180/idp/test", redirectBindingUrl="http://localhost:8180/idp/test"})
      
      Show
      Using CLI. Example: /subsystem=keycloak-saml/secure-deployment=sd-test:add() /subsystem=keycloak-saml/secure-deployment=sd-test/SP=sp-test:add() /subsystem=keycloak-saml/secure-deployment=sd-test/SP=sp-test/IDP=idp-test:add(SingleSignOnService={requestBinding="POST",bindingUrl="http://localhost:8180/idp/"},SingleLogoutService={requestBinding="POST", responseBinding="POST", postBindingUrl="http://localhost:8180/idp/test", redirectBindingUrl="http://localhost:8180/idp/test"})
    • QE Test Coverage:
      ?

      Description

      Cannot add the Child Resources of IDP using EAP admin console because there are no SingleSignOnService and SingleLogoutService optional fields.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  michpetrov Michal Petrov
                  Reporter:
                  enagai Eiichi Nagai
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  5 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: