Details
-
Bug
-
Resolution: Done
-
Major
-
PLINK_2.7.0.CR3
-
None
Description
Using the TestShib metadata, the metadata parsing (using SPPostMetadataConfigurationProvider in my case) fails with this error: "PL00066: Parser : Expected end tag:RequestAbstract or XACMLAuthzDecisionQuery."
Stepping through the code, the error is thrown from the StaxParserUtil#validate method in this block in SAMLEntityDescriptorParser:
} else if (JBossSAMLConstants.KEY_DESCRIPTOR.get().equalsIgnoreCase(localPart)) { KeyDescriptorType keyDescriptor = new KeyDescriptorType(); startElement = StaxParserUtil.getNextStartElement(xmlEventReader); Element key = StaxParserUtil.getDOMElement(xmlEventReader); keyDescriptor.setKeyInfo(key); EndElement endElement = StaxParserUtil.getNextEndElement(xmlEventReader); StaxParserUtil.validate(endElement, JBossSAMLConstants.KEY_DESCRIPTOR.get()); attributeAuthority.addKeyDescriptor(keyDescriptor); }
The issue seems to be that SAMLEntityDescriptorParser does not recognize the EncryptionMethod element, which is defined in the SAML 2.0 metadata schema:
<complexType name="KeyDescriptorType"> <sequence> <element ref="ds:KeyInfo"/> <element ref="md:EncryptionMethod" minOccurs="0" maxOccurs="unbounded"/> </sequence> <attribute name="use" type="md:KeyTypes" use="optional"/> </complexType>
This issue seems to have been previously reported as part of PLINK-178.
