Oracle STS 11g: NullPointerException when using Wss10_saml20_token _service_policy To Protect An Endpoint (Doc ID 1347432.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Access Manager - Version 11.1.1.5.0 and later
Information in this document applies to any platform.

Symptoms

On Applications : Oracle STS 11g
When attempting to run STS endpoint (/osts-scenario30) with policy protection wss10_saml20_token_service_policy , the following error occurs.

at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
Caused by: java.lang.NullPointerException
at oracle.wsm.security.policy.scenario.processor.WssSamlTokenProcessor.verifyAssertionIssuerCert(WssSamlTokenProcessor.java:765)
at oracle.wsm.security.policy.scenario.processor.WssSamlTokenProcessor.verifyIssuersSignature(WssSamlTokenProcessor.java:672)
at oracle.wsm.security.policy.scenario.processor.WssSaml20TokenProcessor.authenticateSamlToken(WssSaml20TokenProcessor.java:256)
at oracle.wsm.security.policy.scenario.processor.WssSaml20TokenProcessor.authenticate(WssSaml20TokenProcessor.java:182)


-- Expected Behaviour
Certificate Issuer needs to validate correct.

-- What is working
UsernameTokern for policy protection

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms