[Security:096578] Can't Generate Assertion For The User When Implementing Custom SAML Credential Attribute Mapper Class (Doc ID 1373910.1)

Last updated on NOVEMBER 05, 2016

Applies to:

Oracle Weblogic Server - Version: 10.3 and later   [Release: and later ]
Information in this document applies to any platform.

Symptoms

Configuring SAML2 on WebLogic Server 10.3.x using a custom credential Mapper following the sample code in the documentation at http://download.oracle.com/docs/cd/E17904_01/web.1111/e13711/saml.htm#CHDFJJEE fails. The following exception occurs when WebLogic IDP is trying to generate an assertion:

<Oct 26, 2011 9:16:38 AM MST> <Debug> <SecuritySAML2CredMap> <BEA-000000> <SAML2CredentialMapper: getCredentialInternal(): Exception while generating assertion credential: java.lang.ArrayStoreException: weblogic.security.principal.WLSGroupImpl>
<Oct 26, 2011 9:16:38 AM MST> <Debug> <SecuritySAML2CredMap> <BEA-000000> <SAML2CredentialMapper: getCredentialInternal(): Returning null credential>
<Oct 26, 2011 9:16:38 AM MST> <Debug> <SecuritySAML2Service> <BEA-000000> <[Security:096578]Can't generated assertion for the user.
com.bea.security.saml2.service.SAML2DetailedException: [Security:096578]Can't generated assertion for the user.
at com.bea.security.saml2.service.sso.SSOServiceProcessor.getAssertionForUser(SSOServiceProcessor.java:403)
at com.bea.security.saml2.service.sso.SSOServiceProcessor.sendResponse(SSOServiceProcessor.java:355)
at com.bea.security.saml2.service.sso.SSOServiceProcessor.processAuthnRequest(SSOServiceProcessor.java:160)
at com.bea.security.saml2.service.sso.SSOServiceProcessor.process(SSOServiceProcessor.java:100)
at com.bea.security.saml2.service.sso.SingleSignOnServiceImpl.process(SingleSignOnServiceImpl.java:50)
at com.bea.security.saml2.cssservice.SAML2ServiceImpl.process(SAML2ServiceImpl.java:161)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms