HTTP-500 Internal Server Error with IdP-initiated SSO with SAML 2.0 (Doc ID 551337.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version: 10.1.4.0.1 and later   [Release: 10g and later ]
Information in this document applies to any platform.
Checked for relevance on 11-Apr-2010

Symptoms

Configuration: Federation with 2 Oracle Identity Federation (OIF) installations. IDP and SP configured for SAML 2.0.

IDP-initiated SSO requests are generating error HTTP-500 Internal Server Error.

Request issued:
http://idpfed.oracle.com:7778/fed/idp/initiatesso?providerid=http://idpfed.com:7778/fed/idp

Error in IDP Federation log: UnknownProviderException: Unknown Provider: http://idpfed.oracle.com:7778/fed/idp

Debug federation.log extract:

08/01/24 13:20:10: DEBUG oracle.security.fed.controller.ActionStateMachine.processEvent() - Enter
08/01/24 13:20:10: DEBUG oracle.security.fed.controller.ActionStateMachine.processEvent() - actionName: oracle.security.fed.eventhandler.profiles.idp.sso.CreateAuthnRequestEventHandler
08/01/24 13:20:10: DEBUG oracle.security.fed.controller.ActionStateMachine.processEvent() - initializing action oracle.security.fed.eventhandler.profiles.idp.sso.CreateAuthnRequestEventHandler
08/01/24 13:20:10: DEBUG oracle.security.fed.controller.ActionStateMachine.processEvent() - calling perform()
08/01/24 13:20:10: DEBUG oracle.security.fed.eventhandler.profiles.idp.sso.CreateAuthnRequestEventHandler.perform() - Enter
08/01/24 13:20:10: DEBUG  oracle.security.fed.jvt.JVTDiscoveryManager.locateMetadata() - Enter
08/01/24 13:20:10: DEBUG oracle.security.fed.jvt.JVTDiscoveryManager.locateMetadata() - Exit,Success
08/01/24 13:20:10: ERROR
oracle.security.fed.eventhandler.profiles.utils.MetadataUtils.getHighestMetadata() - Unknown Provider: http://idpfed.oracle.com:7778/fed/idp
08/01/24 13:20:10: DEBUG
oracle.security.fed.eventhandler.profiles.idp.sso.CreateAuthnRequestEventHandler.perform() - Exit, Success
08/01/24 13:20:10: ERROR oracle.security.fed.controller.ActionStateMachine.processEvent() -
Provider: oracle.security.fed.event.exceptions.UnknownProviderException: Unknown http://idpfed.oracle.com:7778/fed/idp
oracle.security.fed.event.exceptions.UnknownProviderException: Unknown Provider: http://idpfed.oracle.com:7778/fed/idp
at oracle.security.fed.eventhandler.profiles.utils.MetadataUtils.getHighestMetadata(MetadataUtils.java:129)
at oracle.security.fed.eventhandler.profiles.idp.sso.CreateAuthnRequestEventHandler.perform(CreateAuthnRequestEventHandler.java:59)
at oracle.security.fed.controller.ActionStateMachine.processEvent(ActionStateMachine.java:92)
at oracle.security.fed.controller.EventControllerImpl.processEvent(EventControllerImpl.java:77)
at oracle.security.fed.controller.ApplicationController.publishEvent(ApplicationController.java:362)
at oracle.security.fed.controller.web.action.RequestHandlerContext.publishEvent(RequestHandlerContext.java:32)
at oracle.security.fed.controller.web.action.RequestHandlerSupport.perform(RequestHandlerSupport.java:18)
at
oracle.security.fed.controller.ApplicationController.processServletRequest(ApplicationController.java:292)
at oracle.security.fed.controller.web.servlet.FederationServlet.doGet(FederationServlet.java:138)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at  com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:826)
at
com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:332)
at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:830)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:224)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:133)
at
com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:192)
at java.lang.Thread.run(Thread.java:534)


-- Steps To Reproduce:
Call http://idpfed.oracle.com:7778/fed/idp/initiatesso?providerid=http://idpfed.oracle.com:7778/fed/idp
in browser.


Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms