Remove spid-testenv2 and use spid-demo #52

bfabio · 2021-08-26T12:45:27Z

spid-testenv2 is deprecated. We need to use spid-demo from italia/spid-saml-check as its replacement.

f4bb1o · 2021-09-09T10:17:33Z

How can i replace spid-testenv2 with spid-demo? i got always {"error":"Missing idpIssuer inside configuration"} error.
what is the procedure?

Thank you

bfabio · 2021-09-10T14:02:39Z

Hi @f4bb1o, we need to investigate it and come up with a PR. If you are willing to work on it, it would be great :)

peppelinux · 2021-09-21T11:49:49Z

@f4bb1o Is right!

I faced this issue here
089c58e

That's the commit to replace the demo idp, It fails, miserely ...

donateoa · 2021-11-03T14:59:18Z

someone else get the error

AuthnRequest Signature validation

when performs the AuthNRequest Check Strict with https://demo.spid.gov.it/validator?

I get the same error using a local docker container with spid-saml-check.

The certificate and private key are generated with:

SHA-256
RSA 2048
openssl req -nodes \ -new \ -x509 \ -sha256 \ -days 365 \ -newkey rsa:2048 \ -subj "/C=IT/ST=State/L=City/O=Acme Inc. /OU=IT Department/CN=spid-express.selfsigned.example" \ -keyout certs/key.pem \ -out certs/cert.pem
The same errors happen when try to validate any response
2021-11-03T14:46:51.829Z [spid-express] error: Spid Authentication|Authentication Error|ERROR=Error: Invalid signature|ISSUER=https://localhost:8443|REDIRECT_TO=/error?errorMessage=Error: Invalid signature

did anyone face the same issue?

Reference:
spid-express@1.0.27

bfabio added enhancement New feature or request good first issue Good for newcomers help wanted Extra attention is needed labels Sep 21, 2021

Provide feedback