To fix the certificate error, you need to import the localhost-crt.pem file into the cacerts file of the Java runtime that runs your program.

like this
keytool -importcert -trustcacerts -file localhost-crt.pem -keystore cacerts -alias piomin

I’m developing an application which is a relying party.

In my developpment environment I use an IDP (WSO2) which acts as asserting party.

I follwed the tutorials and I get it working, but in production has another setup and the support team ask me for a metadata containing AuthnRequestsSigned and WantAssertionsSigned as following:

«md:SPSSODescriptor protocolSupportEnumeration=”urn:oasis:names:tc:SAML:2.0:protocol” WantAssertionsSigned=”true” AuthnRequestsSigned=”true”»

Mi actual application.yml is:
logging.level.org.springframework.security: DEBUG
logging.level.org.springframework.security.saml2: DEBUG

spring:
mvc:
view:
prefix: /templates/
suffix: .pug
static-path-pattern: /static/**

security:
saml2:
relyingparty:
registration:
pma_web:
entity-id: “${sso.entity-id}”
signing:
credentials:
– private-key-location: classpath:saml/credentials/rp-private.key
certificate-location: classpath:saml/credentials/rp-certificate.crt
singlelogout:
binding: POST
url: “{baseUrl}/logout/saml2/slo”
assertingparty:
metadata-uri: classpath:saml/${env}/metadata.xml

datasource:
jndi-name: java:jboss/datasources/pma_web
jpa:
hibernate:
ddl-auto: update
properties:
hibernate:
dialect: org.hibernate.dialect.PostgreSQLDialect

pma-cmdb:
pma-keystore-key-alias: pma-jwt-signing-key
pma-keystore-password: pma-jwt-p422w0rd

Do you know what i’m missing?

Thanks in advance!

Hello,
Thanks. For kind of errors do you have? Could you also create an issue in GitHub repo for that?