Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-143253

We can't store long EntityID information for SAML

    Details

      Description

      Summary
      The SAML entity ID what Oracle uses is longer than our database column size.
      This makes SAML login using Oracle ICS impossible.

      Repro

      1. Setup Oracle ICS using a Free trial account to Oracle using the description
      2. Startup Portal with HTTPS support
      3. Define SAML role: Service Provider
      4. Try to login using your Oracle ICS user details, email & password

      Actual results
      After the authentication is completed at Oracle, and we redirect the End User to Portal, the user will remain logged out.

      Expected results
      The End User should be able to log in with his Oracle ICS credentials

      Log/Error Message
      The new table SamlPeerBinding was introduced as part of LPS-123218.
      This issue was discovered during work on LRQA-70780: Adding new Oracle ICS trial account and test with SAML connection

      2021-11-30 17:51:54.099 ERROR [https-jsse-nio-8443-exec-2][JDBCExceptionReporter:234] data exception: string data, right truncation;  table: SAMLPEERBINDING column: SAMLPEERENTITYID
      2021-11-30 17:51:54.101 ERROR [https-jsse-nio-8443-exec-2][WebSsoProfileImpl:219] Could not execute JDBC batch update
      
      • Oracle's entity ID
        https://idcs-4e94a08e114f4ea4ad1d63ec3bc745d5.identity.oraclecloud.com:443/fed
        
      • SAML Assertion
      Issuer                      = https://idcs-4e94a08e114f4ea4ad1d63ec3bc745d5.identity.oraclecloud.com:443/fed
      Subject                     = [email protected]
      NameID                      = [email protected]
      
      AttributeStatement:
       * oracle:cloud:identity:domain                                       = idcs-4e94a08e114f4ea4ad1d63ec3bc745d5
       * firstName                                                          = Tom
       * lastName                                                           = Cat
       * emailAddress                                                       = [email protected]
       * oracle:cloud:identity:sessionid                                    = c434b692d63241db887c813b97b0b724:5ef1ce
       * oracle:cloud:identity:tenant                                       = idcs-4e94a08e114f4ea4ad1d63ec3bc745d5
       * screenName                                                         = Cat
       * oracle:cloud:identity:url                                          = https://idcs-4e94a08e114f4ea4ad1d63ec3bc745d5.identity.oraclecloud.com
      

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              support-lep@liferay.com SE Support
              Reporter:
              gabor.lovas Gábor Lovas
              Participants of an Issue:
              Recent user:
              Rafaela Nascimento
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Dates

                Created:
                Updated:
                Days since last comment:
                7 weeks, 1 day ago

                  Packages

                  Version Package