cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

SAML Singlesignon Error during upgrade from 2011 to 2205

former_member740549
Discoverer

on ‎2022 Nov 15 2:50 PM

0 Kudos
2,795

Hi All,

We are upgrading our application from commerce version 2011 to 2205. We have our custom sso extensions (for both storefront and backoffice) which we upgraded based upon latest OOTB samlsinglesignon extension. In local environment it is working fine and getting redirected to IDP but when we are deploying the same in cloud we are getting KeyStoreInitializationException during deployment and the deployment is getting failed without starting the services.

Below is the error we are getting during deployment:

"org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/samlsinglesignon]",<br>"threadId":23,"threadPriority":5,"message":"Exception sending context initialized event to listener instance of class [de.hybris.platform.spring.HybrisContextLoaderListener]"<br>,"contextMap":{"sourceClassName":"org.apache.catalina.core.StandardContext","sourceMethodName":"listenerStart"},<br>"thrown":{"localizedMessage":"Error creating bean with name 'org.springframework.security.filterChains':<br> Cannot resolve reference to bean 'org.springframework.security.web.DefaultSecurityFilterChain#3' while setting bean property 'sourceList' <br> with key [3]; nested exception is org.springframework.beans.factory.BeanCreationException: <br> Error creating bean with name 'org.springframework.security.web.DefaultSecurityFilterChain#3': <br> Cannot resolve reference to bean 'samlMetadataFilter' while setting constructor argument with key [0]; <br> nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name <br> 'samlMetadataFilter' defined in ServletContext resource [/WEB-INF/security/spring-security-config.xml]: <br> Cannot resolve reference to bean 'defaultRelyingPartyRegistrationResolverIdAware' while setting constructor argument; <br> nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'defaultRelyingPartyRegistrationResolverIdAware'<br> defined in ServletContext resource [/WEB-INF/security/spring-security-config.xml]: Cannot resolve reference to bean 'defaultRelyingPartyRegistrationResolver'<br> while setting constructor argument; nested exception is org.springframework.beans.factory.BeanCreationException: <br> Error creating bean with name 'defaultRelyingPartyRegistrationResolver' defined in ServletContext resource [/WEB-INF/security/spring-security-config.xml]: <br> Cannot resolve reference to bean 'relyingPartyRegistrationRepository' while setting constructor argument; <br> nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'relyingPartyRegistrationRepository' <br> defined in ServletContext resource [/WEB-INF/security/spring-security-config.xml]: Cannot resolve reference to bean <br> 'saml2SigningAndDecryptionCredentials' while setting constructor argument; nested exception is org.springframework.beans.factory.BeanCreationException: <br> Error creating bean with name 'saml2SigningAndDecryptionCredentials' defined in ServletContext resource [/WEB-INF/security/spring-security-config.xml]: <br> Bean instantiation via factory method failed; nested exception is org.springframework.beans.BeanInstantiationException: <br> Failed to instantiate [org.springframework.security.saml2.core.Saml2X509Credential]: Factory method 'getSigningAndDecryptionSaml2Credentials' <br> threw exception; nested exception is de.hybris.platform.samlsinglesignon.exceptions.KeyStoreInitializationException: Cant obtain key entry"<br>

Are we missing any configuration? I would really appreciate if someone could provide some guidance.

Thanks & Regards

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (0)

Answers (3)

Answers (3)

ravidesai22
Explorer
‎2023 Dec 06 8:00 AM

If it's working fine on your local, then there are mainly two major configurations needed on CCv2,

1. Your keystore (.JKS file) needs to be uploaded to cloud portal (under 'Security' -> 'Security Files') and should be associated with the appropriate environment.

2. In your 'manifest.json' file 'samlsinglesignon' extension should be listed under "webapps" section.

Show replies
Show replies
priyanka_gupta2692
Participant
‎2023 Dec 07 11:22 AM
0 Kudos

After adding appropriate environment in "Connected Environments" field in Security files tab where I have uploaded my jks and metadata file. Issue is resolved.

Show replies
Show replies
ravidesai22
Explorer
‎2023 Dec 07 11:41 AM
0 Kudos

Would you able to upvote (select as answer), if it has helped you in resolving your issue. I have converted the comment into answer just now.

former_member740549
Discoverer
‎2022 Nov 18 9:02 AM
0 Kudos

This issue is resolved. It was a SAML configuration issue in cloud. After correcting the configuration it was resolved.

Show replies
Show replies
former_member830421
Member
‎2022 Nov 21 5:43 AM
0 Kudos

Hi Satish Kumar,

We are trying to do upgrade from 2011 to 2205 and we have used singlesignon extension as well. Can you please suggest me what are all changes required for SAML singlesignon extension upgrade. your suggestions would be great helpful for us.Thanks in Advance.

rohan1607
Explorer
‎2023 Feb 15 1:14 AM
0 Kudos

Hi vishnu_avanigadda - just checking, did you get all the info for the samlsinglesignon upgrade? Do you have multiple IDPs? If yes, I would like to understand how they are setup. We are upgrading now and are trying to configure multiple IDPs.

9948409868
Newcomer
‎2023 Mar 01 9:47 AM
0 Kudos

What was SAML configuation issue in cloud?

former_member824623
Explorer
‎2023 Mar 11 6:44 PM
0 Kudos

We are facing the same issue with upgrade from 2205 to 2205, what kinf of configuration updated to resolve this issue?

priyanka_gupta2692
Participant
‎2023 Dec 06 7:31 AM
0 Kudos

Please let us know what was the configuration issue in cloud portal and how to resolve this. I am also getting same issue.

Ask a Question
Top Q&A Solution Author
View all