org.opensaml.common.SAMLException: Response has invalid status code urn:oasis:names:tc:SAML:2.0:status:Responder, status message is null

Question

I am trying to run the application provided at https://github.com/spring-projects/spring-security-saml(master version) and using adfs as idp and followed all the steps given in the documentation. I am getting the below error

org.opensaml.saml2.metadata.impl.AssertionConsumerServiceImpl@7a033ee2 for request URL https://localhost:8443/spring-security-saml2-sample3/saml/SSO based on location attribute in metadata
- Authentication attempt using org.springframework.security.saml.SAMLAuthenticationProvider
- Error validating SAML message
org.opensaml.common.SAMLException: Response has invalid status code urn:oasis:names:tc:SAML:2.0:status:Responder, status message is null
    at org.springframework.security.saml.websso.WebSSOProfileConsumerImpl.processAuthenticationResponse(WebSSOProfileConsumerImpl.java:113)
    at org.springframework.security.saml.SAMLAuthenticationProvider.authenticate(SAMLAuthenticationProvider.java:87)
    at org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:156)

Answer 1

I just had this problem - last step of the guide here when setting up the Relaying Party Trust:

http://docs.spring.io/spring-security-saml/docs/current/reference/html/chapter-idp-guide.html

"Open the provider by double-clicking it, select tab Advanced and change "Secure hash algorithm" to SHA-1"