<#338 Saml path crashing with nil pointer >
Issue ...
# osctrlg
GitHub
02/07/2023, 6:59 PM#338 Saml path crashing with nil pointer
Issue created by tinder-tder
O am trying to figure out how to get SAML logins working with Okta but am struggling with the lack of documentation. When configuring the saml.json and setting the admin auth to 'saml' I can get it to start up but when trying to hit the 'saml/acs' path on the admin server it causes a crash.
Copy code
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: server.go:3197: http: panic serving 10.0.101.226:60668: runtime error: invalid memory address or nil pointer dereference
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: goroutine 3522 [running]:
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: net/http.(*conn).serve.func1()
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/usr/local/go/src/net/http/server.go:1825 +0xbf
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: panic({0xf73c20, 0x188cbe0})
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/usr/local/go/src/runtime/panic.go:844 +0x258
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.findChildren(0xc000023260|github.com/crewjam/saml.findChildren(0xc000023260>?, {0x10da9b0, 0x22}, {0x10bba10, 0x9})
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:1580 +0x49
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.findChild(0x125ece8|github.com/crewjam/saml.findChild(0x125ece8>?, {0x10da9b0, 0x22}, {0x10bba10, 0x9})
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:1626 +0x31
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.(*ServiceProvider).validateSignature(0xc000031600|github.com/crewjam/saml.(*ServiceProvider).validateSignature(0xc000031600>, 0x0)
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:1076 +0x56
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.(*ServiceProvider).parseResponse(0xc000031600|github.com/crewjam/saml.(*ServiceProvider).parseResponse(0xc000031600>, 0x18d7938?, {0xc0004ea390?, 0x1, 0x1}, {0x7f8978c2a060?, 0x18d7938?, 0x0?}, 0x0)
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:832 +0x95
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.(*ServiceProvider).ParseXMLResponse(0xc0000ca000|github.com/crewjam/saml.(*ServiceProvider).ParseXMLResponse(0xc0000ca000>?, {0x18d7938, 0x0, 0x0}, {0xc0004ea390, 0x1, 0x1})
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:806 +0x2fe
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.(*ServiceProvider).parseResponseHTTP(0xc00059e101|github.com/crewjam/saml.(*ServiceProvider).parseResponseHTTP(0xc00059e101>?, 0xc00022e300, {0xc0004ea390, 0x1, 0x1})
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:663 +0x197
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml.(*ServiceProvider).ParseResponse(0xf138c0|github.com/crewjam/saml.(*ServiceProvider).ParseResponse(0xf138c0>?, 0xc00022e300?, {0xc0004ea390?, 0x1?, 0x1?})
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/service_provider.go:601 +0xff
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml/samlsp.(*Middleware).ServeACS(0xc000031600|github.com/crewjam/saml/samlsp.(*Middleware).ServeACS(0xc000031600>, {0x125e410, 0xc0003a4000}, 0xc0004f0210?)
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/samlsp/middleware.go:89 +0x13a
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/crewjam/saml/samlsp.(*Middleware).ServeHTTP(0xc000031600|github.com/crewjam/saml/samlsp.(*Middleware).ServeHTTP(0xc000031600>, {0x125e410, 0xc0003a4000}, 0xc00022e300)
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/crewjam/saml@v0.4.9/samlsp/middleware.go:60 +0xe5
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: <http://github.com/gorilla/mux.(*Router).ServeHTTP(0xc000444300|github.com/gorilla/mux.(*Router).ServeHTTP(0xc000444300>, {0x125e410, 0xc0003a4000}, 0xc000346200)
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/root/go/pkg/mod/github.com/gorilla/mux@v1.8.0/mux.go:210 +0x1cf
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: net/http.serverHandler.ServeHTTP({0xc0004f1200?}, {0x125e410, 0xc0003a4000}, 0xc000346200)
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/usr/local/go/src/net/http/server.go:2916 +0x43b
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: net/http.(*conn).serve(0xc0002723c0, {0x125ed58, 0xc0003f9800})
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/usr/local/go/src/net/http/server.go:1966 +0x5d7
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: created by net/http.(*Server).Serve
Feb 7 18:48:44 ip-10-0-2-179 osctrl-admin[111372]: #011/usr/local/go/src/net/http/server.go:3071 +0x4db
Feb 7 18:48:50 ip-10-0-2-179 osctrl-admin[111372]: auth.go:50: GetSession saml: session not present
Feb 7 18:48:50 ip-10-0-2-179 osctrl-admin[111372]: auth.go:60: error parsing JWT: token contains an invalid number of segments
Feb 7 18:48:50 ip-10-0-2-179 osctrl-admin[111372]: auth.go:50: GetSession saml: session not present
Feb 7 18:48:50 ip-10-0-2-179 osctrl-admin[111372]: auth.go:60: error parsing JWT: token contains an invalid number of segments Copy code
{
"saml": {
"metadataurl": "<metadata url from okta app>",
"keypath": "/opt/osctrl/config/stub.key",
"certpath": "/opt/osctrl/config/stub.crt",
"loginurl": "<sso url from okta>",
"rooturl": "https://<admin dns entry>"
}
}