Newbie adventures

sujones · ‎08-30-2016

SO! FOr lots of reasons it behooves me to figure out Canvas.

One of them: I'm enrolled (second time) in "INstructional Design Service Course: Gain Experience for GOod" and ... we have the option of creating a Canvas course as "extra credit." As somebody who already completed the course and created an Open Educational Resource for adult ed (what I *do* daily is work w/ community college students on their math & literacy skills), I've volunteered to peek ahead and help people in the "extra credit" part. (THere are several other reasons but as the line in AIrplane goes, "that's not important right now.")

OH, my, there are learning curves with dead ends...

So many directions that (as with an awful lot of the videos) don't actually match what happens when I try to follow them.

jbrady2 · ‎09-01-2016

@sujones It is a shame that you are having issues using the guides to learn what you want to know how to do in Canvas. Perhaps if you could provide some examples of where and how the guides are falling short of providing the information they should, I know that I have always found that the Docs team appreciates feedback so that they can fix any possible issues and provide the best possible experience with Canvas documentation.

Also as you find issues with documents, you can report them directly to the Document Team.

Chris_Hofer · ‎09-01-2016

Agreed...and if a Guide isn't clear, be sure to post a comment or question at the bottom of the Guide so that the Docs Team can help address the issue.

sujones · ‎09-01-2016

Okay, for starters, I can’t even log in now; I get a jive sso error Debugging information is available below:

- Attempting SAML2 authentication using profile urn:oasis:names:tc:SAML:2.0:profiles:SSO:browser

- Building credential from keystore entry for entityID sbs, usage type UNSPECIFIED

- Processing PrivateKeyEntry from keystore

- Registry located evaluable criteria class org.opensaml.xml.security.credential.criteria.EvaluableEntityIDCredentialCriteria for criteria class org.opensaml.xml.security.criteria.EntityIDCriteria

- Building credential from keystore entry for entityID sbs, usage type UNSPECIFIED

- Processing PrivateKeyEntry from keystore

- Registry located evaluable criteria class org.opensaml.xml.security.credential.criteria.EvaluableEntityIDCredentialCriteria for criteria class org.opensaml.xml.security.criteria.EntityIDCriteria

- Setting DocumentBuilderFactory attribute 'http://javax.xml.XMLConstants/feature/secure-processing'

- Setting DocumentBuilderFactory attribute 'http://apache.org/xml/features/dom/defer-node-expansion'

- Setting DocumentBuilderFactory attribute 'http://apache.org/xml/features/disallow-doctype-decl'

- Looking for binding for org.opensaml.ws.transport.http.HttpServletRequestAdapter@4a76152f

- transport instanceof HTTPInTransport :true

- t.getHTTPMethod() = POST

- t.getParameterValue("SAMLRequest") = null

- t.getParameterValue("SAMLResponse") = PD94bWwgdmVyc2lvbj0iMS4wIj8+CjxzYW1scDpSZXNwb25zZSB4bWxuczpz

YW1scD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOnByb3RvY29sIiBJ

RD0iXzU1NzA1YzQ2LWNmZjMtNDQ0MS04MTFhLWUzMmM3ZjZmMzZlNyIgVmVy

c2lvbj0iMi4wIiBJc3N1ZUluc3RhbnQ9IjIwMTYtMDktMDFUMTY6Mzg6NTda

IiBEZXN0aW5hdGlvbj0iaHR0cHM6Ly9jb21tdW5pdHkuY2FudmFzbG1zLmNv

bS9zYW1sL3NzbyIgSW5SZXNwb25zZVRvPSJhMWU2MzRiNGlmZ2diYWQ1MWhj

NWZnMWgwZDU4Y2gxIj48c2FtbDpJc3N1ZXIgeG1sbnM6c2FtbD0idXJuOm9h

c2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmFzc2VydGlvbiI+aHR0cHM6Ly9zc28u

Y2FudmFzbG1zLmNvbS9TQU1MMjwvc2FtbDpJc3N1ZXI+PHNhbWxwOlN0YXR1

cz48c2FtbHA6U3RhdHVzQ29kZSBWYWx1ZT0idXJuOm9hc2lzOm5hbWVzOnRj

OlNBTUw6Mi4wOnN0YXR1czpTdWNjZXNzIi8PC9zYW1scDpTdGF0dXMPHNh

bWw6QXNzZXJ0aW9uIHhtbG5zOnNhbWw9InVybjpvYXNpczpuYW1lczp0YzpT

QU1MOjIuMDphc3NlcnRpb24iIElEPSJfZmZmYzhlYzgtMzhkOS00ZGZlLTll

NDMtZDNlYzdkZWI0NTliIiBWZXJzaW9uPSIyLjAiIElzc3VlSW5zdGFudD0i

MjAxNi0wOS0wMVQxNjozODo1N1oiPjxzYW1sOklzc3Vlcj5odHRwczovL3Nz

by5jYW52YXNsbXMuY29tL1NBTUwyPC9zYW1sOklzc3Vlcj48U2lnbmF0dXJl

IHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjIj4K

PFNpZ25lZEluZm8+CjxDYW5vbmljYWxpemF0aW9uTWV0aG9kIEFsZ29yaXRo

bT0iaHR0cDovL3d3dy53My5vcmcvMjAwMS8xMC94bWwtZXhjLWMxNG4jIi8+

CjxTaWduYXR1cmVNZXRob2QgQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9y

Zy8yMDAxLzA0L3htbGRzaWctbW9yZSNyc2Etc2hhMjU2Ii8+CjxSZWZlcmVu

Y2UgVVJJPSIjX2ZmZmM4ZWM4LTM4ZDktNGRmZS05ZTQzLWQzZWM3ZGViNDU5

YiI+CjxUcmFuc2Zvcm1zPgo8VHJhbnNmb3JtIEFsZ29yaXRobT0iaHR0cDov

L3d3dy53My5vcmcvMjAwMC8wOS94bWxkc2lnI2VudmVsb3BlZC1zaWduYXR1

cmUiLz4KPFRyYW5zZm9ybSBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3Jn

LzIwMDEvMTAveG1sLWV4Yy1jMTRuIyIvPgo8L1RyYW5zZm9ybXM+CjxEaWdl

c3RNZXRob2QgQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy8yMDAxLzA0

L3htbGVuYyNzaGEyNTYiLz4KPERpZ2VzdFZhbHVlPmwyZUIwc3h2Yk1nZVUv

b00ycGhpNldBVDVjbTJPamJyK3B5aksybUpzZVE9PC9EaWdlc3RWYWx1ZT4K

PC9SZWZlcmVuY2U+CjwvU2lnbmVkSW5mbz4KPFNpZ25hdHVyZVZhbHVlPlFr

ditZdnhLeVlNdFZHNVVGMXhUM2pnbnB6M2J6aVlXbTNlWnBEOThjejZzdDJp

WlJHNlB3aHVBMVo5SXdFRDMKaDMyRVBSUDhXYU54ZVA1Z0ltZWorKzA3akdD

L0V6dWIzQWRXWm9HUjVlYVpNSzV5RWpTUFY1SUNvNCtzZW40Qgorc1V0dXR0

REhGd25MaUcwUHA5OUUwa0RQdjAxZzZXTlhuQlFCUkZUZ3cyTVlyZ2tmVUtK

WEs4ZjMrVjVUMVdGCmFzNG1BZVkwR3E4ZzAzM3B4RU5xV3UvUmwvRjB5c3B3

V0R6aXNpSXhEejJnWnZQeDV2OGQ4bVZnUFVOQ2ovUEQKU0ppYVVZTkxZaHBz

cXV4YWMvb3BValJPN3Nka0V3QTgyZlRZcU1tczR4RFhNL21XRjFKVUdJc2li

MWNPU2FKSQo1N2lvRDlnVzRFaVZFQUgzQ0ZEUzF3PT08L1NpZ25hdHVyZVZh

bHVlPgo8S2V5SW5mbz4KPFg1MDlEYXRhPgo8WDUwOUNlcnRpZmljYXRlPk1J

SUU4VENDQTltZ0F3SUJBZ0lKQU9CbXMvUFlXY1BMTUEwR0NTcUdTSWIzRFFF

QkN3VUFNSUdyTVFzd0NRWUQKVlFRR0V3SlZVekVOTUFzR0ExVUVDQk1FVlhS

aGFERVhNQlVHQTFVRUJ4TU9VMkZzZENCTVlXdGxJRU5wZEhreApHVEFYQmdO

VkJBb1RFRWx1YzNSeWRXTjBkWEpsTENCSmJtTXhFekFSQmdOVkJBc1RDazl3

WlhKaGRHbHZibk14CklEQWVCZ05WQkFNVEYwTmhiblpoY3lCVFFVMU1JRU5s

Y25ScFptbGpZWFJsTVNJd0lBWUpLb1pJaHZjTkFRa0IKRmhOdmNITkFhVzV6

ZEhKMVkzUjFjbVV1WTI5dE1CNFhEVEUxTURReE5UQXhNREF3TUZvWERURTNN

RFF5TWpBeApNREF3TUZvd2dhc3hDekFKQmdOVkJBWVRBbFZUTVEwd0N3WURW

UVFJRXdSVmRHRm9NUmN3RlFZRFZRUUhFdzVUCllXeDBJRXhoYTJVZ1EybDBl

VEVaTUJjR0ExVUVDaE1RU1c1emRISjFZM1IxY21Vc0lFbHVZekVUTUJFR0Ex

VUUKQ3hNS1QzQmxjbUYwYVc5dWN6RWdNQjRHQTFVRUF4TVhRMkZ1ZG1GeklG

TkJUVXdnUTJWeWRHbG1hV05oZEdVeApJakFnQmdrcWhraUc5dzBCQ1FFV0Uy

OXdjMEJwYm5OMGNuVmpkSFZ5WlM1amIyMHdnZ0VpTUEwR0NTcUdTSWIzCkRR

RUJBUVVBQTRJQkR3QXdnZ0VLQW9JQkFRRGNrRFBRR1dlZGxWR0MyWjlmbjF3

TkZtTiswSVBOaTZPU0Uxbk0Kdm9UV3gyb1psUWVwYUF1NHpJNVFxT2ZuVjBy

VzJWMXZvbHBvSmJ1MFdlbEgwRGtHemRPRVFkV0pqQXMzblJCZgp5MGV2eHRw

ZzB0SzVrSXZHc25ONlljRDQxWW1rZld6dndiTWYwY0VxMVkwd0NteW1GNlh6

T1VVRTR6c2kwbmhQCm0yWjdXaXVvbmdEUWRSMDFVc0ROMTNZY3BEL2kxSlhy

M1l0a05uSi9hMUtjOU9YTnljSThNNU5WbzVRUWdkeC8KUTd6QW1UazhwOUUw

WlJ0aGRPUS9QQmljV3gzOW1ObUJpajVLcHFDV2xIdTNOV2RnY0c4S1hTdjVh

dFhVOENyZApUUkozYUdJRU45dkJZSUhlOE1IR0N6czFRbFJmSm1YRk1rZVVT

T1RuSkp4NzhyTURBZ01CQUFHamdnRVVNSUlCCkVEQWRCZ05WSFE0RUZnUVVv

MFdXVmxKMVN4Wk9zMTFMODVaQXVaR3l1ekV3Z2VBR0ExVWRJd1NCMkRDQjFZ

QVUKbzBXV1ZsSjFTeFpPczExTDg1WkF1Wkd5dXpHaGdiR2tnYTR3Z2FzeEN6

QUpCZ05WQkFZVEFsVlRNUTB3Q3dZRApWUVFJRXdSVmRHRm9NUmN3RlFZRFZR

UUhFdzVUWVd4MElFeGhhMlVnUTJsMGVURVpNQmNHQTFVRUNoTVFTVzV6CmRI

SjFZM1IxY21Vc0lFbHVZekVUTUJFR0ExVUVDeE1LVDNCbGNtRjBhVzl1Y3pF

Z01CNEdBMVVFQXhNWFEyRnUKZG1GeklGTkJUVXdnUTJWeWRHbG1hV05oZEdV

eElqQWdCZ2txaGtpRzl3MEJDUUVXRTI5d2MwQnBibk4wY25WagpkSFZ5WlM1

amIyMkNDUURnWnJQejJGbkR5ekFNQmdOVkhSTUVCVEFEQVFIL01BMEdDU3FH

U0liM0RRRUJDd1VBCkE0SUJBUUJWM0VtbW56WXFZUTVmWE5aeW1HMldhc3BF

VzBOZUZNaERYYTNwM0FNSVFKYm5uVTE0bFI3YnFJdmYKL2JMVzFZRTBmdzFr

U3pzdzhWcmtRcDdrMVUra2FZQTNpNS9GUUJ5Mld0cVVDVnEyR1haQTJnczVZ

RDRudkpCLwpGNTdFLy8wa0VoYkFUWkg5K3dKcURrcXlJZ3NyU0lsSmppWER0

aDFCcHBHSzh3ZWJvUHRyOXNXVjI0VWkwK2xzCncxNlhUc0dsblJSTzE5Zytn

WEtPWnA1QXBYa0RyQitId1pRdlp4aUN1U2d2SmxjQnpNZHhWdldTTCt2UHRn

OFkKc2hJS3pvYkloYVEyTXpYSExjeHJEaFcxMFlGUHdEWGg4VGZuNWlVOU9O

c2FKaXZ1dlZodERZWkQxWnpTb1BwbQpxNHZZcXh4WS82ckZKaHJDdG5sTGVw

U2F4bFhNPC9YNTA5Q2VydGlmaWNhdGUCjwvWDUwOURhdGECjwvS2V5SW5m

bz4KPC9TaWduYXR1cmU+PHNhbWw6U3ViamVjdD48c2FtbDpOYW1lSUQgRm9y

bWF0PSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoyLjA6bmFtZWlkLWZvcm1h

dDpwZXJzaXN0ZW50Ij5lZTY2OTJmY2UxY2MxNGIwNzk2MGJjOGU1NGRiZDcz

NTcxZWM2NjYwM2JkODQyM2RjNDI4NTA2MDVhNmM2NzAwPC9zYW1sOk5hbWVJ

RD48c2FtbDpTdWJqZWN0Q29uZmlybWF0aW9uIE1ldGhvZD0idXJuOm9hc2lz

Om5hbWVzOnRjOlNBTUw6Mi4wOmNtOmJlYXJlciI+PHNhbWw6U3ViamVjdENv

bmZpcm1hdGlvbkRhdGEgTm90T25PckFmdGVyPSIyMDE2LTA5LTAxVDE2OjM5

OjI3WiIgUmVjaXBpZW50PSJodHRwczovL2NvbW11bml0eS5jYW52YXNsbXMu

Y29tL3NhbWwvc3NvIiBJblJlc3BvbnNlVG89ImExZTYzNGI0aWZnZ2JhZDUx

aGM1ZmcxaDBkNThjaDEiLz48L3NhbWw6U3ViamVjdENvbmZpcm1hdGlvbj48

L3NhbWw6U3ViamVjdD48c2FtbDpDb25kaXRpb25zIE5vdEJlZm9yZT0iMjAx

Ni0wOS0wMVQxNjozODo1MloiIE5vdE9uT3JBZnRlcj0iMjAxNi0wOS0wMVQx

NjozOToyN1oiPjxzYW1sOkF1ZGllbmNlUmVzdHJpY3Rpb24+PHNhbWw6QXVk

aWVuY2U+aHR0cHM6Ly9jb21tdW5pdHkuY2FudmFzbG1zLmNvbTwvc2FtbDpB

dWRpZW5jZT48L3NhbWw6QXVkaWVuY2VSZXN0cmljdGlvbj48L3NhbWw6Q29u

ZGl0aW9ucz48c2FtbDpBdXRoblN0YXRlbWVudCBBdXRobkluc3RhbnQ9IjIw

MTYtMDktMDFUMTY6Mzg6NTdaIj48c2FtbDpBdXRobkNvbnRleHQ+PHNhbWw6

QXV0aG5Db250ZXh0Q2xhc3NSZWY+dXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6

Mi4wOmFjOmNsYXNzZXM6dW5zcGVjaWZpZWQ8L3NhbWw6QXV0aG5Db250ZXh0

Q2xhc3NSZWY+PC9zYW1sOkF1dGhuQ29udGV4dD48L3NhbWw6QXV0aG5TdGF0

ZW1lbnQ+PHNhbWw6QXR0cmlidXRlU3RhdGVtZW50IHhtbG5zOnhzPSJodHRw

Oi8vd3d3LnczLm9yZy8yMDAxL1hNTFNjaGVtYSIgeG1sbnM6eHNpPSJodHRw

Oi8vd3d3LnczLm9yZy8yMDAxL1hNTFNjaGVtYS1pbnN0YW5jZSI+PHNhbWw6

QXR0cmlidXRlIHhtbG5zOng1MDA9InVybjpvYXNpczpuYW1lczp0YzpTQU1M

OjIuMDpwcm9maWxlczphdHRyaWJ1dGU6WDUwMCIgTmFtZT0idXJuOm9pZDow

LjkuMjM0Mi4xOTIwMDMwMC4xMDAuMS4xIiBGcmllbmRseU5hbWU9InVpZCIg

TmFtZUZvcm1hdD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmF0dHJu

YW1lLWZvcm1hdDp1cmkiIHg1MDA6RW5jb2Rpbmc9IkxEQVAiPjxzYW1sOkF0

dHJpYnV0ZVZhbHVlIHhzaTp0eXBlPSJ4czpzdHJpbmciPnN1am9uZXNAcGFy

a2xhbmQuZWR1PC9zYW1sOkF0dHJpYnV0ZVZhbHVlPjwvc2FtbDpBdHRyaWJ1

dGU+PHNhbWw6QXR0cmlidXRlIHhtbG5zOng1MDA9InVybjpvYXNpczpuYW1l

czp0YzpTQU1MOjIuMDpwcm9maWxlczphdHRyaWJ1dGU6WDUwMCIgTmFtZT0i

dXJuOm9pZDowLjkuMjM0Mi4xOTIwMDMwMC4xMDAuMS4zIiBGcmllbmRseU5h

bWU9Im1haWwiIE5hbWVGb3JtYXQ9InVybjpvYXNpczpuYW1lczp0YzpTQU1M

OjIuMDphdHRybmFtZS1mb3JtYXQ6dXJpIiB4NTAwOkVuY29kaW5nPSJMREFQ

Ij48c2FtbDpBdHRyaWJ1dGVWYWx1ZSB4c2k6dHlwZT0ieHM6c3RyaW5nIj5z

dWpvbmVzQHBhcmtsYW5kLmVkdTwvc2FtbDpBdHRyaWJ1dGVWYWx1ZT48L3Nh

bWw6QXR0cmlidXRlPjxzYW1sOkF0dHJpYnV0ZSB4bWxuczp4NTAwPSJ1cm46

b2FzaXM6bmFtZXM6dGM6U0FNTDoyLjA6cHJvZmlsZXM6YXR0cmlidXRlOlg1

MDAiIE5hbWU9InVybjpvaWQ6Mi41LjQuNDIiIEZyaWVuZGx5TmFtZT0iZ2l2

ZW5OYW1lIiBOYW1lRm9ybWF0PSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoy

LjA6YXR0cm5hbWUtZm9ybWF0OnVyaSIgeDUwMDpFbmNvZGluZz0iTERBUCI+

PHNhbWw6QXR0cmlidXRlVmFsdWUgeHNpOnR5cGU9InhzOnN0cmluZyI+U3Vz

YW48L3NhbWw6QXR0cmlidXRlVmFsdWU+PC9zYW1sOkF0dHJpYnV0ZT48c2Ft

bDpBdHRyaWJ1dGUgeG1sbnM6eDUwMD0idXJuOm9hc2lzOm5hbWVzOnRjOlNB

TUw6Mi4wOnByb2ZpbGVzOmF0dHJpYnV0ZTpYNTAwIiBOYW1lPSJ1cm46b2lk

OjIuNS40LjQiIEZyaWVuZGx5TmFtZT0ic24iIE5hbWVGb3JtYXQ9InVybjpv

YXNpczpuYW1lczp0YzpTQU1MOjIuMDphdHRybmFtZS1mb3JtYXQ6dXJpIiB4

NTAwOkVuY29kaW5nPSJMREFQIj48c2FtbDpBdHRyaWJ1dGVWYWx1ZSB4c2k6

dHlwZT0ieHM6c3RyaW5nIj5Kb25lczwvc2FtbDpBdHRyaWJ1dGVWYWx1ZT48

L3NhbWw6QXR0cmlidXRlPjwvc2FtbDpBdHRyaWJ1dGVTdGF0ZW1lbnQ+PC9z

YW1sOkFzc2VydGlvbj48L3NhbWxwOlJlc3BvbnNlPgo=

- There are 2 bindings available.

- Checking binding org.springframework.security.saml.processor.HTTPPostBinding@3e881433

- Retrieving message using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST

- Beginning to decode message from inbound transport of type: org.opensaml.ws.transport.http.HttpServletRequestAdapter

- Decoded SAML relay state of: L2dyb3Vwcy9kZXNpZ25lcnMvYmxvZy8yMDE2LzA4LzMwL25ld2JpZS1hZHZlbnR1cmVzP2NvbW1lbnRJRD01OTIxNiZldD1ibG9ncy5jb21tZW50LmNyZWF0ZWQjY29tbWVudC01OTIxNg==

- Getting Base64 encoded message from request

- Parsing message stream into DOM document

- Unmarshalling message DOM

- Starting to unmarshall Apache XML-Security-based SignatureImpl element

- Constructing Apache XMLSignature object

- Adding canonicalization and signing algorithms, and HMAC output length to Signature

- Adding KeyInfo to Signature

- Message succesfully unmarshalled

- Decoded SAML message

- Extracting ID, issuer and issue instant from status response

-

Qkv+YvxKyYMtVG5UF1xT3jgnpz3bziYWm3eZpD98cz6st2iZRG6PwhuA1Z9IwED3

h32EPRP8WaNxeP5gImej+07jGC/Ezub3AdWZoGR5eaZMK5yEjSPV5ICo4sen4B

sUtuttDHFwnLiG0Pp99E0kDPv01g6WNXnBQBRFTgw2MYrgkfUKJXK8f3V5T1WF

as4mAeY0Gq8g033pxENqWu/Rl/F0yspwWDzisiIxDz2gZvPx5v8d8mVgPUNCj/PD

SJiaUYNLYhpsquxac/opUjRO7sdkEwA82fTYqMms4xDXM/mWF1JUGIsib1cOSaJI

57ioD9gW4EiVEAH3CFDS1w==MIIE8TCCA9mgAwIBAgIJAOBms/PYWcPLMA0GCSqGSIb3DQEBCwUAMIGrMQswCQYD

VQQGEwJVUzENMAsGA1UECBMEVXRhaDEXMBUGA1UEBxMOU2FsdCBMYWtlIENpdHkx

GTAXBgNVBAoTEEluc3RydWN0dXJlLCBJbmMxEzARBgNVBAsTCk9wZXJhdGlvbnMx

IDAeBgNVBAMTF0NhbnZhcyBTQU1MIENlcnRpZmljYXRlMSIwIAYJKoZIhvcNAQkB

FhNvcHNAaW5zdHJ1Y3R1cmUuY29tMB4XDTE1MDQxNTAxMDAwMFoXDTE3MDQyMjAx

MDAwMFowgasxCzAJBgNVBAYTAlVTMQ0wCwYDVQQIEwRVdGFoMRcwFQYDVQQHEw5T

YWx0IExha2UgQ2l0eTEZMBcGA1UEChMQSW5zdHJ1Y3R1cmUsIEluYzETMBEGA1UE

CxMKT3BlcmF0aW9uczEgMB4GA1UEAxMXQ2FudmFzIFNBTUwgQ2VydGlmaWNhdGUx

IjAgBgkqhkiG9w0BCQEWE29wc0BpbnN0cnVjdHVyZS5jb20wggEiMA0GCSqGSIb3

DQEBAQUAA4IBDwAwggEKAoIBAQDckDPQGWedlVGC2Z9fn1wNFmN+0IPNi6OSE1nM

voTWx2oZlQepaAu4zI5QqOfnV0rW2V1volpoJbu0WelH0DkGzdOEQdWJjAs3nRBf

y0evxtpg0tK5kIvGsnN6YcD41YmkfWzvwbMf0cEq1Y0wCmymF6XzOUUE4zsi0nhP

m2Z7WiuongDQdR01UsDN13YcpD/i1JXr3YtkNnJ/a1Kc9OXNycI8M5NVo5QQgdx/

Q7zAmTk8p9E0ZRthdOQ/PBicWx39mNmBij5KpqCWlHu3NWdgcG8KXSv5atXU8Crd

TRJ3aGIEN9vBYIHe8MHGCzs1QlRfJmXFMkeUSOTnJJx78rMDAgMBAAGjggEUMIIB

EDAdBgNVHQ4EFgQUo0WWVlJ1SxZOs11L85ZAuZGyuzEwgeAGA1UdIwSB2DCB1YAU

o0WWVlJ1SxZOs11L85ZAuZGyuzGhgbGkga4wgasxCzAJBgNVBAYTAlVTMQ0wCwYD

VQQIEwRVdGFoMRcwFQYDVQQHEw5TYWx0IExha2UgQ2l0eTEZMBcGA1UEChMQSW5z

dHJ1Y3R1cmUsIEluYzETMBEGA1UECxMKT3BlcmF0aW9uczEgMB4GA1UEAxMXQ2Fu

dmFzIFNBTUwgQ2VydGlmaWNhdGUxIjAgBgkqhkiG9w0BCQEWE29wc0BpbnN0cnVj

dHVyZS5jb22CCQDgZrPz2FnDyzAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBCwUA

A4IBAQBV3EmmnzYqYQ5fXNZymG2WaspEW0NeFMhDXa3p3AMIQJbnnU14lR7bqIvf

/bLW1YE0fw1kSzsw8VrkQp7k1U+kaYA3i5/FQBy2WtqUCVq2GXZA2gs5YD4nvJB/

F57E//0kEhbATZH9wJqDkqyIgsrSIlJjiXDth1BppGK8weboPtr9sWV24Ui0ls

w16XTsGlnRRO19ggXKOZp5ApXkDrBHwZQvZxiCuSgvJlcBzMdxVvWSL+vPtg8Y

shIKzobIhaQ2MzXHLcxrDhW10YFPwDXh8Tfn5iU9ONsaJivuvVhtDYZD1ZzSoPpm

q4vYqxxY/6rFJhrCtnlLepSaxlXM</X509Certificate>

</X509Data>

</KeyInfo>

</Signature>

<saml:Subject>

<saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent">ee6692fce1cc14b07960bc8e54dbd73571ec66603bd8423dc42850605a6c6700</saml:NameID>

<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">

<saml:SubjectConfirmationData InResponseTo="a1e634b4ifggbad51hc5fg1h0d58ch1" NotOnOrAfter="2016-09-01T16:39:27Z" Recipient="https://community.canvaslms.com/saml/sso"/>

</saml:SubjectConfirmation>

</saml:Subject>

<saml:Conditions NotBefore="2016-09-01T16:38:52Z" NotOnOrAfter="2016-09-01T16:39:27Z">

<saml:AudienceRestriction>

<saml:Audience>https://community.canvaslms.com</saml:Audience>

</saml:AudienceRestriction>

</saml:Conditions>

<saml:AuthnStatement AuthnInstant="2016-09-01T16:38:57Z">

<saml:AuthnContext>

<saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified</saml:AuthnContextClassRef>

</saml:AuthnContext>

</saml:AuthnStatement>

<saml:AttributeStatement xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">

<saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" x500:Encoding="LDAP" xmlns:x500="urn:oasis:names:tc:SAML:2.0:profiles:attribute:X500">

<saml:AttributeValue xsi:type="xs:string">sujones@parkland.edu</saml:AttributeValue>

</saml:Attribute>

<saml:Attribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" x500:Encoding="LDAP" xmlns:x500="urn:oasis:names:tc:SAML:2.0:profiles:attribute:X500">

<saml:AttributeValue xsi:type="xs:string">sujones@parkland.edu</saml:AttributeValue>

</saml:Attribute>

<saml:Attribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" x500:Encoding="LDAP" xmlns:x500="urn:oasis:names:tc:SAML:2.0:profiles:attribute:X500">

<saml:AttributeValue xsi:type="xs:string">Susan</saml:AttributeValue>

</saml:Attribute>

<saml:Attribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" x500:Encoding="LDAP" xmlns:x500="urn:oasis:names:tc:SAML:2.0:profiles:attribute:X500">

<saml:AttributeValue xsi:type="xs:string">Jones</saml:AttributeValue>

</saml:Attribute>

</saml:AttributeStatement>

</saml:Assertion>

</samlp:Response>

- Evaluating security policy of type 'org.opensaml.ws.security.provider.BasicSecurityPolicy' for decoded message

- Evaluating simple signature rule of type: org.opensaml.saml2.binding.security.SAML2HTTPPostSimpleSignRule

- HTTP request was not signed via simple signature mechanism, skipping

- SAML protocol message was not signed, skipping XML signature processing

- Successfully decoded message.

- Checking SAML message intended destination endpoint against receiver endpoint

- Intended message destination endpoint: https://community.canvaslms.com/saml/sso

- Actual message receiver endpoint: https://community.canvaslms.com/saml/sso

- SAML message intended destination endpoint matched recipient endpoint

- Retrieving SAML request message id: a1e634b4ifggbad51hc5fg1h0d58ch1

- Found SAML request for message id, removing: a1e634b4ifggbad51hc5fg1h0d58ch1

- Verifying issuer of the message

- Saw Enveloped signature transform

- Saw Exclusive C14N signature transform

- Verifying signature

- Forcing on-demand metadata provider refresh if necessary

- Attempting to retrieve credentials from cache using index:

- Retrieved credentials from cache using index:

- Registry located evaluable criteria class org.opensaml.xml.security.credential.criteria.EvaluableUsageCredentialCriteria for criteria class org.opensaml.xml.security.criteria.UsageCriteria

- Registry could not locate evaluable criteria for criteria class org.opensaml.security.MetadataCriteria

- Registry located evaluable criteria class org.opensaml.xml.security.credential.criteria.EvaluableKeyAlgorithmCredentialCriteria for criteria class org.opensaml.xml.security.criteria.KeyAlgorithmCriteria

- Registry located evaluable criteria class org.opensaml.xml.security.credential.criteria.EvaluableEntityIDCredentialCriteria for criteria class org.opensaml.xml.security.criteria.EntityIDCriteria

- Attempting to verify signature and establish trust using KeyInfo-derived credentials

- Found 0 key names: []

- Processing KeyInfo child with qname: X509Data

- Provider org.opensaml.xml.security.keyinfo.provider.RSAKeyValueProvider doesn't handle objects of type X509Data, skipping

- Provider org.opensaml.xml.security.keyinfo.provider.DSAKeyValueProvider doesn't handle objects of type X509Data, skipping

- Processing KeyInfo child X509Data with provider org.opensaml.xml.security.keyinfo.provider.InlineX509DataProvider

- Attempting to extract credential from an X509Data

- Found 1 X509Certificates

- Found 0 X509CRLs

- Single certificate was present, treating as end-entity certificate

- Credentials successfully extracted from child X509Data by provider org.opensaml.xml.security.keyinfo.provider.InlineX509DataProvider

- A total of 1 credentials were resolved

- Registry could not locate evaluable criteria for criteria class org.opensaml.xml.security.keyinfo.KeyInfoCriteria

- Attempting to validate signature using key from supplied credential

- Creating XMLSignature object

- Validating signature with signature algorithm URI: http://www.w3.org/2001/04/xmldsig-more#rsa-sha256

- Validation credential key algorithm 'RSA', key instance class 'sun.security.rsa.RSAPublicKeyImpl'

- Signature validated with key from supplied credential

- Signature validation using candidate credential was successful

- Successfully verified signature using KeyInfo-derived credential

- Attempting to establish trust of KeyInfo-derived credential

- Successfully validated untrusted credential against trusted key

- Successfully established trust of KeyInfo-derived credential

- Processing Bearer subject confirmation

- Verifying received AuthnContext org.opensaml.saml2.core.impl.AuthnContextImpl@564615c6 against requested null

- User ee6692fce1cc14b07960bc8e54dbd73571ec66603bd8423dc42850605a6c6700 not found in external identity table

- There was an error during SAML authentication

com.jivesoftware.community.aaa.sso.SSOAuthenticationException: com.jivesoftware.community.aaa.sso.external.ExternalType@7f5200d5[id=1,name=SAML] external identity '3de01bae494fa6bcfc48eb8d3d315e858b28cf0184e5099d12546b924565880e' already exists for user '12435'.

at com.jivesoftware.community.aaa.sso.SsoUserDetailsProvider.validateNoExternalIdentityExists(SsoUserDetailsProvider.java:60)

at com.jivesoftware.community.aaa.sso.saml.JiveSAMLUserDetailsService.loadUserBySAML(JiveSAMLUserDetailsService.java:79)

at com.jivesoftware.community.aaa.sso.saml.JiveSAMLUserDetailsService.loadUserBySAML(JiveSAMLUserDetailsService.java:1)

at org.springframework.security.saml.SAMLAuthenticationProvider.getUserDetails(SAMLAuthenticationProvider.java:134)

at org.springframework.security.saml.SAMLAuthenticationProvider.authenticate(SAMLAuthenticationProvider.java:107)

at com.jivesoftware.community.aaa.sso.saml.JiveSAMLAuthenticationProvider.authenticate(JiveSAMLAuthenticationProvider.java:63)

at com.jivesoftware.community.aaa.sso.SingleProviderAuthenticationManager.authenticate(SingleProviderAuthenticationManager.java:15)

at com.jivesoftware.community.aaa.sso.saml.filter.JiveSAMLProcessingFilter.doAttemptAuthentication(JiveSAMLProcessingFilter.java:165)

at com.jivesoftware.community.aaa.sso.saml.filter.JiveSAMLProcessingFilter.attemptAuthentication(JiveSAMLProcessingFilter.java:94)

at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:211)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192)

at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:166)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:199)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192)

at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:166)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at com.jivesoftware.community.aaa.JiveRememberMeAuthenticationFilter.doFilter(JiveRememberMeAuthenticationFilter.java:77)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at com.jivesoftware.community.aaa.AwaitingAccountHelperFilter.doFilter(AwaitingAccountHelperFilter.java:38)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:199)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:199)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)

at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:199)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192)

at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:166)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:87)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:186)

at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:166)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at com.jivesoftware.community.mobile.redirector.RedirectFilter.doFilter(RedirectFilter.java:134)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at com.jivesoftware.community.aaa.stateless.filter.NodeFailoverTestModeFilter.doFilter(NodeFailoverTestModeFilter.java:41)

at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)

at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192)

at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:160)

at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:344)

at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:261)

at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:240)