This repository was archived by the owner on Dec 30, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy paths2s.log
1835 lines (1835 loc) · 861 KB
/
s2s.log
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
2014-11-04 17:28:23,754 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:28:24,690 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:30:33,368 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:30:34,189 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:30:36,169 service:DEBUG ENVIRON: None
2014-11-04 17:30:36,170 saml2:INFO Logging started
2014-11-04 17:30:36,185 back:DEBUG --- SSO ---
2014-11-04 17:31:41,499 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:31:41,802 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:31:42,105 service:DEBUG ENVIRON: None
2014-11-04 17:31:42,106 saml2:INFO Logging started
2014-11-04 17:31:42,115 back:DEBUG --- SSO ---
2014-11-04 17:32:49,907 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:32:50,198 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:32:50,498 service:DEBUG ENVIRON: None
2014-11-04 17:32:50,500 saml2:INFO Logging started
2014-11-04 17:32:50,509 back:DEBUG --- SSO ---
2014-11-04 17:32:50,510 service:DEBUG ENVIRON: None
2014-11-04 17:46:21,075 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:46:21,363 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:46:21,659 service:DEBUG ENVIRON: None
2014-11-04 17:46:21,661 saml2:INFO Logging started
2014-11-04 17:46:21,670 back:DEBUG --- SSO ---
2014-11-04 17:46:21,671 service:DEBUG ENVIRON: None
2014-11-04 17:46:57,833 root:INFO Server starting
2014-11-04 17:48:34,099 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:48:34,397 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 17:48:34,700 service:DEBUG ENVIRON: None
2014-11-04 17:48:34,701 saml2:INFO Logging started
2014-11-04 17:48:34,710 back:DEBUG --- SSO ---
2014-11-04 17:48:34,712 service:DEBUG ENVIRON: None
2014-11-04 17:48:35,894 root:INFO Server starting
2014-11-04 21:07:28,989 root:DEBUG unknown side: sso/redirect
2014-11-04 21:09:24,709 root:DEBUG unknown side: sso/redirect
2014-11-04 21:10:15,010 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:10:15,310 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:10:15,621 service:DEBUG ENVIRON: None
2014-11-04 21:10:15,622 saml2:INFO Logging started
2014-11-04 21:10:15,632 back:DEBUG --- SSO ---
2014-11-04 21:10:15,634 service:DEBUG ENVIRON: None
2014-11-04 21:10:15,662 root:INFO Server starting
2014-11-04 21:12:10,244 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:12:10,554 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:12:10,875 service:DEBUG ENVIRON: None
2014-11-04 21:12:10,876 saml2:INFO Logging started
2014-11-04 21:12:10,885 back:DEBUG --- SSO ---
2014-11-04 21:12:10,886 service:DEBUG ENVIRON: None
2014-11-04 21:12:10,913 root:INFO Server starting
2014-11-04 21:15:19,478 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:15:19,780 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:15:20,085 service:DEBUG ENVIRON: None
2014-11-04 21:15:20,086 saml2:INFO Logging started
2014-11-04 21:15:20,095 back:DEBUG --- SSO ---
2014-11-04 21:15:20,096 service:DEBUG ENVIRON: None
2014-11-04 21:15:20,123 root:INFO Server starting
2014-11-04 21:16:42,215 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:16:42,520 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:16:42,838 service:DEBUG ENVIRON: None
2014-11-04 21:16:42,839 saml2:INFO Logging started
2014-11-04 21:16:42,848 back:DEBUG --- SSO ---
2014-11-04 21:16:42,849 service:DEBUG ENVIRON: None
2014-11-04 21:16:42,874 root:INFO Server starting
2014-11-04 21:18:17,224 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:18:17,524 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:18:17,853 service:DEBUG ENVIRON: None
2014-11-04 21:18:17,855 saml2:INFO Logging started
2014-11-04 21:18:17,865 back:DEBUG --- SSO ---
2014-11-04 21:18:17,867 service:DEBUG ENVIRON: None
2014-11-04 21:18:17,893 root:INFO Server starting
2014-11-04 21:18:31,324 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=96956cb2e827465983ff3e607c08f062', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53656', 'SERVER_NAME': 'Rolands-MacBook-2.local', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8088', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108026550>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8088', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-04 21:19:52,574 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:19:52,856 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:19:53,178 service:DEBUG ENVIRON: None
2014-11-04 21:19:53,179 saml2:INFO Logging started
2014-11-04 21:19:53,191 back:DEBUG --- SSO ---
2014-11-04 21:19:53,192 service:DEBUG ENVIRON: None
2014-11-04 21:19:53,222 root:INFO Server starting
2014-11-04 21:20:06,426 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=96956cb2e827465983ff3e607c08f062', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53671', 'SERVER_NAME': 'Rolands-MacBook-2.local', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8088', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x1073f3790>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8088', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-04 21:20:50,996 saml2.entity:INFO receiver addresses: []
2014-11-04 21:20:50,996 saml2.entity:INFO Binding: redirect
2014-11-04 21:21:12,661 root:ERROR Don't know how to handle 'redirect'
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 129, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 86, in run
return func(*spec[2:])
File "/Users/rolandh/code/s2sproxy/front.py", line 89, in handle_authn_request
binding_in)
File "/Users/rolandh/code/s2sproxy/front.py", line 42, in verify_request
req_info = self.idp.parse_authn_request(query, binding)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.1.0-py2.7.egg/saml2/server.py", line 220, in parse_authn_request
"single_sign_on_service", binding)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.1.0-py2.7.egg/saml2/entity.py", line 628, in _parse_request
xmlstr = self.unravel(enc_request, binding, request_cls.msgtype)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.1.0-py2.7.egg/saml2/entity.py", line 354, in unravel
raise ValueError("Don't know how to handle '%s'" % binding)
ValueError: Don't know how to handle 'redirect'
2014-11-04 21:21:21,217 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=96956cb2e827465983ff3e607c08f062', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53671', 'SERVER_NAME': 'Rolands-MacBook-2.local', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8088', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108104650>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8088', 'HTTPS': 'on', 'wsgi.multithread': True, 'HTTP_CACHE_CONTROL': 'max-age=0', 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-04 21:25:02,832 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:25:03,139 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:25:03,464 service:DEBUG ENVIRON: None
2014-11-04 21:25:03,465 saml2:INFO Logging started
2014-11-04 21:25:03,474 back:DEBUG --- SSO ---
2014-11-04 21:25:03,475 service:DEBUG ENVIRON: None
2014-11-04 21:25:03,501 root:INFO Server starting
2014-11-04 21:25:21,343 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:25:21,637 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:25:21,945 service:DEBUG ENVIRON: None
2014-11-04 21:25:21,946 saml2:INFO Logging started
2014-11-04 21:25:21,955 back:DEBUG --- SSO ---
2014-11-04 21:25:21,956 service:DEBUG ENVIRON: None
2014-11-04 21:25:21,981 root:INFO Server starting
2014-11-04 21:25:45,384 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=96956cb2e827465983ff3e607c08f062', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53736', 'SERVER_NAME': 'Rolands-MacBook-2.local', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8088', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x106c33750>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8088', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-04 21:26:01,382 saml2.entity:INFO receiver addresses: ['https://localhost:8088/sso/redirect']
2014-11-04 21:26:01,383 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-04 21:26:01,384 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:26:01,388 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:26:01,410 saml2.entity:DEBUG Loaded request
2014-11-04 21:26:01,411 saml2.entity:DEBUG Verified request
2014-11-04 21:26:01,412 front:INFO parsed OK
2014-11-04 21:26:01,414 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:26:01,415 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:26:01,416 saml2.mdstore:ERROR Unknown system entity: http://localhost:8087/sp.xml
2014-11-04 21:26:01,416 front:ERROR Couldn't find receiver endpoint: http://localhost:8087/sp.xml
2014-11-04 21:28:03,778 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:28:04,085 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:28:04,412 service:DEBUG ENVIRON: None
2014-11-04 21:28:04,413 saml2:INFO Logging started
2014-11-04 21:28:04,422 back:DEBUG --- SSO ---
2014-11-04 21:28:04,424 service:DEBUG ENVIRON: None
2014-11-04 21:28:04,449 root:INFO Server starting
2014-11-04 21:28:23,723 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=96956cb2e827465983ff3e607c08f062', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53763', 'SERVER_NAME': 'Rolands-MacBook-2.local', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8088', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x107429410>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8088', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-04 21:28:29,831 saml2.entity:INFO receiver addresses: ['https://localhost:8088/sso/redirect']
2014-11-04 21:28:29,832 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-04 21:28:29,833 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:28:29,836 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:28:29,857 saml2.entity:DEBUG Loaded request
2014-11-04 21:28:29,859 saml2.entity:DEBUG Verified request
2014-11-04 21:28:29,859 front:INFO parsed OK
2014-11-04 21:28:29,861 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:28:29,862 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:28:29,862 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/redirect'}]
2014-11-04 21:28:29,863 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8087/acs/redirect
2014-11-04 21:28:29,864 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:28:29,864 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/redirect'}]
2014-11-04 21:38:45,577 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:38:45,893 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:38:46,213 service:DEBUG ENVIRON: None
2014-11-04 21:38:46,214 saml2:INFO Logging started
2014-11-04 21:38:46,222 back:DEBUG --- SSO ---
2014-11-04 21:38:46,224 service:DEBUG ENVIRON: None
2014-11-04 21:38:46,250 root:INFO Server starting
2014-11-04 21:39:05,719 root:ERROR __init__() takes exactly 5 arguments (6 given)
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 153, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 107, in run
incomming)
TypeError: __init__() takes exactly 5 arguments (6 given)
2014-11-04 21:41:31,438 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:41:31,753 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:41:32,076 service:DEBUG ENVIRON: None
2014-11-04 21:41:32,077 saml2:INFO Logging started
2014-11-04 21:41:32,086 back:DEBUG --- SSO ---
2014-11-04 21:41:58,405 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:41:58,711 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:41:59,035 service:DEBUG ENVIRON: None
2014-11-04 21:41:59,036 saml2:INFO Logging started
2014-11-04 21:41:59,046 back:DEBUG --- SSO ---
2014-11-04 21:41:59,047 service:DEBUG ENVIRON: None
2014-11-04 21:41:59,072 root:INFO Server starting
2014-11-04 21:42:07,345 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=96956cb2e827465983ff3e607c08f062', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53880', 'SERVER_NAME': 'Rolands-MacBook-2.local', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8088', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x106bf5490>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8088', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-04 21:42:13,261 saml2.entity:INFO receiver addresses: ['https://localhost:8088/sso/redirect']
2014-11-04 21:42:13,262 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-04 21:42:13,263 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:42:13,267 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:42:13,287 saml2.entity:DEBUG Loaded request
2014-11-04 21:42:13,288 saml2.entity:DEBUG Verified request
2014-11-04 21:42:13,289 front:INFO parsed OK
2014-11-04 21:42:13,291 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:42:13,291 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:42:13,292 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/redirect'}]
2014-11-04 21:42:13,293 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8087/acs/redirect
2014-11-04 21:42:13,294 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:42:13,295 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/redirect'}]
2014-11-04 21:43:28,382 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:43:28,702 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:43:29,019 service:DEBUG ENVIRON: None
2014-11-04 21:43:29,020 saml2:INFO Logging started
2014-11-04 21:43:29,029 back:DEBUG --- SSO ---
2014-11-04 21:43:29,030 service:DEBUG ENVIRON: None
2014-11-04 21:43:29,056 root:INFO Server starting
2014-11-04 21:43:42,139 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=96956cb2e827465983ff3e607c08f062', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53903', 'SERVER_NAME': 'Rolands-MacBook-2.local', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8088', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x1073f53d0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8088', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-04 21:43:52,916 saml2.entity:INFO receiver addresses: ['https://localhost:8088/sso/redirect']
2014-11-04 21:43:52,917 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-04 21:43:52,918 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:43:52,921 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:43:52,943 saml2.entity:DEBUG Loaded request
2014-11-04 21:43:52,944 saml2.entity:DEBUG Verified request
2014-11-04 21:43:52,945 front:INFO parsed OK
2014-11-04 21:43:52,947 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:43:52,948 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:43:52,948 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/redirect'}]
2014-11-04 21:43:52,949 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8087/acs/redirect
2014-11-04 21:43:52,949 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:43:52,950 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/redirect'}]
2014-11-04 21:44:22,190 root:ERROR incomming() takes exactly 3 arguments (1 given)
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 153, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 110, in run
return func(*spec[2:])
File "/Users/rolandh/code/s2sproxy/front.py", line 109, in handle_authn_request
return self.incomming(_dict)
TypeError: incomming() takes exactly 3 arguments (1 given)
2014-11-04 21:45:08,309 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:45:08,630 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:45:08,953 service:DEBUG ENVIRON: None
2014-11-04 21:45:08,955 saml2:INFO Logging started
2014-11-04 21:45:08,964 back:DEBUG --- SSO ---
2014-11-04 21:45:08,965 service:DEBUG ENVIRON: None
2014-11-04 21:45:08,994 root:INFO Server starting
2014-11-04 21:45:17,248 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=96956cb2e827465983ff3e607c08f062', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53918', 'SERVER_NAME': 'Rolands-MacBook-2.local', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8088', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x107429450>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8088', 'HTTPS': 'on', 'wsgi.multithread': True, 'HTTP_CACHE_CONTROL': 'max-age=0', 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-04 21:45:27,086 saml2.entity:INFO receiver addresses: ['https://localhost:8088/sso/redirect']
2014-11-04 21:45:27,087 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-04 21:45:27,088 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:45:27,092 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:45:27,113 saml2.entity:DEBUG Loaded request
2014-11-04 21:45:27,114 saml2.entity:DEBUG Verified request
2014-11-04 21:45:27,115 front:INFO parsed OK
2014-11-04 21:45:27,116 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:45:27,117 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:45:27,118 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/redirect'}]
2014-11-04 21:45:27,119 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8087/acs/redirect
2014-11-04 21:45:27,119 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:45:27,120 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/redirect'}]
2014-11-04 21:45:35,234 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=96956cb2e827465983ff3e607c08f062', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53918', 'SERVER_NAME': 'Rolands-MacBook-2.local', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8088', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x107429450>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8088', 'HTTPS': 'on', 'wsgi.multithread': True, 'HTTP_CACHE_CONTROL': 'max-age=0', 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-04 21:45:35,242 back:DEBUG --- SSO ---
2014-11-04 21:46:47,951 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:46:48,258 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-04 21:46:48,580 service:DEBUG ENVIRON: None
2014-11-04 21:46:48,581 saml2:INFO Logging started
2014-11-04 21:46:48,591 back:DEBUG --- SSO ---
2014-11-04 21:46:48,592 service:DEBUG ENVIRON: None
2014-11-04 21:46:48,618 root:INFO Server starting
2014-11-04 21:46:54,867 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=96956cb2e827465983ff3e607c08f062', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53935', 'SERVER_NAME': 'Rolands-MacBook-2.local', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8088', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x107330410>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8088', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhdkhLsEgQBaEiQYV4dNGdcZxiKdjU49Dy93WA0ocqpO7s0b0zZx7d3vu2RHtpQRmdNmiTNJDUwuRKv6SN1XIUJI1edtPVQFi%2Fchs9l6%2BVBIe8TQPz4RRXVjPDQfkv30pgTrBFfzphUZOwnTXOCFPii4FeN3AAaZ2Hwaj%2F%2BRwYDdVW2oW0eyXkaj5J8ca5HQvD0ghebgw4lpCkHXIBoZW5slI4jIYeVGlepzgZ4LcjCQHMN8d4mGKVB7R9l%2BeR4HEronE7vyWk1SrWUZHwTqdDi9gLASo51uC4dimOCI0DSgMSLyPCSIdF8TNGs3Pv90ofx3m17%2FVJBOxhuZwF8wuRT7JXubSP3pHi6QEtZghOc8Do6bw37DPgzC%2BJsiOYRSNjt9xdL1lHfLPFUcqkdsodcPb3YGHX9Avshl8lsuNN1Fjj4cyUShxQvyzN28BK7jxqwUvwiP8HcZZrUB4HozCrK%2F68vOwD&RelayState=oBAHzh9QPvBjqJ3z', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-04 21:46:56,075 saml2.entity:INFO receiver addresses: ['https://localhost:8088/sso/redirect']
2014-11-04 21:46:56,076 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-04 21:46:56,077 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:46:56,081 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:46:56,103 saml2.entity:DEBUG Loaded request
2014-11-04 21:46:56,104 saml2.entity:DEBUG Verified request
2014-11-04 21:46:56,105 front:INFO parsed OK
2014-11-04 21:46:56,107 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/redirect" Destination="https://localhost:8088/sso/redirect" ID="id-176dd2ca432147d50033fb2f8a9991f4" IssueInstant="2014-11-04T20:09:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-04 21:46:56,108 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:46:56,108 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/redirect'}]
2014-11-04 21:46:56,109 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8087/acs/redirect
2014-11-04 21:46:56,110 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-04 21:46:56,110 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/redirect'}]
2014-11-17 15:59:15,103 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 15:59:15,184 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 15:59:15,189 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 15:59:15,233 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 15:59:15,234 service:DEBUG ENVIRON: None
2014-11-17 15:59:15,235 saml2:INFO Logging started
2014-11-17 15:59:15,237 back:DEBUG --- SSO ---
2014-11-17 15:59:15,238 service:DEBUG ENVIRON: None
2014-11-17 15:59:15,260 root:INFO Server starting
2014-11-17 16:00:29,373 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNT%2BMwEIbv%2ByssX3pKY4dsE6wmqFBVW6lARAMHbsaZUkup3fU43e2%2Fx0nZXS1Clbh5Ru%2FreeZjevV715IDONTWFCM%2BZiMCRtlGm9di9Fgvonx0VX6bGmRi1vmteYCfHaAnwWZQhHRBO2eElahDKHeAwiuxnt2uRDJmYu%2Bst8q29K%2BBnzdIRHA%2BwFAy%2B%2FO8sQa7Hbg1uINW8PiwKujW%2B72I49Yq2W4tepGzPIulwngfIkrmAVIb2dtPYvygvmQxoo0dNNqBCo7lvKC6iXiTwkuSsfwyz1SawYXiapJAkk7SDUsnKggRO1ga9NL4giaMpxHnEc9q%2Fl0wJlj%2BTEn13ve1NsMoz%2Fb8chKh%2BFHXVVTdr%2Bvhg4NuwN0FdUFvj2RdETz1T8nT%2B75ocNMyLIeLAcqRhXU76c%2BX6zOh0c0gFWC89kdafj5Q3I%2FD4qbxvxLlcAs91nJe2VarI5m1rf1140D6gLqRLQbEr4N4Jw3qgENJXPYV%2F7%2B48g0%3D&RelayState=Zf2O2bIs1r5sM5y4', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '52851', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108a92950>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNT%2BMwEIbv%2ByssX3pKY4dsE6wmqFBVW6lARAMHbsaZUkup3fU43e2%2Fx0nZXS1Clbh5Ru%2FreeZjevV715IDONTWFCM%2BZiMCRtlGm9di9Fgvonx0VX6bGmRi1vmteYCfHaAnwWZQhHRBO2eElahDKHeAwiuxnt2uRDJmYu%2Bst8q29K%2BBnzdIRHA%2BwFAy%2B%2FO8sQa7Hbg1uINW8PiwKujW%2B72I49Yq2W4tepGzPIulwngfIkrmAVIb2dtPYvygvmQxoo0dNNqBCo7lvKC6iXiTwkuSsfwyz1SawYXiapJAkk7SDUsnKggRO1ga9NL4giaMpxHnEc9q%2Fl0wJlj%2BTEn13ve1NsMoz%2Fb8chKh%2BFHXVVTdr%2Bvhg4NuwN0FdUFvj2RdETz1T8nT%2B75ocNMyLIeLAcqRhXU76c%2BX6zOh0c0gFWC89kdafj5Q3I%2FD4qbxvxLlcAs91nJe2VarI5m1rf1140D6gLqRLQbEr4N4Jw3qgENJXPYV%2F7%2B48g0%3D&RelayState=Zf2O2bIs1r5sM5y4', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:00:31,771 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-17 16:00:31,772 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-17 16:00:31,773 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-1d4eb2708987c47e3c1c62e2464f046c" IssueInstant="2014-11-17T15:00:08Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:00:31,777 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-1d4eb2708987c47e3c1c62e2464f046c" IssueInstant="2014-11-17T15:00:08Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:00:31,778 saml2.entity:DEBUG Loaded request
2014-11-17 16:00:31,779 saml2.entity:DEBUG Verified request
2014-11-17 16:00:31,780 front:INFO parsed OK
2014-11-17 16:00:31,782 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-1d4eb2708987c47e3c1c62e2464f046c" IssueInstant="2014-11-17T15:00:08Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:00:31,782 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:00:31,783 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:00:31,783 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-17 16:00:31,784 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:00:31,785 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:00:34,025 root:ERROR incomming() takes exactly 4 arguments (3 given)
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 166, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 129, in run
return func(*spec[2:])
File "/Users/rolandh/code/s2sproxy/front.py", line 109, in handle_authn_request
return self.incomming(_dict, self.environ, self.start_response)
TypeError: incomming() takes exactly 4 arguments (3 given)
2014-11-17 16:00:41,459 root:DEBUG unknown side: favicon.ico
2014-11-17 16:01:54,174 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:01:54,245 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:01:54,251 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:01:54,298 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:01:54,299 service:DEBUG ENVIRON: None
2014-11-17 16:01:54,300 saml2:INFO Logging started
2014-11-17 16:01:54,302 back:DEBUG --- SSO ---
2014-11-17 16:01:54,303 service:DEBUG ENVIRON: None
2014-11-17 16:01:54,323 root:INFO Server starting
2014-11-17 16:02:17,699 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLTsMwEEX3fIXlTVdp7EChsZqgQoWoxCOigQU715lQS6ldPE6hf4%2BbFhAIVWLnGd3rOfMYnb8vG7IGh9qarMf7rEfAKFtp85L1HsuraNg7z49GBpkYt35hHuC1BfQk2AyKkM5o64ywEnUI5RJQeCVm49sbkfSZWDnrrbIN%2FTLwwwaJCM4HGErGn89La7BdgpuBW2sFjw83GV14vxJx3Fglm4VFL4ZseBZLhfEqRJRMAqQ2cmvfifGXOmUxoo0dVNqBCo7pJKO6iuY1DOWJnCsFaQJMnvKaVRVL08EgrY95EoSILUwNeml8RhPGTyLOI35W8oFgieDJMyXFvu8LbbpRHux5vhOhuC7LIiruZ2X3wVpX4O6COqO3GzIrCO76p%2BRpvy8a3DQPy%2BGig3Lkyrql9IfLbTOh0bqTCjBe%2Bw3N%2Fx4orvphcaP4u0Te3cIWazopbKPVhoybxr5dOpA%2BoNaywYD4fxDvpEEdcCiJ823FnxeXfwA%3D&RelayState=nSCgVyRhnF54Cleh', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53668', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108b92990>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLTsMwEEX3fIXlTVdp7EChsZqgQoWoxCOigQU715lQS6ldPE6hf4%2BbFhAIVWLnGd3rOfMYnb8vG7IGh9qarMf7rEfAKFtp85L1HsuraNg7z49GBpkYt35hHuC1BfQk2AyKkM5o64ywEnUI5RJQeCVm49sbkfSZWDnrrbIN%2FTLwwwaJCM4HGErGn89La7BdgpuBW2sFjw83GV14vxJx3Fglm4VFL4ZseBZLhfEqRJRMAqQ2cmvfifGXOmUxoo0dVNqBCo7pJKO6iuY1DOWJnCsFaQJMnvKaVRVL08EgrY95EoSILUwNeml8RhPGTyLOI35W8oFgieDJMyXFvu8LbbpRHux5vhOhuC7LIiruZ2X3wVpX4O6COqO3GzIrCO76p%2BRpvy8a3DQPy%2BGig3Lkyrql9IfLbTOh0bqTCjBe%2Bw3N%2Fx4orvphcaP4u0Te3cIWazopbKPVhoybxr5dOpA%2BoNaywYD4fxDvpEEdcCiJ823FnxeXfwA%3D&RelayState=nSCgVyRhnF54Cleh', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:02:19,275 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-17 16:02:19,276 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-17 16:02:19,277 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-bfe8a4abcce92e0a61f0dd099559f312" IssueInstant="2014-11-17T15:02:12Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:02:19,280 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-bfe8a4abcce92e0a61f0dd099559f312" IssueInstant="2014-11-17T15:02:12Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:02:19,282 saml2.entity:DEBUG Loaded request
2014-11-17 16:02:19,283 saml2.entity:DEBUG Verified request
2014-11-17 16:02:19,284 front:INFO parsed OK
2014-11-17 16:02:19,286 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-bfe8a4abcce92e0a61f0dd099559f312" IssueInstant="2014-11-17T15:02:12Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:02:19,286 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:02:19,287 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:02:19,288 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-17 16:02:19,289 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:02:19,289 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:02:49,245 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLTsMwEEX3fIXlTVdp7EChsZqgQoWoxCOigQU715lQS6ldPE6hf4%2BbFhAIVWLnGd3rOfMYnb8vG7IGh9qarMf7rEfAKFtp85L1HsuraNg7z49GBpkYt35hHuC1BfQk2AyKkM5o64ywEnUI5RJQeCVm49sbkfSZWDnrrbIN%2FTLwwwaJCM4HGErGn89La7BdgpuBW2sFjw83GV14vxJx3Fglm4VFL4ZseBZLhfEqRJRMAqQ2cmvfifGXOmUxoo0dVNqBCo7pJKO6iuY1DOWJnCsFaQJMnvKaVRVL08EgrY95EoSILUwNeml8RhPGTyLOI35W8oFgieDJMyXFvu8LbbpRHux5vhOhuC7LIiruZ2X3wVpX4O6COqO3GzIrCO76p%2BRpvy8a3DQPy%2BGig3Lkyrql9IfLbTOh0bqTCjBe%2Bw3N%2Fx4orvphcaP4u0Te3cIWazopbKPVhoybxr5dOpA%2BoNaywYD4fxDvpEEdcCiJ823FnxeXfwA%3D&RelayState=nSCgVyRhnF54Cleh', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '53668', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108b92990>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLTsMwEEX3fIXlTVdp7EChsZqgQoWoxCOigQU715lQS6ldPE6hf4%2BbFhAIVWLnGd3rOfMYnb8vG7IGh9qarMf7rEfAKFtp85L1HsuraNg7z49GBpkYt35hHuC1BfQk2AyKkM5o64ywEnUI5RJQeCVm49sbkfSZWDnrrbIN%2FTLwwwaJCM4HGErGn89La7BdgpuBW2sFjw83GV14vxJx3Fglm4VFL4ZseBZLhfEqRJRMAqQ2cmvfifGXOmUxoo0dVNqBCo7pJKO6iuY1DOWJnCsFaQJMnvKaVRVL08EgrY95EoSILUwNeml8RhPGTyLOI35W8oFgieDJMyXFvu8LbbpRHux5vhOhuC7LIiruZ2X3wVpX4O6COqO3GzIrCO76p%2BRpvy8a3DQPy%2BGig3Lkyrql9IfLbTOh0bqTCjBe%2Bw3N%2Fx4orvphcaP4u0Te3cIWazopbKPVhoybxr5dOpA%2BoNaywYD4fxDvpEEdcCiJ823FnxeXfwA%3D&RelayState=nSCgVyRhnF54Cleh', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:02:49,247 back:DEBUG --- SSO ---
2014-11-17 16:02:55,933 root:ERROR 'authn_request'
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 166, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 129, in run
return func(*spec[2:])
File "/Users/rolandh/code/s2sproxy/front.py", line 109, in handle_authn_request
return self.incomming(_dict, self, self.environ, self.start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 47, in incomming
state = inst.store_state(info["authn_request"])
KeyError: 'authn_request'
2014-11-17 16:03:15,466 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaaxnIaNgIQogkoAsML7wra5Emo8WeDuXfWwZqNIbEu56T9%2B15zkd%2F8L4r0UFaUEYnDdokDSR1YYTSL0ljlU%2BCuDFIb%2FoaCBtWbqsX8rWS4JC3aWA%2BneDKamY4KB%2FynQTmCrYczmes1SRsb40zhSnxl4FeN3AAaZ2HwWj4%2BRwZDdVO2qW0B1XI1WKW4K1zexaGpSl4uTXgWEzibsgLCPc%2BwmjsIZXmJ%2FtZDL%2FUPRICmNBKoawsvGM6TrASQU%2BsiegJLmhEW%2B3bdbyJI9GL26LdiTqcRF4IUMmpBse1S3CL0HZAaUC7Oe0wEjFKnzHKLn3fKV2P8mrP67MI2H2eZ0H2uMzrDw5KSPvg1QmeH9EyQ3DuH6Ony76wd%2BPUL4eyGsqiibE77q6XO2V8o5tayqR2yh1x%2BvdAYd%2F0i%2BuH3yXS%2BhZOWNNxZkpVHNGwLM3byEruPOqGl%2BAR%2Fw%2FiLNegPA5GYXqq%2BPPi0g8%3D&RelayState=pKwjEVrEYOxYzqVK', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '54065', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108b9ab10>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaaxnIaNgIQogkoAsML7wra5Emo8WeDuXfWwZqNIbEu56T9%2B15zkd%2F8L4r0UFaUEYnDdokDSR1YYTSL0ljlU%2BCuDFIb%2FoaCBtWbqsX8rWS4JC3aWA%2BneDKamY4KB%2FynQTmCrYczmes1SRsb40zhSnxl4FeN3AAaZ2HwWj4%2BRwZDdVO2qW0B1XI1WKW4K1zexaGpSl4uTXgWEzibsgLCPc%2BwmjsIZXmJ%2FtZDL%2FUPRICmNBKoawsvGM6TrASQU%2BsiegJLmhEW%2B3bdbyJI9GL26LdiTqcRF4IUMmpBse1S3CL0HZAaUC7Oe0wEjFKnzHKLn3fKV2P8mrP67MI2H2eZ0H2uMzrDw5KSPvg1QmeH9EyQ3DuH6Ony76wd%2BPUL4eyGsqiibE77q6XO2V8o5tayqR2yh1x%2BvdAYd%2F0i%2BuH3yXS%2BhZOWNNxZkpVHNGwLM3byEruPOqGl%2BAR%2Fw%2FiLNegPA5GYXqq%2BPPi0g8%3D&RelayState=pKwjEVrEYOxYzqVK', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:03:16,578 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-17 16:03:16,578 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-17 16:03:16,579 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-9db0d9dad131246b8f83d984d4535a03" IssueInstant="2014-11-17T15:03:11Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:03:16,583 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-9db0d9dad131246b8f83d984d4535a03" IssueInstant="2014-11-17T15:03:11Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:03:16,584 saml2.entity:DEBUG Loaded request
2014-11-17 16:03:16,585 saml2.entity:DEBUG Verified request
2014-11-17 16:03:16,586 front:INFO parsed OK
2014-11-17 16:03:16,588 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-9db0d9dad131246b8f83d984d4535a03" IssueInstant="2014-11-17T15:03:11Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:03:16,588 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:03:16,589 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:03:16,590 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-17 16:03:16,590 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:03:16,591 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:03:52,523 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:03:52,591 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:03:52,598 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:03:52,646 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:03:52,647 service:DEBUG ENVIRON: None
2014-11-17 16:03:52,648 saml2:INFO Logging started
2014-11-17 16:03:52,650 back:DEBUG --- SSO ---
2014-11-17 16:03:52,651 service:DEBUG ENVIRON: None
2014-11-17 16:03:52,672 root:INFO Server starting
2014-11-17 16:04:09,718 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga6xg41rAZhBBJQBeZXnhXylGajBZ7OpR%2Fbxmo0RgS73pO3rfnOR%2BDq%2FdNRXZgURmdtaI2axHQ0qyUfslaD%2BUk6Leu8ouBRsaHtVvre3itAR3xNo3cpzNaW82NQOVDsQHkTvLFcD7jnTbjW2uckaaiX4bovEEggnUehpLh53NkNNYbsAuwOyXh4X6W0bVzWx6GlZGiWht0vM%2F6SSgkhlsfUTL2kEqLg%2F0oxl%2FqlIWIJrSwUhakd0zHGVWrIO2moitlspTLNI6XwOIeyI5Mkk4MaZxeeiFiDVONTmiX0Q6LukEUBVFSRj3Oupz1nigpTn1fK92M8mzPy6MI%2BU1ZFkFxtyibD3ZqBfbWqzM635NFQfDYPyWPp31R76a5X07EGyhLJsZuhDtf7pDxjT43Ug7aKben%2Bd8DxW3bL24QfpfIm1s4YE3HhamU3JNhVZm3kQXhPOqzqNAj%2Fh%2FEWaFReRxKwvxQ8efF5R8%3D&RelayState=1e8mrVByxNTNDWTI', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '54433', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108a929d0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga6xg41rAZhBBJQBeZXnhXylGajBZ7OpR%2Fbxmo0RgS73pO3rfnOR%2BDq%2FdNRXZgURmdtaI2axHQ0qyUfslaD%2BUk6Leu8ouBRsaHtVvre3itAR3xNo3cpzNaW82NQOVDsQHkTvLFcD7jnTbjW2uckaaiX4bovEEggnUehpLh53NkNNYbsAuwOyXh4X6W0bVzWx6GlZGiWht0vM%2F6SSgkhlsfUTL2kEqLg%2F0oxl%2FqlIWIJrSwUhakd0zHGVWrIO2moitlspTLNI6XwOIeyI5Mkk4MaZxeeiFiDVONTmiX0Q6LukEUBVFSRj3Oupz1nigpTn1fK92M8mzPy6MI%2BU1ZFkFxtyibD3ZqBfbWqzM635NFQfDYPyWPp31R76a5X07EGyhLJsZuhDtf7pDxjT43Ug7aKben%2Bd8DxW3bL24QfpfIm1s4YE3HhamU3JNhVZm3kQXhPOqzqNAj%2Fh%2FEWaFReRxKwvxQ8efF5R8%3D&RelayState=1e8mrVByxNTNDWTI', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:04:10,929 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-17 16:04:10,930 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-17 16:04:10,931 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-949a4cc7bcb933be035ec2c7723e9396" IssueInstant="2014-11-17T15:04:05Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:04:10,935 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-949a4cc7bcb933be035ec2c7723e9396" IssueInstant="2014-11-17T15:04:05Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:04:10,937 saml2.entity:DEBUG Loaded request
2014-11-17 16:04:10,938 saml2.entity:DEBUG Verified request
2014-11-17 16:04:10,939 front:INFO parsed OK
2014-11-17 16:04:10,941 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-949a4cc7bcb933be035ec2c7723e9396" IssueInstant="2014-11-17T15:04:05Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:04:10,941 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:04:10,942 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:04:10,943 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-17 16:04:10,943 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:04:10,944 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:04:16,292 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga6xg41rAZhBBJQBeZXnhXylGajBZ7OpR%2Fbxmo0RgS73pO3rfnOR%2BDq%2FdNRXZgURmdtaI2axHQ0qyUfslaD%2BUk6Leu8ouBRsaHtVvre3itAR3xNo3cpzNaW82NQOVDsQHkTvLFcD7jnTbjW2uckaaiX4bovEEggnUehpLh53NkNNYbsAuwOyXh4X6W0bVzWx6GlZGiWht0vM%2F6SSgkhlsfUTL2kEqLg%2F0oxl%2FqlIWIJrSwUhakd0zHGVWrIO2moitlspTLNI6XwOIeyI5Mkk4MaZxeeiFiDVONTmiX0Q6LukEUBVFSRj3Oupz1nigpTn1fK92M8mzPy6MI%2BU1ZFkFxtyibD3ZqBfbWqzM635NFQfDYPyWPp31R76a5X07EGyhLJsZuhDtf7pDxjT43Ug7aKben%2Bd8DxW3bL24QfpfIm1s4YE3HhamU3JNhVZm3kQXhPOqzqNAj%2Fh%2FEWaFReRxKwvxQ8efF5R8%3D&RelayState=1e8mrVByxNTNDWTI', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '54433', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108a929d0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga6xg41rAZhBBJQBeZXnhXylGajBZ7OpR%2Fbxmo0RgS73pO3rfnOR%2BDq%2FdNRXZgURmdtaI2axHQ0qyUfslaD%2BUk6Leu8ouBRsaHtVvre3itAR3xNo3cpzNaW82NQOVDsQHkTvLFcD7jnTbjW2uckaaiX4bovEEggnUehpLh53NkNNYbsAuwOyXh4X6W0bVzWx6GlZGiWht0vM%2F6SSgkhlsfUTL2kEqLg%2F0oxl%2FqlIWIJrSwUhakd0zHGVWrIO2moitlspTLNI6XwOIeyI5Mkk4MaZxeeiFiDVONTmiX0Q6LukEUBVFSRj3Oupz1nigpTn1fK92M8mzPy6MI%2BU1ZFkFxtyibD3ZqBfbWqzM635NFQfDYPyWPp31R76a5X07EGyhLJsZuhDtf7pDxjT43Ug7aKben%2Bd8DxW3bL24QfpfIm1s4YE3HhamU3JNhVZm3kQXhPOqzqNAj%2Fh%2FEWaFReRxKwvxQ8efF5R8%3D&RelayState=1e8mrVByxNTNDWTI', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:04:16,294 back:DEBUG --- SSO ---
2014-11-17 16:04:17,163 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga6xg41rAZhBBJQBeZXnhXylGajBZ7OpR%2Fbxmo0RgS73pO3rfnOR%2BDq%2FdNRXZgURmdtaI2axHQ0qyUfslaD%2BUk6Leu8ouBRsaHtVvre3itAR3xNo3cpzNaW82NQOVDsQHkTvLFcD7jnTbjW2uckaaiX4bovEEggnUehpLh53NkNNYbsAuwOyXh4X6W0bVzWx6GlZGiWht0vM%2F6SSgkhlsfUTL2kEqLg%2F0oxl%2FqlIWIJrSwUhakd0zHGVWrIO2moitlspTLNI6XwOIeyI5Mkk4MaZxeeiFiDVONTmiX0Q6LukEUBVFSRj3Oupz1nigpTn1fK92M8mzPy6MI%2BU1ZFkFxtyibD3ZqBfbWqzM635NFQfDYPyWPp31R76a5X07EGyhLJsZuhDtf7pDxjT43Ug7aKben%2Bd8DxW3bL24QfpfIm1s4YE3HhamU3JNhVZm3kQXhPOqzqNAj%2Fh%2FEWaFReRxKwvxQ8efF5R8%3D&RelayState=1e8mrVByxNTNDWTI'
2014-11-17 16:04:22,221 root:ERROR 'dict' object has no attribute 'outstanding_queries'
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 166, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 129, in run
return func(*spec[2:])
File "/Users/rolandh/code/s2sproxy/front.py", line 109, in handle_authn_request
return self.incomming(_dict, self, self.environ, self.start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 47, in incomming
state = inst.store_state(info["authn_req"])
File "/Users/rolandh/code/s2sproxy/back.py", line 68, in store_state
self.cache.outstanding_queries[state] = authn_req
AttributeError: 'dict' object has no attribute 'outstanding_queries'
2014-11-17 16:04:54,934 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNTwIxEIbv%2FoqmF07LtsiXDbsGJUQS0I2sHryV7iBNlhY7XZR%2Fb3fxIxpD4q0zed%2FOMx%2Bjy7dtSfbgUFuTtHibtQgYZQttnpPWQz6Nhq3L9GxkkIlx5TfmHl4qQE%2BCzaAI6YRWzggrUYdQbgGFV2I5XsxFp83EzllvlS3pl4GfNkhEcD7AUDL%2BfF5bg9UW3BLcXit4uJ8ndOP9TsRxaZUsNxa9GLLhIJYK412IKJkESG1kbT%2BK8Zf6gsWINnZQaAcqOGaThOoiWitYFZ11d3DOQKrBBe%2BupVL9FS%2BGK9Yv%2BkGIWMHMoJfGJ7TDeDfiPOKDnPcE64oef6Ik%2B%2Bj7SptmlCd7Xh1FKG7yPIuyu2XefLDXBbjboE7o4kCWGcFj%2F5Q8fuyLBjdNw3K4aKAcmVq3lf50uTpTN9pIBRiv%2FYGmfw8Ud%2B2wuFH8XSJtbqHGmk0yW2p1IOOytK%2FXDqQPqGtZYkD8P4h30qAOOJTEaV3x58Wl7w%3D%3D&RelayState=zxrGbVi6BxMlGwt5', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '54742', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108a9bb50>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNTwIxEIbv%2FoqmF07LtsiXDbsGJUQS0I2sHryV7iBNlhY7XZR%2Fb3fxIxpD4q0zed%2FOMx%2Bjy7dtSfbgUFuTtHibtQgYZQttnpPWQz6Nhq3L9GxkkIlx5TfmHl4qQE%2BCzaAI6YRWzggrUYdQbgGFV2I5XsxFp83EzllvlS3pl4GfNkhEcD7AUDL%2BfF5bg9UW3BLcXit4uJ8ndOP9TsRxaZUsNxa9GLLhIJYK412IKJkESG1kbT%2BK8Zf6gsWINnZQaAcqOGaThOoiWitYFZ11d3DOQKrBBe%2BupVL9FS%2BGK9Yv%2BkGIWMHMoJfGJ7TDeDfiPOKDnPcE64oef6Ik%2B%2Bj7SptmlCd7Xh1FKG7yPIuyu2XefLDXBbjboE7o4kCWGcFj%2F5Q8fuyLBjdNw3K4aKAcmVq3lf50uTpTN9pIBRiv%2FYGmfw8Ud%2B2wuFH8XSJtbqHGmk0yW2p1IOOytK%2FXDqQPqGtZYkD8P4h30qAOOJTEaV3x58Wl7w%3D%3D&RelayState=zxrGbVi6BxMlGwt5', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:04:55,993 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-17 16:04:55,994 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-17 16:04:55,995 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-fcebd2f4730eac7914facc6b1d8b06d6" IssueInstant="2014-11-17T15:04:51Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:04:55,999 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-fcebd2f4730eac7914facc6b1d8b06d6" IssueInstant="2014-11-17T15:04:51Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:04:56,001 saml2.entity:DEBUG Loaded request
2014-11-17 16:04:56,002 saml2.entity:DEBUG Verified request
2014-11-17 16:04:56,003 front:INFO parsed OK
2014-11-17 16:04:56,005 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-fcebd2f4730eac7914facc6b1d8b06d6" IssueInstant="2014-11-17T15:04:51Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:04:56,005 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:04:56,006 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:04:56,007 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-17 16:04:56,007 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:04:56,008 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:04:59,570 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNTwIxEIbv%2FoqmF07LtsiXDbsGJUQS0I2sHryV7iBNlhY7XZR%2Fb3fxIxpD4q0zed%2FOMx%2Bjy7dtSfbgUFuTtHibtQgYZQttnpPWQz6Nhq3L9GxkkIlx5TfmHl4qQE%2BCzaAI6YRWzggrUYdQbgGFV2I5XsxFp83EzllvlS3pl4GfNkhEcD7AUDL%2BfF5bg9UW3BLcXit4uJ8ndOP9TsRxaZUsNxa9GLLhIJYK412IKJkESG1kbT%2BK8Zf6gsWINnZQaAcqOGaThOoiWitYFZ11d3DOQKrBBe%2BupVL9FS%2BGK9Yv%2BkGIWMHMoJfGJ7TDeDfiPOKDnPcE64oef6Ik%2B%2Bj7SptmlCd7Xh1FKG7yPIuyu2XefLDXBbjboE7o4kCWGcFj%2F5Q8fuyLBjdNw3K4aKAcmVq3lf50uTpTN9pIBRiv%2FYGmfw8Ud%2B2wuFH8XSJtbqHGmk0yW2p1IOOytK%2FXDqQPqGtZYkD8P4h30qAOOJTEaV3x58Wl7w%3D%3D&RelayState=zxrGbVi6BxMlGwt5', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '54742', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108a9bb50>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNTwIxEIbv%2FoqmF07LtsiXDbsGJUQS0I2sHryV7iBNlhY7XZR%2Fb3fxIxpD4q0zed%2FOMx%2Bjy7dtSfbgUFuTtHibtQgYZQttnpPWQz6Nhq3L9GxkkIlx5TfmHl4qQE%2BCzaAI6YRWzggrUYdQbgGFV2I5XsxFp83EzllvlS3pl4GfNkhEcD7AUDL%2BfF5bg9UW3BLcXit4uJ8ndOP9TsRxaZUsNxa9GLLhIJYK412IKJkESG1kbT%2BK8Zf6gsWINnZQaAcqOGaThOoiWitYFZ11d3DOQKrBBe%2BupVL9FS%2BGK9Yv%2BkGIWMHMoJfGJ7TDeDfiPOKDnPcE64oef6Ik%2B%2Bj7SptmlCd7Xh1FKG7yPIuyu2XefLDXBbjboE7o4kCWGcFj%2F5Q8fuyLBjdNw3K4aKAcmVq3lf50uTpTN9pIBRiv%2FYGmfw8Ud%2B2wuFH8XSJtbqHGmk0yW2p1IOOytK%2FXDqQPqGtZYkD8P4h30qAOOJTEaV3x58Wl7w%3D%3D&RelayState=zxrGbVi6BxMlGwt5', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:04:59,572 back:DEBUG --- SSO ---
2014-11-17 16:07:06,028 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:07:06,095 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:07:06,102 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:07:06,148 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:07:06,149 service:DEBUG ENVIRON: None
2014-11-17 16:07:06,150 saml2:INFO Logging started
2014-11-17 16:07:06,152 back:DEBUG --- SSO ---
2014-11-17 16:07:06,153 service:DEBUG ENVIRON: None
2014-11-17 16:07:06,176 root:INFO Server starting
2014-11-17 16:07:14,796 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaW3GE0bARhBBJQBcYXnjXdZ002Vrs6VD%2BvWWgRmNIvOs5ed%2Be53yMxu91hQ7CgNQq7pBu0EFCcV1I9RJ3ttncizrj5GakIKCTxu7UWrw2AixyNgXUpWPcGEU1A%2BlCVgugltPNZLWkvW5A90ZbzXWFvwzkuoEBCGMdDEaTz%2BdUK2hqYTbCHCQX2%2FUyxjtr99T3K81ZtdNgaRREA59x8PcuwmjmIKViJ%2FtZDL%2FUw8AH0L4RhTSCO8diFmNZeHk07PeLshz0QlIWUV8UvXxIWM6LkN%2FmIXdCgEYsFFimbIx7AQk9QjwyyEifBgNKgmeM0kvfd1K1o7zac34WAb3PstRLHzdZ%2B8FBFsI8OHWMV0e0SRGc%2B8fo6bIv7Nw4ccshtIUyaK5Nzez1cqeMa7RspVQoK%2B0RJ38PFPZdt7iR%2F10iaW%2FhhLWYpbqS%2FIgmVaXfpkYw61BLVoFD%2FD%2BINUyBdDgY%2Bcmp4s%2BLSz4A&RelayState=1FE5f23gwohllWsX', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '55671', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108a92990>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaW3GE0bARhBBJQBcYXnjXdZ002Vrs6VD%2BvWWgRmNIvOs5ed%2Be53yMxu91hQ7CgNQq7pBu0EFCcV1I9RJ3ttncizrj5GakIKCTxu7UWrw2AixyNgXUpWPcGEU1A%2BlCVgugltPNZLWkvW5A90ZbzXWFvwzkuoEBCGMdDEaTz%2BdUK2hqYTbCHCQX2%2FUyxjtr99T3K81ZtdNgaRREA59x8PcuwmjmIKViJ%2FtZDL%2FUw8AH0L4RhTSCO8diFmNZeHk07PeLshz0QlIWUV8UvXxIWM6LkN%2FmIXdCgEYsFFimbIx7AQk9QjwyyEifBgNKgmeM0kvfd1K1o7zac34WAb3PstRLHzdZ%2B8FBFsI8OHWMV0e0SRGc%2B8fo6bIv7Nw4ccshtIUyaK5Nzez1cqeMa7RspVQoK%2B0RJ38PFPZdt7iR%2F10iaW%2FhhLWYpbqS%2FIgmVaXfpkYw61BLVoFD%2FD%2BINUyBdDgY%2Bcmp4s%2BLSz4A&RelayState=1FE5f23gwohllWsX', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:07:16,035 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-17 16:07:16,036 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-17 16:07:16,037 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-b8955dff7241fd85ed2b91abcd4c3b4c" IssueInstant="2014-11-17T15:07:10Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:07:16,041 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-b8955dff7241fd85ed2b91abcd4c3b4c" IssueInstant="2014-11-17T15:07:10Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:07:16,043 saml2.entity:DEBUG Loaded request
2014-11-17 16:07:16,044 saml2.entity:DEBUG Verified request
2014-11-17 16:07:16,045 front:INFO parsed OK
2014-11-17 16:07:16,047 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-b8955dff7241fd85ed2b91abcd4c3b4c" IssueInstant="2014-11-17T15:07:10Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:07:16,047 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:07:16,048 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:07:16,049 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-17 16:07:16,049 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:07:16,050 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:07:19,955 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaW3GE0bARhBBJQBcYXnjXdZ002Vrs6VD%2BvWWgRmNIvOs5ed%2Be53yMxu91hQ7CgNQq7pBu0EFCcV1I9RJ3ttncizrj5GakIKCTxu7UWrw2AixyNgXUpWPcGEU1A%2BlCVgugltPNZLWkvW5A90ZbzXWFvwzkuoEBCGMdDEaTz%2BdUK2hqYTbCHCQX2%2FUyxjtr99T3K81ZtdNgaRREA59x8PcuwmjmIKViJ%2FtZDL%2FUw8AH0L4RhTSCO8diFmNZeHk07PeLshz0QlIWUV8UvXxIWM6LkN%2FmIXdCgEYsFFimbIx7AQk9QjwyyEifBgNKgmeM0kvfd1K1o7zac34WAb3PstRLHzdZ%2B8FBFsI8OHWMV0e0SRGc%2B8fo6bIv7Nw4ccshtIUyaK5Nzez1cqeMa7RspVQoK%2B0RJ38PFPZdt7iR%2F10iaW%2FhhLWYpbqS%2FIgmVaXfpkYw61BLVoFD%2FD%2BINUyBdDgY%2Bcmp4s%2BLSz4A&RelayState=1FE5f23gwohllWsX', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '55671', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108a92990>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaW3GE0bARhBBJQBcYXnjXdZ002Vrs6VD%2BvWWgRmNIvOs5ed%2Be53yMxu91hQ7CgNQq7pBu0EFCcV1I9RJ3ttncizrj5GakIKCTxu7UWrw2AixyNgXUpWPcGEU1A%2BlCVgugltPNZLWkvW5A90ZbzXWFvwzkuoEBCGMdDEaTz%2BdUK2hqYTbCHCQX2%2FUyxjtr99T3K81ZtdNgaRREA59x8PcuwmjmIKViJ%2FtZDL%2FUw8AH0L4RhTSCO8diFmNZeHk07PeLshz0QlIWUV8UvXxIWM6LkN%2FmIXdCgEYsFFimbIx7AQk9QjwyyEifBgNKgmeM0kvfd1K1o7zac34WAb3PstRLHzdZ%2B8FBFsI8OHWMV0e0SRGc%2B8fo6bIv7Nw4ccshtIUyaK5Nzez1cqeMa7RspVQoK%2B0RJ38PFPZdt7iR%2F10iaW%2FhhLWYpbqS%2FIgmVaXfpkYw61BLVoFD%2FD%2BINUyBdDgY%2Bcmp4s%2BLSz4A&RelayState=1FE5f23gwohllWsX', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:07:19,956 back:DEBUG --- SSO ---
2014-11-17 16:07:21,207 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaW3GE0bARhBBJQBcYXnjXdZ002Vrs6VD%2BvWWgRmNIvOs5ed%2Be53yMxu91hQ7CgNQq7pBu0EFCcV1I9RJ3ttncizrj5GakIKCTxu7UWrw2AixyNgXUpWPcGEU1A%2BlCVgugltPNZLWkvW5A90ZbzXWFvwzkuoEBCGMdDEaTz%2BdUK2hqYTbCHCQX2%2FUyxjtr99T3K81ZtdNgaRREA59x8PcuwmjmIKViJ%2FtZDL%2FUw8AH0L4RhTSCO8diFmNZeHk07PeLshz0QlIWUV8UvXxIWM6LkN%2FmIXdCgEYsFFimbIx7AQk9QjwyyEifBgNKgmeM0kvfd1K1o7zac34WAb3PstRLHzdZ%2B8FBFsI8OHWMV0e0SRGc%2B8fo6bIv7Nw4ccshtIUyaK5Nzez1cqeMa7RspVQoK%2B0RJ38PFPZdt7iR%2F10iaW%2FhhLWYpbqS%2FIgmVaXfpkYw61BLVoFD%2FD%2BINUyBdDgY%2Bcmp4s%2BLSz4A&RelayState=1FE5f23gwohllWsX'
2014-11-17 16:07:28,173 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-17 16:07:28,175 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-17 16:07:28,176 saml2.mdstore:ERROR Unknown system entity: http://localhost:8088/idp.xml
2014-11-17 16:07:28,177 back:ERROR http://localhost:8088/idp.xml
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/back.py", line 102, in authn_request
entity_id=entity_id)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/entity.py", line 255, in pick_binding
srvs = sfunc(entity_id, binding, descr_type)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 745, in single_sign_on_service
"single_sign_on_service", binding)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 721, in service
raise UnknownSystemEntity(entity_id)
UnknownSystemEntity: http://localhost:8088/idp.xml
2014-11-17 16:08:14,172 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa5GPrWEzKDGSgC4wvfCu64o0GS32dCj%2F3m6gRmNIvOs5ed%2Be53yMr963FdpLC8ropEO7pIOkFqZU%2BiXpPOa3QdS5Si%2FGGgib1G6jl%2FK1luCQt2lgPp3g2mpmOCgf8q0E5gRbTRZz1usStrPGGWEq%2FGWg5w0cQFrnYTCafD5vjIZ6K%2B1K2r0S8nE5T%2FDGuR0Lw8oIXm0MOBaRaBRyAeHORxhNPaTSvLEfxfBLHZMQwIRWlspK4R2zaYJVGRSDASeiV9B1se7LfnxZEFEOoyKOhlHMeeyFALWcaXBcuwT3CO0HlAZ0lNMBIxGj5Bmj7NT3tdLtKM%2F2XBxFwO7yPAuyh1XefrBXpbT3Xp3gxQGtMgTH%2FjF6Ou0LezdO%2FXIoa6EsujV2y935ck3GN7pupUxqp9wBp38PFHZdv7hx%2BF0ibW%2BhwZpNM1MpcUCTqjJvN1Zy51HXvAKP%2BH8QZ7kG5XEwCtOm4s%2BLSz8A&RelayState=kDxYO8gkdVNDRuMC', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '56087', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x10772be50>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa5GPrWEzKDGSgC4wvfCu64o0GS32dCj%2F3m6gRmNIvOs5ed%2Be53yMr963FdpLC8ropEO7pIOkFqZU%2BiXpPOa3QdS5Si%2FGGgib1G6jl%2FK1luCQt2lgPp3g2mpmOCgf8q0E5gRbTRZz1usStrPGGWEq%2FGWg5w0cQFrnYTCafD5vjIZ6K%2B1K2r0S8nE5T%2FDGuR0Lw8oIXm0MOBaRaBRyAeHORxhNPaTSvLEfxfBLHZMQwIRWlspK4R2zaYJVGRSDASeiV9B1se7LfnxZEFEOoyKOhlHMeeyFALWcaXBcuwT3CO0HlAZ0lNMBIxGj5Bmj7NT3tdLtKM%2F2XBxFwO7yPAuyh1XefrBXpbT3Xp3gxQGtMgTH%2FjF6Ou0LezdO%2FXIoa6EsujV2y935ck3GN7pupUxqp9wBp38PFHZdv7hx%2BF0ibW%2BhwZpNM1MpcUCTqjJvN1Zy51HXvAKP%2BH8QZ7kG5XEwCtOm4s%2BLSz8A&RelayState=kDxYO8gkdVNDRuMC', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:08:14,180 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNj9owEIbv%2FRWWL5xCHD66iUWCKAgViW2jJfTQm3GGYinY1OPQ8u87hO2udlUh9eYZva%2FnmY%2FJ9PexYWfwaJzNe0lf9BhY7Wpjf%2BS9bbWM0t60%2BDCxKOSsDQf7BD9bwMDIZlFSOuett9IpNBSqI6AMWm5mj2s56At58i447Rr%2BYkjuGxQi%2BEAwnM3%2BPufOYnsEvwF%2FNhq2T%2BucH0I4yThunFbNwWGQqUgfYqUxPlHE2YIgjVVX%2B02M79SZiBFd7KE2HjQ5VoucmzoaQQrpfgiD4WinsiGIsQJByazOxE7vMhIitrCyGJQNOR%2BIZBQlSZQ8VMlYilSKj985K5%2F7%2FmRsN8q7Pe9uIpSfq6qMyq%2BbqvvgbGrwX0id88cL25QMb%2F1z9u15X5zcvKDlJLKD8mzp%2FFGF%2B%2BWuGWp030kl2GDChRf%2FHiie%2BrS4Sfxaouhu4Yq1WpSuMfrCZk3jfs09qECoe9UgIf4%2FSPDKoiEczuLiWvHtxRV%2FAA%3D%3D&RelayState=VjKMtA1QfGxd2aMd', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '56061', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x10772b6d0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNj9owEIbv%2FRWWL5xCHD66iUWCKAgViW2jJfTQm3GGYinY1OPQ8u87hO2udlUh9eYZva%2FnmY%2FJ9PexYWfwaJzNe0lf9BhY7Wpjf%2BS9bbWM0t60%2BDCxKOSsDQf7BD9bwMDIZlFSOuett9IpNBSqI6AMWm5mj2s56At58i447Rr%2BYkjuGxQi%2BEAwnM3%2BPufOYnsEvwF%2FNhq2T%2BucH0I4yThunFbNwWGQqUgfYqUxPlHE2YIgjVVX%2B02M79SZiBFd7KE2HjQ5VoucmzoaQQrpfgiD4WinsiGIsQJByazOxE7vMhIitrCyGJQNOR%2BIZBQlSZQ8VMlYilSKj985K5%2F7%2FmRsN8q7Pe9uIpSfq6qMyq%2BbqvvgbGrwX0id88cL25QMb%2F1z9u15X5zcvKDlJLKD8mzp%2FFGF%2B%2BWuGWp030kl2GDChRf%2FHiie%2BrS4Sfxaouhu4Yq1WpSuMfrCZk3jfs09qECoe9UgIf4%2FSPDKoiEczuLiWvHtxRV%2FAA%3D%3D&RelayState=VjKMtA1QfGxd2aMd', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:08:14,986 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-17 16:08:14,987 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-17 16:08:14,989 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-17 16:08:14,990 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-17 16:08:14,992 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-b55a0c2b1fbf4e493b0cd68b98689aa9" IssueInstant="2014-11-17T15:08:10Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:08:14,994 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-4e8e8f3e234ba93e05ae04e89d90bcb9" IssueInstant="2014-11-17T15:08:06Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:08:14,999 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-b55a0c2b1fbf4e493b0cd68b98689aa9" IssueInstant="2014-11-17T15:08:10Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:08:15,004 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-4e8e8f3e234ba93e05ae04e89d90bcb9" IssueInstant="2014-11-17T15:08:06Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:08:15,006 saml2.entity:DEBUG Loaded request
2014-11-17 16:08:15,008 saml2.entity:DEBUG Loaded request
2014-11-17 16:08:15,009 saml2.entity:DEBUG Verified request
2014-11-17 16:08:15,011 front:INFO parsed OK
2014-11-17 16:08:15,014 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-b55a0c2b1fbf4e493b0cd68b98689aa9" IssueInstant="2014-11-17T15:08:10Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:08:15,011 saml2.entity:DEBUG Verified request
2014-11-17 16:08:15,016 front:INFO parsed OK
2014-11-17 16:08:15,015 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:08:15,018 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-4e8e8f3e234ba93e05ae04e89d90bcb9" IssueInstant="2014-11-17T15:08:06Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-17 16:08:15,018 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:08:15,020 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-17 16:08:15,019 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:08:15,021 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:08:15,022 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:08:15,024 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-17 16:08:15,023 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:08:15,024 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-17 16:08:15,026 saml2.mdstore:DEBUG service => [{'index': '2', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-17 16:08:20,700 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNj9owEIbv%2FRWWL5xCHD66iUWCKAgViW2jJfTQm3GGYinY1OPQ8u87hO2udlUh9eYZva%2FnmY%2FJ9PexYWfwaJzNe0lf9BhY7Wpjf%2BS9bbWM0t60%2BDCxKOSsDQf7BD9bwMDIZlFSOuett9IpNBSqI6AMWm5mj2s56At58i447Rr%2BYkjuGxQi%2BEAwnM3%2BPufOYnsEvwF%2FNhq2T%2BucH0I4yThunFbNwWGQqUgfYqUxPlHE2YIgjVVX%2B02M79SZiBFd7KE2HjQ5VoucmzoaQQrpfgiD4WinsiGIsQJByazOxE7vMhIitrCyGJQNOR%2BIZBQlSZQ8VMlYilSKj985K5%2F7%2FmRsN8q7Pe9uIpSfq6qMyq%2BbqvvgbGrwX0id88cL25QMb%2F1z9u15X5zcvKDlJLKD8mzp%2FFGF%2B%2BWuGWp030kl2GDChRf%2FHiie%2BrS4Sfxaouhu4Yq1WpSuMfrCZk3jfs09qECoe9UgIf4%2FSPDKoiEczuLiWvHtxRV%2FAA%3D%3D&RelayState=VjKMtA1QfGxd2aMd', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '56061', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x10772b6d0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNj9owEIbv%2FRWWL5xCHD66iUWCKAgViW2jJfTQm3GGYinY1OPQ8u87hO2udlUh9eYZva%2FnmY%2FJ9PexYWfwaJzNe0lf9BhY7Wpjf%2BS9bbWM0t60%2BDCxKOSsDQf7BD9bwMDIZlFSOuett9IpNBSqI6AMWm5mj2s56At58i447Rr%2BYkjuGxQi%2BEAwnM3%2BPufOYnsEvwF%2FNhq2T%2BucH0I4yThunFbNwWGQqUgfYqUxPlHE2YIgjVVX%2B02M79SZiBFd7KE2HjQ5VoucmzoaQQrpfgiD4WinsiGIsQJByazOxE7vMhIitrCyGJQNOR%2BIZBQlSZQ8VMlYilSKj985K5%2F7%2FmRsN8q7Pe9uIpSfq6qMyq%2BbqvvgbGrwX0id88cL25QMb%2F1z9u15X5zcvKDlJLKD8mzp%2FFGF%2B%2BWuGWp030kl2GDChRf%2FHiie%2BrS4Sfxaouhu4Yq1WpSuMfrCZk3jfs09qECoe9UgIf4%2FSPDKoiEczuLiWvHtxRV%2FAA%3D%3D&RelayState=VjKMtA1QfGxd2aMd', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:08:20,702 back:DEBUG --- SSO ---
2014-11-17 16:08:21,505 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJNj9owEIbv%2FRWWL5xCHD66iUWCKAgViW2jJfTQm3GGYinY1OPQ8u87hO2udlUh9eYZva%2FnmY%2FJ9PexYWfwaJzNe0lf9BhY7Wpjf%2BS9bbWM0t60%2BDCxKOSsDQf7BD9bwMDIZlFSOuett9IpNBSqI6AMWm5mj2s56At58i447Rr%2BYkjuGxQi%2BEAwnM3%2BPufOYnsEvwF%2FNhq2T%2BucH0I4yThunFbNwWGQqUgfYqUxPlHE2YIgjVVX%2B02M79SZiBFd7KE2HjQ5VoucmzoaQQrpfgiD4WinsiGIsQJByazOxE7vMhIitrCyGJQNOR%2BIZBQlSZQ8VMlYilSKj985K5%2F7%2FmRsN8q7Pe9uIpSfq6qMyq%2BbqvvgbGrwX0id88cL25QMb%2F1z9u15X5zcvKDlJLKD8mzp%2FFGF%2B%2BWuGWp030kl2GDChRf%2FHiie%2BrS4Sfxaouhu4Yq1WpSuMfrCZk3jfs09qECoe9UgIf4%2FSPDKoiEczuLiWvHtxRV%2FAA%3D%3D&RelayState=VjKMtA1QfGxd2aMd'
2014-11-17 16:08:38,009 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-17 16:08:38,010 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-17 16:08:38,011 saml2.mdstore:ERROR Unknown system entity: http://localhost:8088/idp.xml
2014-11-17 16:10:20,282 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa5GPrWEzKDGSgC4wvfCu64o0GS32dCj%2F3m6gRmNIvOs5ed%2Be53yMr963FdpLC8ropEO7pIOkFqZU%2BiXpPOa3QdS5Si%2FGGgib1G6jl%2FK1luCQt2lgPp3g2mpmOCgf8q0E5gRbTRZz1usStrPGGWEq%2FGWg5w0cQFrnYTCafD5vjIZ6K%2B1K2r0S8nE5T%2FDGuR0Lw8oIXm0MOBaRaBRyAeHORxhNPaTSvLEfxfBLHZMQwIRWlspK4R2zaYJVGRSDASeiV9B1se7LfnxZEFEOoyKOhlHMeeyFALWcaXBcuwT3CO0HlAZ0lNMBIxGj5Bmj7NT3tdLtKM%2F2XBxFwO7yPAuyh1XefrBXpbT3Xp3gxQGtMgTH%2FjF6Ou0LezdO%2FXIoa6EsujV2y935ck3GN7pupUxqp9wBp38PFHZdv7hx%2BF0ibW%2BhwZpNM1MpcUCTqjJvN1Zy51HXvAKP%2BH8QZ7kG5XEwCtOm4s%2BLSz8A&RelayState=kDxYO8gkdVNDRuMC', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '56087', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x10772be50>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa5GPrWEzKDGSgC4wvfCu64o0GS32dCj%2F3m6gRmNIvOs5ed%2Be53yMr963FdpLC8ropEO7pIOkFqZU%2BiXpPOa3QdS5Si%2FGGgib1G6jl%2FK1luCQt2lgPp3g2mpmOCgf8q0E5gRbTRZz1usStrPGGWEq%2FGWg5w0cQFrnYTCafD5vjIZ6K%2B1K2r0S8nE5T%2FDGuR0Lw8oIXm0MOBaRaBRyAeHORxhNPaTSvLEfxfBLHZMQwIRWlspK4R2zaYJVGRSDASeiV9B1se7LfnxZEFEOoyKOhlHMeeyFALWcaXBcuwT3CO0HlAZ0lNMBIxGj5Bmj7NT3tdLtKM%2F2XBxFwO7yPAuyh1XefrBXpbT3Xp3gxQGtMgTH%2FjF6Ou0LezdO%2FXIoa6EsujV2y935ck3GN7pupUxqp9wBp38PFHZdv7hx%2BF0ibW%2BhwZpNM1MpcUCTqjJvN1Zy51HXvAKP%2BH8QZ7kG5XEwCtOm4s%2BLSz8A&RelayState=kDxYO8gkdVNDRuMC', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-17 16:10:20,282 back:ERROR http://localhost:8088/idp.xml
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/back.py", line 102, in authn_request
entity_id=entity_id)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/entity.py", line 255, in pick_binding
srvs = sfunc(entity_id, binding, descr_type)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 745, in single_sign_on_service
"single_sign_on_service", binding)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 721, in service
raise UnknownSystemEntity(entity_id)
UnknownSystemEntity: http://localhost:8088/idp.xml
2014-11-17 16:10:20,288 back:DEBUG --- SSO ---
2014-11-17 16:10:20,289 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa5GPrWEzKDGSgC4wvfCu64o0GS32dCj%2F3m6gRmNIvOs5ed%2Be53yMr963FdpLC8ropEO7pIOkFqZU%2BiXpPOa3QdS5Si%2FGGgib1G6jl%2FK1luCQt2lgPp3g2mpmOCgf8q0E5gRbTRZz1usStrPGGWEq%2FGWg5w0cQFrnYTCafD5vjIZ6K%2B1K2r0S8nE5T%2FDGuR0Lw8oIXm0MOBaRaBRyAeHORxhNPaTSvLEfxfBLHZMQwIRWlspK4R2zaYJVGRSDASeiV9B1se7LfnxZEFEOoyKOhlHMeeyFALWcaXBcuwT3CO0HlAZ0lNMBIxGj5Bmj7NT3tdLtKM%2F2XBxFwO7yPAuyh1XefrBXpbT3Xp3gxQGtMgTH%2FjF6Ou0LezdO%2FXIoa6EsujV2y935ck3GN7pupUxqp9wBp38PFHZdv7hx%2BF0ibW%2BhwZpNM1MpcUCTqjJvN1Zy51HXvAKP%2BH8QZ7kG5XEwCtOm4s%2BLSz8A&RelayState=kDxYO8gkdVNDRuMC'
2014-11-17 16:11:22,173 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-17 16:11:32,178 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-17 16:19:11,769 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:19:11,836 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:20:57,075 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:26:51,279 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:37:19,218 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:38:23,641 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:38:25,408 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:43:39,113 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:45:29,623 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:46:10,473 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:46:48,105 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:46:51,146 service:DEBUG ENVIRON: None
2014-11-17 16:46:51,148 saml2:INFO Logging started
2014-11-17 16:46:51,151 back:DEBUG --- SSO ---
2014-11-17 16:46:51,152 service:DEBUG ENVIRON: None
2014-11-17 16:46:51,183 root:INFO Server starting
2014-11-17 16:47:12,007 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:48:41,502 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:49:49,250 saml2.mdstore:INFO Entity descriptor (entity id:http://localhost:8088/idp.xml) to old
2014-11-17 16:50:07,173 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-17 16:50:12,080 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:05:37,972 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:05:54,464 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:07:32,589 service:DEBUG ENVIRON: None
2014-11-18 09:07:32,590 saml2:INFO Logging started
2014-11-18 09:07:32,598 back:DEBUG --- SSO ---
2014-11-18 09:07:32,599 service:DEBUG ENVIRON: None
2014-11-18 09:07:32,644 root:INFO Server starting
2014-11-18 09:08:09,555 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga%2B4Cx0bARhBBJUBcYXnhXuk6ajBZ7OpR%2FbzdQozEkJr1oT9635zkfo%2FH7vkJHrkEomXT8rtdBXDJVCPmSdDb53Ik74%2FRmJMEjk9rs5Iq%2F1hwMsjYJxIYTXGtJFAVhn3TPgRhG1pP7JQm6HjloZRRTFf4y%2BNcNFIBrY2Ewmnxep0pCved6zfVRML5ZLRO8M%2BZAXLdSjFY7BYbEXhy5lIF7sC%2BMZhZSSNrYz2L4pR56LoByNS%2BE5sw6FrMEi8KJwqI3CMNhSMuoz4IoGoZbtg0GvbIceAH1rRCg5gsJhkqT4MDz%2B47vO36cezFpTviMUXap%2B1bItpVXa96eRUDu8jxzssd13n5wFAXXD1ad4PsTWmcIzvVj9HSZF7ZunNrh%2BKSF0miu9J6a6%2BmaiC20bKWESyPMCad%2FNxQOXTu4kfudIm13ocFazDJVCXZCk6pSb1PNqbGoJa3AIv4fxGgqQVgcjNy0yfhz49IP&RelayState=aYW4ahZppMMV1zZL', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '49783', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108a83b50>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga%2B4Cx0bARhBBJUBcYXnhXuk6ajBZ7OpR%2FbzdQozEkJr1oT9635zkfo%2FH7vkJHrkEomXT8rtdBXDJVCPmSdDb53Ik74%2FRmJMEjk9rs5Iq%2F1hwMsjYJxIYTXGtJFAVhn3TPgRhG1pP7JQm6HjloZRRTFf4y%2BNcNFIBrY2Ewmnxep0pCved6zfVRML5ZLRO8M%2BZAXLdSjFY7BYbEXhy5lIF7sC%2BMZhZSSNrYz2L4pR56LoByNS%2BE5sw6FrMEi8KJwqI3CMNhSMuoz4IoGoZbtg0GvbIceAH1rRCg5gsJhkqT4MDz%2B47vO36cezFpTviMUXap%2B1bItpVXa96eRUDu8jxzssd13n5wFAXXD1ad4PsTWmcIzvVj9HSZF7ZunNrh%2BKSF0miu9J6a6%2BmaiC20bKWESyPMCad%2FNxQOXTu4kfudIm13ocFazDJVCXZCk6pSb1PNqbGoJa3AIv4fxGgqQVgcjNy0yfhz49IP&RelayState=aYW4ahZppMMV1zZL', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:08:09,556 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga63BfNGwEIUQSPxaZXnhXuiJNRos9Hcq%2Ftxuo0RgSk160J%2B%2Fb85yP0fh9W6O9MCC1ynpBn%2FSQUFxXUr1kvcdy7qW9cX4xUkDopLEb9SBeGwEWOZsC6sIZboyimoF0T7YVQC2ny8ntDR30Cd0ZbTXXNf4yBOcNDEAY62Awmnxep1pBsxVmKcxecvH4cJPhjbU76vu15qzeaLA0JWniMw7%2Bzr0wmjlIqVhrP4rhl3pIfADtG1FJI7hzLGYZlpU3TJOwimNyyUORVFHEYhJH8TAcxlEaJsnKCQEasVBgmbIZHpAg9ILAC9KSpLQ90TNGxanuK6m6Vp6teXUUAb0uy8Ir7pdl98FeVsLcOXWGbw9oWSA41o%2FR02le2Llx7oYT0A7KoLk2W2bPp2sjrtB1J6VCWWkPOP%2B7obDru8GN%2FO8UebcLLdZiVuha8gOa1LV%2BmxrBrENdsxoc4v9BrGEKpMPByM%2FbjD83Lv8A&RelayState=8NayLtwHYJVHu6SQ', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '49787', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108a8add0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga63BfNGwEIUQSPxaZXnhXuiJNRos9Hcq%2Ftxuo0RgSk160J%2B%2Fb85yP0fh9W6O9MCC1ynpBn%2FSQUFxXUr1kvcdy7qW9cX4xUkDopLEb9SBeGwEWOZsC6sIZboyimoF0T7YVQC2ny8ntDR30Cd0ZbTXXNf4yBOcNDEAY62Awmnxep1pBsxVmKcxecvH4cJPhjbU76vu15qzeaLA0JWniMw7%2Bzr0wmjlIqVhrP4rhl3pIfADtG1FJI7hzLGYZlpU3TJOwimNyyUORVFHEYhJH8TAcxlEaJsnKCQEasVBgmbIZHpAg9ILAC9KSpLQ90TNGxanuK6m6Vp6teXUUAb0uy8Ir7pdl98FeVsLcOXWGbw9oWSA41o%2FR02le2Llx7oYT0A7KoLk2W2bPp2sjrtB1J6VCWWkPOP%2B7obDru8GN%2FO8UebcLLdZiVuha8gOa1LV%2BmxrBrENdsxoc4v9BrGEKpMPByM%2FbjD83Lv8A&RelayState=8NayLtwHYJVHu6SQ', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:08:10,609 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:08:10,610 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:08:10,610 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:08:10,612 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:08:10,613 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-75d365595af74c27795bcb263ff602a1" IssueInstant="2014-11-18T08:08:05Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:08:10,614 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-9874d6603c4e7d55a60656949658477b" IssueInstant="2014-11-18T08:08:05Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:08:10,618 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-75d365595af74c27795bcb263ff602a1" IssueInstant="2014-11-18T08:08:05Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:08:10,622 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-9874d6603c4e7d55a60656949658477b" IssueInstant="2014-11-18T08:08:05Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:08:10,624 saml2.entity:DEBUG Loaded request
2014-11-18 09:08:10,626 saml2.entity:DEBUG Loaded request
2014-11-18 09:08:10,627 saml2.entity:DEBUG Verified request
2014-11-18 09:08:10,630 front:INFO parsed OK
2014-11-18 09:08:10,629 saml2.entity:DEBUG Verified request
2014-11-18 09:08:10,632 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-75d365595af74c27795bcb263ff602a1" IssueInstant="2014-11-18T08:08:05Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:08:10,633 front:INFO parsed OK
2014-11-18 09:08:10,636 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-9874d6603c4e7d55a60656949658477b" IssueInstant="2014-11-18T08:08:05Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:08:10,633 saml2.mdstore:ERROR Unknown system entity: http://localhost:8087/sp.xml
2014-11-18 09:08:10,637 front:ERROR Couldn't find receiver endpoint: http://localhost:8087/sp.xml
2014-11-18 09:08:10,636 saml2.mdstore:ERROR Unknown system entity: http://localhost:8087/sp.xml
2014-11-18 09:08:10,638 front:ERROR Couldn't find receiver endpoint: http://localhost:8087/sp.xml
2014-11-18 09:08:10,658 root:ERROR http://localhost:8087/sp.xml
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 167, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 130, in run
return func(*spec[2:])
File "/Users/rolandh/code/s2sproxy/front.py", line 89, in handle_authn_request
_dict = self.verify_request(_request["SAMLRequest"], _binding_in)
File "/Users/rolandh/code/s2sproxy/front.py", line 54, in verify_request
entity_id=_authn_req.issuer.text, request=_authn_req)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/entity.py", line 255, in pick_binding
srvs = sfunc(entity_id, binding, descr_type)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 814, in assertion_consumer_service
"assertion_consumer_service", binding)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 721, in service
raise UnknownSystemEntity(entity_id)
UnknownSystemEntity: http://localhost:8087/sp.xml
2014-11-18 09:08:10,659 root:ERROR http://localhost:8087/sp.xml
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 167, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 130, in run
return func(*spec[2:])
File "/Users/rolandh/code/s2sproxy/front.py", line 89, in handle_authn_request
_dict = self.verify_request(_request["SAMLRequest"], _binding_in)
File "/Users/rolandh/code/s2sproxy/front.py", line 54, in verify_request
entity_id=_authn_req.issuer.text, request=_authn_req)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/entity.py", line 255, in pick_binding
srvs = sfunc(entity_id, binding, descr_type)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 814, in assertion_consumer_service
"assertion_consumer_service", binding)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 721, in service
raise UnknownSystemEntity(entity_id)
UnknownSystemEntity: http://localhost:8087/sp.xml
2014-11-18 09:08:59,738 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:08:59,748 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:09:12,432 service:DEBUG ENVIRON: None
2014-11-18 09:09:12,433 saml2:INFO Logging started
2014-11-18 09:09:12,435 back:DEBUG --- SSO ---
2014-11-18 09:09:12,436 service:DEBUG ENVIRON: None
2014-11-18 09:09:12,461 root:INFO Server starting
2014-11-18 09:09:42,558 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga65CPtWEjCCGSgC4wvPCudEWajBZ7OpR%2Fbxmo0RgS73pO3rfnOR%2F9wfuuRAdpQRmdNKImaSCphSmUfkkaq3wSxI1BetPXQNiwclu9kK%2BVBIe8TQPz6QRXVjPDQfmQ7yQwJ9hyOJ%2BxVpOwvTXOCFPiL0N03cABpHUeBqPh53NkNFQ7aZfSHpSQq8UswVvn9iwMSyN4uTXgWEziXsgFhHsfYTT2kErzk%2F0shl9qSkIAE1pZKCuFd0zHCVZFIHhB27SzjknEe52uoJt4I3vdglMuKKXcCwEqOdXguHYJbpGoHURREMU5iRmh7Lb3jFF26ftO6XqUV3ten0XA7vM8C7LHZV5%2FcFCFtA9eneD5ES0zBOf%2BMXq67At7N079ciJWQ1k0MXbH3fVyp4xvdFNLmdROuSNO%2Fx4o7Jt%2Bcf3wu0Ra38IJazrOTKnEEQ3L0ryNrOTOo254CR7x%2FyDOcg3K42AUpqeKPy8u%2FQA%3D&RelayState=hePLqfHTzwwKieIk', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '50404', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x107b86ad0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga65CPtWEjCCGSgC4wvPCudEWajBZ7OpR%2Fbxmo0RgS73pO3rfnOR%2F9wfuuRAdpQRmdNKImaSCphSmUfkkaq3wSxI1BetPXQNiwclu9kK%2BVBIe8TQPz6QRXVjPDQfmQ7yQwJ9hyOJ%2BxVpOwvTXOCFPiL0N03cABpHUeBqPh53NkNFQ7aZfSHpSQq8UswVvn9iwMSyN4uTXgWEziXsgFhHsfYTT2kErzk%2F0shl9qSkIAE1pZKCuFd0zHCVZFIHhB27SzjknEe52uoJt4I3vdglMuKKXcCwEqOdXguHYJbpGoHURREMU5iRmh7Lb3jFF26ftO6XqUV3ten0XA7vM8C7LHZV5%2FcFCFtA9eneD5ES0zBOf%2BMXq67At7N079ciJWQ1k0MXbH3fVyp4xvdFNLmdROuSNO%2Fx4o7Jt%2Bcf3wu0Ra38IJazrOTKnEEQ3L0ryNrOTOo254CR7x%2FyDOcg3K42AUpqeKPy8u%2FQA%3D&RelayState=hePLqfHTzwwKieIk', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:09:42,559 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNTwIxEIbv%2FoqmF07LtoiwNOwShBhJ%2FNjI6sFb6Q7SZGmx00X595YFNRpD4q0zed%2FOMx%2FD0fu6IltwqK1JW7zNWgSMsqU2L2nrsbiKktYoOxsaZGJc%2B5V5gNca0JNgMyhCOqW1M8JK1CGUa0DhlZiPb29Ep83Exllvla3ol4GfNkhEcD7AUDL%2BfE6swXoNbg5uqxU8PtykdOX9RsRxZZWsVha9SFjSj6XCeBMiSqYBUhu5tx%2FE%2BEs9YDGijR2U2oEKjtk0pbqMoAS46PWA90o%2B6F%2F0S85K2V3IDiykWvZUECLWMDPopfEp7TDejTiPeFKwRLCBOO8%2BU5If%2B77UphnlyZ4XBxGK66LIo%2Fx%2BXjQfbHUJ7i6oU3q7I%2FOc4KF%2FSp6O%2B6LBTbOwHC4aKEeurFtLf7rcPhMaXTZSAcZrv6PZ3wPFTTssbhh%2Fl8iaW9hjzaa5rbTakXFV2beJA%2BkD6lJWGBD%2FD%2BKdNKgDDiVxtq%2F48%2BKyDw%3D%3D&RelayState=00YCx1nGmZiWYbPY', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '50379', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108c8ccd0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNTwIxEIbv%2FoqmF07LtoiwNOwShBhJ%2FNjI6sFb6Q7SZGmx00X595YFNRpD4q0zed%2FOMx%2FD0fu6IltwqK1JW7zNWgSMsqU2L2nrsbiKktYoOxsaZGJc%2B5V5gNca0JNgMyhCOqW1M8JK1CGUa0DhlZiPb29Ep83Exllvla3ol4GfNkhEcD7AUDL%2BfE6swXoNbg5uqxU8PtykdOX9RsRxZZWsVha9SFjSj6XCeBMiSqYBUhu5tx%2FE%2BEs9YDGijR2U2oEKjtk0pbqMoAS46PWA90o%2B6F%2F0S85K2V3IDiykWvZUECLWMDPopfEp7TDejTiPeFKwRLCBOO8%2BU5If%2B77UphnlyZ4XBxGK66LIo%2Fx%2BXjQfbHUJ7i6oU3q7I%2FOc4KF%2FSp6O%2B6LBTbOwHC4aKEeurFtLf7rcPhMaXTZSAcZrv6PZ3wPFTTssbhh%2Fl8iaW9hjzaa5rbTakXFV2beJA%2BkD6lJWGBD%2FD%2BKdNKgDDiVxtq%2F48%2BKyDw%3D%3D&RelayState=00YCx1nGmZiWYbPY', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:09:55,423 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:09:55,425 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:09:55,426 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-edee566e16d19757d10da4ba2ebacf6c" IssueInstant="2014-11-18T08:09:34Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:09:55,429 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-edee566e16d19757d10da4ba2ebacf6c" IssueInstant="2014-11-18T08:09:34Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:09:55,431 saml2.entity:DEBUG Loaded request
2014-11-18 09:09:55,432 saml2.entity:DEBUG Verified request
2014-11-18 09:09:55,433 front:INFO parsed OK
2014-11-18 09:09:55,434 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-edee566e16d19757d10da4ba2ebacf6c" IssueInstant="2014-11-18T08:09:34Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:09:55,435 saml2.mdstore:ERROR Unknown system entity: http://localhost:8087/sp.xml
2014-11-18 09:09:55,436 front:ERROR Couldn't find receiver endpoint: http://localhost:8087/sp.xml
2014-11-18 09:12:32,720 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:12:32,721 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:12:32,722 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-cad9495b801a756c9f8fe76da9ac999a" IssueInstant="2014-11-18T08:09:37Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:12:32,727 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-cad9495b801a756c9f8fe76da9ac999a" IssueInstant="2014-11-18T08:09:37Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:12:32,729 saml2.entity:DEBUG Loaded request
2014-11-18 09:12:32,730 saml2.entity:DEBUG Verified request
2014-11-18 09:12:32,731 front:INFO parsed OK
2014-11-18 09:12:32,733 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-cad9495b801a756c9f8fe76da9ac999a" IssueInstant="2014-11-18T08:09:37Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:12:32,734 saml2.mdstore:ERROR Unknown system entity: http://localhost:8087/sp.xml
2014-11-18 09:12:32,735 front:ERROR Couldn't find receiver endpoint: http://localhost:8087/sp.xml
2014-11-18 09:12:32,745 root:ERROR http://localhost:8087/sp.xml
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 167, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 130, in run
return func(*spec[2:])
File "/Users/rolandh/code/s2sproxy/front.py", line 89, in handle_authn_request
_dict = self.verify_request(_request["SAMLRequest"], _binding_in)
File "/Users/rolandh/code/s2sproxy/front.py", line 54, in verify_request
entity_id=_authn_req.issuer.text, request=_authn_req)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/entity.py", line 255, in pick_binding
srvs = sfunc(entity_id, binding, descr_type)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 814, in assertion_consumer_service
"assertion_consumer_service", binding)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 721, in service
raise UnknownSystemEntity(entity_id)
UnknownSystemEntity: http://localhost:8087/sp.xml
2014-11-18 09:12:32,746 root:ERROR http://localhost:8087/sp.xml
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 167, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 130, in run
return func(*spec[2:])
File "/Users/rolandh/code/s2sproxy/front.py", line 89, in handle_authn_request
_dict = self.verify_request(_request["SAMLRequest"], _binding_in)
File "/Users/rolandh/code/s2sproxy/front.py", line 54, in verify_request
entity_id=_authn_req.issuer.text, request=_authn_req)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/entity.py", line 255, in pick_binding
srvs = sfunc(entity_id, binding, descr_type)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 814, in assertion_consumer_service
"assertion_consumer_service", binding)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 721, in service
raise UnknownSystemEntity(entity_id)
UnknownSystemEntity: http://localhost:8087/sp.xml
2014-11-18 09:12:58,665 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaWxngaNgISowkoItML7wr3UGajBZ7OpR%2Fbxmo0RgS73pO3rfnOR%2FD0fumIjuwqIxOW6wdtQhoaUqlX9LWY3ETJK1RdjHUGPFx7db6AV5rQEe8TSP36ZTWVnMjUPlQbAC5k3wxns94px3xrTXOSFPRLwM7bxCIYJ2HoWT8%2Bbw2GusN2AXYnZLw%2BDBL6dq5LQ%2FDykhRrQ06nkTJZSgkhlsfUTLxkEqLg%2F0oxl%2FqQRQimtBCqSxI75hOUqrKAGRcxnEnKXv9uNdj0WUJosuWpVyxAev3Yy9ErGGq0QntUtqJWDdgLGBJESWcdXiv%2B0xJfur7SulmlGd7Xh5FyG%2BLIg%2Fy%2B0XRfLBTJdg7r07pfE8WOcFj%2F5Q8nfZFvZtmfjmMN1CW3Bi7Ee58uUPGN7pqpBy0U25Ps78Hitu2X9ww%2FC6RNbdwwJpOclMpuSfjqjJv1xaE86grUaFH%2FD%2BIs0Kj8jiUhNmh4s%2BLyz4A&RelayState=HSYUGdWaUOuRBisW', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '51741', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x107f2b390>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaWxngaNgISowkoItML7wr3UGajBZ7OpR%2Fbxmo0RgS73pO3rfnOR%2FD0fumIjuwqIxOW6wdtQhoaUqlX9LWY3ETJK1RdjHUGPFx7db6AV5rQEe8TSP36ZTWVnMjUPlQbAC5k3wxns94px3xrTXOSFPRLwM7bxCIYJ2HoWT8%2Bbw2GusN2AXYnZLw%2BDBL6dq5LQ%2FDykhRrQ06nkTJZSgkhlsfUTLxkEqLg%2F0oxl%2FqQRQimtBCqSxI75hOUqrKAGRcxnEnKXv9uNdj0WUJosuWpVyxAev3Yy9ErGGq0QntUtqJWDdgLGBJESWcdXiv%2B0xJfur7SulmlGd7Xh5FyG%2BLIg%2Fy%2B0XRfLBTJdg7r07pfE8WOcFj%2F5Q8nfZFvZtmfjmMN1CW3Bi7Ee58uUPGN7pqpBy0U25Ps78Hitu2X9ww%2FC6RNbdwwJpOclMpuSfjqjJv1xaE86grUaFH%2FD%2BIs0Kj8jiUhNmh4s%2BLyz4A&RelayState=HSYUGdWaUOuRBisW', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:13:10,339 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:13:10,340 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:13:10,341 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-ec3d3328d56355107dea41bdcf191663" IssueInstant="2014-11-18T08:12:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:13:10,345 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-ec3d3328d56355107dea41bdcf191663" IssueInstant="2014-11-18T08:12:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:13:10,347 saml2.entity:DEBUG Loaded request
2014-11-18 09:13:10,348 saml2.entity:DEBUG Verified request
2014-11-18 09:13:10,349 front:INFO parsed OK
2014-11-18 09:13:10,351 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-ec3d3328d56355107dea41bdcf191663" IssueInstant="2014-11-18T08:12:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:13:10,351 saml2.mdstore:ERROR Unknown system entity: http://localhost:8087/sp.xml
2014-11-18 09:13:10,352 front:ERROR Couldn't find receiver endpoint: http://localhost:8087/sp.xml
2014-11-18 09:13:29,211 root:ERROR http://localhost:8087/sp.xml
Traceback (most recent call last):
File "/Users/rolandh/code/s2sproxy/server.py", line 167, in application
return run(spec, environ, start_response)
File "/Users/rolandh/code/s2sproxy/server.py", line 130, in run
return func(*spec[2:])
File "/Users/rolandh/code/s2sproxy/front.py", line 89, in handle_authn_request
_dict = self.verify_request(_request["SAMLRequest"], _binding_in)
File "/Users/rolandh/code/s2sproxy/front.py", line 54, in verify_request
entity_id=_authn_req.issuer.text, request=_authn_req)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/entity.py", line 255, in pick_binding
srvs = sfunc(entity_id, binding, descr_type)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 814, in assertion_consumer_service
"assertion_consumer_service", binding)
File "/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/site-packages/pysaml2-2.2.1beta-py2.7.egg/saml2/mdstore.py", line 721, in service
raise UnknownSystemEntity(entity_id)
UnknownSystemEntity: http://localhost:8087/sp.xml
2014-11-18 09:13:51,826 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa8dks2EjKDGSgC4yvPCubJ00GS32dCj%2F3m6gRmNIvOs5ed%2Be53yMxu%2FbGu2FAalV0qN90kNCFbqU6iXprfJbL%2B6N04uRAsImjd2oR%2FHaCLDI2RQwl05wYxTTHKQL%2BVYAswVbThZzFvQJ2xltdaFr%2FGWg5w0cQBjrYDCafD5vtIJmK8xSmL0sxOpxnuCNtTvm%2B7UueL3RYFlM4sjnBfg7F2E0dZBS8dZ%2BFMMv9RXxAbRvRCmNKJxjNk2wLD0yJOQqDqohGfB1MBxEkQhCSgbhZVhGVbV2QoBGzBRYrmyCA0JDj1KPxjmJGR2wMHrGKDv1fS1VN8qzPa%2BPImB3eZ552cMy7z7Yy1KYe6dO8OKAlhmCY%2F8YPZ32hZ0bp245lHVQBt1qs%2BX2fLk24xqtOikTykp7wOnfA4Vd3y1u5H%2BXSLtbaLFm00zXsjigSV3rtxsjuHWoFa%2FBIf4fxBquQDocjPy0rfjz4tIP&RelayState=ITTbRvtak6mHJLCf', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '52095', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x107f2b3d0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa8dks2EjKDGSgC4yvPCubJ00GS32dCj%2F3m6gRmNIvOs5ed%2Be53yMxu%2FbGu2FAalV0qN90kNCFbqU6iXprfJbL%2B6N04uRAsImjd2oR%2FHaCLDI2RQwl05wYxTTHKQL%2BVYAswVbThZzFvQJ2xltdaFr%2FGWg5w0cQBjrYDCafD5vtIJmK8xSmL0sxOpxnuCNtTvm%2B7UueL3RYFlM4sjnBfg7F2E0dZBS8dZ%2BFMMv9RXxAbRvRCmNKJxjNk2wLD0yJOQqDqohGfB1MBxEkQhCSgbhZVhGVbV2QoBGzBRYrmyCA0JDj1KPxjmJGR2wMHrGKDv1fS1VN8qzPa%2BPImB3eZ552cMy7z7Yy1KYe6dO8OKAlhmCY%2F8YPZ32hZ0bp245lHVQBt1qs%2BX2fLk24xqtOikTykp7wOnfA4Vd3y1u5H%2BXSLtbaLFm00zXsjigSV3rtxsjuHWoFa%2FBIf4fxBquQDocjPy0rfjz4tIP&RelayState=ITTbRvtak6mHJLCf', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:13:51,827 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhMVASLBJEi6oi9RGV0EV3xpkUS8GmHoeWv68JfahVhdSdZ3Sv58xjPHnb1GQHFpXRaYd1ow4BLU2p9HPaWRZXQdKZZGdjjRGfNm6tH%2BClAXTE2zRyn05pYzU3ApUPxQaQO8kX09sb3utGfGuNM9LU9MvAThsEIljnYSiZfj4vjcZmA3YBdqckLB9uUrp2bsvDsDZS1GuDjidREodCYrj1ESUzD6m0ONiPYvylHkUhogktlMqC9I75LKWqDOKhHEIMw0HcG7FRFctBIquV7JfJqFeds3MvRGxgrtEJ7VLai9ggYCxgSRElnPX5IH6iJP%2Fo%2B0LpdpQne14dRciviyIP8vtF0X6wUyXYO69O6e2eLHKCx%2F4pefzYF%2FVumvnlMN5CWXJl7Ea40%2BUOGd9o1Uo5aKfcnmZ%2FDxS3Xb%2B4cfhdImtv4YA1n%2BWmVnJPpnVtXi8tCOdRK1GjR%2Fw%2FiLNCo%2FI4lITZoeLPi8veAQ%3D%3D&RelayState=XeG22eOsBvAGJeqo', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '52099', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x107b86a90>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZLLbsIwEEX3%2FQrLG1YhMVASLBJEi6oi9RGV0EV3xpkUS8GmHoeWv68JfahVhdSdZ3Sv58xjPHnb1GQHFpXRaYd1ow4BLU2p9HPaWRZXQdKZZGdjjRGfNm6tH%2BClAXTE2zRyn05pYzU3ApUPxQaQO8kX09sb3utGfGuNM9LU9MvAThsEIljnYSiZfj4vjcZmA3YBdqckLB9uUrp2bsvDsDZS1GuDjidREodCYrj1ESUzD6m0ONiPYvylHkUhogktlMqC9I75LKWqDOKhHEIMw0HcG7FRFctBIquV7JfJqFeds3MvRGxgrtEJ7VLai9ggYCxgSRElnPX5IH6iJP%2Fo%2B0LpdpQne14dRciviyIP8vtF0X6wUyXYO69O6e2eLHKCx%2F4pefzYF%2FVumvnlMN5CWXJl7Ea40%2BUOGd9o1Uo5aKfcnmZ%2FDxS3Xb%2B4cfhdImtv4YA1n%2BWmVnJPpnVtXi8tCOdRK1GjR%2Fw%2FiLNCo%2FI4lITZoeLPi8veAQ%3D%3D&RelayState=XeG22eOsBvAGJeqo', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:14:04,466 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:14:04,467 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:14:04,468 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-0600982f603ab26377e24103454d7ffb" IssueInstant="2014-11-18T08:13:47Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:14:04,471 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-0600982f603ab26377e24103454d7ffb" IssueInstant="2014-11-18T08:13:47Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:14:04,473 saml2.entity:DEBUG Loaded request
2014-11-18 09:14:04,474 saml2.entity:DEBUG Verified request
2014-11-18 09:14:24,391 front:INFO parsed OK
2014-11-18 09:14:40,858 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-0600982f603ab26377e24103454d7ffb" IssueInstant="2014-11-18T08:13:47Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:18:55,016 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:18:55,026 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:19:31,950 service:DEBUG ENVIRON: None
2014-11-18 09:19:31,951 saml2:INFO Logging started
2014-11-18 09:19:31,953 back:DEBUG --- SSO ---
2014-11-18 09:19:31,954 service:DEBUG ENVIRON: None
2014-11-18 09:19:31,974 root:INFO Server starting
2014-11-18 09:20:11,837 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:20:11,848 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:20:11,930 service:DEBUG ENVIRON: None
2014-11-18 09:20:11,931 saml2:INFO Logging started
2014-11-18 09:20:11,933 back:DEBUG --- SSO ---
2014-11-18 09:20:11,934 service:DEBUG ENVIRON: None
2014-11-18 09:20:11,955 root:INFO Server starting
2014-11-18 09:20:37,385 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaaweO0rARhBBJ%2FFhgeOFd2Yo0GS32dCj%2F3jJQozEk3vWcvG%2FPcz4Gw%2FdthfbSgjI6adE2aSGpC1Mq%2FZK0lvk0YK1hejXQQPiodhs9l6%2B1BIe8TQP36QTXVnMjQPlQbCVwV%2FDF6P6OR23Cd9Y4U5gKfxnoZYMAkNZ5GIxGn8%2Bx0VBvpV1Iu1eFXM7vErxxbsfDsDKFqDYGHGeE9UJRQLjzEUYTD6m0ONpPYvil7pMQwIRWlsrKwjtmkwSrMuh1KOl3SlbGsez3I9Zh1zEVq7jLVl3R7V17IUAtZxqc0C7BEaHdgNKAspwwHhEexc8YZee%2Bb5RuRnmx59VJBPw2z7Mge1zkzQd7VUr74NUJvj%2BgRYbg1D9GT%2Bd9Ye%2FGqV8O5Q2URVNjt8JdLnfM%2BEbXjZRL7ZQ74PTvgcKu7Rc3CL9LpM0tHLFmk8xUqjigUVWZt7GVwnnUtajAI%2F4fxFmhQXkcjML0WPHnxaUf&RelayState=aOSahoWeI3IlSmRi', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '54752', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108c8cd50>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaaweO0rARhBBJ%2FFhgeOFd2Yo0GS32dCj%2F3jJQozEk3vWcvG%2FPcz4Gw%2FdthfbSgjI6adE2aSGpC1Mq%2FZK0lvk0YK1hejXQQPiodhs9l6%2B1BIe8TQP36QTXVnMjQPlQbCVwV%2FDF6P6OR23Cd9Y4U5gKfxnoZYMAkNZ5GIxGn8%2Bx0VBvpV1Iu1eFXM7vErxxbsfDsDKFqDYGHGeE9UJRQLjzEUYTD6m0ONpPYvil7pMQwIRWlsrKwjtmkwSrMuh1KOl3SlbGsez3I9Zh1zEVq7jLVl3R7V17IUAtZxqc0C7BEaHdgNKAspwwHhEexc8YZee%2Bb5RuRnmx59VJBPw2z7Mge1zkzQd7VUr74NUJvj%2BgRYbg1D9GT%2Bd9Ye%2FGqV8O5Q2URVNjt8JdLnfM%2BEbXjZRL7ZQ74PTvgcKu7Rc3CL9LpM0tHLFmk8xUqjigUVWZt7GVwnnUtajAI%2F4fxFmhQXkcjML0WPHnxaUf&RelayState=aOSahoWeI3IlSmRi', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:20:37,386 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNb%2BIwEIbv%2ByssXziFfJRtEoukoqCqSO02grCHvRl7UiwFm%2FU4dPn364R2V60qpN48o%2Ff1PPMxvfmzb8kRLCqji1E8jkYEtDBS6editKnvgmx0U36baozYrHM7vYLfHaAj3qaR%2BXRBO6uZ4ah8yPeAzAm2nj0%2BsGQcsYM1zgjT0n%2BG%2BLKBI4J1HoaS2dtzbjR2e7BrsEclYLN6KOjOuQMLw9YI3u4MOpZFWRpygeHBR5QsPKTSvLefxfhBnUchogktSGVBeMdyUVAlg6bJ0jxPJ0kjt1eQQyPgmku5zb%2FLq%2FQ6lV6I2MFSo%2BPaFTSJ4kkQx0Gc1VHGkogl%2BS9Kqte%2Bb5UeRnmx5%2B1ZhOy%2BrqugelrXwwdHJcH%2B8OqCPp7IuiJ47p%2BSn6%2F7ot5NS7%2BcmA1QltwZu%2Bfucrk%2B0zc6SBlop9yJlp8PFA9jv7hp%2BL9EOdxCj7VcVKZV4kRmbWte5ha486gNb9Ejfh3EWa5ReRxKwrKv%2BP7iyr8%3D&RelayState=Wxh7dlR47ldrazIO', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '54774', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108c94fd0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNb%2BIwEIbv%2ByssXziFfJRtEoukoqCqSO02grCHvRl7UiwFm%2FU4dPn364R2V60qpN48o%2Ff1PPMxvfmzb8kRLCqji1E8jkYEtDBS6editKnvgmx0U36baozYrHM7vYLfHaAj3qaR%2BXRBO6uZ4ah8yPeAzAm2nj0%2BsGQcsYM1zgjT0n%2BG%2BLKBI4J1HoaS2dtzbjR2e7BrsEclYLN6KOjOuQMLw9YI3u4MOpZFWRpygeHBR5QsPKTSvLefxfhBnUchogktSGVBeMdyUVAlg6bJ0jxPJ0kjt1eQQyPgmku5zb%2FLq%2FQ6lV6I2MFSo%2BPaFTSJ4kkQx0Gc1VHGkogl%2BS9Kqte%2Bb5UeRnmx5%2B1ZhOy%2BrqugelrXwwdHJcH%2B8OqCPp7IuiJ47p%2BSn6%2F7ot5NS7%2BcmA1QltwZu%2Bfucrk%2B0zc6SBlop9yJlp8PFA9jv7hp%2BL9EOdxCj7VcVKZV4kRmbWte5ha486gNb9Ejfh3EWa5ReRxKwrKv%2BP7iyr8%3D&RelayState=Wxh7dlR47ldrazIO', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:20:42,987 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:20:42,988 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:20:42,989 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-ff8799742fdb3e9efce6addb95d3767d" IssueInstant="2014-11-18T08:20:29Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:20:42,993 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-ff8799742fdb3e9efce6addb95d3767d" IssueInstant="2014-11-18T08:20:29Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:20:42,995 saml2.entity:DEBUG Loaded request
2014-11-18 09:20:42,996 saml2.entity:DEBUG Verified request
2014-11-18 09:20:42,996 front:INFO parsed OK
2014-11-18 09:20:42,998 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-ff8799742fdb3e9efce6addb95d3767d" IssueInstant="2014-11-18T08:20:29Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:20:42,999 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:20:42,999 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:20:43,001 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-18 09:20:43,001 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:20:43,002 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:20:48,539 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:20:48,540 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:20:48,541 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-731093d8d66e992838561ab648b4a475" IssueInstant="2014-11-18T08:20:26Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:20:48,545 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-731093d8d66e992838561ab648b4a475" IssueInstant="2014-11-18T08:20:26Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:20:48,547 saml2.entity:DEBUG Loaded request
2014-11-18 09:20:48,548 saml2.entity:DEBUG Verified request
2014-11-18 09:20:48,549 front:INFO parsed OK
2014-11-18 09:20:48,550 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-731093d8d66e992838561ab648b4a475" IssueInstant="2014-11-18T08:20:26Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:20:48,551 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:20:48,552 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:20:48,553 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-18 09:20:48,554 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:20:48,555 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:20:52,313 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNb%2BIwEIbv%2ByssXziFfJRtEoukoqCqSO02grCHvRl7UiwFm%2FU4dPn364R2V60qpN48o%2Ff1PPMxvfmzb8kRLCqji1E8jkYEtDBS6editKnvgmx0U36baozYrHM7vYLfHaAj3qaR%2BXRBO6uZ4ah8yPeAzAm2nj0%2BsGQcsYM1zgjT0n%2BG%2BLKBI4J1HoaS2dtzbjR2e7BrsEclYLN6KOjOuQMLw9YI3u4MOpZFWRpygeHBR5QsPKTSvLefxfhBnUchogktSGVBeMdyUVAlg6bJ0jxPJ0kjt1eQQyPgmku5zb%2FLq%2FQ6lV6I2MFSo%2BPaFTSJ4kkQx0Gc1VHGkogl%2BS9Kqte%2Bb5UeRnmx5%2B1ZhOy%2BrqugelrXwwdHJcH%2B8OqCPp7IuiJ47p%2BSn6%2F7ot5NS7%2BcmA1QltwZu%2Bfucrk%2B0zc6SBlop9yJlp8PFA9jv7hp%2BL9EOdxCj7VcVKZV4kRmbWte5ha486gNb9Ejfh3EWa5ReRxKwrKv%2BP7iyr8%3D&RelayState=Wxh7dlR47ldrazIO', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '54774', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108c94fd0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNb%2BIwEIbv%2ByssXziFfJRtEoukoqCqSO02grCHvRl7UiwFm%2FU4dPn364R2V60qpN48o%2Ff1PPMxvfmzb8kRLCqji1E8jkYEtDBS6editKnvgmx0U36baozYrHM7vYLfHaAj3qaR%2BXRBO6uZ4ah8yPeAzAm2nj0%2BsGQcsYM1zgjT0n%2BG%2BLKBI4J1HoaS2dtzbjR2e7BrsEclYLN6KOjOuQMLw9YI3u4MOpZFWRpygeHBR5QsPKTSvLefxfhBnUchogktSGVBeMdyUVAlg6bJ0jxPJ0kjt1eQQyPgmku5zb%2FLq%2FQ6lV6I2MFSo%2BPaFTSJ4kkQx0Gc1VHGkogl%2BS9Kqte%2Bb5UeRnmx5%2B1ZhOy%2BrqugelrXwwdHJcH%2B8OqCPp7IuiJ47p%2BSn6%2F7ot5NS7%2BcmA1QltwZu%2Bfucrk%2B0zc6SBlop9yJlp8PFA9jv7hp%2BL9EOdxCj7VcVKZV4kRmbWte5ha486gNb9Ejfh3EWa5ReRxKwrKv%2BP7iyr8%3D&RelayState=Wxh7dlR47ldrazIO', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:20:52,315 back:DEBUG --- SSO ---
2014-11-18 09:20:52,315 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJNb%2BIwEIbv%2ByssXziFfJRtEoukoqCqSO02grCHvRl7UiwFm%2FU4dPn364R2V60qpN48o%2Ff1PPMxvfmzb8kRLCqji1E8jkYEtDBS6editKnvgmx0U36baozYrHM7vYLfHaAj3qaR%2BXRBO6uZ4ah8yPeAzAm2nj0%2BsGQcsYM1zgjT0n%2BG%2BLKBI4J1HoaS2dtzbjR2e7BrsEclYLN6KOjOuQMLw9YI3u4MOpZFWRpygeHBR5QsPKTSvLefxfhBnUchogktSGVBeMdyUVAlg6bJ0jxPJ0kjt1eQQyPgmku5zb%2FLq%2FQ6lV6I2MFSo%2BPaFTSJ4kkQx0Gc1VHGkogl%2BS9Kqte%2Bb5UeRnmx5%2B1ZhOy%2BrqugelrXwwdHJcH%2B8OqCPp7IuiJ47p%2BSn6%2F7ot5NS7%2BcmA1QltwZu%2Bfucrk%2B0zc6SBlop9yJlp8PFA9jv7hp%2BL9EOdxCj7VcVKZV4kRmbWte5ha486gNb9Ejfh3EWa5ReRxKwrKv%2BP7iyr8%3D&RelayState=Wxh7dlR47ldrazIO'
2014-11-18 09:21:10,221 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaaweO0rARhBBJ%2FFhgeOFd2Yo0GS32dCj%2F3jJQozEk3vWcvG%2FPcz4Gw%2FdthfbSgjI6adE2aSGpC1Mq%2FZK0lvk0YK1hejXQQPiodhs9l6%2B1BIe8TQP36QTXVnMjQPlQbCVwV%2FDF6P6OR23Cd9Y4U5gKfxnoZYMAkNZ5GIxGn8%2Bx0VBvpV1Iu1eFXM7vErxxbsfDsDKFqDYGHGeE9UJRQLjzEUYTD6m0ONpPYvil7pMQwIRWlsrKwjtmkwSrMuh1KOl3SlbGsez3I9Zh1zEVq7jLVl3R7V17IUAtZxqc0C7BEaHdgNKAspwwHhEexc8YZee%2Bb5RuRnmx59VJBPw2z7Mge1zkzQd7VUr74NUJvj%2BgRYbg1D9GT%2Bd9Ye%2FGqV8O5Q2URVNjt8JdLnfM%2BEbXjZRL7ZQ74PTvgcKu7Rc3CL9LpM0tHLFmk8xUqjigUVWZt7GVwnnUtajAI%2F4fxFmhQXkcjML0WPHnxaUf&RelayState=aOSahoWeI3IlSmRi', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '54752', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108c8cd50>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaaweO0rARhBBJ%2FFhgeOFd2Yo0GS32dCj%2F3jJQozEk3vWcvG%2FPcz4Gw%2FdthfbSgjI6adE2aSGpC1Mq%2FZK0lvk0YK1hejXQQPiodhs9l6%2B1BIe8TQP36QTXVnMjQPlQbCVwV%2FDF6P6OR23Cd9Y4U5gKfxnoZYMAkNZ5GIxGn8%2Bx0VBvpV1Iu1eFXM7vErxxbsfDsDKFqDYGHGeE9UJRQLjzEUYTD6m0ONpPYvil7pMQwIRWlsrKwjtmkwSrMuh1KOl3SlbGsez3I9Zh1zEVq7jLVl3R7V17IUAtZxqc0C7BEaHdgNKAspwwHhEexc8YZee%2Bb5RuRnmx59VJBPw2z7Mge1zkzQd7VUr74NUJvj%2BgRYbg1D9GT%2Bd9Ye%2FGqV8O5Q2URVNjt8JdLnfM%2BEbXjZRL7ZQ74PTvgcKu7Rc3CL9LpM0tHLFmk8xUqjigUVWZt7GVwnnUtajAI%2F4fxFmhQXkcjML0WPHnxaUf&RelayState=aOSahoWeI3IlSmRi', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:21:10,222 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:21:10,224 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:21:10,225 saml2.mdstore:DEBUG service => [{'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&SingleSignOnService', 'location': 'http://localhost:8088/sso/redirect'}]
2014-11-18 09:21:10,226 back:DEBUG binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8088/sso/redirect
2014-11-18 09:21:10,229 back:DEBUG --- SSO ---
2014-11-18 09:21:10,230 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaaweO0rARhBBJ%2FFhgeOFd2Yo0GS32dCj%2F3jJQozEk3vWcvG%2FPcz4Gw%2FdthfbSgjI6adE2aSGpC1Mq%2FZK0lvk0YK1hejXQQPiodhs9l6%2B1BIe8TQP36QTXVnMjQPlQbCVwV%2FDF6P6OR23Cd9Y4U5gKfxnoZYMAkNZ5GIxGn8%2Bx0VBvpV1Iu1eFXM7vErxxbsfDsDKFqDYGHGeE9UJRQLjzEUYTD6m0ONpPYvil7pMQwIRWlsrKwjtmkwSrMuh1KOl3SlbGsez3I9Zh1zEVq7jLVl3R7V17IUAtZxqc0C7BEaHdgNKAspwwHhEexc8YZee%2Bb5RuRnmx59VJBPw2z7Mge1zkzQd7VUr74NUJvj%2BgRYbg1D9GT%2Bd9Ye%2FGqV8O5Q2URVNjt8JdLnfM%2BEbXjZRL7ZQ74PTvgcKu7Rc3CL9LpM0tHLFmk8xUqjigUVWZt7GVwnnUtajAI%2F4fxFmhQXkcjML0WPHnxaUf&RelayState=aOSahoWeI3IlSmRi'
2014-11-18 09:21:10,228 saml2.entity:INFO REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="https://localhost:8090/acs/post" Destination="http://localhost:8088/sso/redirect" ID="id-b8757a6e9a888bc1da6435df6a86da11" IssueInstant="2014-11-18T08:21:10Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://localhost:8090/proxy.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:21:10,232 saml2.entity:INFO HTTP REDIRECT
2014-11-18 09:21:10,234 back:DEBUG ht_args: {'url': 'http://localhost:8088/sso/redirect', 'headers': [('Location', 'http://localhost:8088/sso/redirect?SAMLRequest=nVJNTwIxEL37K5peOC27RT5Kw65BCJEEdSOrB2%2BlO0iTpcVOF%2BHfWxA1msjBW2fy3sx78zq42q0rsgWH2pq0wZpJg4BRttTmJW08FpOIN66yi4HBRAxrvzIP8FoDehJoBkVop7R2RliJOpRyDSi8EvPh7Uy0monYOOutshX9IrDzBIkIzgcxlAw%2FnyNrsF6Dm4PbagWPD7OUrrzfoIjjyipZrSx6wZN%2BEkuF8SZUlIyDSm3kgf%2BB%2FgXmPEa0sYNSO1CBMB2nVJfRgvc6PdmFvuScLxQrZbd92SmXXcm7pWQsABFrmBr00viUthLWjhiLGC8SLlpMsOSZkvzk%2B1qb4ynPel58gFDcFEUe5ffzgpKnUyQ0AGgW7s%2FEca8jE%2BvW0p%2BfeOgEL8sjVIDx2u9p9sfNQka7fTPkM4i%2F12THyO%2FCnOk4t5VWezKsKvs2ciA9pHQpKwT6DzHeSYM6SKIkzg4bf36s7B0%3D&RelayState=-7593225062951492312')], 'data': [], 'method': 'GET'}
2014-11-18 09:21:12,884 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:21:12,885 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:21:12,886 saml2.mdstore:DEBUG service => [{'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&SingleSignOnService', 'location': 'http://localhost:8088/sso/redirect'}]
2014-11-18 09:21:12,886 back:DEBUG binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8088/sso/redirect
2014-11-18 09:21:12,888 saml2.entity:INFO REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="https://localhost:8090/acs/post" Destination="http://localhost:8088/sso/redirect" ID="id-202d72add49a25f401534da8f0383334" IssueInstant="2014-11-18T08:21:12Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://localhost:8090/proxy.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:21:12,890 saml2.entity:INFO HTTP REDIRECT
2014-11-18 09:21:12,891 back:DEBUG ht_args: {'url': 'http://localhost:8088/sso/redirect', 'headers': [('Location', 'http://localhost:8088/sso/redirect?SAMLRequest=nVJdT8IwFH33VzR92dNou404GjaCECIJ6gLDB9%2FqVqTJaLG3Q%2Fn3lg81msiDb70359x7zj3tD943DdpJC8roLGAdGiCpK1Mr%2FZIFy3ISpsEgv%2BproHzYurWey9dWgkOepoH7doZbq7kRoHwpNhK4q%2FhieDfjUYfyrTXOVKbBXwR2mSAApHVeDEbDz%2BfIaGg30i6k3alKLuezDK%2Bd2wInpDGVaNYGHE9pjxJRAdn6CqOxV6m0OPBP6F%2FgNCUAhlhZKysrT5iOM6zqMKJRfR2Juk56IuquEsq6cVKLdEXjNI7jxAMBWjnV4IR2GY4oS0LGQpaWNOUR4yx6wqg4%2B75R%2BnjKi56fTyDgt2VZhMXDosTo8RwJ9gCc%2B%2Fszftxr0cTYjXCXJx463svqCOVSO%2BX2OP%2FjZj6j933H59Mn32vyY%2BT3fs50XJhGVXs0bBrzNrJSOJnhlWhA4n%2BIcVZoUF4SRiQ%2FbPz5sfIP&RelayState=1311695433457813850')], 'data': [], 'method': 'GET'}
2014-11-18 09:22:30,814 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="VEx3U2lJd1dGMndzbEZxV0hTNWVFZE9kOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'POST', 'PATH_INFO': '/acs/post', 'HTTP_ORIGIN': 'http://localhost:8088', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': '', 'CONTENT_LENGTH': '3913', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '55391', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'HTTP_REFERER': 'http://localhost:8088/sso/redirect?id=TLwSiIwWF2wslFqWHS5eEdOd&key=b01fa85220879d3ea6107b5fa3f590cf277f8619', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'CONTENT_TYPE': 'application/x-www-form-urlencoded', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108c94550>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'SSL_SERVER_I_DN_O': 'Umea University', 'REQUEST_URI': '/acs/post', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'SSL_SERVER_I_DN_C': 'SE', 'oic.url_args': '', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:22:30,816 back:DEBUG --- SSO ---
2014-11-18 09:22:33,153 service:DEBUG unpack_post:: {'SAMLResponse': ['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'], 'RelayState': ['-7593225062951492312']}
2014-11-18 09:22:33,153 saml2.client_base:ERROR XML parse error: Don't know how to handle 'post'
2014-11-18 09:25:00,658 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:25:00,670 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:25:00,750 service:DEBUG ENVIRON: None
2014-11-18 09:25:00,751 saml2:INFO Logging started
2014-11-18 09:25:00,753 back:DEBUG --- SSO ---
2014-11-18 09:25:00,754 service:DEBUG ENVIRON: None
2014-11-18 09:25:00,777 root:INFO Server starting
2014-11-18 09:25:50,453 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:25:50,464 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:25:50,543 service:DEBUG ENVIRON: None
2014-11-18 09:25:50,544 saml2:INFO Logging started
2014-11-18 09:25:50,547 back:DEBUG --- SSO ---
2014-11-18 09:25:50,548 service:DEBUG ENVIRON: None
2014-11-18 09:25:50,568 root:INFO Server starting
2014-11-18 09:26:08,091 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="VEx3U2lJd1dGMndzbEZxV0hTNWVFZE9kOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNTwIxEIbv%2FoqmF07Ldolgadg1CCGSgG5k9eCtdAdpsrTY6aL8e8uCGo0h8daZvG%2FnmY%2FB9fumIjtwqK1JW0mbtQgYZUttXtLWYzGJeOs6uxgYZGJY%2B7V5gNca0JNgMyhCOqW1M8JK1CGUG0DhlVgM5zPRaTOxddZbZSv6ZUjOGyQiOB9gKBl%2BPkfWYL0BtwC30woeH2YpXXu%2FFXFcWSWrtUUvOONXsVQYb0NEyThAaiMP9qMYf6n7LEa0sYNSO1DBMR2nVJeR6nb5Si5LvuRcLnnZAd6HkknZT1S3t%2BoFIWINU4NeGp%2FSDksuoySJEl4wLjo9wS6fKclPfd9o04zybM%2FLowjFbVHkUX6%2FKJoPdroEdxfUKZ3vySIneOyfkqfTvmhw0ywsJxENlCMT6zbSny93yIRGV41UgPHa72n290Bx2w6LG8TfJbLmFg5Y03FuK632ZFhV9m3kQPqAupIVBsT%2Fg3gnDeqAQ0mcHSr%2BvLjsAw%3D%3D&RelayState=omTyl0dhsdIj3EPi', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '57050', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108b94f90>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNTwIxEIbv%2FoqmF07Ldolgadg1CCGSgG5k9eCtdAdpsrTY6aL8e8uCGo0h8daZvG%2FnmY%2FB9fumIjtwqK1JW0mbtQgYZUttXtLWYzGJeOs6uxgYZGJY%2B7V5gNca0JNgMyhCOqW1M8JK1CGUG0DhlVgM5zPRaTOxddZbZSv6ZUjOGyQiOB9gKBl%2BPkfWYL0BtwC30woeH2YpXXu%2FFXFcWSWrtUUvOONXsVQYb0NEyThAaiMP9qMYf6n7LEa0sYNSO1DBMR2nVJeR6nb5Si5LvuRcLnnZAd6HkknZT1S3t%2BoFIWINU4NeGp%2FSDksuoySJEl4wLjo9wS6fKclPfd9o04zybM%2FLowjFbVHkUX6%2FKJoPdroEdxfUKZ3vySIneOyfkqfTvmhw0ywsJxENlCMT6zbSny93yIRGV41UgPHa72n290Bx2w6LG8TfJbLmFg5Y03FuK632ZFhV9m3kQPqAupIVBsT%2Fg3gnDeqAQ0mcHSr%2BvLjsAw%3D%3D&RelayState=omTyl0dhsdIj3EPi', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:26:08,092 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="VEx3U2lJd1dGMndzbEZxV0hTNWVFZE9kOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa%2FlyNGwEIUQS0AWGF951XZEmo8WeDuXfWwZqNIbEu56T9%2B15zsdg%2BL4r0UFaUEbHDdokDSS1MIXSL3FjnU2DqDFMbgYaCBtVbquX8rWS4JC3aWA%2BHePKamY4KB%2FynQTmBFuNFnPWahK2t8YZYUr8ZaDXDRxAWudhMBp9PsdGQ7WTdiXtQQm5Xs5jvHVuz8KwNIKXWwOORSS6DbmAcO8jjCYeUml%2Bsp%2FF8EvdJyGACa0slJXCO2aTGKsiyLt5TjnlUb8lSaef99qbbkS6ot0jRXHbpV4IUMmZBse1i3GL0E5AaUCjjESs1WOEPmOUXvq%2BU7oe5dWe87MI2H2WpUH6uMrqDw6qkPbBq2O8OKJViuDcP0ZPl31h78aJXw5lNZRFU2N33F0vd8r4Rje1lEntlDvi5O%2BBwr7pFzcIv0sk9S2csGaT1JRKHNGoLM3b2EruPOqGl%2BAR%2Fw%2FiLNegPA5GYXKq%2BPPikg8%3D&RelayState=PemKXjOKkrws3Cd4', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '57030', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108b8cd50>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa%2FlyNGwEIUQS0AWGF951XZEmo8WeDuXfWwZqNIbEu56T9%2B15zsdg%2BL4r0UFaUEbHDdokDSS1MIXSL3FjnU2DqDFMbgYaCBtVbquX8rWS4JC3aWA%2BHePKamY4KB%2FynQTmBFuNFnPWahK2t8YZYUr8ZaDXDRxAWudhMBp9PsdGQ7WTdiXtQQm5Xs5jvHVuz8KwNIKXWwOORSS6DbmAcO8jjCYeUml%2Bsp%2FF8EvdJyGACa0slJXCO2aTGKsiyLt5TjnlUb8lSaef99qbbkS6ot0jRXHbpV4IUMmZBse1i3GL0E5AaUCjjESs1WOEPmOUXvq%2BU7oe5dWe87MI2H2WpUH6uMrqDw6qkPbBq2O8OKJViuDcP0ZPl31h78aJXw5lNZRFU2N33F0vd8r4Rje1lEntlDvi5O%2BBwr7pFzcIv0sk9S2csGaT1JRKHNGoLM3b2EruPOqGl%2BAR%2Fw%2FiLNegPA5GYXKq%2BPPikg8%3D&RelayState=PemKXjOKkrws3Cd4', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:26:16,345 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:26:16,346 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:26:16,347 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-c558fabd8b88ab8d2e89ed0aa91c56f6" IssueInstant="2014-11-18T08:26:04Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:26:16,350 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-c558fabd8b88ab8d2e89ed0aa91c56f6" IssueInstant="2014-11-18T08:26:04Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:26:16,352 saml2.entity:DEBUG Loaded request
2014-11-18 09:26:16,352 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:26:16,354 saml2.entity:DEBUG Verified request
2014-11-18 09:26:16,356 front:INFO parsed OK
2014-11-18 09:26:16,358 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-c558fabd8b88ab8d2e89ed0aa91c56f6" IssueInstant="2014-11-18T08:26:04Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:26:16,355 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:26:16,358 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:26:16,359 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-b5bb1a1a892e049b63f5805c360dd751" IssueInstant="2014-11-18T08:26:01Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:26:16,361 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:26:16,366 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-18 09:26:16,365 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-b5bb1a1a892e049b63f5805c360dd751" IssueInstant="2014-11-18T08:26:01Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:26:16,366 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:26:16,368 saml2.entity:DEBUG Loaded request
2014-11-18 09:26:16,369 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:26:16,371 saml2.entity:DEBUG Verified request
2014-11-18 09:26:16,372 front:INFO parsed OK
2014-11-18 09:26:16,374 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-b5bb1a1a892e049b63f5805c360dd751" IssueInstant="2014-11-18T08:26:01Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:26:16,374 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:26:16,375 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:26:16,376 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-18 09:26:16,377 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:26:16,378 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:26:21,524 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="VEx3U2lJd1dGMndzbEZxV0hTNWVFZE9kOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa%2FlyNGwEIUQS0AWGF951XZEmo8WeDuXfWwZqNIbEu56T9%2B15zsdg%2BL4r0UFaUEbHDdokDSS1MIXSL3FjnU2DqDFMbgYaCBtVbquX8rWS4JC3aWA%2BHePKamY4KB%2FynQTmBFuNFnPWahK2t8YZYUr8ZaDXDRxAWudhMBp9PsdGQ7WTdiXtQQm5Xs5jvHVuz8KwNIKXWwOORSS6DbmAcO8jjCYeUml%2Bsp%2FF8EvdJyGACa0slJXCO2aTGKsiyLt5TjnlUb8lSaef99qbbkS6ot0jRXHbpV4IUMmZBse1i3GL0E5AaUCjjESs1WOEPmOUXvq%2BU7oe5dWe87MI2H2WpUH6uMrqDw6qkPbBq2O8OKJViuDcP0ZPl31h78aJXw5lNZRFU2N33F0vd8r4Rje1lEntlDvi5O%2BBwr7pFzcIv0sk9S2csGaT1JRKHNGoLM3b2EruPOqGl%2BAR%2Fw%2FiLNegPA5GYXKq%2BPPikg8%3D&RelayState=PemKXjOKkrws3Cd4', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '57030', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108b8cd50>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa%2FlyNGwEIUQS0AWGF951XZEmo8WeDuXfWwZqNIbEu56T9%2B15zsdg%2BL4r0UFaUEbHDdokDSS1MIXSL3FjnU2DqDFMbgYaCBtVbquX8rWS4JC3aWA%2BHePKamY4KB%2FynQTmBFuNFnPWahK2t8YZYUr8ZaDXDRxAWudhMBp9PsdGQ7WTdiXtQQm5Xs5jvHVuz8KwNIKXWwOORSS6DbmAcO8jjCYeUml%2Bsp%2FF8EvdJyGACa0slJXCO2aTGKsiyLt5TjnlUb8lSaef99qbbkS6ot0jRXHbpV4IUMmZBse1i3GL0E5AaUCjjESs1WOEPmOUXvq%2BU7oe5dWe87MI2H2WpUH6uMrqDw6qkPbBq2O8OKJViuDcP0ZPl31h78aJXw5lNZRFU2N33F0vd8r4Rje1lEntlDvi5O%2BBwr7pFzcIv0sk9S2csGaT1JRKHNGoLM3b2EruPOqGl%2BAR%2Fw%2FiLNegPA5GYXKq%2BPPikg8%3D&RelayState=PemKXjOKkrws3Cd4', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:26:21,525 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="VEx3U2lJd1dGMndzbEZxV0hTNWVFZE9kOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNTwIxEIbv%2FoqmF07Ldolgadg1CCGSgG5k9eCtdAdpsrTY6aL8e8uCGo0h8daZvG%2FnmY%2FB9fumIjtwqK1JW0mbtQgYZUttXtLWYzGJeOs6uxgYZGJY%2B7V5gNca0JNgMyhCOqW1M8JK1CGUG0DhlVgM5zPRaTOxddZbZSv6ZUjOGyQiOB9gKBl%2BPkfWYL0BtwC30woeH2YpXXu%2FFXFcWSWrtUUvOONXsVQYb0NEyThAaiMP9qMYf6n7LEa0sYNSO1DBMR2nVJeR6nb5Si5LvuRcLnnZAd6HkknZT1S3t%2BoFIWINU4NeGp%2FSDksuoySJEl4wLjo9wS6fKclPfd9o04zybM%2FLowjFbVHkUX6%2FKJoPdroEdxfUKZ3vySIneOyfkqfTvmhw0ywsJxENlCMT6zbSny93yIRGV41UgPHa72n290Bx2w6LG8TfJbLmFg5Y03FuK632ZFhV9m3kQPqAupIVBsT%2Fg3gnDeqAQ0mcHSr%2BvLjsAw%3D%3D&RelayState=omTyl0dhsdIj3EPi', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '57050', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108b94f90>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNTwIxEIbv%2FoqmF07Ldolgadg1CCGSgG5k9eCtdAdpsrTY6aL8e8uCGo0h8daZvG%2FnmY%2FB9fumIjtwqK1JW0mbtQgYZUttXtLWYzGJeOs6uxgYZGJY%2B7V5gNca0JNgMyhCOqW1M8JK1CGUG0DhlVgM5zPRaTOxddZbZSv6ZUjOGyQiOB9gKBl%2BPkfWYL0BtwC30woeH2YpXXu%2FFXFcWSWrtUUvOONXsVQYb0NEyThAaiMP9qMYf6n7LEa0sYNSO1DBMR2nVJeR6nb5Si5LvuRcLnnZAd6HkknZT1S3t%2BoFIWINU4NeGp%2FSDksuoySJEl4wLjo9wS6fKclPfd9o04zybM%2FLowjFbVHkUX6%2FKJoPdroEdxfUKZ3vySIneOyfkqfTvmhw0ywsJxENlCMT6zbSny93yIRGV41UgPHa72n290Bx2w6LG8TfJbLmFg5Y03FuK632ZFhV9m3kQPqAupIVBsT%2Fg3gnDeqAQ0mcHSr%2BvLjsAw%3D%3D&RelayState=omTyl0dhsdIj3EPi', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:26:21,530 back:DEBUG --- SSO ---
2014-11-18 09:26:21,531 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7gaa%2FlyNGwEIUQS0AWGF951XZEmo8WeDuXfWwZqNIbEu56T9%2B15zsdg%2BL4r0UFaUEbHDdokDSS1MIXSL3FjnU2DqDFMbgYaCBtVbquX8rWS4JC3aWA%2BHePKamY4KB%2FynQTmBFuNFnPWahK2t8YZYUr8ZaDXDRxAWudhMBp9PsdGQ7WTdiXtQQm5Xs5jvHVuz8KwNIKXWwOORSS6DbmAcO8jjCYeUml%2Bsp%2FF8EvdJyGACa0slJXCO2aTGKsiyLt5TjnlUb8lSaef99qbbkS6ot0jRXHbpV4IUMmZBse1i3GL0E5AaUCjjESs1WOEPmOUXvq%2BU7oe5dWe87MI2H2WpUH6uMrqDw6qkPbBq2O8OKJViuDcP0ZPl31h78aJXw5lNZRFU2N33F0vd8r4Rje1lEntlDvi5O%2BBwr7pFzcIv0sk9S2csGaT1JRKHNGoLM3b2EruPOqGl%2BAR%2Fw%2FiLNegPA5GYXKq%2BPPikg8%3D&RelayState=PemKXjOKkrws3Cd4'
2014-11-18 09:26:21,533 back:DEBUG --- SSO ---
2014-11-18 09:26:21,533 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJNTwIxEIbv%2FoqmF07Ldolgadg1CCGSgG5k9eCtdAdpsrTY6aL8e8uCGo0h8daZvG%2FnmY%2FB9fumIjtwqK1JW0mbtQgYZUttXtLWYzGJeOs6uxgYZGJY%2B7V5gNca0JNgMyhCOqW1M8JK1CGUG0DhlVgM5zPRaTOxddZbZSv6ZUjOGyQiOB9gKBl%2BPkfWYL0BtwC30woeH2YpXXu%2FFXFcWSWrtUUvOONXsVQYb0NEyThAaiMP9qMYf6n7LEa0sYNSO1DBMR2nVJeR6nb5Si5LvuRcLnnZAd6HkknZT1S3t%2BoFIWINU4NeGp%2FSDksuoySJEl4wLjo9wS6fKclPfd9o04zybM%2FLowjFbVHkUX6%2FKJoPdroEdxfUKZ3vySIneOyfkqfTvmhw0ywsJxENlCMT6zbSny93yIRGV41UgPHa72n290Bx2w6LG8TfJbLmFg5Y03FuK632ZFhV9m3kQPqAupIVBsT%2Fg3gnDeqAQ0mcHSr%2BvLjsAw%3D%3D&RelayState=omTyl0dhsdIj3EPi'
2014-11-18 09:26:24,422 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:26:24,423 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:26:24,424 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:26:24,425 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:26:24,426 saml2.mdstore:DEBUG service => [{'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&SingleSignOnService', 'location': 'http://localhost:8088/sso/redirect'}]
2014-11-18 09:26:24,428 back:DEBUG binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8088/sso/redirect
2014-11-18 09:26:24,428 saml2.mdstore:DEBUG service => [{'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&SingleSignOnService', 'location': 'http://localhost:8088/sso/redirect'}]
2014-11-18 09:26:24,431 saml2.entity:INFO REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="https://localhost:8090/acs/post" Destination="http://localhost:8088/sso/redirect" ID="id-32742534d30a7a0a0825f98264518dcf" IssueInstant="2014-11-18T08:26:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://localhost:8090/proxy.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:26:24,432 back:DEBUG binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8088/sso/redirect
2014-11-18 09:26:24,434 saml2.entity:INFO HTTP REDIRECT
2014-11-18 09:26:24,436 saml2.entity:INFO REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="https://localhost:8090/acs/post" Destination="http://localhost:8088/sso/redirect" ID="id-0609feccc7ad4fe7d038d0a1b19679c3" IssueInstant="2014-11-18T08:26:24Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://localhost:8090/proxy.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:26:24,438 back:DEBUG ht_args: {'url': 'http://localhost:8088/sso/redirect', 'headers': [('Location', 'http://localhost:8088/sso/redirect?SAMLRequest=nVLLbsIwELz3KyxfOIU4IYCxSBAFoSLRNoLQQ2%2BuY4qlYFOvQ%2BHvax5t1Url0Jt3NbM7s%2BP%2BYL%2Bp0E5aUEanjahJGkhqYUqlX9PGspgEtDHIbvoaCBvWbq3n8q2W4JCnaWC%2BneLaamY4KF%2FyjQTmBFsM72csbhK2tcYZYSr8RYiuEziAtM6LwWj4%2BRwZDfVG2oW0OyXkcj5L8dq5LbAwrIzg1dqAY5T0SMgFhFtfYTT2KpXmR%2F4Z%2FQtMaQhgQitLZaXwhOk4xaoMWnE3idutpGwR3uWEExq3Vz0ad5J2REux8kCAWk41OK5dimMSJUEUBREtCGVxh8XJM0b5xfet0qdTXvX8cgYBuyuKPMgfFwVGT5dIsAfgzN8%2FYqe9Fk2M3XB3feKx472sTlAmtVPugLM%2FbuYz2h%2BaPp9%2B%2BL0mO0X%2B4OdMx7mplDigYVWZ95GV3MkUr3gFEv9DjLNcg%2FKSMAqz48afHyv7AA%3D%3D&RelayState=1014256532705328245')], 'data': [], 'method': 'GET'}
2014-11-18 09:26:24,440 saml2.entity:INFO HTTP REDIRECT
2014-11-18 09:26:24,442 back:DEBUG ht_args: {'url': 'http://localhost:8088/sso/redirect', 'headers': [('Location', 'http://localhost:8088/sso/redirect?SAMLRequest=nVJNTwIxEL37K5peOC3bAoGlYZcghEiCSmDx4K10B2mytNjpovx7y4caTeTgrTN5b%2Ba9ee3137cl2YNDbU1a43VWI2CULbR5SWvLfBwltX520zPIxKDyGzOH1wrQk0AzKEI7pZUzwkrUoZRbQOGVWAzup6JRZ2LnrLfKlvSLwK8TJCI4H8RQMvh8Dq3BagtuAW6vFSzn05RuvN%2BhiOPSKlluLHqRsC6LpcJ4FypKRkGlNvLIP6N%2FgZMkRrSxg0I7UIEwGaVUFxFrs%2B4alFIdWbTW0ClYMymY5CvebXe6qhmAiBVMDHppfEobjLciziOe5CwRjbZotJ4pmV1832pzOuVVz6szCMVdns%2Bi2eMip%2BTpEgkNAJqF%2B3Nx2uvI2Lqt9NcnHjvBy%2FoEFWC89gea%2FXGzkNH7oR7y6cXfa7JT5A9hzmQ0s6VWBzIoS%2Fs2dCA9pHQtSwT6DzHeSYM6SKIkzo4bf36s7AM%3D&RelayState=2166621449308542049')], 'data': [], 'method': 'GET'}
2014-11-18 09:27:48,248 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="a3EwcUZZMHZLV2dmNmVDcHhJZzdHWGZkOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'POST', 'PATH_INFO': '/acs/post', 'HTTP_ORIGIN': 'http://localhost:8088', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': '', 'CONTENT_LENGTH': '3912', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '57050', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'HTTP_REFERER': 'http://localhost:8088/sso/redirect?id=kq0qFY0vKWgf6eCpxIg7GXfd&key=b1dbd05f0901f348adb6217a7a63a9082b67fc99', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'CONTENT_TYPE': 'application/x-www-form-urlencoded', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108b8cd50>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'SSL_SERVER_I_DN_O': 'Umea University', 'REQUEST_URI': '/acs/post', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'SSL_SERVER_I_DN_C': 'SE', 'oic.url_args': '', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:27:52,619 back:DEBUG --- SSO ---
2014-11-18 09:28:15,589 service:DEBUG unpack_post:: {'SAMLResponse': ['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'], 'RelayState': ['1014256532705328245']}
2014-11-18 09:28:25,618 saml2.client_base:ERROR XML parse error: Don't know how to handle 'post'
2014-11-18 09:29:33,794 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="a3EwcUZZMHZLV2dmNmVDcHhJZzdHWGZkOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNTwIxEIbv%2FoqmF07Ltivo2rBrEGIkAd3I6sFb6Q7SZGmx00X595bFj2gMibfO5H07z3wMLt%2FWNdmCQ21N1uFd1iFglK20ec46D%2BV1lHYu85OBQSaGjV%2BZe3hpAD0JNoMipDPaOCOsRB1CuQYUXon5cDYVSZeJjbPeKlvTLwM%2FbpCI4HyAoWT4%2BRxZg80a3BzcVit4uJ9mdOX9RsRxbZWsVxa9SFl6HkuF8SZElIwDpDZybz%2BI8Zf6gsWINnZQaQcqOCbjjOoqqlQ%2F5ae8v1wk8qyXsNMlAyn52QJ4qpJFPwgRG5gY9NL4jCaM9yLOI56WLBXJhUjYEyXFR99X2rSjPNrz4iBCcVOWRVTczcv2g62uwN0GdUZnOzIvCB76p%2BTxY180uGkelsNFC%2BXItXVr6Y%2BX22dCo8tWKsB47Xc0%2F3uguOmGxQ3i7xJ5ewt7rMm4sLVWOzKsa%2Fs6ciB9QF3KGgPi%2F0G8kwZ1wKEkzvcVf15c%2Fg4%3D&RelayState=BHNYyGK1xg5G0oBq', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '58350', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x106b2b190>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNTwIxEIbv%2FoqmF07Ltivo2rBrEGIkAd3I6sFb6Q7SZGmx00X595bFj2gMibfO5H07z3wMLt%2FWNdmCQ21N1uFd1iFglK20ec46D%2BV1lHYu85OBQSaGjV%2BZe3hpAD0JNoMipDPaOCOsRB1CuQYUXon5cDYVSZeJjbPeKlvTLwM%2FbpCI4HyAoWT4%2BRxZg80a3BzcVit4uJ9mdOX9RsRxbZWsVxa9SFl6HkuF8SZElIwDpDZybz%2BI8Zf6gsWINnZQaQcqOCbjjOoqqlQ%2F5ae8v1wk8qyXsNMlAyn52QJ4qpJFPwgRG5gY9NL4jCaM9yLOI56WLBXJhUjYEyXFR99X2rSjPNrz4iBCcVOWRVTczcv2g62uwN0GdUZnOzIvCB76p%2BTxY180uGkelsNFC%2BXItXVr6Y%2BX22dCo8tWKsB47Xc0%2F3uguOmGxQ3i7xJ5ewt7rMm4sLVWOzKsa%2Fs6ciB9QF3KGgPi%2F0G8kwZ1wKEkzvcVf15c%2Fg4%3D&RelayState=BHNYyGK1xg5G0oBq', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:29:33,795 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="a3EwcUZZMHZLV2dmNmVDcHhJZzdHWGZkOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga6waO0bAZhBhJRBeZXnhXu4M0GS32dCj%2F3jJQozEk3vWcvG%2FPcz5GF%2B%2FrmmzBojI660Rd1iGgpamUfsk6D%2BVVkHYu8rORRsbHjVvpe3htAB3xNo3cpzPaWM2NQOVDsQbkTvLFeH7D4y7jG2uckaamX4botEEggnUehpLx53NiNDZrsAuwWyXh4f4moyvnNjwMayNFvTLoeMrSQSgkhhsfUTL1kEqLvf0gxl%2FqIQsRTWihUhakd8ymGVVVkCQyfYZ%2Bb5jGySBOekLEMSRVD2TC2LI690LEBmYandAuozGL%2BkEUBVFaspTHQx73nigpjn1fKt2O8mTPzwcR8uuyLILiblG2H2xVBfbWqzM635FFQfDQPyWPx31R76a5X07EWyhLroxdC3e63D7jG122Ug7aKbej%2Bd8DxU3XL24UfpfI21vYY82mhamV3JFxXZu3iQXhPOpS1OgR%2Fw%2FirNCoPA4lYb6v%2BPPi8g8%3D&RelayState=kRyiAKtKjwcccpku', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '58371', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108b94dd0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga6waO0bAZhBhJRBeZXnhXu4M0GS32dCj%2F3jJQozEk3vWcvG%2FPcz5GF%2B%2FrmmzBojI660Rd1iGgpamUfsk6D%2BVVkHYu8rORRsbHjVvpe3htAB3xNo3cpzPaWM2NQOVDsQbkTvLFeH7D4y7jG2uckaamX4botEEggnUehpLx53NiNDZrsAuwWyXh4f4moyvnNjwMayNFvTLoeMrSQSgkhhsfUTL1kEqLvf0gxl%2FqIQsRTWihUhakd8ymGVVVkCQyfYZ%2Bb5jGySBOekLEMSRVD2TC2LI690LEBmYandAuozGL%2BkEUBVFaspTHQx73nigpjn1fKt2O8mTPzwcR8uuyLILiblG2H2xVBfbWqzM635FFQfDQPyWPx31R76a5X07EWyhLroxdC3e63D7jG122Ug7aKbej%2Bd8DxU3XL24UfpfI21vYY82mhamV3JFxXZu3iQXhPOpS1OgR%2Fw%2FirNCoPA4lYb6v%2BPPi8g8%3D&RelayState=kRyiAKtKjwcccpku', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:29:36,414 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:29:36,415 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:29:36,416 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-66c8be4398267263aa22e6d3ec600fd5" IssueInstant="2014-11-18T08:29:23Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:29:36,417 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:29:36,421 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-66c8be4398267263aa22e6d3ec600fd5" IssueInstant="2014-11-18T08:29:23Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:29:36,422 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:29:36,424 saml2.entity:DEBUG Loaded request
2014-11-18 09:29:36,425 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-dc581315fb2a64203f0eaa16be18c2b5" IssueInstant="2014-11-18T08:29:20Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:29:36,426 saml2.entity:DEBUG Verified request
2014-11-18 09:29:36,431 front:INFO parsed OK
2014-11-18 09:29:36,430 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-dc581315fb2a64203f0eaa16be18c2b5" IssueInstant="2014-11-18T08:29:20Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:29:36,433 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-66c8be4398267263aa22e6d3ec600fd5" IssueInstant="2014-11-18T08:29:23Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:29:36,434 saml2.entity:DEBUG Loaded request
2014-11-18 09:29:36,435 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:29:36,437 saml2.entity:DEBUG Verified request
2014-11-18 09:29:36,438 front:INFO parsed OK
2014-11-18 09:29:36,440 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-dc581315fb2a64203f0eaa16be18c2b5" IssueInstant="2014-11-18T08:29:20Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:29:36,437 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:29:36,442 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-18 09:29:36,441 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:29:36,442 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:29:36,443 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:29:36,444 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:29:36,445 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-18 09:29:36,447 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:29:36,447 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:29:39,619 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="a3EwcUZZMHZLV2dmNmVDcHhJZzdHWGZkOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJNTwIxEIbv%2FoqmF07Ltivo2rBrEGIkAd3I6sFb6Q7SZGmx00X595bFj2gMibfO5H07z3wMLt%2FWNdmCQ21N1uFd1iFglK20ec46D%2BV1lHYu85OBQSaGjV%2BZe3hpAD0JNoMipDPaOCOsRB1CuQYUXon5cDYVSZeJjbPeKlvTLwM%2FbpCI4HyAoWT4%2BRxZg80a3BzcVit4uJ9mdOX9RsRxbZWsVxa9SFl6HkuF8SZElIwDpDZybz%2BI8Zf6gsWINnZQaQcqOCbjjOoqqlQ%2F5ae8v1wk8qyXsNMlAyn52QJ4qpJFPwgRG5gY9NL4jCaM9yLOI56WLBXJhUjYEyXFR99X2rSjPNrz4iBCcVOWRVTczcv2g62uwN0GdUZnOzIvCB76p%2BTxY180uGkelsNFC%2BXItXVr6Y%2BX22dCo8tWKsB47Xc0%2F3uguOmGxQ3i7xJ5ewt7rMm4sLVWOzKsa%2Fs6ciB9QF3KGgPi%2F0G8kwZ1wKEkzvcVf15c%2Fg4%3D&RelayState=BHNYyGK1xg5G0oBq', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '58350', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x106b2b190>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJNTwIxEIbv%2FoqmF07Ltivo2rBrEGIkAd3I6sFb6Q7SZGmx00X595bFj2gMibfO5H07z3wMLt%2FWNdmCQ21N1uFd1iFglK20ec46D%2BV1lHYu85OBQSaGjV%2BZe3hpAD0JNoMipDPaOCOsRB1CuQYUXon5cDYVSZeJjbPeKlvTLwM%2FbpCI4HyAoWT4%2BRxZg80a3BzcVit4uJ9mdOX9RsRxbZWsVxa9SFl6HkuF8SZElIwDpDZybz%2BI8Zf6gsWINnZQaQcqOCbjjOoqqlQ%2F5ae8v1wk8qyXsNMlAyn52QJ4qpJFPwgRG5gY9NL4jCaM9yLOI56WLBXJhUjYEyXFR99X2rSjPNrz4iBCcVOWRVTczcv2g62uwN0GdUZnOzIvCB76p%2BTxY180uGkelsNFC%2BXItXVr6Y%2BX22dCo8tWKsB47Xc0%2F3uguOmGxQ3i7xJ5ewt7rMm4sLVWOzKsa%2Fs6ciB9QF3KGgPi%2F0G8kwZ1wKEkzvcVf15c%2Fg4%3D&RelayState=BHNYyGK1xg5G0oBq', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:29:39,621 back:DEBUG --- SSO ---
2014-11-18 09:29:39,622 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="a3EwcUZZMHZLV2dmNmVDcHhJZzdHWGZkOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga6waO0bAZhBhJRBeZXnhXu4M0GS32dCj%2F3jJQozEk3vWcvG%2FPcz5GF%2B%2FrmmzBojI660Rd1iGgpamUfsk6D%2BVVkHYu8rORRsbHjVvpe3htAB3xNo3cpzPaWM2NQOVDsQbkTvLFeH7D4y7jG2uckaamX4botEEggnUehpLx53NiNDZrsAuwWyXh4f4moyvnNjwMayNFvTLoeMrSQSgkhhsfUTL1kEqLvf0gxl%2FqIQsRTWihUhakd8ymGVVVkCQyfYZ%2Bb5jGySBOekLEMSRVD2TC2LI690LEBmYandAuozGL%2BkEUBVFaspTHQx73nigpjn1fKt2O8mTPzwcR8uuyLILiblG2H2xVBfbWqzM635FFQfDQPyWPx31R76a5X07EWyhLroxdC3e63D7jG122Ug7aKbej%2Bd8DxU3XL24UfpfI21vYY82mhamV3JFxXZu3iQXhPOpS1OgR%2Fw%2FirNCoPA4lYb6v%2BPPi8g8%3D&RelayState=kRyiAKtKjwcccpku', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '58371', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108b94dd0>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga6waO0bAZhBhJRBeZXnhXu4M0GS32dCj%2F3jJQozEk3vWcvG%2FPcz5GF%2B%2FrmmzBojI660Rd1iGgpamUfsk6D%2BVVkHYu8rORRsbHjVvpe3htAB3xNo3cpzPaWM2NQOVDsQbkTvLFeH7D4y7jG2uckaamX4botEEggnUehpLx53NiNDZrsAuwWyXh4f4moyvnNjwMayNFvTLoeMrSQSgkhhsfUTL1kEqLvf0gxl%2FqIQsRTWihUhakd8ymGVVVkCQyfYZ%2Bb5jGySBOekLEMSRVD2TC2LI690LEBmYandAuozGL%2BkEUBVFaspTHQx73nigpjn1fKt2O8mTPzwcR8uuyLILiblG2H2xVBfbWqzM635FFQfDQPyWPx31R76a5X07EWyhLroxdC3e63D7jG122Ug7aKbej%2Bd8DxU3XL24UfpfI21vYY82mhamV3JFxXZu3iQXhPOpS1OgR%2Fw%2FirNCoPA4lYb6v%2BPPi8g8%3D&RelayState=kRyiAKtKjwcccpku', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:29:39,622 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJNTwIxEIbv%2FoqmF07Ltivo2rBrEGIkAd3I6sFb6Q7SZGmx00X595bFj2gMibfO5H07z3wMLt%2FWNdmCQ21N1uFd1iFglK20ec46D%2BV1lHYu85OBQSaGjV%2BZe3hpAD0JNoMipDPaOCOsRB1CuQYUXon5cDYVSZeJjbPeKlvTLwM%2FbpCI4HyAoWT4%2BRxZg80a3BzcVit4uJ9mdOX9RsRxbZWsVxa9SFl6HkuF8SZElIwDpDZybz%2BI8Zf6gsWINnZQaQcqOCbjjOoqqlQ%2F5ae8v1wk8qyXsNMlAyn52QJ4qpJFPwgRG5gY9NL4jCaM9yLOI56WLBXJhUjYEyXFR99X2rSjPNrz4iBCcVOWRVTczcv2g62uwN0GdUZnOzIvCB76p%2BTxY180uGkelsNFC%2BXItXVr6Y%2BX22dCo8tWKsB47Xc0%2F3uguOmGxQ3i7xJ5ewt7rMm4sLVWOzKsa%2Fs6ciB9QF3KGgPi%2F0G8kwZ1wKEkzvcVf15c%2Fg4%3D&RelayState=BHNYyGK1xg5G0oBq'
2014-11-18 09:29:39,625 back:DEBUG --- SSO ---
2014-11-18 09:29:39,626 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga6waO0bAZhBhJRBeZXnhXu4M0GS32dCj%2F3jJQozEk3vWcvG%2FPcz5GF%2B%2FrmmzBojI660Rd1iGgpamUfsk6D%2BVVkHYu8rORRsbHjVvpe3htAB3xNo3cpzPaWM2NQOVDsQbkTvLFeH7D4y7jG2uckaamX4botEEggnUehpLx53NiNDZrsAuwWyXh4f4moyvnNjwMayNFvTLoeMrSQSgkhhsfUTL1kEqLvf0gxl%2FqIQsRTWihUhakd8ymGVVVkCQyfYZ%2Bb5jGySBOekLEMSRVD2TC2LI690LEBmYandAuozGL%2BkEUBVFaspTHQx73nigpjn1fKt2O8mTPzwcR8uuyLILiblG2H2xVBfbWqzM635FFQfDQPyWPx31R76a5X07EWyhLroxdC3e63D7jG122Ug7aKbej%2Bd8DxU3XL24UfpfI21vYY82mhamV3JFxXZu3iQXhPOpS1OgR%2Fw%2FirNCoPA4lYb6v%2BPPi8g8%3D&RelayState=kRyiAKtKjwcccpku'
2014-11-18 09:29:43,264 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:29:43,265 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:29:43,266 saml2.mdstore:DEBUG service => [{'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&SingleSignOnService', 'location': 'http://localhost:8088/sso/redirect'}]
2014-11-18 09:29:43,267 back:DEBUG binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8088/sso/redirect
2014-11-18 09:29:43,269 saml2.entity:INFO REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="https://localhost:8090/acs/post" Destination="http://localhost:8088/sso/redirect" ID="id-bd9f0d935caf0a92588ba6318a1b602a" IssueInstant="2014-11-18T08:29:43Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://localhost:8090/proxy.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:29:43,271 saml2.entity:INFO HTTP REDIRECT
2014-11-18 09:29:43,273 back:DEBUG ht_args: {'url': 'http://localhost:8088/sso/redirect', 'headers': [('Location', 'http://localhost:8088/sso/redirect?SAMLRequest=nVJNTwIxEL37K5peOC3bLh%2FpNuwShBBJUAksHryVbpEmS4udLsq%2Ft3yo0UQO3jqT92bem9de%2F31bob1yoK3JGrRJGkgZaUttXrLGshhHrNHPb3oGCB%2FUfmPm6rVW4FGgGeChneHaGW4F6FCKrQLuJV8M7qc8aRK%2Bc9ZbaSv8RaDXCQJAOR%2FEYDT4fA6tgXqr3EK5vZZqOZ9meOP9DngcV1aKamPBc0ZSEgsJ8S5UGI2CSm3EkX9G%2FwIzFgPY2KlSOyUDYTLKsC6jVZmuSZm2OlKsiUiTDmMr0W1RJuiqSxIRgAC1mhjwwvgMJ4S2I0ojygrCeJLydusZo9nF9602p1Ne9bw6g4DfFcUsmj0uCoyeLpHgAMB5uD%2Flp70Oja3bCn994rETvKxPUK6M1%2F6A8z9uFjJ6PzRDPr34e01%2BivwhzJmMZrbS8oAGVWXfhk4JrzK8FhUo%2FA8x3gkDOkjCKM6PG39%2BrPwD&RelayState=-8722097070847442539')], 'data': [], 'method': 'GET'}
2014-11-18 09:29:43,272 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:29:43,275 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:29:43,276 saml2.mdstore:DEBUG service => [{'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&SingleSignOnService', 'location': 'http://localhost:8088/sso/redirect'}]
2014-11-18 09:29:43,277 back:DEBUG binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8088/sso/redirect
2014-11-18 09:29:43,279 saml2.entity:INFO REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="https://localhost:8090/acs/post" Destination="http://localhost:8088/sso/redirect" ID="id-c302a411b7567216af2facdc1f4bb693" IssueInstant="2014-11-18T08:29:43Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://localhost:8090/proxy.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:29:43,281 saml2.entity:INFO HTTP REDIRECT
2014-11-18 09:29:43,282 back:DEBUG ht_args: {'url': 'http://localhost:8088/sso/redirect', 'headers': [('Location', 'http://localhost:8088/sso/redirect?SAMLRequest=nVJBbsIwELz3FZYvOYXEgUKwSBAFoSLRFkHooTfHOMVSYlOvQ%2BH3NYG2aqVy6M27mtmd2fFgeKhKtBcGpFaJR1qhh4TieiPVa%2BKts6kfe8P0ZqAgpKPabtVSvNUCLHI0BdS1E1wbRTUD6UpWCaCW09XoYU6jVkh3RlvNdYm%2FCOQ6gQEIY50YjEafz7FWUFfCrITZSy7Wy3mCt9bugAZBqTkrtxosjcN%2BGDAOwc5VGE2cSqnYiX9G%2FwLHcQCgAyM20gjuCLNJguXG5%2B0wYh1C8t5ttxeRLiuigvENJ0Unz7v9tgMC1GKmwDJlExyFpOMT4pM4C2Ma9Wmn%2FYLR4uL7TqrmlFc952cQ0PssW%2FiLp1WG0fMlEuwAOHX3J7TZa9BUm4rZ6xNPHeelaKBUKCvtEad%2F3MxldDi2XD6D4HtN2kT%2B6ObMJgtdSn5Eo7LU72MjmBUJLlgJAv9DjDVMgXSSMArS08afHyv9AA%3D%3D&RelayState=2223907329123399132')], 'data': [], 'method': 'GET'}
2014-11-18 09:29:48,004 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; idpauthn="a3EwcUZZMHZLV2dmNmVDcHhJZzdHWGZkOjE="; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'POST', 'PATH_INFO': '/acs/post', 'HTTP_ORIGIN': 'http://localhost:8088', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': '', 'CONTENT_LENGTH': '3912', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '58371', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'HTTP_REFERER': 'http://localhost:8088/sso/redirect?SAMLRequest=nVJBbsIwELz3FZYvOYXEgUKwSBAFoSLRFkHooTfHOMVSYlOvQ%2BH3NYG2aqVy6M27mtmd2fFgeKhKtBcGpFaJR1qhh4TieiPVa%2BKts6kfe8P0ZqAgpKPabtVSvNUCLHI0BdS1E1wbRTUD6UpWCaCW09XoYU6jVkh3RlvNdYm%2FCOQ6gQEIY50YjEafz7FWUFfCrITZSy7Wy3mCt9bugAZBqTkrtxosjcN%2BGDAOwc5VGE2cSqnYiX9G%2FwLHcQCgAyM20gjuCLNJguXG5%2B0wYh1C8t5ttxeRLiuigvENJ0Unz7v9tgMC1GKmwDJlExyFpOMT4pM4C2Ma9Wmn%2FYLR4uL7TqrmlFc952cQ0PssW%2FiLp1WG0fMlEuwAOHX3J7TZa9BUm4rZ6xNPHeelaKBUKCvtEad%2F3MxldDi2XD6D4HtN2kT%2B6ObMJgtdSn5Eo7LU72MjmBUJLlgJAv9DjDVMgXSSMArS08afHyv9AA%3D%3D&RelayState=2223907329123399132', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'CONTENT_TYPE': 'application/x-www-form-urlencoded', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x106b35c90>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'SSL_SERVER_I_DN_O': 'Umea University', 'REQUEST_URI': '/acs/post', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'SSL_SERVER_I_DN_C': 'SE', 'oic.url_args': '', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:29:48,006 back:DEBUG --- SSO ---
2014-11-18 09:29:50,278 service:DEBUG unpack_post:: {'SAMLResponse': ['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'], 'RelayState': ['2223907329123399132']}
2014-11-18 09:33:00,648 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:33:00,660 saml2.assertion:DEBUG policy restrictions: {'default': {'attribute_restrictions': None, 'lifetime': {'minutes': 15}, 'name_form': 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri', 'fail_on_missing_requested': False, 'entity_categories': [{'': ['edupersontargetedid'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/eu-adequate-protection'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/nren-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail'], 'http://www.swamid.se/category/sfs-1993-1153': ['noredupersonnin'], ('http://www.swamid.se/category/research-and-education', 'http://www.swamid.se/category/hei-service'): ['givenname', 'displayname', 'sn', 'c', 'o', 'co', 'noreduorgacronym', 'schachomeorganization', 'edupersonprincipalname', 'edupersonscopedaffiliation', 'mail']}, {'': ['edupersontargetedid'], 'http://www.geant.net/uri/dataprotection-code-of-conduct/v1': ['edupersonprincipalname', 'edupersonscopedaffiliation', 'mail', 'displayname', 'schachomeorganization']}]}}
2014-11-18 09:33:00,731 service:DEBUG ENVIRON: None
2014-11-18 09:33:00,732 saml2:INFO Logging started
2014-11-18 09:33:00,734 back:DEBUG --- SSO ---
2014-11-18 09:33:00,736 service:DEBUG ENVIRON: None
2014-11-18 09:33:00,756 root:INFO Server starting
2014-11-18 09:33:28,099 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga25iw0bARhBBJUBcYXnhXu4M0GS32dCj%2F3jJQozEk3vWcvG%2FPcz4Gw%2FdtRfZgUGqVtsJ20CKghC6leklbq2LqJa1hdjVQGLBRbTdqAa81oCXOppC5dEpro5jmKF3It4DMCrYc3c1Zpx2wndFWC13RL0N42cARwVgHQ8no8znWCustmCWYvRSwWsxTurF2x3y%2F0oJXG42WJUES%2B1ygv3MRJRMHKRU%2F2k9i%2FKXuBz6i9g2U0oBwjtkkpbL0uv2Sx1Gn7ELEgUc96ArejYN1EnfiqF%2F2nBCxhplCy5VNaScIr70w9MKkCBIWRSyMnyjJz33fSNWM8mLPzycRstuiyL38YVk0H%2BxlCebeqVN6dyDLnOCpf0oez%2Fuizk0zt5yQNVCGTLXZcnu53DHjGl03UgbKSnug2d8DxV3bLW7gf5fImls4Ys0mua6kOJBRVem3sQFuHeqaV%2BgQ%2Fw9iDVcoHQ4lfnas%2BPPisg8%3D&RelayState=Iuo17X2XgLQMC5Sl', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '59950', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108c8cd10>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga25iw0bARhBBJUBcYXnhXu4M0GS32dCj%2F3jJQozEk3vWcvG%2FPcz4Gw%2FdtRfZgUGqVtsJ20CKghC6leklbq2LqJa1hdjVQGLBRbTdqAa81oCXOppC5dEpro5jmKF3It4DMCrYc3c1Zpx2wndFWC13RL0N42cARwVgHQ8no8znWCustmCWYvRSwWsxTurF2x3y%2F0oJXG42WJUES%2B1ygv3MRJRMHKRU%2F2k9i%2FKXuBz6i9g2U0oBwjtkkpbL0uv2Sx1Gn7ELEgUc96ArejYN1EnfiqF%2F2nBCxhplCy5VNaScIr70w9MKkCBIWRSyMnyjJz33fSNWM8mLPzycRstuiyL38YVk0H%2BxlCebeqVN6dyDLnOCpf0oez%2Fuizk0zt5yQNVCGTLXZcnu53DHjGl03UgbKSnug2d8DxV3bLW7gf5fImls4Ys0mua6kOJBRVem3sQFuHeqaV%2BgQ%2Fw9iDVcoHQ4lfnas%2BPPisg8%3D&RelayState=Iuo17X2XgLQMC5Sl', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:33:28,100 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga2xiy0rAZlBBJQBeZXnhXtjNpMlrs6VD%2BvWWgRmNIvOs5ed%2Be53yMrt43NdmBQalV0gm7QYeAKnQp1UvSecynHutcpRcjhQEfN3atHuC1AbTE2RRyl05oYxTXAqULxQaQ24Ivx4s573UDvjXa6kLX9MsQnjcIRDDWwVAy%2FnzeaIXNBswSzE4W8PgwT%2Bja2i33%2FVoXol5rtJwFLPZFgf7WRZRMHKRU4mA%2FivGXehj4iNo3UEoDhXPMJgmVpTfsMzEYVowBxHHUX%2FXjUjC4rKJoVQ7iKnZCxAZmCq1QNqG9IOx7YeiFLA8YjyLei54pyU59X0vVjvJsz6ujCPltnmdedr%2FM2w92sgRz59QJXezJMiN47J%2BSp9O%2BqHPT1C0n5C2UIVNtNsKeL3fIuEarVspBWWn3NP17oLjtusWN%2FO8SaXsLB6zZJNO1LPZkXNf67caAsA61EjU6xP%2BDWCMUSodDiZ8eKv68uPQD&RelayState=oKFkUXa4oHWwEMEe', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '59993', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108c94f90>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga2xiy0rAZlBBJQBeZXnhXtjNpMlrs6VD%2BvWWgRmNIvOs5ed%2Be53yMrt43NdmBQalV0gm7QYeAKnQp1UvSecynHutcpRcjhQEfN3atHuC1AbTE2RRyl05oYxTXAqULxQaQ24Ivx4s573UDvjXa6kLX9MsQnjcIRDDWwVAy%2FnzeaIXNBswSzE4W8PgwT%2Bja2i33%2FVoXol5rtJwFLPZFgf7WRZRMHKRU4mA%2FivGXehj4iNo3UEoDhXPMJgmVpTfsMzEYVowBxHHUX%2FXjUjC4rKJoVQ7iKnZCxAZmCq1QNqG9IOx7YeiFLA8YjyLei54pyU59X0vVjvJsz6ujCPltnmdedr%2FM2w92sgRz59QJXezJMiN47J%2BSp9O%2BqHPT1C0n5C2UIVNtNsKeL3fIuEarVspBWWn3NP17oLjtusWN%2FO8SaXsLB6zZJNO1LPZkXNf67caAsA61EjU6xP%2BDWCMUSodDiZ8eKv68uPQD&RelayState=oKFkUXa4oHWwEMEe', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:33:32,122 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:33:32,123 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:33:32,124 saml2.entity:INFO receiver addresses: ['https://localhost:8090/sso/redirect']
2014-11-18 09:33:32,125 saml2.entity:INFO Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2014-11-18 09:33:32,126 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-59da732d5e3aea36e5ca570f872739d6" IssueInstant="2014-11-18T08:33:17Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:33:32,131 saml2.request:INFO xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-948a69f88ee7734b47da8e5f33bd67f7" IssueInstant="2014-11-18T08:33:23Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:33:32,131 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-59da732d5e3aea36e5ca570f872739d6" IssueInstant="2014-11-18T08:33:17Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:33:32,136 saml2.request:INFO request: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-948a69f88ee7734b47da8e5f33bd67f7" IssueInstant="2014-11-18T08:33:23Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:33:32,138 saml2.entity:DEBUG Loaded request
2014-11-18 09:33:32,140 saml2.entity:DEBUG Loaded request
2014-11-18 09:33:32,141 saml2.entity:DEBUG Verified request
2014-11-18 09:33:32,143 front:INFO parsed OK
2014-11-18 09:33:32,142 saml2.entity:DEBUG Verified request
2014-11-18 09:33:32,145 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-59da732d5e3aea36e5ca570f872739d6" IssueInstant="2014-11-18T08:33:17Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:33:32,146 front:INFO parsed OK
2014-11-18 09:33:32,149 front:DEBUG <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="http://localhost:8087/acs/post" Destination="https://localhost:8090/sso/redirect" ID="id-948a69f88ee7734b47da8e5f33bd67f7" IssueInstant="2014-11-18T08:33:23Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="My SP service" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://localhost:8087/sp.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:33:32,146 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:33:32,150 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:33:32,150 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:33:32,152 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-18 09:33:32,151 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:33:32,154 front:DEBUG Binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST, destination: http://localhost:8087/acs/post
2014-11-18 09:33:32,153 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:33:32,154 saml2.mdstore:DEBUG service(http://localhost:8087/sp.xml, spsso_descriptor, assertion_consumer_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST)
2014-11-18 09:33:32,156 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:33:32,156 saml2.mdstore:DEBUG service => [{'index': '1', 'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&AssertionConsumerService', 'location': 'http://localhost:8087/acs/post'}]
2014-11-18 09:33:34,912 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga2xiy0rAZlBBJQBeZXnhXtjNpMlrs6VD%2BvWWgRmNIvOs5ed%2Be53yMrt43NdmBQalV0gm7QYeAKnQp1UvSecynHutcpRcjhQEfN3atHuC1AbTE2RRyl05oYxTXAqULxQaQ24Ivx4s573UDvjXa6kLX9MsQnjcIRDDWwVAy%2FnzeaIXNBswSzE4W8PgwT%2Bja2i33%2FVoXol5rtJwFLPZFgf7WRZRMHKRU4mA%2FivGXehj4iNo3UEoDhXPMJgmVpTfsMzEYVowBxHHUX%2FXjUjC4rKJoVQ7iKnZCxAZmCq1QNqG9IOx7YeiFLA8YjyLei54pyU59X0vVjvJsz6ujCPltnmdedr%2FM2w92sgRz59QJXezJMiN47J%2BSp9O%2BqHPT1C0n5C2UIVNtNsKeL3fIuEarVspBWWn3NP17oLjtusWN%2FO8SaXsLB6zZJNO1LPZkXNf67caAsA61EjU6xP%2BDWCMUSodDiZ8eKv68uPQD&RelayState=oKFkUXa4oHWwEMEe', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '59993', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108c94f90>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga2xiy0rAZlBBJQBeZXnhXtjNpMlrs6VD%2BvWWgRmNIvOs5ed%2Be53yMrt43NdmBQalV0gm7QYeAKnQp1UvSecynHutcpRcjhQEfN3atHuC1AbTE2RRyl05oYxTXAqULxQaQ24Ivx4s573UDvjXa6kLX9MsQnjcIRDDWwVAy%2FnzeaIXNBswSzE4W8PgwT%2Bja2i33%2FVoXol5rtJwFLPZFgf7WRZRMHKRU4mA%2FivGXehj4iNo3UEoDhXPMJgmVpTfsMzEYVowBxHHUX%2FXjUjC4rKJoVQ7iKnZCxAZmCq1QNqG9IOx7YeiFLA8YjyLei54pyU59X0vVjvJsz6ujCPltnmdedr%2FM2w92sgRz59QJXezJMiN47J%2BSp9O%2BqHPT1C0n5C2UIVNtNsKeL3fIuEarVspBWWn3NP17oLjtusWN%2FO8SaXsLB6zZJNO1LPZkXNf67caAsA61EjU6xP%2BDWCMUSodDiZ8eKv68uPQD&RelayState=oKFkUXa4oHWwEMEe', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:33:34,913 service:DEBUG ENVIRON: {'HTTP_COOKIE': 'beaker.session.id=19e1318a0fc5412582a60c22f93891a2; pyoic="2/7bkTvJ98LbVT4qwl57er68NzfJRkE27Cqifj3/VdvFAtp2ull1A9bBD2BdkslDigkrSmZZXCvdKRe8ukg60Q==|1416122396|fa3494da8dd5851a13f3b9c37a002c8438e904f8"', 'SERVER_SOFTWARE': 'CherryPy/3.2.4 Server', 'SCRIPT_NAME': '', 'ACTUAL_SERVER_PROTOCOL': 'HTTP/1.1', 'REQUEST_METHOD': 'GET', 'PATH_INFO': '/sso/redirect', 'SERVER_PROTOCOL': 'HTTP/1.1', 'QUERY_STRING': 'SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga25iw0bARhBBJUBcYXnhXu4M0GS32dCj%2F3jJQozEk3vWcvG%2FPcz4Gw%2FdtRfZgUGqVtsJ20CKghC6leklbq2LqJa1hdjVQGLBRbTdqAa81oCXOppC5dEpro5jmKF3It4DMCrYc3c1Zpx2wndFWC13RL0N42cARwVgHQ8no8znWCustmCWYvRSwWsxTurF2x3y%2F0oJXG42WJUES%2B1ygv3MRJRMHKRU%2F2k9i%2FKXuBz6i9g2U0oBwjtkkpbL0uv2Sx1Gn7ELEgUc96ArejYN1EnfiqF%2F2nBCxhplCy5VNaScIr70w9MKkCBIWRSyMnyjJz33fSNWM8mLPzycRstuiyL38YVk0H%2BxlCebeqVN6dyDLnOCpf0oez%2Fuizk0zt5yQNVCGTLXZcnu53DHjGl03UgbKSnug2d8DxV3bLW7gf5fImls4Ys0mua6kOJBRVem3sQFuHeqaV%2BgQ%2Fw9iDVcoHQ4lfnas%2BPPisg8%3D&RelayState=Iuo17X2XgLQMC5Sl', 'HTTP_USER_AGENT': 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10) AppleWebKit/600.1.25 (KHTML, like Gecko) Version/8.0 Safari/600.1.25', 'HTTP_CONNECTION': 'keep-alive', 'REMOTE_PORT': '59950', 'SERVER_NAME': 'eduroam-47-171.public.su.se', 'REMOTE_ADDR': '127.0.0.1', 'SSL_SERVER_I_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_L': 'Umea', 'wsgi.url_scheme': 'https', 'SERVER_PORT': '8090', 'SSL_SERVER_M_VERSION': 2, 'SSL_SERVER_I_DN_O': 'Umea University', 'SSL_SERVER_S_DN_OU': 'IT Unit', 'SSL_SERVER_I_DN_C': 'SE', 'SSL_SERVER_M_SERIAL': 10511640529272263228L, 'wsgi.input': <cherrypy.wsgiserver.wsgiserver2.KnownLengthRFile object at 0x108c8cd10>, 'SSL_SERVER_S_DN_L': 'Umea', 'HTTP_HOST': 'localhost:8090', 'HTTPS': 'on', 'wsgi.multithread': True, 'SSL_SERVER_S_DN_C': 'SE', 'REQUEST_URI': '/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga25iw0bARhBBJUBcYXnhXu4M0GS32dCj%2F3jJQozEk3vWcvG%2FPcz4Gw%2FdtRfZgUGqVtsJ20CKghC6leklbq2LqJa1hdjVQGLBRbTdqAa81oCXOppC5dEpro5jmKF3It4DMCrYc3c1Zpx2wndFWC13RL0N42cARwVgHQ8no8znWCustmCWYvRSwWsxTurF2x3y%2F0oJXG42WJUES%2B1ygv3MRJRMHKRU%2F2k9i%2FKXuBz6i9g2U0oBwjtkkpbL0uv2Sx1Gn7ELEgUc96ArejYN1EnfiqF%2F2nBCxhplCy5VNaScIr70w9MKkCBIWRSyMnyjJz33fSNWM8mLPzycRstuiyL38YVk0H%2BxlCebeqVN6dyDLnOCpf0oez%2Fuizk0zt5yQNVCGTLXZcnu53DHjGl03UgbKSnug2d8DxV3bLW7gf5fImls4Ys0mua6kOJBRVem3sQFuHeqaV%2BgQ%2Fw9iDVcoHQ4lfnas%2BPPisg8%3D&RelayState=Iuo17X2XgLQMC5Sl', 'HTTP_ACCEPT': 'text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8', 'SSL_SERVER_S_DN_O': 'Umea University', 'SSL_SERVER_S_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP', 'wsgi.version': (1, 0), 'wsgi.run_once': False, 'SSL_SERVER_I_DN_CN': 'Test SP', 'wsgi.errors': <open file '<stderr>', mode 'w' at 0x10028a1e0>, 'wsgi.multiprocess': False, 'HTTP_ACCEPT_LANGUAGE': 'sv-se', 'oic.url_args': 'sso/redirect', 'SSL_SERVER_S_DN_CN': 'Test SP', 'HTTP_ACCEPT_ENCODING': 'gzip, deflate', 'SSL_SERVER_I_DN': '/C=SE/L=Umea/O=Umea University/OU=IT Unit/CN=Test SP'}
2014-11-18 09:33:34,917 back:DEBUG --- SSO ---
2014-11-18 09:33:34,918 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga25iw0bARhBBJUBcYXnhXu4M0GS32dCj%2F3jJQozEk3vWcvG%2FPcz4Gw%2FdtRfZgUGqVtsJ20CKghC6leklbq2LqJa1hdjVQGLBRbTdqAa81oCXOppC5dEpro5jmKF3It4DMCrYc3c1Zpx2wndFWC13RL0N42cARwVgHQ8no8znWCustmCWYvRSwWsxTurF2x3y%2F0oJXG42WJUES%2B1ygv3MRJRMHKRU%2F2k9i%2FKXuBz6i9g2U0oBwjtkkpbL0uv2Sx1Gn7ELEgUc96ArejYN1EnfiqF%2F2nBCxhplCy5VNaScIr70w9MKkCBIWRSyMnyjJz33fSNWM8mLPzycRstuiyL38YVk0H%2BxlCebeqVN6dyDLnOCpf0oez%2Fuizk0zt5yQNVCGTLXZcnu53DHjGl03UgbKSnug2d8DxV3bLW7gf5fImls4Ys0mua6kOJBRVem3sQFuHeqaV%2BgQ%2Fw9iDVcoHQ4lfnas%2BPPisg8%3D&RelayState=Iuo17X2XgLQMC5Sl'
2014-11-18 09:33:34,919 back:DEBUG --- SSO ---
2014-11-18 09:33:34,921 back:DEBUG [sp.challenge] RelayState >> 'https://localhost:8090/sso/redirect?SAMLRequest=lZJdT8IwFIbv%2FRVNb7ga2xiy0rAZlBBJQBeZXnhXtjNpMlrs6VD%2BvWWgRmNIvOs5ed%2Be53yMrt43NdmBQalV0gm7QYeAKnQp1UvSecynHutcpRcjhQEfN3atHuC1AbTE2RRyl05oYxTXAqULxQaQ24Ivx4s573UDvjXa6kLX9MsQnjcIRDDWwVAy%2FnzeaIXNBswSzE4W8PgwT%2Bja2i33%2FVoXol5rtJwFLPZFgf7WRZRMHKRU4mA%2FivGXehj4iNo3UEoDhXPMJgmVpTfsMzEYVowBxHHUX%2FXjUjC4rKJoVQ7iKnZCxAZmCq1QNqG9IOx7YeiFLA8YjyLei54pyU59X0vVjvJsz6ujCPltnmdedr%2FM2w92sgRz59QJXezJMiN47J%2BSp9O%2BqHPT1C0n5C2UIVNtNsKeL3fIuEarVspBWWn3NP17oLjtusWN%2FO8SaXsLB6zZJNO1LPZkXNf67caAsA61EjU6xP%2BDWCMUSodDiZ8eKv68uPQD&RelayState=oKFkUXa4oHWwEMEe'
2014-11-18 09:33:36,008 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:33:36,009 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:33:36,010 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:33:36,011 saml2.mdstore:DEBUG service(http://localhost:8088/idp.xml, idpsso_descriptor, single_sign_on_service, urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect)
2014-11-18 09:33:36,012 saml2.mdstore:DEBUG service => [{'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&SingleSignOnService', 'location': 'http://localhost:8088/sso/redirect'}]
2014-11-18 09:33:36,013 saml2.mdstore:DEBUG service => [{'binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect', '__class__': 'urn:oasis:names:tc:SAML:2.0:metadata&SingleSignOnService', 'location': 'http://localhost:8088/sso/redirect'}]
2014-11-18 09:33:36,014 back:DEBUG binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8088/sso/redirect
2014-11-18 09:33:36,015 back:DEBUG binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect, destination: http://localhost:8088/sso/redirect
2014-11-18 09:33:36,017 saml2.entity:INFO REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="https://localhost:8090/acs/post" Destination="http://localhost:8088/sso/redirect" ID="id-62b655998bad6b67ac9917e49eb2a95b" IssueInstant="2014-11-18T08:33:36Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://localhost:8090/proxy.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:33:36,019 saml2.entity:INFO REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<ns0:AuthnRequest xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="https://localhost:8090/acs/post" Destination="http://localhost:8088/sso/redirect" ID="id-fde5ec3aa21255d710108e64501ea218" IssueInstant="2014-11-18T08:33:36Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Version="2.0"><ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://localhost:8090/proxy.xml</ns1:Issuer><ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></ns0:AuthnRequest>
2014-11-18 09:33:36,022 saml2.entity:INFO HTTP REDIRECT
2014-11-18 09:33:36,025 saml2.entity:INFO HTTP REDIRECT