';
echo '
' . __('ERROR','miniorange-saml-20-single-sign-on') . '
' . __('Error','miniorange-saml-20-single-sign-on') . ': '.$Error_message.'
' . __('Possible Cause','miniorange-saml-20-single-sign-on'). ': '.$Cause_message.'
' . __('Expected one of the Audiences to be','miniorange-saml-20-single-sign-on'). ': '.$spEntityId.'
';
mo_saml_download_logs($Error_message,$Cause_message);
exit;
}
else
{
wp_die(__("We could not sign you in. Please contact your administrator",'miniorange-saml-20-single-sign-on'),"Error: Invalid Audience URI");
}
}
}
} else {
if($relayState=='testValidate'){
$Error_message=mo_saml_options_error_constants::Error_issuer_not_verfied;
$Cause_message = mo_saml_options_error_constants::Cause_issuer_not_verfied;
update_option('mo_saml_required_issuer',$issuer);
echo '
';
echo '
' . __('ERROR','miniorange-saml-20-single-sign-on') . '
' . __('Error','miniorange-saml-20-single-sign-on'). ':'.$Error_message.'
' . __('Possible Cause','miniorange-saml-20-single-sign-on') . ':'.$Cause_message.'
';
mo_saml_download_logs($Error_message,$Cause_message);
exit;
}
else
{
wp_die(__("We could not sign you in. Please contact your administrator",'miniorange-saml-20-single-sign-on'),"Error: Issuer cannot be verified");
}
}
}
private static function findCertificate(array $certFingerprints, array $certificates, $relayState) {
$candidates = array();
//foreach ($certificates as $cert) {
$fp = strtolower(sha1(base64_decode($certificates[0])));
if (!in_array($fp, $certFingerprints, TRUE)) {
$candidates[] = $fp;
return false;
//continue;
}
/* We have found a matching fingerprint. */
$pem = "-----BEGIN CERTIFICATE-----\n" .
chunk_split($certificates[0], 64) .
"-----END CERTIFICATE-----\n";
return $pem;
// }
// if($relayState=='testValidate'){
// $pem = "-----BEGIN CERTIFICATE-----
" .
// chunk_split($cert, 64) .
// "
-----END CERTIFICATE-----";
// echo '
';
// echo '
ERROR
//
Error: Unable to find a certificate matching the configured fingerprint.
//
Please contact your administrator and report the following error:
//
Possible Cause: Content of \'X.509 Certificate\' field in Service Provider Settings is incorrect. Please replace it with certificate given below.
//
Certificate found in SAML Response:
'.$pem.'
//
//