[cas-dev] SAML/Google Apps and key format

[Patrick Berry]

Hi all,
Just about to try out SAML + CAS + Google Apps and I'm going through the
docs in the wiki (http://www.ja-sig.org/wiki/x/fIVc) and something just
isn't working, or I'm doing it wrong (insert LOLPAT picture here).

Here is the first error:
ERROR [org.springframework.web.context.ContextLoader] - <Context
initialization failed>
org.springframework.beans.factory.BeanCreationException: Error creating bean
with name 'privateKeyFactoryBean' defined in ServletContext resource
[/WEB-INF/spring-configuration/argumentExtractorsConfiguration.xml]:
Invocation of init method failed; nested exception is
java.security.spec.InvalidKeySpecException: Inappropriate key specification:
invalid key format

(I had tried specifying a file location first, that didn't work so I went
with the class path, and now I get invalid key format instead of
fileNotFound, so you know, progress!)

I followed the openssl docs copy and paste style from the wiki page:

openssl genrsa -out private.key 1024
openssl rsa -pubout -in private.key -out public.key -inform PEM -outform DER
openssl pkcs8 -topk8 -inform PER -outform DER -nocrypt -in private.key
-out private.p8
openssl req -new -x509 -key private.key -out x509.pem -days 365


Now, the part that gets me is that in the
WEB-INF/spring-configuration/argumentExtractorsConfiguration.xml I specify
my public and private key, but the docs mention that I only need the public
key and the public.p8 in the classpath...but I never reference the
private.p8 in the configuration.  Am I wrong?  Are the docs wrong?  Am I not
reading the docs correctly?

Thanks,
Pat
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://tp.its.yale.edu/pipermail/cas-dev/attachments/20080619/897f785d/attachment.html