The Genero SAML implementation log file

The Genero SAML implementation produces a log file. You specify the level of detail recorded to the log.

The Genero SAML implementation produces a log file called SAML.log in $FGLDIR/web_utilities/saml/bin. This log file contains all incoming and outgoing requests. It can help to debug SAML issues.

There are two categories that can be logged:

MSG - Standard information regarding access and errors. By default, only access and error information are logged.
DEBUG - Traces the entire process of single sign-on (SSO).

To add debugging information to the log, modify SAMLServiceProvider.xcf to include the debug flag argument in the MODULE tag:

<APPLICATION Parent="ws.default"
  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
  xsi:noNamespaceSchemaLocation="http://www.4js.com/ns/gas/2.50/cfextws.xsd">
  <RESOURCE Id="res.saml.db" Source="INTERNAL"/>
  <EXECUTION>    
   <!-- ENVIRONMENT_VARIABLE entries removed for this example -->            
   <PATH>$(res.path.fgldir.services)/saml/bin</PATH>      
   <MODULE>SAMLServer -logPath $(res.appdata.path) -debug DEBUG -debug MSG</MODULE>
   <POOL>
     <START>0</START>
     <MIN_AVAILABLE>0</MIN_AVAILABLE>
     <MAX_AVAILABLE>10</MAX_AVAILABLE>
   </POOL>          
  </EXECUTION>    
</APPLICATION>

Note: Logging is based on the FGL errorlog function. As several instances of the same SAML server can write into the log file, the PID of the server is written to the log file as well.