302 Redirection Issue

Tagged: #OpenAM, 302 redirect, webagent

This topic has 0 replies, 1 voice, and was last updated 2 years, 6 months ago by VipinEV.

Author

Posts
December 14, 2019 at 1:53 am #27276

VipinEV
Participant

Hi Team,

I am using OpenAM 11.0.3 with Web Agent 4.0.0. Seems like my initial policy validation getting successful but the subsequent gets failed. Below is what debug log shows.

First validation
—————-

/Endpoint is enforced
2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/process.c:890] validate_policy(): for https://www-devdpint.allianz.co.uk:443/CustSellServ/Services/CorrespondenceService/v1/Endpoint (ignoring pathinfo: no), entry status: success
2019-12-14 00:42:35.163 +0000 WARNING [0x7f3496ff7700:42811] am_get_session_policy_cache_entry(): failed to locate data for a key (AQIC5wM2LY4Sfczf5ucE2Rn8VZFMXeWs0ryjxgfSSNQLO2U.*AAJTSQACMDEAAlNLABM0Njk5ODM3NDMzMTQ3NjgyNjQ2*)
2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/process.c:938] validate_policy(): get session cache status: not found
2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/utility.c:1651] get_valid_openam_url(): active OpenAM service url: https://www-devam.allianz.co.uk:18081/opensso (0)
2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/utility.c:1756] am_timer(): getaddrinfo took 0 seconds
2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client.c:496] sync_connect(): connected to www-devam.allianz.co.uk:18081 (IPv4)
2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv2/v3 write client hello B (23WCHB)
2019-12-14 00:42:35.164 +0000 DEBUG [0x7f3496ff7700:42811][source/net_ops.c:559] send_session_request(): sending 700 bytes
2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server hello B (3RSH_B)
2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server certificate B (3RSC_B)
2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server key exchange B (3RSKEB)
2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:331] show_server_cert(): server certificate subject: /C=DE/O=Allianz/CN=www-devam.allianz.co.uk
2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:338] show_server_cert(): server certificate issuer: /C=DE/O=Allianz/CN=Allianz Infrastructure CA V
2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server certificate request B (3RCR_B)
2019-12-14 00:42:35.183 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write client key exchange B (3WCKEB)
2019-12-14 00:42:35.183 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write change cipher spec B (3WCCSB)
2019-12-14 00:42:35.183 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write finished B (3WFINB)
2019-12-14 00:42:35.187 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read finished A (3RFINA)
2019-12-14 00:42:35.187 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read finished B (3RFINB)
2019-12-14 00:42:35.189 +0000 DEBUG [0x7f3496ff7700:42811][source/net_ops.c:577] send_session_request(): response status code: 200
<?xml version=”1.0″ encoding=”UTF-8″ standalone=”yes”?>
<ResponseSet vers=”1.0″ svcid=”session” reqid=”0″>
<Response><![CDATA[<SessionResponse vers=”1.0″ reqid=”1″>
<GetSession>
<Session sid=”AQIC5wM2LY4Sfczf5ucE2Rn8VZFMXeWs0ryjxgfSSNQLO2U.*AAJTSQACMDEAAlNLABM0Njk5ODM3NDMzMTQ3NjgyNjQ2*” stype=”user” cid=”id=DP_CSS_USER,ou=user,o=services,ou=services,dc=opensso,dc=java,dc=net” cdomain=”o=services,ou=services,dc=opensso,dc=java,dc=net” maxtime=”1440″ maxidle=”1440″ maxcaching=”2″ timeidle=”167″ timeleft=”81160″ state=”valid”>
<Property name=”CharSet” value=”UTF-8″></Property>
<Property name=”UserId” value=”DP_CSS_USER”></Property>
<Property name=”FullLoginURL” value=”/opensso/UI/Login?realm=services”></Property>
<Property name=”successURL” value=”/opensso/console”></Property>

Second Validation
—————–

2019-12-14 00:42:35.432 +0000 DEBUG [0x7f34947f3700:42811][source/process.c:890] validate_policy(): for https://www-devdpint.allianz.co.uk:443/DocMgmt/Services/CommunicationService_Private/v1/Endpoint/Service.wsdl (ignoring pathinfo: no), entry status: success
2019-12-14 00:42:35.432 +0000 WARNING [0x7f34947f3700:42811] am_get_session_policy_cache_entry(): failed to locate data for a key (AQIC5wM2LY4SfcxPDMHqev6L9dqIojeX0SYiSoXwCJ01GiY.*AAJTSQACMDEAAlNLABQtNTI3NDg3NTY0NTA1MTcwMjQ5OQ..*, WebSessionID=10.16.144.64.1576231619853480)
2019-12-14 00:42:35.432 +0000 DEBUG [0x7f34947f3700:42811][source/process.c:938] validate_policy(): get session cache status: not found
2019-12-14 00:42:35.432 +0000 DEBUG [0x7f34947f3700:42811][source/utility.c:1651] get_valid_openam_url(): active OpenAM service url: https://www-devam.allianz.co.uk:18081/opensso (0)
2019-12-14 00:42:35.432 +0000 DEBUG [0x7f34947f3700:42811][source/utility.c:1756] am_timer(): getaddrinfo took 0 seconds
2019-12-14 00:42:35.432 +0000 DEBUG [0x7f34947f3700:42811][source/net_client.c:496] sync_connect(): connected to www-devam.allianz.co.uk:18081 (IPv4)
2019-12-14 00:42:35.433 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv2/v3 write client hello B (23WCHB)
2019-12-14 00:42:35.433 +0000 DEBUG [0x7f34947f3700:42811][source/net_ops.c:559] send_session_request(): sending 748 bytes
2019-12-14 00:42:35.444 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server hello B (3RSH_B)
2019-12-14 00:42:35.444 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server certificate B (3RSC_B)
2019-12-14 00:42:35.445 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server key exchange B (3RSKEB)
2019-12-14 00:42:35.445 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:331] show_server_cert(): server certificate subject: /C=DE/O=Allianz/CN=www-devam.allianz.co.uk
2019-12-14 00:42:35.445 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:338] show_server_cert(): server certificate issuer: /C=DE/O=Allianz/CN=Allianz Infrastructure CA V
2019-12-14 00:42:35.445 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server certificate request B (3RCR_B)
2019-12-14 00:42:35.453 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write client key exchange B (3WCKEB)
2019-12-14 00:42:35.453 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write change cipher spec B (3WCCSB)
2019-12-14 00:42:35.453 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write finished B (3WFINB)
2019-12-14 00:42:35.457 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read finished A (3RFINA)
2019-12-14 00:42:35.457 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read finished B (3RFINB)
2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/net_ops.c:577] send_session_request(): response status code: 200
<?xml version=”1.0″ encoding=”UTF-8″ standalone=”yes”?>
<ResponseSet vers=”1.0″ svcid=”session” reqid=”0″>
<Response><![CDATA[<SessionResponse vers=”1.0″ reqid=”1″>
<GetSession>
<Exception>AQIC5wM2LY4SfcxPDMHqev6L9dqIojeX0SYiSoXwCJ01GiY.*AAJTSQACMDEAAlNLABQtNTI3NDg3NTY0NTA1MTcwMjQ5OQ..*, WebSessionID=10.16.144.64.1576231619853480 Invalid session ID.AQIC5wM2LY4SfcxPDMHqev6L9dqIojeX0SYiSoXwCJ01GiY.*AAJTSQACMDEAAlNLABQtNTI3NDg3NTY0NTA1MTcwMjQ5OQ..*, WebSessionID=10.16.144.64.1576231619853480</Exception>
</GetSession>
</SessionResponse>]]></Response>
</ResponseSet>
2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/net_ops.c:598] send_session_request(): status: invalid session
2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/net_ops.c:1163] am_agent_policy_request(): closing connection after failure
2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSL negotiation finished successfully (SSLOK )
2019-12-14 00:42:35.460 +0000 WARNING [0x7f34947f3700:42811] validate_policy(): retry 0 (remote session/policy call failure: invalid session)
2019-12-14 00:42:35.460 +0000 WARNING [0x7f34947f3700:42811] am_remove_cache_entry(): cache data is not available (AQIC5wM2LY4SfcxPDMHqev6L9dqIojeX0SYiSoXwCJ01GiY.*AAJTSQACMDEAAlNLABQtNTI3NDg3NTY0NTA1MTcwMjQ5OQ..*, WebSessionID=10.16.144.64.1576231619853480)
2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/process.c:1707] handle_exit(): (entry status: invalid session)
2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/process.c:1685] find_active_login_server(): selected login url: https://www-devam.allianz.co.uk:18081/opensso/UI/Login?realm=services&goto=https%3A%2F%2Fwww-devdpint.allianz.co.uk%3A443%2FDocMgmt%2FServices%2FCommunicationService_Private%2Fv1%2FEndpoint%2FService.wsdl
2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/process.c:2166] handle_exit(): find_active_login_server value: https://www-devam.allianz.co.uk:18081/opensso/UI/Login?realm=services&goto=https%3A%2F%2Fwww-devdpint.allianz.co.uk%3A443%2FDocMgmt%2FServices%2FCommunicationService_Private%2Fv1%2FEndpoint%2FService.wsdl
2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/apache/agent22.c:464] set_custom_response(): status: redirect (exit: redirect)
Author

Posts