Exception in J2EE Agent debug.log

This topic has 1 reply, 2 voices, and was last updated 6 years, 4 months ago by Guillaume Sauthier.

  • Author
    Posts
  • #8592
     raghukanakala
    Participant

    As you suggested, i have integrated with OpenAM 13. J2EE agent is redirecting to OpenAM for authentication and redirecting back to HTTP server with HTTP server URL not a OpenIG URL. I had noticed one issues after restarting the OpenIG server, there are some exception in the debug.log in J2ee agent.

    
    amAuthContext:03/16/2016 05:51:04:456 PM IST: Thread[main,5,main]
    **********************************************
    amAuthContext:03/16/2016 05:51:04:453 PM IST: Thread[main,5,main]
    ERROR: Failed to obtain auth service url from server: null://null:null
    amSMS:03/16/2016 05:51:05:123 PM IST: Thread[main,5,main]
    **********************************************
    amSMS:03/16/2016 05:51:05:123 PM IST: Thread[main,5,main]
    ERROR: ServiceManager::unable to check if Realm is enabled: 
    Message:The user does not have permission to perform the operation.
    
     at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
     at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
     at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
     at java.lang.reflect.Constructor.newInstance(Constructor.java:408)
     at com.sun.identity.shared.jaxrpc.SOAPClient$SOAPContentHandler.createResourceBasedException(SOAPClient.java:855)
     at com.sun.identity.shared.jaxrpc.SOAPClient$SOAPContentHandler.endDocument(SOAPClient.java:808)
     at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.endDocument(AbstractSAXParser.java:745)
     at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanDocument(XMLDocumentFragmentScannerImpl.java:515)
     at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:848)
     at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:777)
     at com.sun.org.apache.xerces.internal.parsers.XMLParser.parse(XMLParser.java:141)
     at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1213)
     at com.sun.org.apache.xerces.internal.jaxp.SAXParserImpl$JAXPSAXParser.parse(SAXParserImpl.java:649)
     at com.sun.identity.shared.jaxrpc.SOAPClient.send(SOAPClient.java:346)
     at com.sun.identity.shared.jaxrpc.SOAPClient.send(SOAPClient.java:315)
     at com.sun.identity.sm.jaxrpc.SMSJAXRPCObject.read(SMSJAXRPCObject.java:121)
     at com.sun.identity.sm.SMSEntry.read(SMSEntry.java:704)
     at com.sun.identity.sm.SMSEntry.read(SMSEntry.java:681)
     at com.sun.identity.sm.SMSEntry.<init>(SMSEntry.java:475)
     at com.sun.identity.sm.CachedSMSEntry.getInstance(CachedSMSEntry.java:382)
     at com.sun.identity.sm.ServiceConfigImpl.checkAndUpdatePermission(ServiceConfigImpl.java:625)
     at com.sun.identity.sm.ServiceConfigImpl.getInstance(ServiceConfigImpl.java:509)
     at com.sun.identity.sm.ServiceConfigImpl.getInstance(ServiceConfigImpl.java:464)
     at com.sun.identity.sm.ServiceConfigManagerImpl.getGlobalConfig(ServiceConfigManagerImpl.java:201)
     at com.sun.identity.sm.ServiceManager.checkFlags(ServiceManager.java:1287)
     at com.sun.identity.sm.ServiceManager.initialize(ServiceManager.java:1270)
     at com.sun.identity.sm.ServiceManager.isRealmEnabled(ServiceManager.java:976)
     at com.sun.identity.sm.DNMapper.<clinit>(DNMapper.java:55)
     at com.sun.identity.sm.ServiceConfigImpl.getInstance(ServiceConfigImpl.java:479)
     at com.sun.identity.sm.ServiceConfigImpl.getInstance(ServiceConfigImpl.java:464)
     at com.sun.identity.sm.ServiceConfigManagerImpl.getGlobalConfig(ServiceConfigManagerImpl.java:201)
     at com.sun.identity.sm.ServiceManager.checkFlags(ServiceManager.java:1287)
     at com.sun.identity.sm.ServiceManager.initialize(ServiceManager.java:1270)
     at com.sun.identity.sm.ServiceManager.isRealmEnabled(ServiceManager.java:976)
     at com.sun.identity.sm.ServiceManager.isCoexistenceMode(ServiceManager.java:940)
     at com.sun.identity.sm.ServiceConfigManager.<init>(ServiceConfigManager.java:93)
     at com.sun.identity.common.configuration.ConfigurationObserver.registerListeners(ConfigurationObserver.java:93)
     at com.sun.identity.common.configuration.ConfigurationObserver.getInstance(ConfigurationObserver.java:114)
     at com.sun.identity.common.DebugPropertiesObserver.<clinit>(DebugPropertiesObserver.java:49)
     at com.sun.identity.agents.arch.AgentConfiguration.bootStrapClientConfiguration(AgentConfiguration.java:727)
     at com.sun.identity.agents.arch.AgentConfiguration.initializeConfiguration(AgentConfiguration.java:1140)
     at com.sun.identity.agents.arch.AgentConfiguration.<clinit>(AgentConfiguration.java:1579)
     at com.sun.identity.agents.arch.Manager.<clinit>(Manager.java:675)
     at com.sun.identity.agents.tomcat.v6.AmTomcatRealm.<clinit>(AmTomcatRealm.java:67)
     at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
     at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
     at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
     at java.lang.reflect.Constructor.newInstance(Constructor.java:408)
     at java.lang.Class.newInstance(Class.java:438)
     at org.apache.tomcat.util.digester.ObjectCreateRule.begin(ObjectCreateRule.java:117)
     at org.apache.tomcat.util.digester.Digester.startElement(Digester.java:1178)
     at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.startElement(AbstractSAXParser.java:509)
     at com.sun.org.apache.xerces.internal.parsers.AbstractXMLDocumentParser.emptyElement(AbstractXMLDocumentParser.java:182)
     at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanStartElement(XMLDocumentFragmentScannerImpl.java:1343)
     at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl$FragmentContentDriver.next(XMLDocumentFragmentScannerImpl.java:2786)
     at com.sun.org.apache.xerces.internal.impl.XMLDocumentScannerImpl.next(XMLDocumentScannerImpl.java:606)
     at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanDocument(XMLDocumentFragmentScannerImpl.java:510)
     at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:848)
     at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:777)
     at com.sun.org.apache.xerces.internal.parsers.XMLParser.parse(XMLParser.java:141)
     at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1213)
     at com.sun.org.apache.xerces.internal.jaxp.SAXParserImpl$JAXPSAXParser.parse(SAXParserImpl.java:649)
     at org.apache.tomcat.util.digester.Digester.parse(Digester.java:1451)
     at org.apache.catalina.startup.Catalina.load(Catalina.java:551)
     at org.apache.catalina.startup.Catalina.load(Catalina.java:599)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
     at java.lang.reflect.Method.invoke(Method.java:483)
     at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:310)
     at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:484)
    
    amSMS:03/16/2016 05:51:05:124 PM IST: Thread[main,5,main]
    ERROR: ServiceManager::isRealmEnabled unable to initialize
    Message:The user does not have permission to perform the operation.
    

    OpenIG-3.1.0.war
    IBM HTTP Server V7.0
    openam-12.0.0 which is deployed in win7,tomcat 7.
    J2ee Agent and OpenIG are deployed in Apache Tomcat 8.

    #8600

    I would like to have some details:

    * You said that it’s OK with AM 13, but you mention AM 12 at the bottom of your message
    * The redirect back should go to IG, not directly to your protected HTTP Server, can you check your Agent configuration ?

    Given the exception stacktrace, I would say that AM denies you the permission to do something that happen during agent startup. You should check that the agent has the appropriate credentials

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?