Exception in J2EE Agent debug.log

[raghukanakala]

As you suggested, i have integrated with OpenAM 13. J2EE agent is redirecting to OpenAM for authentication and redirecting back to HTTP server with HTTP server URL not a OpenIG URL. I had noticed one issues after restarting the OpenIG server, there are some exception in the debug.log in J2ee agent.

amAuthContext:03/16/2016 05:51:04:456 PM IST: Thread[main,5,main]
**********************************************
amAuthContext:03/16/2016 05:51:04:453 PM IST: Thread[main,5,main]
ERROR: Failed to obtain auth service url from server: null://null:null
amSMS:03/16/2016 05:51:05:123 PM IST: Thread[main,5,main]
**********************************************
amSMS:03/16/2016 05:51:05:123 PM IST: Thread[main,5,main]
ERROR: ServiceManager::unable to check if Realm is enabled: 
Message:The user does not have permission to perform the operation.

 at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
 at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
 at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
 at java.lang.reflect.Constructor.newInstance(Constructor.java:408)
 at com.sun.identity.shared.jaxrpc.SOAPClient$SOAPContentHandler.createResourceBasedException(SOAPClient.java:855)
 at com.sun.identity.shared.jaxrpc.SOAPClient$SOAPContentHandler.endDocument(SOAPClient.java:808)
 at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.endDocument(AbstractSAXParser.java:745)
 at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanDocument(XMLDocumentFragmentScannerImpl.java:515)
 at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:848)
 at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:777)
 at com.sun.org.apache.xerces.internal.parsers.XMLParser.parse(XMLParser.java:141)
 at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1213)
 at com.sun.org.apache.xerces.internal.jaxp.SAXParserImpl$JAXPSAXParser.parse(SAXParserImpl.java:649)
 at com.sun.identity.shared.jaxrpc.SOAPClient.send(SOAPClient.java:346)
 at com.sun.identity.shared.jaxrpc.SOAPClient.send(SOAPClient.java:315)
 at com.sun.identity.sm.jaxrpc.SMSJAXRPCObject.read(SMSJAXRPCObject.java:121)
 at com.sun.identity.sm.SMSEntry.read(SMSEntry.java:704)
 at com.sun.identity.sm.SMSEntry.read(SMSEntry.java:681)
 at com.sun.identity.sm.SMSEntry.<init>(SMSEntry.java:475)
 at com.sun.identity.sm.CachedSMSEntry.getInstance(CachedSMSEntry.java:382)
 at com.sun.identity.sm.ServiceConfigImpl.checkAndUpdatePermission(ServiceConfigImpl.java:625)
 at com.sun.identity.sm.ServiceConfigImpl.getInstance(ServiceConfigImpl.java:509)
 at com.sun.identity.sm.ServiceConfigImpl.getInstance(ServiceConfigImpl.java:464)
 at com.sun.identity.sm.ServiceConfigManagerImpl.getGlobalConfig(ServiceConfigManagerImpl.java:201)
 at com.sun.identity.sm.ServiceManager.checkFlags(ServiceManager.java:1287)
 at com.sun.identity.sm.ServiceManager.initialize(ServiceManager.java:1270)
 at com.sun.identity.sm.ServiceManager.isRealmEnabled(ServiceManager.java:976)
 at com.sun.identity.sm.DNMapper.<clinit>(DNMapper.java:55)
 at com.sun.identity.sm.ServiceConfigImpl.getInstance(ServiceConfigImpl.java:479)
 at com.sun.identity.sm.ServiceConfigImpl.getInstance(ServiceConfigImpl.java:464)
 at com.sun.identity.sm.ServiceConfigManagerImpl.getGlobalConfig(ServiceConfigManagerImpl.java:201)
 at com.sun.identity.sm.ServiceManager.checkFlags(ServiceManager.java:1287)
 at com.sun.identity.sm.ServiceManager.initialize(ServiceManager.java:1270)
 at com.sun.identity.sm.ServiceManager.isRealmEnabled(ServiceManager.java:976)
 at com.sun.identity.sm.ServiceManager.isCoexistenceMode(ServiceManager.java:940)
 at com.sun.identity.sm.ServiceConfigManager.<init>(ServiceConfigManager.java:93)
 at com.sun.identity.common.configuration.ConfigurationObserver.registerListeners(ConfigurationObserver.java:93)
 at com.sun.identity.common.configuration.ConfigurationObserver.getInstance(ConfigurationObserver.java:114)
 at com.sun.identity.common.DebugPropertiesObserver.<clinit>(DebugPropertiesObserver.java:49)
 at com.sun.identity.agents.arch.AgentConfiguration.bootStrapClientConfiguration(AgentConfiguration.java:727)
 at com.sun.identity.agents.arch.AgentConfiguration.initializeConfiguration(AgentConfiguration.java:1140)
 at com.sun.identity.agents.arch.AgentConfiguration.<clinit>(AgentConfiguration.java:1579)
 at com.sun.identity.agents.arch.Manager.<clinit>(Manager.java:675)
 at com.sun.identity.agents.tomcat.v6.AmTomcatRealm.<clinit>(AmTomcatRealm.java:67)
 at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
 at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
 at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
 at java.lang.reflect.Constructor.newInstance(Constructor.java:408)
 at java.lang.Class.newInstance(Class.java:438)
 at org.apache.tomcat.util.digester.ObjectCreateRule.begin(ObjectCreateRule.java:117)
 at org.apache.tomcat.util.digester.Digester.startElement(Digester.java:1178)
 at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.startElement(AbstractSAXParser.java:509)
 at com.sun.org.apache.xerces.internal.parsers.AbstractXMLDocumentParser.emptyElement(AbstractXMLDocumentParser.java:182)
 at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanStartElement(XMLDocumentFragmentScannerImpl.java:1343)
 at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl$FragmentContentDriver.next(XMLDocumentFragmentScannerImpl.java:2786)
 at com.sun.org.apache.xerces.internal.impl.XMLDocumentScannerImpl.next(XMLDocumentScannerImpl.java:606)
 at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanDocument(XMLDocumentFragmentScannerImpl.java:510)
 at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:848)
 at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:777)
 at com.sun.org.apache.xerces.internal.parsers.XMLParser.parse(XMLParser.java:141)
 at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1213)
 at com.sun.org.apache.xerces.internal.jaxp.SAXParserImpl$JAXPSAXParser.parse(SAXParserImpl.java:649)
 at org.apache.tomcat.util.digester.Digester.parse(Digester.java:1451)
 at org.apache.catalina.startup.Catalina.load(Catalina.java:551)
 at org.apache.catalina.startup.Catalina.load(Catalina.java:599)
 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 at java.lang.reflect.Method.invoke(Method.java:483)
 at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:310)
 at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:484)

amSMS:03/16/2016 05:51:05:124 PM IST: Thread[main,5,main]
ERROR: ServiceManager::isRealmEnabled unable to initialize
Message:The user does not have permission to perform the operation.

OpenIG-3.1.0.war
IBM HTTP Server V7.0
openam-12.0.0 which is deployed in win7,tomcat 7.
J2ee Agent and OpenIG are deployed in Apache Tomcat 8.

[Guillaume Sauthier]

I would like to have some details:

* You said that it’s OK with AM 13, but you mention AM 12 at the bottom of your message
* The redirect back should go to IG, not directly to your protected HTTP Server, can you check your Agent configuration ?

Given the exception stacktrace, I would say that AM denies you the permission to do something that happen during agent startup. You should check that the agent has the appropriate credentials

[Author]

Posts