B
Blake Stanford
Guest
Irfan, I've run through the example for using PASOE as a token producer from the referenced document. I have not been successful! 
I'm running on 11.7.5 with a windows 10 PASOE instance. I'm using local for the authmanager using Postman i issue the following request: --method POST \ --timeout=0 \ --header 'Accept: application/json' \ --header 'Content-Type: multipart/form-data; boundary=--------------------------402823437541950243094182' \ --body-data 'j_username=bstan&j_password=bstan&submit=Login' \ ' localhost:8170/.../j_spring_security_check I get the following response back: "error": "sso.token.unauthorized_client", "error_description": "Internal token error" I've turned up logging and find the following in the logs which leads me to believe that my post is incorrect, the username doesn't appear to be getting in: 12:50:38.288/22257 [thd-2] DEBUG c.p.a.services.security.OEMdcFilter - Update request user-id source is: nullUser 12:50:38.288/22257 [thd-2] DEBUG c.p.a.services.security.OEMdcFilter - MDC UID policy IFREQUIRED is not changing request user-id from unknown token type 12:50:38.288/22257 [thd-2] DEBUG o.s.security.web.FilterChainProxy - /static/auth/j_spring_security_check at position 5 of 18 in additional filter chain; firing Filter: 'WebAsyncManagerIntegrationFilter' 12:50:38.288/22257 [thd-2] DEBUG o.s.security.web.FilterChainProxy - /static/auth/j_spring_security_check at position 6 of 18 in additional filter chain; firing Filter: 'HeaderWriterFilter' 12:50:38.288/22257 [thd-2] DEBUG o.s.security.web.FilterChainProxy - /static/auth/j_spring_security_check at position 7 of 18 in additional filter chain; firing Filter: 'LogoutFilter' 12:50:38.288/22257 [thd-2] DEBUG o.s.s.w.u.m.AntPathRequestMatcher - Checking match of request : '/static/auth/j_spring_security_check'; against '/static/auth/j_spring_security_logout' 12:50:38.288/22257 [thd-2] DEBUG o.s.security.web.FilterChainProxy - /static/auth/j_spring_security_check at position 8 of 18 in additional filter chain; firing Filter: 'OECPRefreshFilter' 12:50:38.288/22257 [thd-2] TRACE c.p.a.s.security.OECPRefreshFilter - Refresh URI /idp/static/auth/j_spring_security_check match to required URI /idp/static/auth/token status: false 12:50:38.289/22258 [thd-2] DEBUG o.s.security.web.FilterChainProxy - /static/auth/j_spring_security_check at position 9 of 18 in additional filter chain; firing Filter: 'UsernamePasswordAuthenticationFilter' 12:50:38.289/22258 [thd-2] DEBUG o.s.s.w.u.m.AntPathRequestMatcher - Checking match of request : '/static/auth/j_spring_security_check'; against '/static/auth/j_spring_security_check' 12:50:38.289/22258 [thd-2] DEBUG o.s.s.w.a.UsernamePasswordAuthenticationFilter - Request is to process authentication 12:50:38.290/22259 [thd-2] DEBUG o.s.s.authentication.ProviderManager - Authentication attempt using org.springframework.security.authentication.dao.DaoAuthenticationProvider 12:50:38.292/22261 [thd-2] DEBUG o.s.s.a.d.DaoAuthenticationProvider - User '' not found 12:50:38.293/22262 [thd-2] TRACE o.s.w.c.s.XmlWebApplicationContext - Publishing event in Root WebApplicationContext: org.springframework.security.authentication.event.AuthenticationFailureBadCredentialsEvent[source=org.springframework.security.authentication.UsernamePasswordAuthenticationToken@1f: Principal: ; Credentials: [PROTECTED]; Authenticated: false; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@0: RemoteIpAddress: 0:0:0:0:0:0:0:1; SessionId: 96E709E58456367F93D9D0B99394677D17AB5DE9405A.oeidp; Not granted any authorities] 12:50:38.293/22262 [thd-2] DEBUG o.s.b.f.s.DefaultListableBeanFactory - Returning cached instance of singleton bean 'authenticationLoggerSink' 12:50:38.295/22264 [thd-2] DEBUG o.s.s.w.a.UsernamePasswordAuthenticationFilter - Authentication request failed: org.springframework.security.authentication.BadCredentialsException: Bad credentials org.springframework.security.authentication.BadCredentialsException: Bad credentials at org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider.authenticate(AbstractUserDetailsAuthenticationProvider.java:151) ~[spring-security-core-4.1.3.RELEASE.jar:4.1.3.RELEASE] Any help would be appreciated.
Continue reading...
I'm running on 11.7.5 with a windows 10 PASOE instance. I'm using local for the authmanager using Postman i issue the following request: --method POST \ --timeout=0 \ --header 'Accept: application/json' \ --header 'Content-Type: multipart/form-data; boundary=--------------------------402823437541950243094182' \ --body-data 'j_username=bstan&j_password=bstan&submit=Login' \ ' localhost:8170/.../j_spring_security_check I get the following response back: "error": "sso.token.unauthorized_client", "error_description": "Internal token error" I've turned up logging and find the following in the logs which leads me to believe that my post is incorrect, the username doesn't appear to be getting in: 12:50:38.288/22257 [thd-2] DEBUG c.p.a.services.security.OEMdcFilter - Update request user-id source is: nullUser 12:50:38.288/22257 [thd-2] DEBUG c.p.a.services.security.OEMdcFilter - MDC UID policy IFREQUIRED is not changing request user-id from unknown token type 12:50:38.288/22257 [thd-2] DEBUG o.s.security.web.FilterChainProxy - /static/auth/j_spring_security_check at position 5 of 18 in additional filter chain; firing Filter: 'WebAsyncManagerIntegrationFilter' 12:50:38.288/22257 [thd-2] DEBUG o.s.security.web.FilterChainProxy - /static/auth/j_spring_security_check at position 6 of 18 in additional filter chain; firing Filter: 'HeaderWriterFilter' 12:50:38.288/22257 [thd-2] DEBUG o.s.security.web.FilterChainProxy - /static/auth/j_spring_security_check at position 7 of 18 in additional filter chain; firing Filter: 'LogoutFilter' 12:50:38.288/22257 [thd-2] DEBUG o.s.s.w.u.m.AntPathRequestMatcher - Checking match of request : '/static/auth/j_spring_security_check'; against '/static/auth/j_spring_security_logout' 12:50:38.288/22257 [thd-2] DEBUG o.s.security.web.FilterChainProxy - /static/auth/j_spring_security_check at position 8 of 18 in additional filter chain; firing Filter: 'OECPRefreshFilter' 12:50:38.288/22257 [thd-2] TRACE c.p.a.s.security.OECPRefreshFilter - Refresh URI /idp/static/auth/j_spring_security_check match to required URI /idp/static/auth/token status: false 12:50:38.289/22258 [thd-2] DEBUG o.s.security.web.FilterChainProxy - /static/auth/j_spring_security_check at position 9 of 18 in additional filter chain; firing Filter: 'UsernamePasswordAuthenticationFilter' 12:50:38.289/22258 [thd-2] DEBUG o.s.s.w.u.m.AntPathRequestMatcher - Checking match of request : '/static/auth/j_spring_security_check'; against '/static/auth/j_spring_security_check' 12:50:38.289/22258 [thd-2] DEBUG o.s.s.w.a.UsernamePasswordAuthenticationFilter - Request is to process authentication 12:50:38.290/22259 [thd-2] DEBUG o.s.s.authentication.ProviderManager - Authentication attempt using org.springframework.security.authentication.dao.DaoAuthenticationProvider 12:50:38.292/22261 [thd-2] DEBUG o.s.s.a.d.DaoAuthenticationProvider - User '' not found 12:50:38.293/22262 [thd-2] TRACE o.s.w.c.s.XmlWebApplicationContext - Publishing event in Root WebApplicationContext: org.springframework.security.authentication.event.AuthenticationFailureBadCredentialsEvent[source=org.springframework.security.authentication.UsernamePasswordAuthenticationToken@1f: Principal: ; Credentials: [PROTECTED]; Authenticated: false; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@0: RemoteIpAddress: 0:0:0:0:0:0:0:1; SessionId: 96E709E58456367F93D9D0B99394677D17AB5DE9405A.oeidp; Not granted any authorities] 12:50:38.293/22262 [thd-2] DEBUG o.s.b.f.s.DefaultListableBeanFactory - Returning cached instance of singleton bean 'authenticationLoggerSink' 12:50:38.295/22264 [thd-2] DEBUG o.s.s.w.a.UsernamePasswordAuthenticationFilter - Authentication request failed: org.springframework.security.authentication.BadCredentialsException: Bad credentials org.springframework.security.authentication.BadCredentialsException: Bad credentials at org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvider.authenticate(AbstractUserDetailsAuthenticationProvider.java:151) ~[spring-security-core-4.1.3.RELEASE.jar:4.1.3.RELEASE] Any help would be appreciated.Continue reading...