Hi, You are suffering a lot of problems, that's not normal ! I'm willing to investigate, but firstly I would need a record of all HTTP requests with cookies to see if everything is ok for the web sessions. Best regards, Jérôme
2013/8/30 Rohit Kotecha <[email protected]> > Thanks for rpely.**** > > ** ** > > You are true. I am facing lot of problems with OAuth support.**** > > ** ** > > we don’t have cluster of CAS servers. we have just one CAS server.**** > > ** ** > > Regards,**** > > Rohit Kotecha**** > > ** ** > > *From:* Jérôme LELEU [mailto:[email protected]] > *Sent:* Friday, August 30, 2013 1:15 PM > *To:* [email protected] > *Subject:* Re: [cas-user] Getting "Response body is incorrect" exception > randomly while trying to login with CAS with facebook, Google Plus login** > ** > > ** ** > > Hi,**** > > ** ** > > The error is fairly explicit : you are trying to re-use the same OAuth > authorization code twice. The code is returned by the provider (Facebook, > Google) after a successful authentication, to be exchanged for an access > token.**** > > The root cause might be a lot more complicated to find. Hard to guess a > scenario behind.**** > > ** ** > > You seems to have a lot of problems with OAuth support. One question that > pops up in my mind : do you have a cluster of CAS servers ?**** > > ** ** > > Best regards,**** > > Jérôme**** > > ** ** > > ** ** > > 2013/8/30 Rohit Kotecha <[email protected]>**** > > Hi Team,**** > > **** > > 2013-08-30 04:22:13,898 ERROR > [org.jasig.cas.authentication.AuthenticationManagerImpl] - > org.jasig.cas.support.oauth.authentication.handler.support.OAuthAuthenticationHandler > threw error authenticating > org.jasig.cas.support.oauth.authentication.principal.OAuthCredentials@22ebc6bf > **** > > org.scribe.exceptions.OAuthException: Response body is incorrect. Can't > extract a token from this: '{"error":{"message":"This authorization code > has been used.","type":"OAuthException","code":100}}'**** > > at > org.scribe.extractors.TokenExtractor20Impl.extract(TokenExtractor20Impl.java:33) > **** > > at > org.scribe.up.addon_to_scribe.ProxyOAuth20ServiceImpl.getAccessToken(ProxyOAuth20ServiceImpl.java:63) > **** > > at > org.scribe.up.provider.BaseOAuth20Provider.getAccessToken(BaseOAuth20Provider.java:54) > **** > > at > org.scribe.up.provider.BaseOAuthProvider.getUserProfile(BaseOAuthProvider.java:122) > **** > > at > org.jasig.cas.support.oauth.authentication.handler.support.OAuthAuthenticationHandler.doAuthentication(OAuthAuthenticationHandler.java:66) > **** > > at > org.jasig.cas.authentication.handler.support.AbstractPreAndPostProcessingAuthenticationHandler.authenticate_aroundBody2(AbstractPreAndPostProcessingAuthenticationHandler.java:85) > **** > > at > org.jasig.cas.authentication.handler.support.AbstractPreAndPostProcessingAuthenticationHandler.authenticate_aroundBody3$advice(AbstractPreAndPostProcessingAuthenticationHandler.java:57) > **** > > at > org.jasig.cas.authentication.handler.support.AbstractPreAndPostProcessingAuthenticationHandler.authenticate(AbstractPreAndPostProcessingAuthenticationHandler.java:1) > **** > > at > org.jasig.cas.authentication.AuthenticationManagerImpl.authenticateAndObtainPrincipal(AuthenticationManagerImpl.java:93) > **** > > at > org.jasig.cas.authentication.AbstractAuthenticationManager.authenticate_aroundBody0(AbstractAuthenticationManager.java:57) > **** > > at > org.jasig.cas.authentication.AbstractAuthenticationManager.authenticate_aroundBody1$advice(AbstractAuthenticationManager.java:57) > **** > > at > org.jasig.cas.authentication.AbstractAuthenticationManager.authenticate(AbstractAuthenticationManager.java:1) > **** > > at sun.reflect.GeneratedMethodAccessor88.invoke(Unknown Source)*** > * > > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > **** > > at java.lang.reflect.Method.invoke(Method.java:597)**** > > at > org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:309) > **** > > at > org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:183) > **** > > at > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:150) > **** > > at > org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:80) > **** > > at > com.github.inspektr.audit.AuditTrailManagementAspect.handleAuditTrail(AuditTrailManagementAspect.java:126) > **** > > at sun.reflect.GeneratedMethodAccessor72.invoke(Unknown Source)*** > * > > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > **** > > at java.lang.reflect.Method.invoke(Method.java:597)**** > > at > org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:621) > **** > > at > org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:610) > **** > > at > org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:65) > **** > > at > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:161) > **** > > at > org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:80) > **** > > at > org.perf4j.aop.AbstractTimingAspect$1.proceed(AbstractTimingAspect.java:47) > **** > > at > org.perf4j.aop.AgnosticTimingAspect.runProfiledMethod(AgnosticTimingAspect.java:53) > **** > > at > org.perf4j.aop.AbstractTimingAspect.doPerfLogging(AbstractTimingAspect.java:45) > **** > > at sun.reflect.GeneratedMethodAccessor71.invoke(Unknown Source)*** > * > > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > **** > > at java.lang.reflect.Method.invoke(Method.java:597)**** > > at > org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:621) > **** > > at > org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:610) > **** > > at > org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:65) > **** > > at > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:161) > **** > > at > org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:90) > **** > > at > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:172) > **** > > at > org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:202) > **** > > at $Proxy42.authenticate(Unknown Source)**** > > at > org.jasig.cas.CentralAuthenticationServiceImpl.createTicketGrantingTicket_aroundBody10(CentralAuthenticationServiceImpl.java:477) > **** > > at > org.jasig.cas.CentralAuthenticationServiceImpl.createTicketGrantingTicket_aroundBody11$advice(CentralAuthenticationServiceImpl.java:57) > **** > > at > org.jasig.cas.CentralAuthenticationServiceImpl.createTicketGrantingTicket(CentralAuthenticationServiceImpl.java:1) > **** > > at sun.reflect.GeneratedMethodAccessor87.invoke(Unknown Source)*** > * > > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > **** > > at java.lang.reflect.Method.invoke(Method.java:597)**** > > at > org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:309) > **** > > at > org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:183) > **** > > at > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:150) > **** > > at > org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:80) > **** > > at > com.github.inspektr.audit.AuditTrailManagementAspect.handleAuditTrail(AuditTrailManagementAspect.java:126) > **** > > at sun.reflect.GeneratedMethodAccessor72.invoke(Unknown Source)*** > * > > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > **** > > at java.lang.reflect.Method.invoke(Method.java:597)**** > > at > org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:621) > **** > > at > org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:610) > **** > > at > org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:65) > **** > > at > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:161) > **** > > at > org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:80) > **** > > at > org.perf4j.aop.AbstractTimingAspect$1.proceed(AbstractTimingAspect.java:47) > **** > > at > org.perf4j.aop.AgnosticTimingAspect.runProfiledMethod(AgnosticTimingAspect.java:53) > **** > > at > org.perf4j.aop.AbstractTimingAspect.doPerfLogging(AbstractTimingAspect.java:45) > **** > > at sun.reflect.GeneratedMethodAccessor71.invoke(Unknown Source)*** > * > > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) > **** > > at java.lang.reflect.Method.invoke(Method.java:597)**** > > at > org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:621) > **** > > at > org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:610) > **** > > at > org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:65) > **** > > at > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:161) > **** > > at > org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:90) > **** > > at > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:172) > **** > > at > org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:202) > **** > > at $Proxy43.createTicketGrantingTicket(Unknown Source)**** > > at > org.jasig.cas.support.oauth.web.flow.OAuthAction.doExecute(OAuthAction.java:102) > **** > > at > org.springframework.webflow.action.AbstractAction.execute(AbstractAction.java:188) > **** > > at > org.springframework.webflow.execution.ActionExecutor.execute(ActionExecutor.java:51) > **** > > at > org.springframework.webflow.action.EvaluateAction.doExecute(EvaluateAction.java:77) > **** > > at > org.springframework.webflow.action.AbstractAction.execute(AbstractAction.java:188) > **** > > at > org.springframework.webflow.execution.AnnotatedAction.execute(AnnotatedAction.java:145) > **** > > at > org.springframework.webflow.execution.ActionExecutor.execute(ActionExecutor.java:51) > **** > > at > org.springframework.webflow.engine.ActionState.doEnter(ActionState.java:101) > **** > > at org.springframework.webflow.engine.State.enter(State.java:194)* > *** > > at org.springframework.webflow.engine.Flow.start(Flow.java:535)*** > * > > at > org.springframework.webflow.engine.impl.FlowExecutionImpl.start(FlowExecutionImpl.java:366) > **** > > at > org.springframework.webflow.engine.impl.FlowExecutionImpl.start(FlowExecutionImpl.java:225) > **** > > at > org.springframework.webflow.executor.FlowExecutorImpl.launchExecution(FlowExecutorImpl.java:140) > **** > > at > org.springframework.webflow.mvc.servlet.FlowHandlerAdapter.handle(FlowHandlerAdapter.java:193) > **** > > at > org.springframework.web.servlet.DispatcherServlet.doDispatch(DispatcherServlet.java:790) > **** > > at > org.springframework.web.servlet.DispatcherServlet.doService(DispatcherServlet.java:719) > **** > > at > org.springframework.web.servlet.FrameworkServlet.processRequest(FrameworkServlet.java:669) > **** > > at > org.springframework.web.servlet.FrameworkServlet.doGet(FrameworkServlet.java:574) > **** > > at javax.servlet.http.HttpServlet.service(HttpServlet.java:734)*** > * > > at javax.servlet.http.HttpServlet.service(HttpServlet.java:847)*** > * > > at > org.jasig.cas.web.init.SafeDispatcherServlet.service_aroundBody2(SafeDispatcherServlet.java:128) > **** > > at > org.jasig.cas.web.init.SafeDispatcherServlet.service_aroundBody3$advice(SafeDispatcherServlet.java:57) > **** > > at > org.jasig.cas.web.init.SafeDispatcherServlet.service(SafeDispatcherServlet.java:1) > **** > > at > org.apache.catalina.core.ApplicationFilterChain.servletService(ApplicationFilterChain.java:427) > **** > > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:333) > **** > > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:214) > **** > > at > org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:88) > **** > > at > org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:76) > **** > > at > org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:237) > **** > > at > org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) > **** > > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:246) > **** > > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:214) > **** > > at > com.github.inspektr.common.web.ClientInfoThreadLocalFilter.doFilter(ClientInfoThreadLocalFilter.java:63) > **** > > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:246) > **** > > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:214) > **** > > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:313) > **** > > at > org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:287) > **** > > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:218) > **** > > at > org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:648) > **** > > at > org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:593) > **** > > at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:94)* > *** > > at > com.sun.enterprise.web.PESessionLockingStandardPipeline.invoke(PESessionLockingStandardPipeline.java:98) > **** > > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:222) > **** > > at > org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:648) > **** > > at > org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:593) > **** > > at > org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:587) > **** > > at > org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:1093)**** > > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:166) > **** > > at > org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:648) > **** > > at > org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:593) > **** > > at > org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:587) > **** > > at > org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:1093)**** > > at > org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:291)*** > * > > at > com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.invokeAdapter(DefaultProcessorTask.java:666) > **** > > at > com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.doProcess(DefaultProcessorTask.java:597) > **** > > at > com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.process(DefaultProcessorTask.java:872) > **** > > at > com.sun.enterprise.web.connector.grizzly.DefaultReadTask.executeProcessorTask(DefaultReadTask.java:341) > **** > > at > com.sun.enterprise.web.connector.grizzly.DefaultReadTask.doTask(DefaultReadTask.java:263) > **** > > at > com.sun.enterprise.web.connector.grizzly.DefaultReadTask.doTask(DefaultReadTask.java:214) > **** > > at > com.sun.enterprise.web.portunif.PortUnificationPipeline$PUTask.doTask(PortUnificationPipeline.java:382) > **** > > at > com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:264)** > ** > > at > com.sun.enterprise.web.connector.grizzly.ssl.SSLWorkerThread.run(SSLWorkerThread.java:106) > **** > > 2013-08-30 04:22:13,902 INFO > [com.github.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - Audit > trail record BEGIN**** > > **** > > Thanks and Regards,**** > > Rohit Kotecha**** > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user**** > > -**************Nihilent******************* > > " *** All information contained in this communication is confidential, > proprietary, privileged**** > > and is intended for the addressees only. If youhave received this E-mail in > error please notify**** > > mail administrator by telephone on +91-20-39846100 or E-mail the sender by > replying to**** > > this message, and then delete this E-mail and other copies of it from your > computer system.**** > > Any unauthorized dissemination,publication, transfer or use of the contents > of this communication,**** > > with or without modifications is punishable under the relevant law.**** > > ** ** > > Nihilent has scanned this mail with current virus checking technologies. > However, Nihilent makes no **** > > representations or warranties to the effect that this communication is > virus-free.**** > > ** ** > > Nihilent reserves the right to monitor all E-mail communications through its > Corporate Network. *** "**** > > ** ** > > *************************************************************************-**** > > ** ** > > -- > You are currently subscribed to [email protected] as: > [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user**** > > -- > You are currently subscribed to [email protected] as: [email protected] > To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-user > > -**************Nihilent*************** > " *** All information contained in this communication is confidential, > proprietary, privileged > and is intended for the addressees only. If youhave received this E-mail in > error please notify > mail administrator by telephone on +91-20-39846100 or E-mail the sender by > replying to > this message, and then delete this E-mail and other copies of it from your > computer system. > Any unauthorized dissemination,publication, transfer or use of the contents > of this communication, > with or without modifications is punishable under the relevant law. > > Nihilent has scanned this mail with current virus checking technologies. > However, Nihilent makes no > representations or warranties to the effect that this communication is > virus-free. > > Nihilent reserves the right to monitor all E-mail communications through its > Corporate Network. *** " > > *************************************************************************- > > -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
