Hi All, I think I have found the problem here,the exception which is given below is thrown by org.wso2.carbon.core.services.authentication.AuthenticationUtil class's public static void validateRemoteAddress(String address) method.
Authentication Failed : Invalid remote address passed - https://10.200.3.118:${carbon.management.port}${carbon.context}/services/ I have debugged the code and found that ESB is sending something like this "https://${carbon.local.ip}:${carbon.management.port}${carbon.context}/services/"; as the argument for this method. So our first thought was this argument should be corrected like this "https://localhost:9444/service";. But even if I pass this as the argument the method gives exceptions. So I checked with Asela and this argument should be a IP address. Not something like this. So have to correct the mediator in ESB. So I will look in to that. Thanks AndunSLG On Mon, Jul 30, 2012 at 10:29 PM, Dushan Abeyruwan <[email protected]> wrote: > Hi > I think security guys should answer this, because I see a significant > changers in the entitlement mediator compare to 4.0.3 > > 403 > configContext = cfgCtx; > * serverUrl = getServerURL(serverUrl, > msgContext.getConfigurationContext());* > client = new EntitlementServiceClient(remoteServiceUrl, > configContext, > remoteServiceUserName, remoteServicePassword, > serverUrl); > decision = client.getDecision(userName, resourceName, action, > env); > > 450 > * decision = client.getDecision(userName, resourceName, action, > env);* > > entitlementDecision = new EntitlementDecision(); > > entitlementDecision.setCachedTime(Calendar.getInstance().getTimeInMillis()); > entitlementDecision.setResponse(decision); > simpleDecisionCache.put(key, entitlementDecision); > > and *getServerURL is depreciated method in 450* > > private static String getServerURL(String url, ConfigurationContext > config) { > if (url.indexOf("${carbon.https.port}") != -1) { > String httpsPort = CarbonUtils.getTransportPort(config, > "https") + ""; > url = url.replace("${carbon.https.port}", httpsPort); > } > > if (url.indexOf("${carbon.management.port}") != -1) { > String httpsPort = CarbonUtils.getTransportPort(config, > "https") + ""; > url = url.replace("${carbon.management.port}", httpsPort); > } > > if (url.indexOf("${carbon.context}") != -1) { > // We need not to worry about context here - just need the > server url for logging > url = url.replace("${carbon.context}", ""); > } > return url; > } > > > > cheers > Dushan > > > On Mon, Jul 30, 2012 at 9:30 PM, Afkham Azeez <[email protected]> wrote: > >> This means due to some reason the other two System properties are not >> set. Need to find out why those are not set. >> >> >> On Mon, Jul 30, 2012 at 6:20 PM, Andun Gunawardena <[email protected]>wrote: >> >>> Hi, >>> >>> I have debugged the org.wso2.carbon.core.util.Utils class's >>> method public static String replaceSystemProperty(String text) and notice >>> that the the argument is passed as >>> "https://${carbon.local.ip}:${carbon.management.port}${carbon.context}/services/"; >>> and comes out as >>> "https://10.200.3.177:${carbon.management.port}${carbon.context}/services/";. >>> Is there a error ? Why the IP address is only replaced while others are >>> remain same. >>> >>> Thanks >>> AndunSLG >>> >>> >>> On Mon, Jul 30, 2012 at 6:11 PM, Dushan Abeyruwan <[email protected]>wrote: >>> >>>> Hi >>>> IMO Seems like its a bug with at ServerConfiguration it gives >>>> https://10.200.3.118:${carbon.management.port}${carbon.context}/services/ >>>> , If I remember correctly we did some fix to mediation-initializer >>>> some time back, >>>> >>>> >>>> [Carbon-dev] ESB stratup failure java.net.MalformedURLException: For >>>> input string: "${carbon.management.port}${carbon.context}" >>>> carbon_dev >>>> x >>>> Rajika Kumarasiri >>>> via<http://support.google.com/mail/bin/answer.py?hl=en&ctx=mail&answer=1311182> >>>> wso2.org >>>> Feb 23 >>>> to carbon-dev >>>> [2012-02-23 15:54:11,995] ERROR - ServiceBusInitializer Error while >>>> parsing the server URL https://10.200.3.196: >>>> ${carbon.management.port}${carbon.context}/services/ >>>> java.net.MalformedURLException: For input string: >>>> "${carbon.management.port}${carbon.context}" >>>> at java.net.URL.<init>(URL.java:601) >>>> at java.net.URL.<init>(URL.java:464) >>>> at java.net.URL.<init>(URL.java:413) >>>> at org.wso2.carbon.mediation.initializer >>>> .ServiceBusInitializer.setHttpsProtForConsole(ServiceBusInitializer.java:323) >>>> at org.wso2.carbon.mediation.initializer.Servic >>>> >>>> Would this be related to the same ? >>>> >>>> >>>> cheers >>>> Dushan >>>> >>>> On Mon, Jul 30, 2012 at 6:02 PM, Andun Gunawardena <[email protected]>wrote: >>>> >>>>> Hi All, >>>>> >>>>> I am trying to do Test Automation for the Entitlement Mediator. I >>>>> have configured the ESB, IS as given in >>>>> [1]<http://wso2.org/library/articles/2010/10/using-xacml-fine-grained-authorization-wso2-platform>. >>>>> When the request is come to the created Entitlement Proxy At the ESB, >>>>> there >>>>> is unexpected error shown in the console of IS. It is given below. It >>>>> related to the ServerURL system property of Carbon. What will be the >>>>> solution ? >>>>> >>>>> Thanks >>>>> AndunSLG >>>>> >>>>> [1] - >>>>> http://wso2.org/library/articles/2010/10/using-xacml-fine-grained-authorization-wso2-platform >>>>> >>>>> Exception Sequence : >>>>> >>>>> [2012-07-30 17:51:06,187] WARN >>>>> {org.wso2.carbon.core.services.authentication.AuthenticationUtil} - Could >>>>> not find IP address for domain name : https://10.200.3.118: >>>>> ${carbon.management.port}${carbon.context}/services/ >>>>> [2012-07-30 17:51:06,188] ERROR >>>>> {org.wso2.carbon.core.services.authentication.AuthenticationAdmin} - >>>>> Authentication >>>>> Failed : Invalid remote address passed - https://10.200.3.118: >>>>> ${carbon.management.port}${carbon.context}/services/ >>>>> org.wso2.carbon.core.common.AuthenticationException: Authentication >>>>> Failed : Invalid remote address passed - https://10.200.3.118: >>>>> ${carbon.management.port}${carbon.context}/services/ >>>>> at >>>>> org.wso2.carbon.core.services.authentication.AuthenticationUtil.validateRemoteAddress(AuthenticationUtil.java:178) >>>>> at >>>>> org.wso2.carbon.core.services.authentication.AuthenticationAdmin.login(AuthenticationAdmin.java:86) >>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>>> at >>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>>>> at >>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>>> at >>>>> org.apache.axis2.rpc.receivers.RPCUtil.invokeServiceClass(RPCUtil.java:212) >>>>> at >>>>> org.apache.axis2.rpc.receivers.RPCMessageReceiver.invokeBusinessLogic(RPCMessageReceiver.java:117) >>>>> at >>>>> org.apache.axis2.receivers.AbstractInOutMessageReceiver.invokeBusinessLogic(AbstractInOutMessageReceiver.java:40) >>>>> at >>>>> org.apache.axis2.receivers.AbstractMessageReceiver.receive(AbstractMessageReceiver.java:110) >>>>> at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:181) >>>>> at >>>>> org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HTTPTransportUtils.java:172) >>>>> at >>>>> org.apache.axis2.transport.http.AxisServlet.doPost(AxisServlet.java:146) >>>>> at >>>>> org.wso2.carbon.core.transports.CarbonServlet.doPost(CarbonServlet.java:205) >>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:641) >>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) >>>>> at >>>>> org.eclipse.equinox.http.servlet.internal.ServletRegistration.handleRequest(ServletRegistration.java:90) >>>>> at >>>>> org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias(ProxyServlet.java:111) >>>>> at >>>>> org.eclipse.equinox.http.servlet.internal.ProxyServlet.service(ProxyServlet.java:67) >>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) >>>>> at >>>>> org.wso2.carbon.tomcat.ext.servlet.DelegationServlet.service(DelegationServlet.java:58) >>>>> at >>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305) >>>>> at >>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) >>>>> at >>>>> org.wso2.carbon.tomcat.ext.filter.CharacterSetFilter.doFilter(CharacterSetFilter.java:61) >>>>> at >>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243) >>>>> at >>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) >>>>> at >>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:225) >>>>> at >>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:123) >>>>> at >>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472) >>>>> at >>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:168) >>>>> at >>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98) >>>>> at >>>>> org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(CompositeValve.java:133) >>>>> at >>>>> org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValve.invoke(CarbonStuckThreadDetectionValve.java:156) >>>>> at >>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:927) >>>>> at >>>>> org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve.invoke(CarbonContextCreatorValve.java:49) >>>>> at >>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118) >>>>> at >>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407) >>>>> at >>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1001) >>>>> at >>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:579) >>>>> at >>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1653) >>>>> at >>>>> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) >>>>> at >>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) >>>>> at java.lang.Thread.run(Thread.java:662) >>>>> >>>>> >>>>> _______________________________________________ >>>>> Dev mailing list >>>>> [email protected] >>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>> >>>>> >>>> >>>> >>>> -- >>>> Dushan Abeyruwan >>>> *Senior Software Engineer* >>>> *Integration Technologies Team* >>>> *WSO2 Inc. http://wso2.com/* >>>> *Mobile:(+94)714408632* >>>> >>>> >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >>> >> >> >> -- >> *Afkham Azeez* >> Director of Architecture; WSO2, Inc.; http://wso2.com >> Member; Apache Software Foundation; http://www.apache.org/ >> * <http://www.apache.org/>** >> email: **[email protected]* <[email protected]>* cell: +94 77 3320919 >> blog: **http://blog.afkham.org* <http://blog.afkham.org>* >> twitter: **http://twitter.com/afkham_azeez*<http://twitter.com/afkham_azeez> >> * >> linked-in: **http://lk.linkedin.com/in/afkhamazeez* >> * >> * >> *Lean . Enterprise . Middleware* >> >> >> _______________________________________________ >> Dev mailing list >> [email protected] >> http://wso2.org/cgi-bin/mailman/listinfo/dev >> >> > > > -- > Dushan Abeyruwan > *Senior Software Engineer* > *Integration Technologies Team* > *WSO2 Inc. http://wso2.com/* > *Mobile:(+94)714408632* > >
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
