I mean the error related to the namespace while evaluating XACML requests. Is it fixed now?
On Tue, Jul 31, 2012 at 1:45 PM, Asela Pathberiya <[email protected]> wrote: > > > On Tue, Jul 31, 2012 at 1:31 PM, Andun Gunawardena <[email protected]> wrote: > >> Thanks Asela. I have checked, it is OK now. But still need the fix for >> Entitlement Stub for continue the work. > > > There is no any issue with Entitlement Stub. I guess you mean any other > error? Please check, may be fix now. > > Thanks, > Asela. > > >> >> >> On Tue, Jul 31, 2012 at 12:13 PM, Asela Pathberiya <[email protected]>wrote: >> >>> >>> >>> On Tue, Jul 31, 2012 at 9:57 AM, Andun Gunawardena <[email protected]>wrote: >>> >>>> Hi all, >>>> >>>> I have corrected the ESB mediator issue. Attached the patches to >>>> https://wso2.org/jira/browse/CARBON-13752 >>>> >>> >>> Thanks for providing a patch. I did some modifications and applied. >>> >>> Thanks, >>> Asela. >>> >>> >>>> >>>> Thanks >>>> AndunSLG >>>> >>>> >>>> On Tue, Jul 31, 2012 at 9:01 AM, Andun Gunawardena <[email protected]>wrote: >>>> >>>>> Hi All, >>>>> >>>>> I think I have found the problem here,the exception which is given >>>>> below is thrown by org.wso2.carbon.core.services.authentication. >>>>> AuthenticationUtil class's public static void >>>>> validateRemoteAddress(String address) method. >>>>> >>>>> Authentication Failed : Invalid remote address passed - >>>>> https://10.200.3.118: >>>>> ${carbon.management.port}${carbon.context}/services/ >>>>> >>>>> I have debugged the code and found that ESB is sending something like >>>>> this "https://${carbon.local.ip}:${carbon.management.port}${carbo >>>>> n.context}/services/" as the argument for this method. So >>>>> our first thought was this argument should be corrected like this " >>>>> https://localhost:9444/service";. But even if I pass this as the >>>>> argument the method gives exceptions. >>>>> So I checked with Asela and this argument should be a IP address. Not >>>>> something like this. So have to correct the mediator in ESB. So I will >>>>> look >>>>> in to that. >>>>> >>>>> Thanks >>>>> AndunSLG >>>>> >>>>> On Mon, Jul 30, 2012 at 10:29 PM, Dushan Abeyruwan <[email protected]>wrote: >>>>> >>>>>> Hi >>>>>> I think security guys should answer this, because I see a >>>>>> significant changers in the entitlement mediator compare to 4.0.3 >>>>>> >>>>>> 403 >>>>>> configContext = cfgCtx; >>>>>> * serverUrl = getServerURL(serverUrl, >>>>>> msgContext.getConfigurationContext());* >>>>>> client = new EntitlementServiceClient(remoteServiceUrl, >>>>>> configContext, >>>>>> remoteServiceUserName, remoteServicePassword, >>>>>> serverUrl); >>>>>> decision = client.getDecision(userName, resourceName, >>>>>> action, env); >>>>>> >>>>>> 450 >>>>>> * decision = client.getDecision(userName, resourceName, >>>>>> action, env);* >>>>>> >>>>>> entitlementDecision = new >>>>>> EntitlementDecision(); >>>>>> >>>>>> entitlementDecision.setCachedTime(Calendar.getInstance().getTimeInMillis()); >>>>>> entitlementDecision.setResponse(decision); >>>>>> simpleDecisionCache.put(key, >>>>>> entitlementDecision); >>>>>> >>>>>> and *getServerURL is depreciated method in 450* >>>>>> >>>>>> private static String getServerURL(String url, >>>>>> ConfigurationContext config) { >>>>>> if (url.indexOf("${carbon.https.port}") != -1) { >>>>>> String httpsPort = CarbonUtils.getTransportPort(config, >>>>>> "https") + ""; >>>>>> url = url.replace("${carbon.https.port}", httpsPort); >>>>>> } >>>>>> >>>>>> if (url.indexOf("${carbon.management.port}") != -1) { >>>>>> String httpsPort = CarbonUtils.getTransportPort(config, >>>>>> "https") + ""; >>>>>> url = url.replace("${carbon.management.port}", httpsPort); >>>>>> } >>>>>> >>>>>> if (url.indexOf("${carbon.context}") != -1) { >>>>>> // We need not to worry about context here - just need >>>>>> the server url for logging >>>>>> url = url.replace("${carbon.context}", ""); >>>>>> } >>>>>> return url; >>>>>> } >>>>>> >>>>>> >>>>>> >>>>>> cheers >>>>>> Dushan >>>>>> >>>>>> >>>>>> On Mon, Jul 30, 2012 at 9:30 PM, Afkham Azeez <[email protected]> wrote: >>>>>> >>>>>>> This means due to some reason the other two System properties are >>>>>>> not set. Need to find out why those are not set. >>>>>>> >>>>>>> >>>>>>> On Mon, Jul 30, 2012 at 6:20 PM, Andun Gunawardena >>>>>>> <[email protected]>wrote: >>>>>>> >>>>>>>> Hi, >>>>>>>> >>>>>>>> I have debugged the org.wso2.carbon.core.util.Utils class's >>>>>>>> method public static String replaceSystemProperty(String text) and >>>>>>>> notice >>>>>>>> that the the argument is passed as >>>>>>>> "https://${carbon.local.ip}:${carbon.management.port}${carbon.context}/services/"; >>>>>>>> and comes out as >>>>>>>> "https://10.200.3.177:${carbon.management.port}${carbon.context}/services/";. >>>>>>>> Is there a error ? Why the IP address is only replaced while others are >>>>>>>> remain same. >>>>>>>> >>>>>>>> Thanks >>>>>>>> AndunSLG >>>>>>>> >>>>>>>> >>>>>>>> On Mon, Jul 30, 2012 at 6:11 PM, Dushan Abeyruwan >>>>>>>> <[email protected]>wrote: >>>>>>>> >>>>>>>>> Hi >>>>>>>>> IMO Seems like its a bug with at ServerConfiguration it gives >>>>>>>>> https://10.200.3.118:${carbon.management.port}${carbon.context}/services/ >>>>>>>>> , If I remember correctly we did some fix to >>>>>>>>> mediation-initializer some time back, >>>>>>>>> >>>>>>>>> >>>>>>>>> [Carbon-dev] ESB stratup failure java.net.MalformedURLException: >>>>>>>>> For input string: "${carbon.management.port}${carbon.context}" >>>>>>>>> carbon_dev >>>>>>>>> x >>>>>>>>> Rajika Kumarasiri >>>>>>>>> via<http://support.google.com/mail/bin/answer.py?hl=en&ctx=mail&answer=1311182> >>>>>>>>> wso2.org >>>>>>>>> Feb 23 >>>>>>>>> to carbon-dev >>>>>>>>> [2012-02-23 15:54:11,995] ERROR - ServiceBusInitializer Error >>>>>>>>> while parsing the server URL https://10.200.3.196: >>>>>>>>> ${carbon.management.port}${carbon.context}/services/ >>>>>>>>> java.net.MalformedURLException: For input string: >>>>>>>>> "${carbon.management.port}${carbon.context}" >>>>>>>>> at java.net.URL.<init>(URL.java:601) >>>>>>>>> at java.net.URL.<init>(URL.java:464) >>>>>>>>> at java.net.URL.<init>(URL.java:413) >>>>>>>>> at org.wso2.carbon.mediation.initializer >>>>>>>>> .ServiceBusInitializer.setHttpsProtForConsole(ServiceBusInitializer.java:323) >>>>>>>>> at org.wso2.carbon.mediation.initializer.Servic >>>>>>>>> >>>>>>>>> Would this be related to the same ? >>>>>>>>> >>>>>>>>> >>>>>>>>> cheers >>>>>>>>> Dushan >>>>>>>>> >>>>>>>>> On Mon, Jul 30, 2012 at 6:02 PM, Andun Gunawardena < >>>>>>>>> [email protected]> wrote: >>>>>>>>> >>>>>>>>>> Hi All, >>>>>>>>>> >>>>>>>>>> I am trying to do Test Automation for the Entitlement Mediator. >>>>>>>>>> I have configured the ESB, IS as given in >>>>>>>>>> [1]<http://wso2.org/library/articles/2010/10/using-xacml-fine-grained-authorization-wso2-platform>. >>>>>>>>>> When the request is come to the created Entitlement Proxy At the >>>>>>>>>> ESB, there >>>>>>>>>> is unexpected error shown in the console of IS. It is given below. It >>>>>>>>>> related to the ServerURL system property of Carbon. What will be the >>>>>>>>>> solution ? >>>>>>>>>> >>>>>>>>>> Thanks >>>>>>>>>> AndunSLG >>>>>>>>>> >>>>>>>>>> [1] - >>>>>>>>>> http://wso2.org/library/articles/2010/10/using-xacml-fine-grained-authorization-wso2-platform >>>>>>>>>> >>>>>>>>>> Exception Sequence : >>>>>>>>>> >>>>>>>>>> [2012-07-30 17:51:06,187] WARN >>>>>>>>>> {org.wso2.carbon.core.services.authentication.AuthenticationUtil} - >>>>>>>>>> Could >>>>>>>>>> not find IP address for domain name : https://10.200.3.118: >>>>>>>>>> ${carbon.management.port}${carbon.context}/services/ >>>>>>>>>> [2012-07-30 17:51:06,188] ERROR >>>>>>>>>> {org.wso2.carbon.core.services.authentication.AuthenticationAdmin} - >>>>>>>>>> Authentication >>>>>>>>>> Failed : Invalid remote address passed - https://10.200.3.118: >>>>>>>>>> ${carbon.management.port}${carbon.context}/services/ >>>>>>>>>> org.wso2.carbon.core.common.AuthenticationException: >>>>>>>>>> Authentication Failed : Invalid remote address passed - >>>>>>>>>> https://10.200.3.118: >>>>>>>>>> ${carbon.management.port}${carbon.context}/services/ >>>>>>>>>> at >>>>>>>>>> org.wso2.carbon.core.services.authentication.AuthenticationUtil.validateRemoteAddress(AuthenticationUtil.java:178) >>>>>>>>>> at >>>>>>>>>> org.wso2.carbon.core.services.authentication.AuthenticationAdmin.login(AuthenticationAdmin.java:86) >>>>>>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>>>>>>>> at >>>>>>>>>> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) >>>>>>>>>> at >>>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) >>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:597) >>>>>>>>>> at >>>>>>>>>> org.apache.axis2.rpc.receivers.RPCUtil.invokeServiceClass(RPCUtil.java:212) >>>>>>>>>> at >>>>>>>>>> org.apache.axis2.rpc.receivers.RPCMessageReceiver.invokeBusinessLogic(RPCMessageReceiver.java:117) >>>>>>>>>> at >>>>>>>>>> org.apache.axis2.receivers.AbstractInOutMessageReceiver.invokeBusinessLogic(AbstractInOutMessageReceiver.java:40) >>>>>>>>>> at >>>>>>>>>> org.apache.axis2.receivers.AbstractMessageReceiver.receive(AbstractMessageReceiver.java:110) >>>>>>>>>> at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:181) >>>>>>>>>> at >>>>>>>>>> org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HTTPTransportUtils.java:172) >>>>>>>>>> at >>>>>>>>>> org.apache.axis2.transport.http.AxisServlet.doPost(AxisServlet.java:146) >>>>>>>>>> at >>>>>>>>>> org.wso2.carbon.core.transports.CarbonServlet.doPost(CarbonServlet.java:205) >>>>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:641) >>>>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) >>>>>>>>>> at >>>>>>>>>> org.eclipse.equinox.http.servlet.internal.ServletRegistration.handleRequest(ServletRegistration.java:90) >>>>>>>>>> at >>>>>>>>>> org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias(ProxyServlet.java:111) >>>>>>>>>> at >>>>>>>>>> org.eclipse.equinox.http.servlet.internal.ProxyServlet.service(ProxyServlet.java:67) >>>>>>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) >>>>>>>>>> at >>>>>>>>>> org.wso2.carbon.tomcat.ext.servlet.DelegationServlet.service(DelegationServlet.java:58) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) >>>>>>>>>> at >>>>>>>>>> org.wso2.carbon.tomcat.ext.filter.CharacterSetFilter.doFilter(CharacterSetFilter.java:61) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:225) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:123) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:168) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98) >>>>>>>>>> at >>>>>>>>>> org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(CompositeValve.java:133) >>>>>>>>>> at >>>>>>>>>> org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValve.invoke(CarbonStuckThreadDetectionValve.java:156) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:927) >>>>>>>>>> at >>>>>>>>>> org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve.invoke(CarbonContextCreatorValve.java:49) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118) >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:407) >>>>>>>>>> at >>>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1001) >>>>>>>>>> at >>>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:579) >>>>>>>>>> at >>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1653) >>>>>>>>>> at >>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) >>>>>>>>>> at >>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) >>>>>>>>>> at java.lang.Thread.run(Thread.java:662) >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> _______________________________________________ >>>>>>>>>> Dev mailing list >>>>>>>>>> [email protected] >>>>>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>>>>>> >>>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> -- >>>>>>>>> Dushan Abeyruwan >>>>>>>>> *Senior Software Engineer* >>>>>>>>> *Integration Technologies Team* >>>>>>>>> *WSO2 Inc. http://wso2.com/* >>>>>>>>> *Mobile:(+94)714408632* >>>>>>>>> >>>>>>>>> >>>>>>>> >>>>>>>> _______________________________________________ >>>>>>>> Dev mailing list >>>>>>>> [email protected] >>>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>>>> >>>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> *Afkham Azeez* >>>>>>> Director of Architecture; WSO2, Inc.; http://wso2.com >>>>>>> Member; Apache Software Foundation; http://www.apache.org/ >>>>>>> * <http://www.apache.org/>** >>>>>>> email: **[email protected]* <[email protected]>* cell: +94 77 3320919 >>>>>>> blog: **http://blog.afkham.org* <http://blog.afkham.org>* >>>>>>> twitter: >>>>>>> **http://twitter.com/afkham_azeez*<http://twitter.com/afkham_azeez> >>>>>>> * >>>>>>> linked-in: **http://lk.linkedin.com/in/afkhamazeez* >>>>>>> * >>>>>>> * >>>>>>> *Lean . Enterprise . Middleware* >>>>>>> >>>>>>> >>>>>>> _______________________________________________ >>>>>>> Dev mailing list >>>>>>> [email protected] >>>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>>> >>>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> Dushan Abeyruwan >>>>>> *Senior Software Engineer* >>>>>> *Integration Technologies Team* >>>>>> *WSO2 Inc. http://wso2.com/* >>>>>> *Mobile:(+94)714408632* >>>>>> >>>>>> >>>>> >>>> >>> >> >
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
