On Tue, Oct 24, 2017 at 5:41 PM, Sashika Wijesinghe <[email protected]>
wrote:
> Hi All,
>
> We have configured two IS nodes fronted by Nginx and the site.json with
> server host details as below.
>
> {
> "proxy" : {
> "proxyHost" : "is.dev.wso2.org",
> "proxyHTTPSPort" : "443",
> "proxyContextPath" : "",
> "servicePath" : "/services"
> }
> }
>
>
> When I log in to the Management Console with the admin user,
> authentication was successful but failed to login to the IS Dashboard with
> admin user or any user who have permission to the IS Dashboard login.
>
> Following is the authentication exception logged in the terminal.
>
> Any suggestion to solve this issue is highly appreciated.
>
Don't we have a doc on configuring WSO2IS with Nginx ?
Thanks,
Asela.
>
>
> TID: [-1234] [] [2017-10-24 05:28:50,683] ERROR {org.wso2.carbon.identity.
> authenticator.saml2.sso.SAML2SSOAuthenticator} - Authentication Request
> is rejected. SAMLResponse AudienceRestriction validation failed.
> TID: [-1] [] [2017-10-24 05:28:50,683] WARN {org.wso2.carbon.core.
> services.util.CarbonAuthenticationUtil} - Failed Administrator login
> attempt '[email protected][-1]' at [2017-10-24 05:28:50,683+0000]
> TID: [-1234] [] [2017-10-24 05:28:50,751] WARN
> {org.wso2.carbon.server.admin.module.handler.AuthenticationHandler} -
> Illegal access attempt at [2017-10-24 05:28:50,0751] from IP address
> 192.168.57.251 while trying to authenticate access to service
> WorkflowImplAdminService
>
> TID: [-1] [] [2017-10-24 05:28:49,939] INFO {org.wso2.carbon.core.
> clustering.hazelcast.HazelcastClusterMessageListener} - Received
> ClusteringMessage: org.wso2.carbon.identity.entitlement.
> PolicyStatusClusterMessage@d47e9b84
> TID: [-1234] [] [2017-10-24 05:28:50,778] INFO
> {org.apache.axis2.transport.http.HTTPSender} - Unable to sendViaPost to
> url[https://is.dev.wso2.org/services/WorkflowImplAdminService.
> WorkflowImplAdminServiceHttpsSoap11Endpoint/]
> org.apache.axis2.AxisFault: Transport error: 401 Error: Unauthorized
> at org.apache.axis2.transport.http.HTTPSender.handleResponse(HTTPSender.
> java:326)
> at org.apache.axis2.transport.http.HTTPSender.sendViaPost(
> HTTPSender.java:196)
> at org.apache.axis2.transport.http.HTTPSender.send(HTTPSender.java:77)
> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.
> writeMessageWithCommons(CommonsHTTPTransportSender.java:451)
> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.invoke(
> CommonsHTTPTransportSender.java:278)
> at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:442)
> at org.apache.axis2.description.OutInAxisOperationClient.send(
> OutInAxisOperation.java:430)
> at org.apache.axis2.description.OutInAxisOperationClient.executeImpl(
> OutInAxisOperation.java:225)
> at org.apache.axis2.client.OperationClient.execute(
> OperationClient.java:149)
> at org.apache.axis2.client.ServiceClient.sendReceive(
> ServiceClient.java:554)
> at org.jaggeryjs.modules.ws.WSRequestHostObject.jsFunction_send(
> WSRequestHostObject.java:379)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(
> NativeMethodAccessorImpl.java:62)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(
> DelegatingMethodAccessorImpl.java:43)
> at java.lang.reflect.Method.invoke(Method.java:498)
> at org.mozilla.javascript.MemberBox.invoke(MemberBox.java:126)
> at org.mozilla.javascript.FunctionObject.call(FunctionObject.java:386)
> at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime.java:32)
> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._
> c_getProfileList_3(/dashboard/controllers/login-logout/
> SAML2SSOAuthenticationClient.jag:98)
> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.
> call(/dashboard/controllers/login-logout/SAML2SSOAuthenticationClient.jag)
> at org.mozilla.javascript.optimizer.OptRuntime.
> callName0(OptRuntime.java:74)
> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._
> c_getBPSSessions_2(/dashboard/controllers/login-logout/
> SAML2SSOAuthenticationClient.jag:43)
> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.
> call(/dashboard/controllers/login-logout/SAML2SSOAuthenticationClient.jag)
> at org.mozilla.javascript.optimizer.OptRuntime.callName(
> OptRuntime.java:63)
> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._
> c_login_1(/dashboard/controllers/login-logout/
> SAML2SSOAuthenticationClient.jag:34)
> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.
> call(/dashboard/controllers/login-logout/SAML2SSOAuthenticationClient.jag)
> at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime.java:32)
> at org.jaggeryjs.rhino.dashboard.c6._c_script_0(/dashboard//acs.jag:67)
> at org.jaggeryjs.rhino.dashboard.c6.call(/dashboard//acs.jag)
> at org.mozilla.javascript.ContextFactory.doTopCall(
> ContextFactory.java:394)
> at org.mozilla.javascript.ScriptRuntime.doTopCall(ScriptRuntime.java:3091)
> at org.jaggeryjs.rhino.dashboard.c6.call(/dashboard//acs.jag)
> at org.jaggeryjs.rhino.dashboard.c6.exec(/dashboard//acs.jag)
> at org.jaggeryjs.scriptengine.engine.RhinoEngine.execScript(
> RhinoEngine.java:567)
> at org.jaggeryjs.scriptengine.engine.RhinoEngine.exec(
> RhinoEngine.java:273)
> at org.jaggeryjs.jaggery.core.manager.WebAppManager.exec(
> WebAppManager.java:588)
> at org.jaggeryjs.jaggery.core.manager.WebAppManager.execute(
> WebAppManager.java:508)
> at org.jaggeryjs.jaggery.core.JaggeryServlet.doPost(
> JaggeryServlet.java:29)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:650)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:731)
> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(
> ApplicationFilterChain.java:303)
> at org.apache.catalina.core.ApplicationFilterChain.doFilter(
> ApplicationFilterChain.java:208)
> at org.apache.catalina.core.ApplicationDispatcher.invoke(
> ApplicationDispatcher.java:743)
> at org.apache.catalina.core.ApplicationDispatcher.processRequest(
> ApplicationDispatcher.java:485)
> at org.apache.catalina.core.ApplicationDispatcher.doForward(
> ApplicationDispatcher.java:377)
> at org.apache.catalina.core.ApplicationDispatcher.forward(
> ApplicationDispatcher.java:337)
> at org.jaggeryjs.jaggery.core.JaggeryFilter.doFilter(
> JaggeryFilter.java:21)
> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(
> ApplicationFilterChain.java:241)
> at org.apache.catalina.core.ApplicationFilterChain.doFilter(
> ApplicationFilterChain.java:208)
> at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(
> ApplicationFilterChain.java:241)
> at org.apache.catalina.core.ApplicationFilterChain.doFilter(
> ApplicationFilterChain.java:208)
> at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilter(
> HttpHeaderSecurityFilter.java:124)
> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(
> ApplicationFilterChain.java:241)
> at org.apache.catalina.core.ApplicationFilterChain.doFilter(
> ApplicationFilterChain.java:208)
> at org.apache.catalina.core.StandardWrapperValve.invoke(
> StandardWrapperValve.java:219)
> at org.apache.catalina.core.StandardContextValve.invoke(
> StandardContextValve.java:110)
> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(
> AuthenticatorBase.java:506)
> at org.apache.catalina.core.StandardHostValve.invoke(
> StandardHostValve.java:169)
> at org.apache.catalina.valves.ErrorReportValve.invoke(
> ErrorReportValve.java:103)
> at org.wso2.carbon.identity.context.rewrite.valve.
> TenantContextRewriteValve.invoke(TenantContextRewriteValve.java:80)
> at org.wso2.carbon.identity.authz.valve.AuthorizationValve.invoke(
> AuthorizationValve.java:91)
> at org.wso2.carbon.identity.auth.valve.AuthenticationValve.
> invoke(AuthenticationValve.java:60)
> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInvocation(
> CompositeValve.java:99)
> at org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve$1.
> invoke(CarbonTomcatValve.java:47)
> at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke(
> TenantLazyLoaderValve.java:57)
> at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invokeValves(
> TomcatValveContainer.java:47)
> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(
> CompositeValve.java:62)
> at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValv
> e.invoke(CarbonStuckThreadDetectionValve.java:159)
> at org.apache.catalina.valves.AccessLogValve.invoke(
> AccessLogValve.java:962)
> at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve.invoke(
> CarbonContextCreatorValve.java:57)
> at org.apache.catalina.core.StandardEngineValve.invoke(
> StandardEngineValve.java:116)
> at org.apache.catalina.connector.CoyoteAdapter.service(
> CoyoteAdapter.java:445)
> at org.apache.coyote.http11.AbstractHttp11Processor.process(
> AbstractHttp11Processor.java:1115)
> at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.
> process(AbstractProtocol.java:637)
> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.
> doRun(NioEndpoint.java:1775)
> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.
> run(NioEndpoint.java:1734)
> at java.util.concurrent.ThreadPoolExecutor.runWorker(
> ThreadPoolExecutor.java:1142)
> at java.util.concurrent.ThreadPoolExecutor$Worker.run(
> ThreadPoolExecutor.java:617)
> at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(
> TaskThread.java:61)
> at java.lang.Thread.run(Thread.java:748)
> TID: [-1234] [] [2017-10-24 05:28:50,782] INFO {JAGGERY.controllers.login-
> logout.SAML2SSOAuthenticationClient:jag} - JavaException:
> org.jaggeryjs.scriptengine.exceptions.ScriptException: Transport error:
> 401 Error: Unauthorized
>
> Thank You
>
> --
>
> *Sashika WijesingheSoftware Engineer - QA Team*
> Mobile : +94 (0) 774537487
> [email protected]
>
--
Thanks & Regards,
Asela
ATL
Mobile : +94 777 625 933
+358 449 228 979
http://soasecurity.org/
http://xacmlinfo.org/
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev
