Hi Ashen, We have already configured the proxy port in the catalina-server.xml.
Regards, Sashika On Thu, Oct 26, 2017 at 11:19 AM, Ashen Weerathunga <[email protected]> wrote: > Hi Sashika, > > Have you added the proxy port 443 for https connector in > *catalina-server.xml*? > That config needs to be there for the dashboard. > > Go to <IS_HOME>/repository/conf/tomcat/catalina-server.xml and add the > proxy port 443 as below. > > <Connector protocol="org.apache.coyote.http11.Http11NioProtocol" > port="9443" > proxyPort="443" > > > Thanks, > Ashen > > On Thu, Oct 26, 2017 at 10:56 AM, Sashika Wijesinghe <[email protected]> > wrote: > >> Hi Ashen, >> >> The IS clustering guide you pointed out does not contain any information >> to configure the IS dashboard in a cluster setup. >> >> In my scenario, I can log in to the management console successfully but >> the issue occurs when login to the IS dashboard. Could this be due to any >> missing configuration? >> >> Thanks >> Sashika >> >> On Thu, Oct 26, 2017 at 12:35 AM, Ashen Weerathunga <[email protected]> >> wrote: >> >>> Hi Sashika, >>> >>> Can you check with IS 5.4.0 Clustered guide [1]. >>> I guess it has the information you need. >>> >>> [1] https://docs.wso2.com/display/IS540/Clustered+Deployment >>> >>> Thanks, >>> Ashen >>> >>> On Wed, Oct 25, 2017 at 5:34 PM, Asela Pathberiya <[email protected]> >>> wrote: >>> >>>> >>>> >>>> On Tue, Oct 24, 2017 at 5:41 PM, Sashika Wijesinghe <[email protected]> >>>> wrote: >>>> >>>>> Hi All, >>>>> >>>>> We have configured two IS nodes fronted by Nginx and the site.json >>>>> with server host details as below. >>>>> >>>>> { >>>>> "proxy" : { >>>>> "proxyHost" : "is.dev.wso2.org", >>>>> "proxyHTTPSPort" : "443", >>>>> "proxyContextPath" : "", >>>>> "servicePath" : "/services" >>>>> } >>>>> } >>>>> >>>>> >>>>> When I log in to the Management Console with the admin user, >>>>> authentication was successful but failed to login to the IS Dashboard with >>>>> admin user or any user who have permission to the IS Dashboard login. >>>>> >>>>> Following is the authentication exception logged in the terminal. >>>>> >>>>> Any suggestion to solve this issue is highly appreciated. >>>>> >>>> >>>> Don't we have a doc on configuring WSO2IS with Nginx ? >>>> >>>> Thanks, >>>> Asela. >>>> >>>>> >>>>> >>>>> TID: [-1234] [] [2017-10-24 05:28:50,683] ERROR >>>>> {org.wso2.carbon.identity.authenticator.saml2.sso.SAML2SSOAuthenticator} >>>>> - Authentication Request is rejected. SAMLResponse AudienceRestriction >>>>> validation failed. >>>>> TID: [-1] [] [2017-10-24 05:28:50,683] WARN >>>>> {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - >>>>> Failed Administrator login attempt '[email protected][-1]' at >>>>> [2017-10-24 05:28:50,683+0000] >>>>> TID: [-1234] [] [2017-10-24 05:28:50,751] WARN >>>>> {org.wso2.carbon.server.admin.module.handler.AuthenticationHandler} - >>>>> Illegal access attempt at [2017-10-24 05:28:50,0751] from IP address >>>>> 192.168.57.251 while trying to authenticate access to service >>>>> WorkflowImplAdminService >>>>> >>>>> TID: [-1] [] [2017-10-24 05:28:49,939] INFO >>>>> {org.wso2.carbon.core.clustering.hazelcast.HazelcastClusterMessageListener} >>>>> - Received ClusteringMessage: org.wso2.carbon.identity.entit >>>>> lement.PolicyStatusClusterMessage@d47e9b84 >>>>> TID: [-1234] [] [2017-10-24 05:28:50,778] INFO { >>>>> org.apache.axis2.transport.http.HTTPSender} - Unable to sendViaPost >>>>> to url[https://is.dev.wso2.org/services/WorkflowImplAdminServic >>>>> e.WorkflowImplAdminServiceHttpsSoap11Endpoint/] >>>>> org.apache.axis2.AxisFault: Transport error: 401 Error: Unauthorized >>>>> at org.apache.axis2.transport.http.HTTPSender.handleResponse(HT >>>>> TPSender.java:326) >>>>> at org.apache.axis2.transport.http.HTTPSender.sendViaPost(HTTPS >>>>> ender.java:196) >>>>> at org.apache.axis2.transport.http.HTTPSender.send(HTTPSender.java:77) >>>>> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.w >>>>> riteMessageWithCommons(CommonsHTTPTransportSender.java:451) >>>>> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.i >>>>> nvoke(CommonsHTTPTransportSender.java:278) >>>>> at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:442) >>>>> at org.apache.axis2.description.OutInAxisOperationClient.send(O >>>>> utInAxisOperation.java:430) >>>>> at org.apache.axis2.description.OutInAxisOperationClient.execut >>>>> eImpl(OutInAxisOperation.java:225) >>>>> at org.apache.axis2.client.OperationClient.execute(OperationCli >>>>> ent.java:149) >>>>> at org.apache.axis2.client.ServiceClient.sendReceive(ServiceCli >>>>> ent.java:554) >>>>> at org.jaggeryjs.modules.ws.WSRequestHostObject.jsFunction_send >>>>> (WSRequestHostObject.java:379) >>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAcce >>>>> ssorImpl.java:62) >>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMe >>>>> thodAccessorImpl.java:43) >>>>> at java.lang.reflect.Method.invoke(Method.java:498) >>>>> at org.mozilla.javascript.MemberBox.invoke(MemberBox.java:126) >>>>> at org.mozilla.javascript.FunctionObject.call(FunctionObject.java:386) >>>>> at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime >>>>> .java:32) >>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c >>>>> _getProfileList_3(/dashboard/controllers/login-logout/SAML2S >>>>> SOAuthenticationClient.jag:98) >>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca >>>>> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticatio >>>>> nClient.jag) >>>>> at org.mozilla.javascript.optimizer.OptRuntime.callName0(OptRun >>>>> time.java:74) >>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c >>>>> _getBPSSessions_2(/dashboard/controllers/login-logout/SAML2S >>>>> SOAuthenticationClient.jag:43) >>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca >>>>> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticatio >>>>> nClient.jag) >>>>> at org.mozilla.javascript.optimizer.OptRuntime.callName(OptRunt >>>>> ime.java:63) >>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c >>>>> _login_1(/dashboard/controllers/login-logout/SAML2SSOAuthent >>>>> icationClient.jag:34) >>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca >>>>> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticatio >>>>> nClient.jag) >>>>> at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime >>>>> .java:32) >>>>> at org.jaggeryjs.rhino.dashboard.c6._c_script_0(/dashboard//acs >>>>> .jag:67) >>>>> at org.jaggeryjs.rhino.dashboard.c6.call(/dashboard//acs.jag) >>>>> at org.mozilla.javascript.ContextFactory.doTopCall(ContextFacto >>>>> ry.java:394) >>>>> at org.mozilla.javascript.ScriptRuntime.doTopCall(ScriptRuntime >>>>> .java:3091) >>>>> at org.jaggeryjs.rhino.dashboard.c6.call(/dashboard//acs.jag) >>>>> at org.jaggeryjs.rhino.dashboard.c6.exec(/dashboard//acs.jag) >>>>> at org.jaggeryjs.scriptengine.engine.RhinoEngine.execScript(Rhi >>>>> noEngine.java:567) >>>>> at org.jaggeryjs.scriptengine.engine.RhinoEngine.exec(RhinoEngi >>>>> ne.java:273) >>>>> at org.jaggeryjs.jaggery.core.manager.WebAppManager.exec(WebApp >>>>> Manager.java:588) >>>>> at org.jaggeryjs.jaggery.core.manager.WebAppManager.execute(Web >>>>> AppManager.java:508) >>>>> at org.jaggeryjs.jaggery.core.JaggeryServlet.doPost(JaggeryServ >>>>> let.java:29) >>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:650) >>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:731) >>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >>>>> lter(ApplicationFilterChain.java:303) >>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >>>>> licationFilterChain.java:208) >>>>> at org.apache.catalina.core.ApplicationDispatcher.invoke(Applic >>>>> ationDispatcher.java:743) >>>>> at org.apache.catalina.core.ApplicationDispatcher.processReques >>>>> t(ApplicationDispatcher.java:485) >>>>> at org.apache.catalina.core.ApplicationDispatcher.doForward(App >>>>> licationDispatcher.java:377) >>>>> at org.apache.catalina.core.ApplicationDispatcher.forward(Appli >>>>> cationDispatcher.java:337) >>>>> at org.jaggeryjs.jaggery.core.JaggeryFilter.doFilter(JaggeryFil >>>>> ter.java:21) >>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >>>>> lter(ApplicationFilterChain.java:241) >>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >>>>> licationFilterChain.java:208) >>>>> at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilte >>>>> r.java:52) >>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >>>>> lter(ApplicationFilterChain.java:241) >>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >>>>> licationFilterChain.java:208) >>>>> at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilte >>>>> r(HttpHeaderSecurityFilter.java:124) >>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >>>>> lter(ApplicationFilterChain.java:241) >>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >>>>> licationFilterChain.java:208) >>>>> at org.apache.catalina.core.StandardWrapperValve.invoke(Standar >>>>> dWrapperValve.java:219) >>>>> at org.apache.catalina.core.StandardContextValve.invoke(Standar >>>>> dContextValve.java:110) >>>>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(A >>>>> uthenticatorBase.java:506) >>>>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHo >>>>> stValve.java:169) >>>>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorRepo >>>>> rtValve.java:103) >>>>> at org.wso2.carbon.identity.context.rewrite.valve.TenantContext >>>>> RewriteValve.invoke(TenantContextRewriteValve.java:80) >>>>> at org.wso2.carbon.identity.authz.valve.AuthorizationValve.invo >>>>> ke(AuthorizationValve.java:91) >>>>> at org.wso2.carbon.identity.auth.valve.AuthenticationValve.invo >>>>> ke(AuthenticationValve.java:60) >>>>> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInv >>>>> ocation(CompositeValve.java:99) >>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve$1.invoke >>>>> (CarbonTomcatValve.java:47) >>>>> at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke(Tena >>>>> ntLazyLoaderValve.java:57) >>>>> at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invok >>>>> eValves(TomcatValveContainer.java:47) >>>>> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(Comp >>>>> ositeValve.java:62) >>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetection >>>>> Valve.invoke(CarbonStuckThreadDetectionValve.java:159) >>>>> at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogVa >>>>> lve.java:962) >>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve. >>>>> invoke(CarbonContextCreatorValve.java:57) >>>>> at org.apache.catalina.core.StandardEngineValve.invoke(Standard >>>>> EngineValve.java:116) >>>>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAd >>>>> apter.java:445) >>>>> at org.apache.coyote.http11.AbstractHttp11Processor.process(Abs >>>>> tractHttp11Processor.java:1115) >>>>> at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler >>>>> .process(AbstractProtocol.java:637) >>>>> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun >>>>> (NioEndpoint.java:1775) >>>>> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(N >>>>> ioEndpoint.java:1734) >>>>> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPool >>>>> Executor.java:1142) >>>>> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoo >>>>> lExecutor.java:617) >>>>> at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.r >>>>> un(TaskThread.java:61) >>>>> at java.lang.Thread.run(Thread.java:748) >>>>> TID: [-1234] [] [2017-10-24 05:28:50,782] INFO >>>>> {JAGGERY.controllers.login-logout.SAML2SSOAuthenticationClient:jag} - >>>>> JavaException: org.jaggeryjs.scriptengine.exceptions.ScriptException: >>>>> Transport error: 401 Error: Unauthorized >>>>> >>>>> Thank You >>>>> >>>>> -- >>>>> >>>>> *Sashika WijesingheSoftware Engineer - QA Team* >>>>> Mobile : +94 (0) 774537487 >>>>> [email protected] >>>>> >>>> >>>> >>>> >>>> -- >>>> Thanks & Regards, >>>> Asela >>>> >>>> ATL >>>> Mobile : +94 777 625 933 <+94%2077%20762%205933> >>>> +358 449 228 979 >>>> >>>> http://soasecurity.org/ >>>> http://xacmlinfo.org/ >>>> >>> >>> >>> >>> -- >>> *Ashen Weerathunga* >>> Software Engineer >>> WSO2 Inc.: http://wso2.com >>> lean.enterprise.middleware >>> >>> Email: [email protected] >>> Mobile: +94716042995 <94716042995> >>> LinkedIn: *http://lk.linkedin.com/in/ashenweerathunga >>> <http://lk.linkedin.com/in/ashenweerathunga>* >>> >>> <http://wso2.com/signature> >>> >> >> >> >> -- >> >> *Sashika WijesingheSoftware Engineer - QA Team* >> Mobile : +94 (0) 774537487 >> [email protected] >> > > > > -- > *Ashen Weerathunga* > Software Engineer > WSO2 Inc.: http://wso2.com > lean.enterprise.middleware > > Email: [email protected] > Mobile: +94716042995 <94716042995> > LinkedIn: *http://lk.linkedin.com/in/ashenweerathunga > <http://lk.linkedin.com/in/ashenweerathunga>* > > <http://wso2.com/signature> > -- *Sashika WijesingheSoftware Engineer - QA Team* Mobile : +94 (0) 774537487 [email protected]
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
