Hi Sashika, Please follow [1] to get your scenario working.
[1] http://isurad.blogspot.com/2016/02/wso2-identity-server- 510-behind_18.html *@Samuel*: This has been already discussed in [1], and have two L1 Documentation JIRAs [2,3]. [1] has been created before IS 5.2.0 release. I thought we follow the practice of closing out all the L1 documentation JIRAs before release. If we haven't been able to do it previously, we have to do it going forward. [1] "[Documentation][IS] Clustering documentation needs an update." in [email protected] [2] https://wso2.org/jira/browse/DOCUMENTATION-1924 [3] https://wso2.org/jira/browse/DOCUMENTATION-4746 Regards, Johann. On Thu, Oct 26, 2017 at 11:32 AM, Sashika Wijesinghe <[email protected]> wrote: > Hi Ashen, > > We have already configured the proxy port in the catalina-server.xml. > > Regards, > Sashika > > > > On Thu, Oct 26, 2017 at 11:19 AM, Ashen Weerathunga <[email protected]> > wrote: > >> Hi Sashika, >> >> Have you added the proxy port 443 for https connector in >> *catalina-server.xml*? >> That config needs to be there for the dashboard. >> >> Go to <IS_HOME>/repository/conf/tomcat/catalina-server.xml and add the >> proxy port 443 as below. >> >> <Connector protocol="org.apache.coyote.http11.Http11NioProtocol" >> port="9443" >> proxyPort="443" >> >> >> Thanks, >> Ashen >> >> On Thu, Oct 26, 2017 at 10:56 AM, Sashika Wijesinghe <[email protected]> >> wrote: >> >>> Hi Ashen, >>> >>> The IS clustering guide you pointed out does not contain any information >>> to configure the IS dashboard in a cluster setup. >>> >>> In my scenario, I can log in to the management console successfully but >>> the issue occurs when login to the IS dashboard. Could this be due to any >>> missing configuration? >>> >>> Thanks >>> Sashika >>> >>> On Thu, Oct 26, 2017 at 12:35 AM, Ashen Weerathunga <[email protected]> >>> wrote: >>> >>>> Hi Sashika, >>>> >>>> Can you check with IS 5.4.0 Clustered guide [1]. >>>> I guess it has the information you need. >>>> >>>> [1] https://docs.wso2.com/display/IS540/Clustered+Deployment >>>> >>>> Thanks, >>>> Ashen >>>> >>>> On Wed, Oct 25, 2017 at 5:34 PM, Asela Pathberiya <[email protected]> >>>> wrote: >>>> >>>>> >>>>> >>>>> On Tue, Oct 24, 2017 at 5:41 PM, Sashika Wijesinghe <[email protected]> >>>>> wrote: >>>>> >>>>>> Hi All, >>>>>> >>>>>> We have configured two IS nodes fronted by Nginx and the site.json >>>>>> with server host details as below. >>>>>> >>>>>> { >>>>>> "proxy" : { >>>>>> "proxyHost" : "is.dev.wso2.org", >>>>>> "proxyHTTPSPort" : "443", >>>>>> "proxyContextPath" : "", >>>>>> "servicePath" : "/services" >>>>>> } >>>>>> } >>>>>> >>>>>> >>>>>> When I log in to the Management Console with the admin user, >>>>>> authentication was successful but failed to login to the IS Dashboard >>>>>> with >>>>>> admin user or any user who have permission to the IS Dashboard login. >>>>>> >>>>>> Following is the authentication exception logged in the terminal. >>>>>> >>>>>> Any suggestion to solve this issue is highly appreciated. >>>>>> >>>>> >>>>> Don't we have a doc on configuring WSO2IS with Nginx ? >>>>> >>>>> Thanks, >>>>> Asela. >>>>> >>>>>> >>>>>> >>>>>> TID: [-1234] [] [2017-10-24 05:28:50,683] ERROR >>>>>> {org.wso2.carbon.identity.authenticator.saml2.sso.SAML2SSOAuthenticator} >>>>>> - Authentication Request is rejected. SAMLResponse AudienceRestriction >>>>>> validation failed. >>>>>> TID: [-1] [] [2017-10-24 05:28:50,683] WARN >>>>>> {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - >>>>>> Failed Administrator login attempt '[email protected][-1]' at >>>>>> [2017-10-24 05:28:50,683+0000] >>>>>> TID: [-1234] [] [2017-10-24 05:28:50,751] WARN >>>>>> {org.wso2.carbon.server.admin.module.handler.AuthenticationHandler} >>>>>> - Illegal access attempt at [2017-10-24 05:28:50,0751] from IP address >>>>>> 192.168.57.251 while trying to authenticate access to service >>>>>> WorkflowImplAdminService >>>>>> >>>>>> TID: [-1] [] [2017-10-24 05:28:49,939] INFO >>>>>> {org.wso2.carbon.core.clustering.hazelcast.HazelcastClusterMessageListener} >>>>>> - Received ClusteringMessage: org.wso2.carbon.identity.entit >>>>>> lement.PolicyStatusClusterMessage@d47e9b84 >>>>>> TID: [-1234] [] [2017-10-24 05:28:50,778] INFO { >>>>>> org.apache.axis2.transport.http.HTTPSender} - Unable to sendViaPost >>>>>> to url[https://is.dev.wso2.org/services/WorkflowImplAdminServic >>>>>> e.WorkflowImplAdminServiceHttpsSoap11Endpoint/] >>>>>> org.apache.axis2.AxisFault: Transport error: 401 Error: Unauthorized >>>>>> at org.apache.axis2.transport.http.HTTPSender.handleResponse(HT >>>>>> TPSender.java:326) >>>>>> at org.apache.axis2.transport.http.HTTPSender.sendViaPost(HTTPS >>>>>> ender.java:196) >>>>>> at org.apache.axis2.transport.http.HTTPSender.send(HTTPSender.j >>>>>> ava:77) >>>>>> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.w >>>>>> riteMessageWithCommons(CommonsHTTPTransportSender.java:451) >>>>>> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.i >>>>>> nvoke(CommonsHTTPTransportSender.java:278) >>>>>> at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:442) >>>>>> at org.apache.axis2.description.OutInAxisOperationClient.send(O >>>>>> utInAxisOperation.java:430) >>>>>> at org.apache.axis2.description.OutInAxisOperationClient.execut >>>>>> eImpl(OutInAxisOperation.java:225) >>>>>> at org.apache.axis2.client.OperationClient.execute(OperationCli >>>>>> ent.java:149) >>>>>> at org.apache.axis2.client.ServiceClient.sendReceive(ServiceCli >>>>>> ent.java:554) >>>>>> at org.jaggeryjs.modules.ws.WSRequestHostObject.jsFunction_send >>>>>> (WSRequestHostObject.java:379) >>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >>>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAcce >>>>>> ssorImpl.java:62) >>>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMe >>>>>> thodAccessorImpl.java:43) >>>>>> at java.lang.reflect.Method.invoke(Method.java:498) >>>>>> at org.mozilla.javascript.MemberBox.invoke(MemberBox.java:126) >>>>>> at org.mozilla.javascript.FunctionObject.call(FunctionObject.ja >>>>>> va:386) >>>>>> at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime >>>>>> .java:32) >>>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c >>>>>> _getProfileList_3(/dashboard/controllers/login-logout/SAML2S >>>>>> SOAuthenticationClient.jag:98) >>>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca >>>>>> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticatio >>>>>> nClient.jag) >>>>>> at org.mozilla.javascript.optimizer.OptRuntime.callName0(OptRun >>>>>> time.java:74) >>>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c >>>>>> _getBPSSessions_2(/dashboard/controllers/login-logout/SAML2S >>>>>> SOAuthenticationClient.jag:43) >>>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca >>>>>> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticatio >>>>>> nClient.jag) >>>>>> at org.mozilla.javascript.optimizer.OptRuntime.callName(OptRunt >>>>>> ime.java:63) >>>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c >>>>>> _login_1(/dashboard/controllers/login-logout/SAML2SSOAuthent >>>>>> icationClient.jag:34) >>>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca >>>>>> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticatio >>>>>> nClient.jag) >>>>>> at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime >>>>>> .java:32) >>>>>> at org.jaggeryjs.rhino.dashboard.c6._c_script_0(/dashboard//acs >>>>>> .jag:67) >>>>>> at org.jaggeryjs.rhino.dashboard.c6.call(/dashboard//acs.jag) >>>>>> at org.mozilla.javascript.ContextFactory.doTopCall(ContextFacto >>>>>> ry.java:394) >>>>>> at org.mozilla.javascript.ScriptRuntime.doTopCall(ScriptRuntime >>>>>> .java:3091) >>>>>> at org.jaggeryjs.rhino.dashboard.c6.call(/dashboard//acs.jag) >>>>>> at org.jaggeryjs.rhino.dashboard.c6.exec(/dashboard//acs.jag) >>>>>> at org.jaggeryjs.scriptengine.engine.RhinoEngine.execScript(Rhi >>>>>> noEngine.java:567) >>>>>> at org.jaggeryjs.scriptengine.engine.RhinoEngine.exec(RhinoEngi >>>>>> ne.java:273) >>>>>> at org.jaggeryjs.jaggery.core.manager.WebAppManager.exec(WebApp >>>>>> Manager.java:588) >>>>>> at org.jaggeryjs.jaggery.core.manager.WebAppManager.execute(Web >>>>>> AppManager.java:508) >>>>>> at org.jaggeryjs.jaggery.core.JaggeryServlet.doPost(JaggeryServ >>>>>> let.java:29) >>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:650) >>>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:731) >>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >>>>>> lter(ApplicationFilterChain.java:303) >>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >>>>>> licationFilterChain.java:208) >>>>>> at org.apache.catalina.core.ApplicationDispatcher.invoke(Applic >>>>>> ationDispatcher.java:743) >>>>>> at org.apache.catalina.core.ApplicationDispatcher.processReques >>>>>> t(ApplicationDispatcher.java:485) >>>>>> at org.apache.catalina.core.ApplicationDispatcher.doForward(App >>>>>> licationDispatcher.java:377) >>>>>> at org.apache.catalina.core.ApplicationDispatcher.forward(Appli >>>>>> cationDispatcher.java:337) >>>>>> at org.jaggeryjs.jaggery.core.JaggeryFilter.doFilter(JaggeryFil >>>>>> ter.java:21) >>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >>>>>> lter(ApplicationFilterChain.java:241) >>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >>>>>> licationFilterChain.java:208) >>>>>> at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilte >>>>>> r.java:52) >>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >>>>>> lter(ApplicationFilterChain.java:241) >>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >>>>>> licationFilterChain.java:208) >>>>>> at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilte >>>>>> r(HttpHeaderSecurityFilter.java:124) >>>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >>>>>> lter(ApplicationFilterChain.java:241) >>>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >>>>>> licationFilterChain.java:208) >>>>>> at org.apache.catalina.core.StandardWrapperValve.invoke(Standar >>>>>> dWrapperValve.java:219) >>>>>> at org.apache.catalina.core.StandardContextValve.invoke(Standar >>>>>> dContextValve.java:110) >>>>>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(A >>>>>> uthenticatorBase.java:506) >>>>>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHo >>>>>> stValve.java:169) >>>>>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorRepo >>>>>> rtValve.java:103) >>>>>> at org.wso2.carbon.identity.context.rewrite.valve.TenantContext >>>>>> RewriteValve.invoke(TenantContextRewriteValve.java:80) >>>>>> at org.wso2.carbon.identity.authz.valve.AuthorizationValve.invo >>>>>> ke(AuthorizationValve.java:91) >>>>>> at org.wso2.carbon.identity.auth.valve.AuthenticationValve.invo >>>>>> ke(AuthenticationValve.java:60) >>>>>> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInv >>>>>> ocation(CompositeValve.java:99) >>>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve$1.invoke >>>>>> (CarbonTomcatValve.java:47) >>>>>> at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke(Tena >>>>>> ntLazyLoaderValve.java:57) >>>>>> at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invok >>>>>> eValves(TomcatValveContainer.java:47) >>>>>> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(Comp >>>>>> ositeValve.java:62) >>>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetection >>>>>> Valve.invoke(CarbonStuckThreadDetectionValve.java:159) >>>>>> at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogVa >>>>>> lve.java:962) >>>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve. >>>>>> invoke(CarbonContextCreatorValve.java:57) >>>>>> at org.apache.catalina.core.StandardEngineValve.invoke(Standard >>>>>> EngineValve.java:116) >>>>>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAd >>>>>> apter.java:445) >>>>>> at org.apache.coyote.http11.AbstractHttp11Processor.process(Abs >>>>>> tractHttp11Processor.java:1115) >>>>>> at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler >>>>>> .process(AbstractProtocol.java:637) >>>>>> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun >>>>>> (NioEndpoint.java:1775) >>>>>> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(N >>>>>> ioEndpoint.java:1734) >>>>>> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPool >>>>>> Executor.java:1142) >>>>>> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoo >>>>>> lExecutor.java:617) >>>>>> at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.r >>>>>> un(TaskThread.java:61) >>>>>> at java.lang.Thread.run(Thread.java:748) >>>>>> TID: [-1234] [] [2017-10-24 05:28:50,782] INFO >>>>>> {JAGGERY.controllers.login-logout.SAML2SSOAuthenticationClient:jag} >>>>>> - JavaException: org.jaggeryjs.scriptengine.exceptions.ScriptException: >>>>>> Transport error: 401 Error: Unauthorized >>>>>> >>>>>> Thank You >>>>>> >>>>>> -- >>>>>> >>>>>> *Sashika WijesingheSoftware Engineer - QA Team* >>>>>> Mobile : +94 (0) 774537487 >>>>>> [email protected] >>>>>> >>>>> >>>>> >>>>> >>>>> -- >>>>> Thanks & Regards, >>>>> Asela >>>>> >>>>> ATL >>>>> Mobile : +94 777 625 933 <+94%2077%20762%205933> >>>>> +358 449 228 979 >>>>> >>>>> http://soasecurity.org/ >>>>> http://xacmlinfo.org/ >>>>> >>>> >>>> >>>> >>>> -- >>>> *Ashen Weerathunga* >>>> Software Engineer >>>> WSO2 Inc.: http://wso2.com >>>> lean.enterprise.middleware >>>> >>>> Email: [email protected] >>>> Mobile: +94716042995 <94716042995> >>>> LinkedIn: *http://lk.linkedin.com/in/ashenweerathunga >>>> <http://lk.linkedin.com/in/ashenweerathunga>* >>>> >>>> <http://wso2.com/signature> >>>> >>> >>> >>> >>> -- >>> >>> *Sashika WijesingheSoftware Engineer - QA Team* >>> Mobile : +94 (0) 774537487 >>> [email protected] >>> >> >> >> >> -- >> *Ashen Weerathunga* >> Software Engineer >> WSO2 Inc.: http://wso2.com >> lean.enterprise.middleware >> >> Email: [email protected] >> Mobile: +94716042995 <94716042995> >> LinkedIn: *http://lk.linkedin.com/in/ashenweerathunga >> <http://lk.linkedin.com/in/ashenweerathunga>* >> >> <http://wso2.com/signature> >> > > > > -- > > *Sashika WijesingheSoftware Engineer - QA Team* > Mobile : +94 (0) 774537487 > [email protected] > -- Thanks & Regards, *Johann Dilantha Nallathamby* Senior Lead Solutions Engineer WSO2, Inc. lean.enterprise.middleware Mobile - *+94777776950* Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>*
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
