Camunda:Auth, Admin:admin is only used for the cockpit login. The other
passwords are stored below. Inside apihandler you will see the encrypted
password, in Camunda override.yaml you will see the websecurity section.
password1$, which is encrypted. Generally you can use the cryptoUtils unit
test to test the decryption to see if it is correct.
Thanks
-Steve
From: on behalf of "Sliwka, Wojciech (Nokia -
PL/Wroclaw)"
Reply-To: "onap-discuss@lists.onap.org" ,
"wojciech.sli...@nokia.com"
Date: Friday, September 28, 2018 at 3:04 AM
To: "onap-discuss@lists.onap.org"
Cc: "Krysiak, Piotr (Nokia - PL/Wroclaw)" , "Krysiak,
Adam (Nokia - PL/Wroclaw)" , "Koblosz, Sandra (Nokia -
PL/Wroclaw)" , "Golabek, Tomasz (Nokia - PL/Wroclaw)"
, "Darosz, Piotr (Nokia - PL/Wroclaw)"
Subject: [onap-discuss]
[SO][Camunda][Unauthorized][HeatBasedInstallation][Windriver]
Hi,
during testing on Windriver I noticed following exception in SO:
2018-09-27T11:23:47.457Z|1a22b244-c94f-487c-985b-77e8325fcff9|
org.onap.so.apihandler.common.CamundaClient - Camunda url is:
http://bpmn-infra:8081/mso/async/services/CreateGenericALaCarteServiceInstance<https://urldefense.proofpoint.com/v2/url?u=http-3A__bpmn-2Dinfra-3A8081_mso_async_services_CreateGenericALaCarteServiceInstance=DwQFBA=LFYZ-o9_HUMeMTSQicvjIg=shs6nPzThSiGJml9VXN0Eg=R_QMtE1sLwMvo9g3kaUpoM6oSdxvC6QJqgaF9FzsVvM=yRQ7MdziEtGTz1XhYQHfH23mry1U_qbKi1OPpDkVT0E=>
2018-09-27T11:23:47.462Z|1a22b244-c94f-487c-985b-77e8325fcff9|
org.onap.so.apihandler.common.RequestClient - Security exception
javax.crypto.BadPaddingException: Given final block not properly padded. Such
issues can arise if a bad key is used during decryption.
at com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:991)
at com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:847)
at com.sun.crypto.provider.AESCipher.engineDoFinal(AESCipher.java:446)
at javax.crypto.Cipher.doFinal(Cipher.java:2164)
at org.onap.so.utils.CryptoUtils.decrypt(CryptoUtils.java:68)
It looks like provided mso.camundaAuth in override.yaml (which is
F3473596C526938329DF877495B494DC374D1C4198ED3AD305EA3ADCBBDA1862) is not valid.
Due to that admin:admin is used which ends up with '401 Unauthorized'.
Do you know how mso.camundaAuth should be filled?
Attached more logs.
Env: Windriver Integration-SB-07
BR,
Wojtek
wojciech.sli...@nokia.com
-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#12727): https://lists.onap.org/g/onap-discuss/message/12727
Mute This Topic: https://lists.onap.org/mt/26374190/21656
Group Owner: onap-discuss+ow...@lists.onap.org
Unsubscribe: https://lists.onap.org/g/onap-discuss/unsub
[arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-