Hello. I have been using apache cxf fediz for some time now and I have managed to get the examples working and authorize sample users with the file implementation. Now I want to use the LDAP implementation. So I have an LDAP server with a Users OU that has all my sample users (posix accounts, bob,alice,etc). I have followed all the instructions from the https://cxf.apache.org/fediz-idp-11.html but when I start my servers (IDP/STS + RP) in localhost it prompts for authorization but never accepts my users. I have also removed RealmB, as I didn't need it as per instructions here <http://cxf.547215.n5.nabble.com/Question-about-CXF-Fediz-1-1-0-and-certificates-td5737010.html>
In https://localhost:9443/fediz-idp-sts I see the 2 WSDLs here 1)https://localhost:9443/fediz-idp-sts/REALMA/STSServiceTransportUT?wsdl 2)https://localhost:9443/fediz-idp-sts/STSServiceTransportUT?wsdl 1)Do you have any idea what could be wrong? 2)I am not sure if I should give admin or normal user to LdapContextSource.. Thanks a lot in advance! Ioannis Samartzis Here are some files and logs that could be helpful: *jaas.config* MyLDAP { > com.sun.security.auth.module.LdapLoginModule REQUIRED > userProvider="ldap://localhost:389/OU=Users,DC=ldap,DC=fediz"; > authIdentity="cn={USERNAME},OU=Users,DC=ldap,DC=fediz" > useSSL=false > debug=true; > }; > * ldap.xml* <?xml version="1.0" encoding="UTF-8"?> > <beans xmlns="http://www.springframework.org/schema/beans"; > xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"; xmlns:util=" > http://www.springframework.org/schema/util"; > xmlns:jaxws="http://cxf.apache.org/jaxws"; > xsi:schemaLocation=" > http://www.springframework.org/schema/beans > http://www.springframework.org/schema/beans/spring-beans-2.0.xsd > http://www.springframework.org/schema/util > http://www.springframework.org/schema/util/spring-util-2.0.xsd > http://cxf.apache.org/jaxws > http://cxf.apache.org/schemas/jaxws.xsd";> > > <util:list id="claimHandlerList"> > <ref bean="userClaimsHandler" /> > <ref bean="groupClaimsHandler" /> > </util:list> > > <bean id="contextSource" > class="org.springframework.ldap.core.support.LdapContextSource"> > <property name="url" value="ldap://localhost:389/"; /> > <property name="userDn" value="cn=admin,dc=ldap,dc=fediz" /> > <property name="password" value="myPass" /> > </bean> > > <bean id="ldapTemplate" > class="org.springframework.ldap.core.LdapTemplate"> > <constructor-arg ref="contextSource" /> > </bean> > > <util:map id="claimsToLdapAttributeMapping"> > <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname"; > value="givenName" /> > <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname"; > value="sn" /> > <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"; > value="mail" /> > <!-- <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/country"; > value="c" /> > <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/postalcode"; > value="postalCode" /> > <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/streetaddress"; > value="postalAddress" /> > <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/locality"; > value="town" /> > <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/stateorprovince"; > value="st" /> > <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/gender"; > value="gender" /> > <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/dateofbirth"; > value="dateofbirth" /> > --> > <entry key=" > http://schemas.xmlsoap.org/ws/2005/05/identity/claims/role"; > value="member" /> > </util:map> > > <bean id="userClaimsHandler" > class="org.apache.cxf.sts.claims.LdapClaimsHandler"> > <property name="ldapTemplate" ref="ldapTemplate" /> > <property name="claimsLdapAttributeMapping" > ref="claimsToLdapAttributeMapping" /> > <property name="userBaseDN" value="ou=Users,dc=ldap,dc=fediz" /> > <property name="userNameAttribute" value="uid" /> > </bean> > > <util:map id="appliesToScopeMapping"> > <entry key="urn:org:apache:cxf:fediz:fedizhelloworld" > value="Example" /> > </util:map> > > <bean id="groupClaimsHandler" > class="org.apache.cxf.sts.claims.LdapGroupClaimsHandler"> > <property name="ldapTemplate" ref="ldapTemplate" /> > <property name="userBaseDN" value="ou=Users,dc=ldap,dc=fediz" /> > <property name="groupBaseDN" value="ou=groups,dc=fediz,dc=org" > /> > <property name="appliesToScopeMapping" ref="appliesToScopeMapping" > /> > <property name="userNameAttribute" value="uid" /> > </bean> > > <bean > class="org.apache.ws.security.validate.JAASUsernameTokenValidator" > id="jaasUTValidator"> > <property name="contextName" value="MyLDAP"/> > </bean> > > <jaxws:endpoint id="transportSTSUT" > endpointName="ns1:TransportUT_Port" > serviceName="ns1:SecurityTokenService" > xmlns:ns1="http://docs.oasis-open.org/ws-sx/ws-trust/200512/"; > wsdlLocation="/WEB-INF/wsdl/ws-trust-1.4-service.wsdl" > address="/STSServiceTransportUT" > implementor="#transportSTSProviderBean"> > > <jaxws:properties> > <entry key="ws-security.ut.validator" > value-ref="jaasUTValidator"/> > </jaxws:properties> > </jaxws:endpoint> > > </beans> > And the endpoint part of *cxf-transport.xml*: [...] > <import resource="ldap.xml" /> > [...] > <jaxws:endpoint id="transportSTSRealmA" > implementor="#transportSTSProviderBean" > address="/REALMA/STSServiceTransportUT" > wsdlLocation="/WEB-INF/wsdl/ws-trust-1.4-service.wsdl" > xmlns:ns1="http://docs.oasis-open.org/ws-sx/ws-trust/200512/"; > serviceName="ns1:SecurityTokenService" > endpointName="ns1:Transport_Port"> > <jaxws:properties> > </jaxws:properties> > </jaxws:endpoint> > *Apache tomcat with IDP/STS output:* INFO: Server startup in 21891 ms > 2014-09-16 21:22:07,921 [http-bio-9443-exec-3] INFO > org.apache.cxf.fediz.service.idp.STSPortFilter - > STSAuthenticationProvider.wsdlLocation set to > https://localhost:9443/fediz-idp-sts/REALMA/STSServiceTransportUT?wsdl > 2014-09-16 21:22:08,209 [http-bio-9443-exec-3] INFO > org.springframework.web.context.support.GenericWebApplicationContext - > Refreshing Flow ApplicationContext [federation]: startup date [Tue Sep 16 > 21:22:08 EEST 2014]; parent: WebApplicationContext for namespace > 'idp-servlet' > 2014-09-16 21:22:08,212 [http-bio-9443-exec-3] INFO > org.springframework.beans.factory.support.DefaultListableBeanFactory - > Pre-instantiating singletons in > org.springframework.beans.factory.support.DefaultListableBeanFactory@693eac60: > defining beans > [org.springframework.context.annotation.internalConfigurationAnnotationProcessor,org.springframework.context.annotation.internalAutowiredAnnotationProcessor,org.springframework.context.annotation.internalRequiredAnnotationProcessor,org.springframework.context.annotation.internalCommonAnnotationProcessor,org.springframework.context.annotation.ConfigurationClassPostProcessor.importAwareProcessor]; > parent: > org.springframework.beans.factory.support.DefaultListableBeanFactory@6544f498 > 2014-09-16 21:22:08,430 [http-bio-9443-exec-3] INFO > org.springframework.web.context.support.GenericWebApplicationContext - > Refreshing Flow ApplicationContext [signinRequest]: startup date [Tue Sep > 16 21:22:08 EEST 2014]; parent: WebApplicationContext for namespace > 'idp-servlet' > 2014-09-16 21:22:08,457 [http-bio-9443-exec-3] INFO > org.springframework.beans.factory.support.DefaultListableBeanFactory - > Pre-instantiating singletons in > org.springframework.beans.factory.support.DefaultListableBeanFactory@29733df7: > defining beans > [org.springframework.context.annotation.internalConfigurationAnnotationProcessor,org.springframework.context.annotation.internalAutowiredAnnotationProcessor,org.springframework.context.annotation.internalRequiredAnnotationProcessor,org.springframework.context.annotation.internalCommonAnnotationProcessor,org.springframework.context.annotation.ConfigurationClassPostProcessor.importAwareProcessor]; > parent: > org.springframework.beans.factory.support.DefaultListableBeanFactory@6544f498 > 2014-09-16 21:22:08,531 [http-bio-9443-exec-3] INFO > org.apache.cxf.fediz.service.idp.beans.ProcessHRDSExpressionAction - HRDS > is null (Mock). > 2014-09-16 21:22:22,004 [http-bio-9443-exec-5] INFO > org.apache.cxf.services.SecurityTokenService.Transport_Port.STS - Inbound > Message > ---------------------------- > ID: 1 > Address: > https://localhost:9443/fediz-idp-sts/REALMA/STSServiceTransportUT?wsdl > Http-Method: GET > Content-Type: text/xml > Headers: {Accept=[*/*], cache-control=[no-cache], connection=[keep-alive], > content-type=[text/xml], host=[localhost:9443], pragma=[no-cache], > user-agent=[Apache CXF 2.7.11]} > -------------------------------------- > 2014-09-16 21:22:22,523 [http-bio-9443-exec-7] INFO > org.apache.cxf.services.SecurityTokenService.Transport_Port.STS - Inbound > Message > ---------------------------- > ID: 2 > Address: > https://localhost:9443/fediz-idp-sts/REALMA/STSServiceTransportUT?wsdl=ws-trust-1.4.wsdl > Http-Method: GET > Content-Type: text/xml > Headers: {Accept=[*/*], cache-control=[no-cache], connection=[keep-alive], > content-type=[text/xml], host=[localhost:9443], pragma=[no-cache], > user-agent=[Apache CXF 2.7.11]} > -------------------------------------- > 2014-09-16 21:22:22,912 [http-bio-9443-exec-4] WARN > org.apache.cxf.ws.policy.AssertionBuilderRegistryImpl - No assertion > builder for type { > http://www.w3.org/2006/05/addressing/wsdl}UsingAddressing registered. > 2014-09-16 21:22:23,003 [http-bio-9443-exec-4] WARN > org.apache.cxf.phase.PhaseInterceptorChain - Interceptor for { > http://docs.oasis-open.org/ws-sx/ws-trust/200512/}SecurityTokenService#{http://docs.oasis-open.org/ws-sx/ws-trust/200512/}Issue > has thrown exception, unwinding now > java.lang.IllegalArgumentException: URI is not absolute > at java.net.URI.toURL(URI.java:1095) > at > org.apache.cxf.transport.http.URLConnectionHTTPConduit.createConnection(URLConnectionHTTPConduit.java:92) > at > org.apache.cxf.transport.http.URLConnectionHTTPConduit.setupConnection(URLConnectionHTTPConduit.java:103) > at > org.apache.cxf.transport.http.HTTPConduit.prepare(HTTPConduit.java:477) > at > org.apache.cxf.interceptor.MessageSenderInterceptor.handleMessage(MessageSenderInterceptor.java:46) > at > org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:272) > at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:570) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:479) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:382) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:335) > at > org.apache.cxf.ws.security.trust.AbstractSTSClient.issue(AbstractSTSClient.java:782) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:62) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:56) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:52) > at > org.apache.cxf.fediz.service.idp.STSAuthenticationProvider.authenticate(STSAuthenticationProvider.java:117) > at > org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:156) > at > org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:174) > at > org.springframework.security.web.authentication.www.BasicAuthenticationFilter.doFilter(BasicAuthenticationFilter.java:168) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:87) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.apache.cxf.fediz.service.idp.STSPortFilter.doFilter(STSPortFilter.java:65) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192) > at > org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:160) > at > org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346) > at > org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:259) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171) > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) > at > org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) > at > org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070) > at > org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) > at > org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316) > at > java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) > at > java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) > at > org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) > at java.lang.Thread.run(Thread.java:745) > 2014-09-16 21:22:23,056 [http-bio-9443-exec-4] INFO > org.apache.cxf.fediz.service.idp.STSAuthenticationProvider - Failed to > authenticate user 'Bob' > java.lang.IllegalArgumentException: URI is not absolute > at java.net.URI.toURL(URI.java:1095) > at > org.apache.cxf.transport.http.URLConnectionHTTPConduit.createConnection(URLConnectionHTTPConduit.java:92) > at > org.apache.cxf.transport.http.URLConnectionHTTPConduit.setupConnection(URLConnectionHTTPConduit.java:103) > at > org.apache.cxf.transport.http.HTTPConduit.prepare(HTTPConduit.java:477) > at > org.apache.cxf.interceptor.MessageSenderInterceptor.handleMessage(MessageSenderInterceptor.java:46) > at > org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:272) > at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:570) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:479) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:382) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:335) > at > org.apache.cxf.ws.security.trust.AbstractSTSClient.issue(AbstractSTSClient.java:782) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:62) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:56) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:52) > at > org.apache.cxf.fediz.service.idp.STSAuthenticationProvider.authenticate(STSAuthenticationProvider.java:117) > at > org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:156) > at > org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:174) > at > org.springframework.security.web.authentication.www.BasicAuthenticationFilter.doFilter(BasicAuthenticationFilter.java:168) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:87) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.apache.cxf.fediz.service.idp.STSPortFilter.doFilter(STSPortFilter.java:65) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192) > at > org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:160) > at > org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346) > at > org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:259) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171) > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) > at > org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) > at > org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070) > at > org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) > at > org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316) > at > java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) > at > java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) > at > org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) > at java.lang.Thread.run(Thread.java:745) > 2014-09-16 21:22:29,058 [http-bio-9443-exec-9] WARN > org.apache.cxf.phase.PhaseInterceptorChain - Interceptor for { > http://docs.oasis-open.org/ws-sx/ws-trust/200512/}SecurityTokenService#{http://docs.oasis-open.org/ws-sx/ws-trust/200512/}Issue > has thrown exception, unwinding now > java.lang.IllegalArgumentException: URI is not absolute > at java.net.URI.toURL(URI.java:1095) > at > org.apache.cxf.transport.http.URLConnectionHTTPConduit.createConnection(URLConnectionHTTPConduit.java:92) > at > org.apache.cxf.transport.http.URLConnectionHTTPConduit.setupConnection(URLConnectionHTTPConduit.java:103) > at > org.apache.cxf.transport.http.HTTPConduit.prepare(HTTPConduit.java:477) > at > org.apache.cxf.interceptor.MessageSenderInterceptor.handleMessage(MessageSenderInterceptor.java:46) > at > org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:272) > at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:570) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:479) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:382) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:335) > at > org.apache.cxf.ws.security.trust.AbstractSTSClient.issue(AbstractSTSClient.java:782) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:62) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:56) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:52) > at > org.apache.cxf.fediz.service.idp.STSAuthenticationProvider.authenticate(STSAuthenticationProvider.java:117) > at > org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:156) > at > org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:174) > at > org.springframework.security.web.authentication.www.BasicAuthenticationFilter.doFilter(BasicAuthenticationFilter.java:168) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:87) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.apache.cxf.fediz.service.idp.STSPortFilter.doFilter(STSPortFilter.java:65) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192) > at > org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:160) > at > org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346) > at > org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:259) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171) > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) > at > org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) > at > org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070) > at > org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) > at > org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316) > at > java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) > at > java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) > at > org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) > at java.lang.Thread.run(Thread.java:745) > 2014-09-16 21:22:29,059 [http-bio-9443-exec-9] INFO > org.apache.cxf.fediz.service.idp.STSAuthenticationProvider - Failed to > authenticate user 'bob' > java.lang.IllegalArgumentException: URI is not absolute > at java.net.URI.toURL(URI.java:1095) > at > org.apache.cxf.transport.http.URLConnectionHTTPConduit.createConnection(URLConnectionHTTPConduit.java:92) > at > org.apache.cxf.transport.http.URLConnectionHTTPConduit.setupConnection(URLConnectionHTTPConduit.java:103) > at > org.apache.cxf.transport.http.HTTPConduit.prepare(HTTPConduit.java:477) > at > org.apache.cxf.interceptor.MessageSenderInterceptor.handleMessage(MessageSenderInterceptor.java:46) > at > org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:272) > at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:570) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:479) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:382) > at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:335) > at > org.apache.cxf.ws.security.trust.AbstractSTSClient.issue(AbstractSTSClient.java:782) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:62) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:56) > at > org.apache.cxf.ws.security.trust.STSClient.requestSecurityToken(STSClient.java:52) > at > org.apache.cxf.fediz.service.idp.STSAuthenticationProvider.authenticate(STSAuthenticationProvider.java:117) > at > org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:156) > at > org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:174) > at > org.springframework.security.web.authentication.www.BasicAuthenticationFilter.doFilter(BasicAuthenticationFilter.java:168) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:87) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.apache.cxf.fediz.service.idp.STSPortFilter.doFilter(STSPortFilter.java:65) > at > org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342) > at > org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192) > at > org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:160) > at > org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346) > at > org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:259) > at > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) > at > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) > at > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) > at > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) > at > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171) > at > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) > at > org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) > at > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) > at > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) > at > org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070) > at > org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) > at > org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316) > at > java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) > at > java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) > at > org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) > at java.lang.Thread.run(Thread.java:745) >
