By: Mike Graves user 04 Jan 2022 at 12:59 p.m. CST

15 Responses
Mike Graves gravatar
We are using Gluu server 4.3 with cache refresh and default authentication using Active Directory. This configuration is working fine but I cannot authenticate when using Casa. When logging in via Casa the user receives "Failed to authenticate". Prior to ldap authentication change to Active Directory Casa login was fine. Below are related log files. Thanks oxauth.log: 2022-01-04 18:33:40,546 INFO [qtp536765369-19] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:278) - Authentication success for Client: '7547d4c0-8309-4334-9643-d753527a2dc1' 2022-01-04 18:33:40,623 INFO [qtp536765369-15] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:278) - Authentication success for Client: '7547d4c0-8309-4334-9643-d753527a2dc1' 2022-01-04 18:33:40,693 ERROR [qtp536765369-15] [org.gluu.oxauth.service.SessionIdService] (SessionIdService.java:793) - Failed to get session by dn: oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu org.gluu.persist.exception.EntryPersistenceException: Failed to find entry: oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu at org.gluu.persist.ldap.impl.LdapEntryManager.find(LdapEntryManager.java:405) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:713) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:592) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:579) ~[gluu-orm-core-4.3.0.Final.jar:?] at jdk.internal.reflect.GeneratedMethodAccessor90.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.jboss.weld.bean.proxy.AbstractBeanInstance.invoke(AbstractBeanInstance.java:38) ~[weld-core-impl-3.1.8.Final.jar:3.1.8.Final] at org.jboss.weld.bean.proxy.ProxyMethodHandler.invoke(ProxyMethodHandler.java:106) ~[weld-core-impl-3.1.8.Final.jar:3.1.8.Final] at org.gluu.persist.PersistenceEntryManager$EntityManager$1948487569$Proxy$_$$_WeldClientProxy.find(Unknown Source) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.oxauth.service.SessionIdService.getSessionByDn(SessionIdService.java:787) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionById(SessionIdService.java:746) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionId(SessionIdService.java:820) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionId(SessionIdService.java:811) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService$Proxy$_$$_WeldClientProxy.getSessionId(Unknown Source) ~[classes/:?] at org.gluu.oxauth.auth.AuthenticationFilter.doFilter(AuthenticationFilter.java:199) ~[classes/:?] at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:193) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:548) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:602) ~[jetty-security-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1624) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1434) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:501) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1594) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1349) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:234) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.Server.handle(Server.java:516) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:388) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:633) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:380) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:277) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:105) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.ChannelEndPoint$1.run(ChannelEndPoint.java:104) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:338) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:315) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:173) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:131) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:386) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:883) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:1034) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at java.lang.Thread.run(Thread.java:834) [?:?] Caused by: org.gluu.persist.exception.operation.SearchException: Failed to lookup entry by DN: 'oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu' at org.gluu.persist.ldap.operation.impl.LdapOperationServiceImpl.lookupImpl(LdapOperationServiceImpl.java:629) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.ldap.operation.impl.LdapOperationServiceImpl.lookup(LdapOperationServiceImpl.java:605) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.ldap.impl.LdapEntryManager.find(LdapEntryManager.java:399) ~[gluu-orm-ldap-4.3.0.Final.jar:?] ... 50 more 2022-01-04 18:33:40,698 ERROR [qtp536765369-15] [org.gluu.oxauth.service.SessionIdService] (SessionIdService.java:793) - Failed to get session by dn: oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu org.gluu.persist.exception.EntryPersistenceException: Failed to find entry: oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu at org.gluu.persist.ldap.impl.LdapEntryManager.find(LdapEntryManager.java:405) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:713) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:592) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:579) ~[gluu-orm-core-4.3.0.Final.jar:?] at jdk.internal.reflect.GeneratedMethodAccessor90.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.jboss.weld.bean.proxy.AbstractBeanInstance.invoke(AbstractBeanInstance.java:38) ~[weld-core-impl-3.1.8.Final.jar:3.1.8.Final] at org.jboss.weld.bean.proxy.ProxyMethodHandler.invoke(ProxyMethodHandler.java:106) ~[weld-core-impl-3.1.8.Final.jar:3.1.8.Final] at org.gluu.persist.PersistenceEntryManager$EntityManager$1948487569$Proxy$_$$_WeldClientProxy.find(Unknown Source) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.oxauth.service.SessionIdService.getSessionByDn(SessionIdService.java:787) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionById(SessionIdService.java:746) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionId(SessionIdService.java:820) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionId(SessionIdService.java:811) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionId(SessionIdService.java:807) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService$Proxy$_$$_WeldClientProxy.getSessionId(Unknown Source) ~[classes/:?] at org.gluu.oxauth.service.DeviceAuthorizationService.getUserCodeFromSession(DeviceAuthorizationService.java:176) ~[classes/:?] at org.gluu.oxauth.authorize.ws.rs.AuthorizeRestWebServiceImpl.requestAuthorization(AuthorizeRestWebServiceImpl.java:230) ~[classes/:?] at org.gluu.oxauth.authorize.ws.rs.AuthorizeRestWebServiceImpl.requestAuthorizationGet(AuthorizeRestWebServiceImpl.java:161) ~[classes/:?] at org.gluu.oxauth.authorize.ws.rs.AuthorizeRestWebServiceImpl$Proxy$_$$_WeldClientProxy.requestAuthorizationGet(Unknown Source) ~[classes/:?] at jdk.internal.reflect.GeneratedMethodAccessor356.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.jboss.resteasy.core.MethodInjectorImpl.invoke(MethodInjectorImpl.java:138) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.ResourceMethodInvoker.internalInvokeOnTarget(ResourceMethodInvoker.java:546) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.ResourceMethodInvoker.invokeOnTargetAfterFilter(ResourceMethodInvoker.java:435) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.ResourceMethodInvoker.lambda$invokeOnTarget$0(ResourceMethodInvoker.java:396) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.interception.PreMatchContainerRequestContext.filter(PreMatchContainerRequestContext.java:358) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.ResourceMethodInvoker.invokeOnTarget(ResourceMethodInvoker.java:398) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.ResourceMethodInvoker.invoke(ResourceMethodInvoker.java:365) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.ResourceMethodInvoker.invoke(ResourceMethodInvoker.java:338) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:440) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.SynchronousDispatcher.lambda$invoke$4(SynchronousDispatcher.java:229) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.SynchronousDispatcher.lambda$preprocess$0(SynchronousDispatcher.java:135) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.interception.PreMatchContainerRequestContext.filter(PreMatchContainerRequestContext.java:358) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.SynchronousDispatcher.preprocess(SynchronousDispatcher.java:138) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:215) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.plugins.server.servlet.ServletContainerDispatcher.service(ServletContainerDispatcher.java:245) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:61) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:56) ~[resteasy-jaxrs-3.15.1.Final.jar:3.15.1.Final] at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) ~[servlet-api-3.1.jar:3.1.0] at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:799) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$ChainEnd.doFilter(ServletHandler.java:1626) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.websocket.server.WebSocketUpgradeFilter.doFilter(WebSocketUpgradeFilter.java:228) ~[websocket-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:193) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.gluu.oxauth.audit.debug.ServletLoggingFilter.doFilter(ServletLoggingFilter.java:67) ~[classes/:?] at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:201) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.gluu.server.filters.AbstractCorsFilter.handleNonCORS(AbstractCorsFilter.java:362) ~[oxcore-server-4.3.0.Final.jar:?] at org.gluu.server.filters.AbstractCorsFilter.doFilter(AbstractCorsFilter.java:139) ~[oxcore-server-4.3.0.Final.jar:?] at org.gluu.oxauth.filter.CorsFilter.doFilter(CorsFilter.java:118) ~[classes/:?] at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:193) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.gluu.oxauth.auth.AuthenticationFilter.doFilter(AuthenticationFilter.java:205) ~[classes/:?] at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:193) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:548) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:602) ~[jetty-security-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1624) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1434) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:501) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1594) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1349) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:234) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.Server.handle(Server.java:516) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:388) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:633) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:380) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:277) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:105) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.ChannelEndPoint$1.run(ChannelEndPoint.java:104) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:338) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:315) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:173) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:131) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:386) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:883) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:1034) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at java.lang.Thread.run(Thread.java:834) [?:?] Caused by: org.gluu.persist.exception.operation.SearchException: Failed to lookup entry by DN: 'oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu' at org.gluu.persist.ldap.operation.impl.LdapOperationServiceImpl.lookupImpl(LdapOperationServiceImpl.java:629) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.ldap.operation.impl.LdapOperationServiceImpl.lookup(LdapOperationServiceImpl.java:605) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.ldap.impl.LdapEntryManager.find(LdapEntryManager.java:399) ~[gluu-orm-ldap-4.3.0.Final.jar:?] ... 89 more 2022-01-04 18:33:40,721 ERROR [qtp536765369-16] [org.gluu.oxauth.service.SessionIdService] (SessionIdService.java:793) - Failed to get session by dn: oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu org.gluu.persist.exception.EntryPersistenceException: Failed to find entry: oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu at org.gluu.persist.ldap.impl.LdapEntryManager.find(LdapEntryManager.java:405) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:713) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:592) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:579) ~[gluu-orm-core-4.3.0.Final.jar:?] at jdk.internal.reflect.GeneratedMethodAccessor90.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.jboss.weld.bean.proxy.AbstractBeanInstance.invoke(AbstractBeanInstance.java:38) ~[weld-core-impl-3.1.8.Final.jar:3.1.8.Final] at org.jboss.weld.bean.proxy.ProxyMethodHandler.invoke(ProxyMethodHandler.java:106) ~[weld-core-impl-3.1.8.Final.jar:3.1.8.Final] at org.gluu.persist.PersistenceEntryManager$EntityManager$1948487569$Proxy$_$$_WeldClientProxy.find(Unknown Source) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.oxauth.service.SessionIdService.getSessionByDn(SessionIdService.java:787) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionById(SessionIdService.java:746) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionId(SessionIdService.java:820) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionId(SessionIdService.java:811) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService$Proxy$_$$_WeldClientProxy.getSessionId(Unknown Source) ~[classes/:?] at org.gluu.oxauth.auth.Authenticator.authenticateBySessionId(Authenticator.java:698) ~[classes/:?] at org.gluu.oxauth.auth.Authenticator$Proxy$_$$_WeldClientProxy.authenticateBySessionId(Unknown Source) ~[classes/:?] at org.gluu.oxauth.service.AuthorizeService.getSession(AuthorizeService.java:120) ~[classes/:?] at org.gluu.oxauth.service.AuthorizeService$Proxy$_$$_WeldClientProxy.getSession(Unknown Source) ~[classes/:?] at org.gluu.oxauth.authorize.ws.rs.AuthorizeAction.getSession(AuthorizeAction.java:454) ~[classes/:?] at org.gluu.oxauth.authorize.ws.rs.AuthorizeAction.checkPermissionGranted(AuthorizeAction.java:245) ~[classes/:?] at jdk.internal.reflect.GeneratedMethodAccessor374.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.apache.el.parser.AstValue.invoke(AstValue.java:247) ~[org.mortbay.jasper.apache-el-8.5.54.jar:8.5.54] at org.apache.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:267) ~[org.mortbay.jasper.apache-el-8.5.54.jar:8.5.54] at org.jboss.weld.module.web.util.el.ForwardingMethodExpression.invoke(ForwardingMethodExpression.java:40) ~[weld-web-3.1.8.Final.jar:3.1.8.Final] at org.jboss.weld.module.web.el.WeldMethodExpression.invoke(WeldMethodExpression.java:50) ~[weld-web-3.1.8.Final.jar:3.1.8.Final] at com.sun.faces.facelets.el.TagMethodExpression.invoke(TagMethodExpression.java:65) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.application.MethodBindingMethodExpressionAdapter.invoke(MethodBindingMethodExpressionAdapter.java:66) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.application.ActionListenerImpl.getNavigationOutcome(ActionListenerImpl.java:82) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:71) ~[jakarta.faces-2.3.14.jar:2.3.14] at javax.faces.component.UIViewAction.broadcast(UIViewAction.java:548) ~[jakarta.faces-2.3.14.jar:2.3.14] at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:847) ~[jakarta.faces-2.3.14.jar:2.3.14] at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:1396) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.lifecycle.InvokeApplicationPhase.execute(InvokeApplicationPhase.java:58) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.lifecycle.Phase.doPhase(Phase.java:76) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:177) ~[jakarta.faces-2.3.14.jar:2.3.14] at javax.faces.webapp.FacesServlet.executeLifecyle(FacesServlet.java:707) ~[jakarta.faces-2.3.14.jar:2.3.14] at javax.faces.webapp.FacesServlet.service(FacesServlet.java:451) ~[jakarta.faces-2.3.14.jar:2.3.14] at org.eclipse.jetty.servlet.ServletHolder$NotAsync.service(ServletHolder.java:1459) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:799) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$ChainEnd.doFilter(ServletHandler.java:1626) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.websocket.server.WebSocketUpgradeFilter.doFilter(WebSocketUpgradeFilter.java:228) ~[websocket-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:193) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.gluu.oxauth.audit.debug.ServletLoggingFilter.doFilter(ServletLoggingFilter.java:67) ~[classes/:?] at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:201) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:548) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:602) ~[jetty-security-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1624) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1434) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:501) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1594) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1349) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:234) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.Server.handle(Server.java:516) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:388) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:633) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:380) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:277) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:105) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.ChannelEndPoint$1.run(ChannelEndPoint.java:104) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:338) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:315) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:173) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:131) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:386) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:883) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:1034) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at java.lang.Thread.run(Thread.java:834) [?:?] Caused by: org.gluu.persist.exception.operation.SearchException: Failed to lookup entry by DN: 'oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu' at org.gluu.persist.ldap.operation.impl.LdapOperationServiceImpl.lookupImpl(LdapOperationServiceImpl.java:629) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.ldap.operation.impl.LdapOperationServiceImpl.lookup(LdapOperationServiceImpl.java:605) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.ldap.impl.LdapEntryManager.find(LdapEntryManager.java:399) ~[gluu-orm-ldap-4.3.0.Final.jar:?] ... 81 more 2022-01-04 18:33:40,731 ERROR [qtp536765369-16] [org.gluu.oxauth.service.SessionIdService] (SessionIdService.java:793) - Failed to get session by dn: oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu org.gluu.persist.exception.EntryPersistenceException: Failed to find entry: oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu at org.gluu.persist.ldap.impl.LdapEntryManager.find(LdapEntryManager.java:405) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:713) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:592) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.persist.impl.BaseEntryManager.find(BaseEntryManager.java:579) ~[gluu-orm-core-4.3.0.Final.jar:?] at jdk.internal.reflect.GeneratedMethodAccessor90.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.jboss.weld.bean.proxy.AbstractBeanInstance.invoke(AbstractBeanInstance.java:38) ~[weld-core-impl-3.1.8.Final.jar:3.1.8.Final] at org.jboss.weld.bean.proxy.ProxyMethodHandler.invoke(ProxyMethodHandler.java:106) ~[weld-core-impl-3.1.8.Final.jar:3.1.8.Final] at org.gluu.persist.PersistenceEntryManager$EntityManager$1948487569$Proxy$_$$_WeldClientProxy.find(Unknown Source) ~[gluu-orm-core-4.3.0.Final.jar:?] at org.gluu.oxauth.service.SessionIdService.getSessionByDn(SessionIdService.java:787) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionById(SessionIdService.java:746) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionId(SessionIdService.java:820) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService.getSessionId(SessionIdService.java:811) ~[classes/:?] at org.gluu.oxauth.service.SessionIdService$Proxy$_$$_WeldClientProxy.getSessionId(Unknown Source) ~[classes/:?] at org.gluu.oxauth.service.AuthorizeService.getSession(AuthorizeService.java:123) ~[classes/:?] at org.gluu.oxauth.service.AuthorizeService$Proxy$_$$_WeldClientProxy.getSession(Unknown Source) ~[classes/:?] at org.gluu.oxauth.authorize.ws.rs.AuthorizeAction.getSession(AuthorizeAction.java:454) ~[classes/:?] at org.gluu.oxauth.authorize.ws.rs.AuthorizeAction.checkPermissionGranted(AuthorizeAction.java:245) ~[classes/:?] at jdk.internal.reflect.GeneratedMethodAccessor374.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.apache.el.parser.AstValue.invoke(AstValue.java:247) ~[org.mortbay.jasper.apache-el-8.5.54.jar:8.5.54] at org.apache.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:267) ~[org.mortbay.jasper.apache-el-8.5.54.jar:8.5.54] at org.jboss.weld.module.web.util.el.ForwardingMethodExpression.invoke(ForwardingMethodExpression.java:40) ~[weld-web-3.1.8.Final.jar:3.1.8.Final] at org.jboss.weld.module.web.el.WeldMethodExpression.invoke(WeldMethodExpression.java:50) ~[weld-web-3.1.8.Final.jar:3.1.8.Final] at com.sun.faces.facelets.el.TagMethodExpression.invoke(TagMethodExpression.java:65) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.application.MethodBindingMethodExpressionAdapter.invoke(MethodBindingMethodExpressionAdapter.java:66) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.application.ActionListenerImpl.getNavigationOutcome(ActionListenerImpl.java:82) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:71) ~[jakarta.faces-2.3.14.jar:2.3.14] at javax.faces.component.UIViewAction.broadcast(UIViewAction.java:548) ~[jakarta.faces-2.3.14.jar:2.3.14] at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:847) ~[jakarta.faces-2.3.14.jar:2.3.14] at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:1396) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.lifecycle.InvokeApplicationPhase.execute(InvokeApplicationPhase.java:58) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.lifecycle.Phase.doPhase(Phase.java:76) ~[jakarta.faces-2.3.14.jar:2.3.14] at com.sun.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:177) ~[jakarta.faces-2.3.14.jar:2.3.14] at javax.faces.webapp.FacesServlet.executeLifecyle(FacesServlet.java:707) ~[jakarta.faces-2.3.14.jar:2.3.14] at javax.faces.webapp.FacesServlet.service(FacesServlet.java:451) ~[jakarta.faces-2.3.14.jar:2.3.14] at org.eclipse.jetty.servlet.ServletHolder$NotAsync.service(ServletHolder.java:1459) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:799) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$ChainEnd.doFilter(ServletHandler.java:1626) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.websocket.server.WebSocketUpgradeFilter.doFilter(WebSocketUpgradeFilter.java:228) ~[websocket-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:193) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.gluu.oxauth.audit.debug.ServletLoggingFilter.doFilter(ServletLoggingFilter.java:67) ~[classes/:?] at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:201) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:548) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:602) ~[jetty-security-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1624) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1434) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:501) ~[jetty-servlet-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1594) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1349) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:234) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.Server.handle(Server.java:516) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:388) ~[jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:633) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:380) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:277) [jetty-server-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:105) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.io.ChannelEndPoint$1.run(ChannelEndPoint.java:104) [jetty-io-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:338) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:315) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:173) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:131) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:386) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:883) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:1034) [jetty-util-9.4.43.v20210629.jar:9.4.43.v20210629] at java.lang.Thread.run(Thread.java:834) [?:?] Caused by: org.gluu.persist.exception.operation.SearchException: Failed to lookup entry by DN: 'oxId=47619090-a25c-445f-893a-d39ea8c56e92,ou=sessions,o=gluu' at org.gluu.persist.ldap.operation.impl.LdapOperationServiceImpl.lookupImpl(LdapOperationServiceImpl.java:629) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.ldap.operation.impl.LdapOperationServiceImpl.lookup(LdapOperationServiceImpl.java:605) ~[gluu-orm-ldap-4.3.0.Final.jar:?] at org.gluu.persist.ldap.impl.LdapEntryManager.find(LdapEntryManager.java:399) ~[gluu-orm-ldap-4.3.0.Final.jar:?] ... 79 more 2022-01-04 18:33:47,219 INFO [qtp536765369-16] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:225) - Authentication failed for 'euser' oauth_script.log: 2022-01-04 18:33:40,736 INFO [qtp536765369-16] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Casa. getPageForStep called 1 2022-01-04 18:33:40,747 INFO [qtp536765369-16] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Casa. isValidAuthenticationMethod called 2022-01-04 18:33:40,748 INFO [qtp536765369-16] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Casa. prepareForStep 1 2022-01-04 18:33:40,749 INFO [qtp536765369-16] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Casa. prepareUIParams. Reading UI branding params 2022-01-04 18:33:40,751 INFO [qtp536765369-16] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Casa. getExtraParametersForStep 1 2022-01-04 18:33:40,751 INFO [qtp536765369-16] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - extras are [casa_contextPath, casa_prefix, casa_faviconUrl, casa_extraCss, casa_logoUrl] 2022-01-04 18:33:47,211 INFO [qtp536765369-16] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Casa. authenticate for step 1 2022-01-04 18:33:47,217 INFO [qtp536765369-16] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Casa. authenticate for step 1. Unknown username 2022-01-04 18:33:47,217 INFO [qtp536765369-16] [org.gluu.service.PythonService$PythonLoggerOutputStream] (PythonService.java:243) - Casa. getNextStep called 1 casa.log: 04-01 18:33:40.422 INFO [qtp1127224355-20] casa.core.filter.LocaleInterceptor LocaleInterceptor.java:43- Browser locale is 'en_US' 04-01 18:33:40.422 INFO [qtp1127224355-20] casa.core.filter.LocaleInterceptor LocaleInterceptor.java:54- Locale for this session will be 'en' 04-01 18:44:22.279 INFO [main] casa.core.filter.LocaleInterceptor LocaleInterceptor.java:28- Locale filter initialized 04-01 18:44:22.651 INFO [main] gluu.casa.core.ZKService ZKService.java:58- ZK initialized 04-01 18:44:22.724 INFO [main] gluu.casa.core.ConfigurationHandler ConfigurationHandler.java:78- ConfigurationHandler inited 04-01 18:44:23.094 INFO [main] gluu.casa.core.PersistenceService PersistenceService.java:398- Underlying database of type 'ldap' detected 04-01 18:44:23.095 INFO [main] gluu.casa.core.PersistenceService PersistenceService.java:400- Using config file: /etc/gluu/conf/gluu-ldap.properties 04-01 18:44:23.101 INFO [main] gluu.casa.core.PersistenceService PersistenceService.java:405- Obtaining a Persistence EntryManager 04-01 18:44:24.294 INFO [main] gluu.casa.core.PersistenceService PersistenceService.java:327- Backend ldap for cache refresh was detected 04-01 18:44:24.298 INFO [main] gluu.casa.core.PersistenceService PersistenceService.java:81- PersistenceService was initialized successfully 04-01 18:44:24.298 INFO [main] gluu.casa.core.ConfigurationHandler ConfigurationHandler.java:84- initializeSettings. Obtaining global settings 04-01 18:44:24.335 INFO [main] gluu.casa.core.CacheFactory CacheFactory.java:43- Initializing store of type = NATIVE_PERSISTENCE 04-01 18:44:24.340 INFO [main] gluu.casa.core.CacheFactory CacheFactory.java:45- Store created 04-01 18:44:24.375 INFO [main] gluu.casa.core.ZKService ZKService.java:93- Loading application labels 04-01 18:44:24.378 INFO [main] gluu.casa.core.ZKService ZKService.java:118- War resource bundles are: [general, admin, user] 04-01 18:44:24.380 INFO [main] gluu.casa.core.ZKService ZKService.java:152- Labels registered 04-01 18:44:24.389 INFO [main] gluu.casa.misc.CssRulesResolver CssRulesResolver.java:30- CssRules ZK VariableResolver initialized successfully 04-01 18:44:24.875 INFO [main] casa.core.filter.CorsFilter CorsFilter.java:30- CORS filter initialized 04-01 18:44:29.500 INFO [casaScheduler_Worker-1] gluu.casa.core.ExtensionsManager ExtensionsManager.java:98- Found system extension 'org.gluu.casa.plugins.authnmethod.SuperGluuExtension' for super_gluu 04-01 18:44:29.501 INFO [casaScheduler_Worker-1] gluu.casa.core.ExtensionsManager ExtensionsManager.java:98- Found system extension 'org.gluu.casa.plugins.authnmethod.OTPTwilioExtension' for twilio_sms 04-01 18:44:29.501 INFO [casaScheduler_Worker-1] gluu.casa.core.ExtensionsManager ExtensionsManager.java:98- Found system extension 'org.gluu.casa.plugins.authnmethod.SecurityKeyExtension' for u2f 04-01 18:44:29.502 INFO [casaScheduler_Worker-1] gluu.casa.core.ExtensionsManager ExtensionsManager.java:98- Found system extension 'org.gluu.casa.plugins.authnmethod.OTPSmppExtension' for smpp 04-01 18:44:29.502 INFO [casaScheduler_Worker-1] gluu.casa.core.ExtensionsManager ExtensionsManager.java:98- Found system extension 'org.gluu.casa.plugins.authnmethod.OTPExtension' for otp 04-01 18:44:29.502 INFO [casaScheduler_Worker-1] gluu.casa.core.ExtensionsManager ExtensionsManager.java:98- Found system extension 'org.gluu.casa.plugins.authnmethod.SecurityKey2Extension' for fido2 04-01 18:44:29.644 INFO [casaScheduler_Worker-1] gluu.casa.core.ConfigurationHandler ConfigurationHandler.java:124- Persisting settings to database 04-01 18:44:29.671 INFO [casaScheduler_Worker-1] gluu.casa.core.ConfigurationHandler ConfigurationHandler.java:169- === WEBAPP INITIALIZED SUCCESSFULLY === 04-01 18:45:07.757 INFO [qtp1127224355-14] casa.core.filter.LocaleInterceptor LocaleInterceptor.java:43- Browser locale is 'en_US' 04-01 18:45:07.758 INFO [qtp1127224355-14] casa.core.filter.LocaleInterceptor LocaleInterceptor.java:54- Locale for this session will be 'en' 04-01 18:50:42.823 INFO [qtp1127224355-16] casa.core.filter.LocaleInterceptor LocaleInterceptor.java:43- Browser locale is 'en_US' 04-01 18:50:42.824 INFO [qtp1127224355-16] casa.core.filter.LocaleInterceptor LocaleInterceptor.java:54- Locale for this session will be 'en'

By Michael Schwartz Account Admin 04 Jan 2022 at 1:21 p.m. CST

Michael Schwartz gravatar
It's possible we may need to update the Casa authn script to support this. I don't think it uses the default authn config mechanism, where you can specify the authn LDAP server.

By Mike Graves user 04 Jan 2022 at 1:31 p.m. CST

Mike Graves gravatar
Appreciate it. I am more than willing to be a guinea pig for that.

By Jose Gonzalez staff 07 Jan 2022 at 10:05 a.m. CST

Jose Gonzalez gravatar
We are taking a look at it

By Jose Gonzalez staff 08 Jan 2022 at 7:32 a.m. CST

Jose Gonzalez gravatar
Can you do the following experiment: Edit casa script and change this line: https://github.com/GluuFederation/community-edition-setup/blob/version_4.3.0/static/extension/person_authentication/Casa.py#L121 to `foundUser = True`

By Mike Graves user 10 Jan 2022 at 7:19 a.m. CST

Mike Graves gravatar
That produces the error below on update: Traceback (most recent call last): File "casa.py", line 127, in authenticate AttributeError: 'bool' object has no attribute 'getAttribute' at org.python.core.Py.AttributeError(Py.java:178) at org.python.core.PyObject.noAttributeError(PyObject.java:965) at org.python.core.PyObject.__getattr__(PyObject.java:959) at org.python.pycode._pyx11.authenticate$9(casa.py:194) at org.python.pycode._pyx11.call_function(casa.py) at org.python.core.PyTableCode.call(PyTableCode.java:173) at org.python.core.PyBaseCode.call(PyBaseCode.java:306) at org.python.core.PyBaseCode.call(PyBaseCode.java:197) at org.python.core.PyFunction.__call__(PyFunction.java:485) at org.python.core.PyMethod.instancemethod___call__(PyMethod.java:237) at org.python.core.PyMethod.__call__(PyMethod.java:228) at org.python.core.PyMethod.__call__(PyMethod.java:218) at org.python.core.PyMethod.__call__(PyMethod.java:213) at org.python.core.PyObject._jcallexc(PyObject.java:3565) at org.python.core.PyObject._jcall(PyObject.java:3598) at org.python.proxies.__main__$PersonAuthentication$11.authenticate(Unknown Source) at org.gluu.oxauth.service.external.ExternalAuthenticationService.executeExternalAuthenticate(ExternalAuthenticationService.java:214) at org.gluu.oxauth.service.external.ExternalAuthenticationService$Proxy$_$$_WeldClientProxy.executeExternalAuthenticate(Unknown Source) at org.gluu.oxauth.auth.Authenticator.userAuthenticationInteractive(Authenticator.java:322) at org.gluu.oxauth.auth.Authenticator.authenticateImpl(Authenticator.java:205) at org.gluu.oxauth.auth.Authenticator.authenticate(Authenticator.java:128) at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.base/java.lang.reflect.Method.invoke(Method.java:566) at org.apache.el.parser.AstValue.invoke(AstValue.java:247) at org.apache.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:267) at org.jboss.weld.module.web.util.el.ForwardingMethodExpression.invoke(ForwardingMethodExpression.java:40) at org.jboss.weld.module.web.el.WeldMethodExpression.invoke(WeldMethodExpression.java:50) at com.sun.faces.facelets.el.TagMethodExpression.invoke(TagMethodExpression.java:65) at com.sun.faces.application.MethodBindingMethodExpressionAdapter.invoke(MethodBindingMethodExpressionAdapter.java:66) at com.sun.faces.application.ActionListenerImpl.getNavigationOutcome(ActionListenerImpl.java:82) at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:71) at javax.faces.component.UICommand.broadcast(UICommand.java:222) at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:847) at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:1396) at com.sun.faces.lifecycle.InvokeApplicationPhase.execute(InvokeApplicationPhase.java:58) at com.sun.faces.lifecycle.Phase.doPhase(Phase.java:76) at com.sun.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:177) at javax.faces.webapp.FacesServlet.executeLifecyle(FacesServlet.java:707) at javax.faces.webapp.FacesServlet.service(FacesServlet.java:451) at org.eclipse.jetty.servlet.ServletHolder$NotAsync.service(ServletHolder.java:1459) at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:799) at org.eclipse.jetty.servlet.ServletHandler$ChainEnd.doFilter(ServletHandler.java:1626) at org.eclipse.jetty.websocket.server.WebSocketUpgradeFilter.doFilter(WebSocketUpgradeFilter.java:228) at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:193) at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) at org.gluu.oxauth.audit.debug.ServletLoggingFilter.doFilter(ServletLoggingFilter.java:67) at org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:201) at org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601) at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:548) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:602) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1624) at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1434) at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:501) at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1594) at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1349) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:234) at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) at org.eclipse.jetty.server.Server.handle(Server.java:516) at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:388) at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:633) at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:380) at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:277) at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:105) at org.eclipse.jetty.io.ChannelEndPoint$1.run(ChannelEndPoint.java:104) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:338) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:315) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:173) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:131) at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:386) at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:883) at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:1034) at java.base/java.lang.Thread.run(Thread.java:834) ==================Further details============================ AttributeError: 'bool' object has no attribute 'getAttribute'

By Michael Schwartz Account Admin 10 Jan 2022 at 11:46 a.m. CST

Michael Schwartz gravatar
We're going to have to take this on as a feature enhancement. It wasn't the design of the original script to use external LDAP users. It's a minor change, but we need to put a developer on it.

By Edgar Woolley user 31 Jan 2022 at 12:58 p.m. CST

Edgar Woolley gravatar
I got the same issue as Mike Graves with 4.3.1 and Ubuntu 20 Focal. The unique way to solve it was adding a new Gluu LDAP Schema Attribute following [the docs]( https://gluu.org/docs/gluu-server/4.3/admin-guide/attribute/#add-the-attribute-to-oxtrust) ``` attributeTypes: ( 1.2.840.113556.1.4.221 NAME 'sAMAccountName' DESC 'Stores userid value from Active Directory' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' X-ORIGIN 'Gluu created attribute' ) ``` The main problem I have seen from the oxAuth side of Gluu, is that `sAMAccountName` does not take it as an objectGUID even if you do the mapping in Cache Refresh and add it as Primary Key (`sAMAccountName`) and Local Primary Key UID. I noticed this, when configuring Primary Key (`mail`) and Local Primary Key (`mail`). Then it did validate me in CASA correctly using MS AD. After adding the sAMAccountName attribute, now I get the users to enter CASA using their `sAMAaccountName` attribute from the Active Directory. However, using the usual configuration (without creating a new sAMAaccountName attribute) it is possible to validate in /identity using sAMAaccountName from Active Directory. Thank you

By Michael Schwartz Account Admin 31 Jan 2022 at 2 p.m. CST

Michael Schwartz gravatar
Nice work Edgar. I'm going to assign this to a different engineer, because it's an important functional use case.

By Edgar Woolley user 31 Jan 2022 at 4:16 p.m. CST

Edgar Woolley gravatar
Thank You Mike for the assignement. Let me know if you need additional information. Ed.

By Madhumita Subramaniam staff 07 Feb 2022 at 7:57 a.m. CST

Madhumita Subramaniam gravatar
Hi Egdar, I will make the document more clear. On the Gluu server side, we have the attr `uid` which is used to denote the primary key. sAMAaccountName of AD is not available in the Gluu server by default. As a solution : 1. You can add the attribute via oxTrust like you mentioned above. 2. Alternately (recommended), while configuring cache refresh under `Configuration` --> `Cache refresh` you can map source attrib to destination attributes under `Add source attribute to destination attribute mapping` Here source value will be `sAMAccountName` and destination will be `uid`. In adition; you sould also do this: Under menu item `Configuration ` --> `Manage Authentication` --> `Manage LDAP Autentication`, you can configure `Primary key` is the primary attribute of backend AD / LDAP (samAccountName in your case). `Local Primary key ` is Gluu’s OpenDJ primary key ( which is UID ) Other than explaining this in a better way in the docs, I see everything working as per design. Incase we're not on the same page, please list the exact steps, expected output, actual output. Thank you!

By Edgar Woolley user 07 Feb 2022 at 12:17 p.m. CST

Edgar Woolley gravatar
Hi Madhumita, I tried your recommended alternative at first but it did not work for me. Your method only worked for me when logging via /identity but not for /casa . The only way to do it in our environment was to add the new attribute as I have explained. This -> "Add source attribute to destination attribute mapping Here source value will be sAMAccountName and destination will be uid" works fine, so my sAMAccount attribute maps correctly with the uid. Assignaments of Primary Key for sAMAccountName and UID under LDAP Authentication section works fine but only oXAuth process well the login in /identity , I related in the logs (TRACE) lines about objectGUID, appears when you login well in /identity I configure the same, but using external OpenLDAP with UID mappings and works as expected via /identity and /casa. The issue is when you uses MS AD I am glad you have updated the docs, this will certainly help others a lot as it took me a while to get a good understanding of how to set up this scenario. Let me know, if you need additional information.

By Madhumita Subramaniam staff 08 Feb 2022 at 3:36 a.m. CST

Madhumita Subramaniam gravatar
Hi Edgar, You really helped narrow this down. Here is the issue on Github - https://github.com/GluuFederation/oxAuth/issues/1640 I have checked in the fix for it. You can verify the same by modifying Casa.py on the following line - https://github.com/GluuFederation/oxAuth/blob/7cd8ffa88dff65b33bd9a09990fade5f832ffba6/Server/integrations/casa/Casa.py#L305 Replace that line with : ``` uid_attr = config.getOxIDPAuthentication().get(0).getConfig().getLocalPrimaryKey() ``` Feel free to connect if you have more questions.

By Edgar Woolley user 10 Feb 2022 at 1:39 a.m. CST

Edgar Woolley gravatar
Hi Madhumita, Happy to help! I tried Casa.py modification and it works as expected. Thank you very much for your attention. Ed.

By Madhumita Subramaniam staff 10 Feb 2022 at 2:21 a.m. CST

Madhumita Subramaniam gravatar
Most welcome!

By Madhumita Subramaniam staff 10 Feb 2022 at 2:21 a.m. CST

Madhumita Subramaniam gravatar
Most welcome!