By: Thomas Zen user 17 Jan 2018 at 1:23 a.m. CST

12 Responses
Thomas Zen gravatar
Hi Gluu Team, I've installed Gluu Server 3.1.1 and Super Gluu. And I set Super Gluu as default authentication method. The Gluu Server is installed in a vm and I expose the ip and hostname so my iPhone can access gluu server using the hostname. When I logout as admin and want to login again, I need to enroll my device. I use app compiled by oxPush3 to scan the QR code, but it says `Authentication Fail` and logs in the server are as below Seems like the same problem with [https://support.gluu.org/authentication/4550/supper-gluu-enroll-fails/](https://support.gluu.org/authentication/4550/supper-gluu-enroll-fails/) Could you please give me some help? ``` 2018-01-17 06:55:25,402 ERROR [qtp212628335-10] [oxauth.ws.rs.fido.u2f.U2fRegistrationWS] (U2fRegistrationWS.java:131) - Exception happened org.xdi.oxauth.model.fido.u2f.exception.BadInputException: session_id or enrollment_code is mandatory at org.xdi.oxauth.ws.rs.fido.u2f.U2fRegistrationWS.startRegistration(U2fRegistrationWS.java:100) [classes/:?] at org.xdi.oxauth.ws.rs.fido.u2f.U2fRegistrationWS$Proxy$_$$_WeldClientProxy.startRegistration(Unknown Source) [classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_112] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_112] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_112] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_112] at org.jboss.resteasy.core.MethodInjectorImpl.invoke(MethodInjectorImpl.java:140) [resteasy-jaxrs-3.0.21.Final.jar:3.0.21.Final] at org.jboss.resteasy.core.ResourceMethodInvoker.invokeOnTarget(ResourceMethodInvoker.java:295) [resteasy-jaxrs-3.0.21.Final.jar:3.0.21.Final] at org.jboss.resteasy.core.ResourceMethodInvoker.invoke(ResourceMethodInvoker.java:249) [resteasy-jaxrs-3.0.21.Final.jar:3.0.21.Final] at org.jboss.resteasy.core.ResourceMethodInvoker.invoke(ResourceMethodInvoker.java:236) [resteasy-jaxrs-3.0.21.Final.jar:3.0.21.Final] at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:402) [resteasy-jaxrs-3.0.21.Final.jar:3.0.21.Final] at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:209) [resteasy-jaxrs-3.0.21.Final.jar:3.0.21.Final] at org.jboss.resteasy.plugins.server.servlet.ServletContainerDispatcher.service(ServletContainerDispatcher.java:228) [resteasy-jaxrs-3.0.21.Final.jar:3.0.21.Final] at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:56) [resteasy-jaxrs-3.0.21.Final.jar:3.0.21.Final] at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:51) [resteasy-jaxrs-3.0.21.Final.jar:3.0.21.Final] at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) [servlet-api-3.1.jar:3.1.0] at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:845) [jetty-servlet-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1772) [jetty-servlet-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.websocket.server.WebSocketUpgradeFilter.doFilter(WebSocketUpgradeFilter.java:193) [websocket-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1759) [jetty-servlet-9.3.15.v20161220.jar:9.3.15.v20161220] at org.ocpsoft.rewrite.servlet.RewriteFilter.doFilter(RewriteFilter.java:226) [rewrite-servlet-3.4.1.Final.jar:3.4.1.Final] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1759) [jetty-servlet-9.3.15.v20161220.jar:9.3.15.v20161220] at org.xdi.oxauth.audit.debug.ServletLoggingFilter.doFilter(ServletLoggingFilter.java:55) [classes/:?] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1751) [jetty-servlet-9.3.15.v20161220.jar:9.3.15.v20161220] at org.gluu.oxserver.filters.AbstractCorsFilter.handleNonCORS(AbstractCorsFilter.java:343) [oxcore-server-3.1.1.Final.jar:?] at org.gluu.oxserver.filters.AbstractCorsFilter.doFilter(AbstractCorsFilter.java:120) [oxcore-server-3.1.1.Final.jar:?] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1759) [jetty-servlet-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:582) [jetty-servlet-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:548) [jetty-security-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:226) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1180) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:512) [jetty-servlet-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:185) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1112) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:213) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:119) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:134) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.Server.handle(Server.java:534) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:320) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:251) [jetty-server-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:283) [jetty-io-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:110) [jetty-io-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.io.SelectChannelEndPoint$2.run(SelectChannelEndPoint.java:93) [jetty-io-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.util.thread.strategy.ExecuteProduceConsume.executeProduceConsume(ExecuteProduceConsume.java:303) [jetty-util-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.util.thread.strategy.ExecuteProduceConsume.produceConsume(ExecuteProduceConsume.java:148) [jetty-util-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.util.thread.strategy.ExecuteProduceConsume.run(ExecuteProduceConsume.java:136) [jetty-util-9.3.15.v20161220.jar:9.3.15.v20161220] at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:671) [jetty-util-9.3.15.v20161220.jar:9.3.15.v20161220] ``` Regards

By Mohib Zico staff 17 Jan 2018 at 1:26 a.m. CST

Mohib Zico gravatar
>> I use app compiled by oxPush3 to scan the QR code, You compiled source code and trying to use that?

By Thomas Zen user 17 Jan 2018 at 1:29 a.m. CST

Thomas Zen gravatar
Hi Mohib, yes I found that there is an example in oxPush3. The only function is scan QR code. Because I can not use Super Gluu to visit a self-signed certificate network [https://github.com/GluuFederation/oxPush3/tree/master/Example](https://github.com/GluuFederation/oxPush3/tree/master/Example)

By Mohib Zico staff 17 Jan 2018 at 1:33 a.m. CST

Mohib Zico gravatar
Sorry, compiled source code troubleshooting is not supported in community support; you need to get [VIP subscription](https://www.gluu.org/gluu-server/pricing/) which cover troubleshooting custom scenario.

By Thomas Zen user 17 Jan 2018 at 1:43 a.m. CST

Thomas Zen gravatar
Thanks, Mohib, I use Super Gluu downloaded from App Store. After scanning the QR code, a key is generated in the `key` tab. But the app just crashes, and the same log in the server. Is the session_id added the the newest version of Super Gluu?

By Mohib Zico staff 17 Jan 2018 at 1:46 a.m. CST

Mohib Zico gravatar
I think I'll give a shot with 3.1.1 by myself + SuperGluu to know the status; it should have updated version. Here is what my setup will look like: - A cloud VM ( either Amazon or DigitalOcean ) - A resolvable hostname ( with real IP address ) - SuperGluu setup. I'll share my experience with you.

By Mohib Zico staff 17 Jan 2018 at 9:45 a.m. CST

Mohib Zico gravatar
Thomas, I was able to reproduce the issue; I'll keep check what's bothering this... will let you know.

By Mohib Zico staff 22 Jan 2018 at 9:32 a.m. CST

Mohib Zico gravatar
**Status** I am still in the process of preparing the setup. Using LetsEncrypt to install & configure certs...

By Thomas Zen user 22 Jan 2018 at 9:40 a.m. CST

Thomas Zen gravatar
Hi Mohib, thank you so much for your help although I changed to Debian.

By Thomas Zen user 22 Jan 2018 at 9:44 a.m. CST

Thomas Zen gravatar
Hi Mohib, I modified the code in oxPush3 by myself and could successfully enroll and authenticate. My problems are: 1. self-signed certificate 2. security configurations

By Mohib Zico staff 22 Jan 2018 at 9:59 a.m. CST

Mohib Zico gravatar
Very nice! Closing this ticket then ( though I'll prepare a doc on how to configure with LetsEncrypt anyway ). Thanks for update, Thomas.

By Thomas Zen user 22 Jan 2018 at 10:01 a.m. CST

Thomas Zen gravatar
Hi Mohib, could you please also post the doc. It would be very helpful.

By Mohib Zico staff 22 Jan 2018 at 10:11 a.m. CST

Mohib Zico gravatar
Will do.