ox-java-sample unable te do registation - RESTEASY004655

By: Arnold Gordijn user 06 Apr 2020 at 7:47 a.m. CDT

6 Responses
Arnold Gordijn gravatar
following the oxd-java-sample it should be possible to register the application But allways get "Registration of client did not succeed... Check your settings or the console output." I have setup ubuntu 18.04 workstation with gui to be able to do firefox to localhost. Also an Active directory windows 2012 server connected. Have an valid certificate from let's encrypt. All works. So next step in my learning process I chose the oxd-java-sample. Always get "Registration of client did not succeed... Check your settings or the console output." output of console ~~~~~~~~~~~~~~ 12:32:20.316 INFO oxd.sample.bean.OxdService OxdService.java:51- Attempting registration with settings: [opHost=https://gluu.a2g.nl, host=localhost, port=8443, ] log4j:WARN No appenders could be found for logger (org.apache.http.client.protocol.RequestAddCookies). log4j:WARN Please initialize the log4j system properly. log4j:WARN See http://logging.apache.org/log4j/1.2/faq.html#noconfig for more info. 12:32:20.842 ERROR oxd.sample.bean.OxdService OxdService.java:66- RESTEASY004655: Unable to invoke request javax.ws.rs.ProcessingException: RESTEASY004655: Unable to invoke request ~~~~~~~~~~~~~~~ if anyone has an idea please share. Arnold.
Ubuntu 18.04
closed

Answers

By Arnab Dutta staff 06 Apr 2020 at 12:25 p.m. CDT

Copy
Arnab Dutta gravatar
Hi Arnold, I believe you are using Gluu 4.1 as mentioned in the ticket. Starting with version 4.1, oxd is offered as one of the several components of the Gluu Server CE. So instead of installing oxd on localhost please install oxd along with the Gluu server. Refer: https://www.gluu.org/docs/oxd/4.1/install/#installation-via-linux-packages After successful installation, you should be able to access oxd using URL: https://gluu.a2g.nl:8443/health-check (where `gluu.a2g.nl` is your op_host and oxd-server is running on port 8443) So, on `Site registration` screen of oxd-java-sample application `oxd server host` will be `gluu.a2g.nl` and `oxd server port`: 8443 I think the above approach should work for you. Please let us know if have any concerns or facing any error. Regards, Arnab

By Arnold Gordijn user 06 Apr 2020 at 2:01 p.m. CDT

Copy
Arnold Gordijn gravatar
Hi Arnab, Thank you for the quick response. I did add oxd server during install. and did test it from https://127.0.0.1:8443/ witch gives the {"status":"running"} response. But using domain name gives an browser error on firefox/ edge/chrome. gluu.a2g.nl has a security policy called HTTP Strict Transport Security (HSTS), which means that Firefox can only connect to it securely. You can’t add an exception to visit this site. thats on the 8443 port as i'm not sure if thats in the httpd.crt /key or an different certificate. just to explain the real server runs on an VM inside my lab network. the public DNS entry is only there to get the certificate and then i'll close te port-forward on the router again... that means you won't be able to reach the real server... As I see it now there must be an valid certificate for port 8443 also to get this working. kind regards Arnold Gordijn

By Arnab Dutta staff 07 Apr 2020 at 2:34 a.m. CDT

Copy
Arnab Dutta gravatar
Hi Arnold, I understood this is a certificate issue. Can you please take latest of `version_4.1` branch from https://github.com/GluuFederation/oxd-java-sample an run using `mvn jetty:run -Dtrust.all.client=true` command. ` -Dtrust.all.client=true` will enable ` oxd-java-sample` to trust all clients. So you can skip configuring vaild certificate for oxd. Another way is to configure valid certificate for oxd. You can follow below link where we have mentioned steps to configure same `Let's Encrypt` cert to both Gluu server and oxd. https://www.gluu.org/docs/oxd/install/#configuring-lets-encrypt-ca-trusted-certificates-in-gluu-ce-server-and-oxd Regards, Arnab

By Arnold Gordijn user 07 Apr 2020 at 5:49 a.m. CDT

Copy
Arnold Gordijn gravatar
Hi Arnab, Thanks again for your help, i have been looking how to do that certificate for the oxd server but you pointed to the right document. Super. That solved the registration issue. And i'm able to succesfully register the application. also my oxd server certificate is now valid. In the next phase it stops at /oidc/pre_authz.xhtml with a 403... As i did some things wrong or did not understand at start I had the lets encript not from the chroot container that gave me problems. and also that oxd-java-sample i did run from outside. So as i'm also making my own kind of setup guide its a good practice to just start allover again. ;-) thanks again for pointing in the right direction. regards. Arnold

By Arnab Dutta staff 07 Apr 2020 at 6:36 a.m. CDT

Copy
Arnab Dutta gravatar
Hi Arnold, `In the next phase it stops at /oidc/pre_authz.xhtml with a 403...` To solve above issue please ensure correct `acr values` and `OpenID scopes` are mentioned on `Site registration screen` of oxd-java-sample. I think your configration is missing `oxd` OpenID scopes which is required if you are using oxd to register your application. (This was missing in docs, I will add now) Attaching screen shot. Regards, Arnab
oxd.png

By Arnold Gordijn user 07 Apr 2020 at 9:23 a.m. CDT

Copy
Arnold Gordijn gravatar
Hi Arnab, Yes thats the missing thing oxd in the "OpenID scopes". I also have "passport_social" as default Authentication mode so changed that also. I can now run around upto "You are done!" I can only run from localhost due to the selfsigned cert. of the demo app. and at the end the url goes to local host. But it now runs fine. and I learned ;-) Thanks for the help. regards, Arnold

Post an answer