By: Nicolas Rossi named 12 Jun 2020 at 2:31 p.m. CDT

8 Responses
Nicolas Rossi gravatar
Installation with oxdserver local fails. ``` 14:53:17 06/12/20 Installing oxd server... 14:53:17 06/12/20 Running: tar -zxf /opt/gluu-gateway/dist/app/oxd-server.tgz -C /opt 14:53:18 06/12/20 Running: /usr/sbin/useradd --system --create-home --user-group --shell /bin/bash --home-dir /home/jetty jetty 14:53:18 06/12/20 Running: /bin/cp /opt/oxd-server/oxd-server.service /lib/systemd/system 14:53:18 06/12/20 Running: /bin/cp /opt/oxd-server/oxd-server-default /etc/default/oxd-server 14:53:18 06/12/20 /bin/cp: cannot stat ‘/opt/oxd-server/oxd-server-default’: No such file or directory ``` It seems that the oxd-server.tgz distributed for Centos does not include the file ``` [root@gluu-gateway]# cd /opt/gluu-gateway/dist/app/ [root@gluu-gateway]# tar -ztf oxd-server.tgz oxd-server/ oxd-server/conf/ oxd-server/conf/swagger.yaml oxd-server/conf/oxd-server.keystore oxd-server/conf/oxd-server.yml oxd-server/bin/ oxd-server/bin/lsox.sh oxd-server/bin/oxd-server.sh oxd-server/bin/oxd-start.sh oxd-server/oxd-server.service oxd-server/data/ oxd-server/lib/ oxd-server/lib/oxd-server.jar oxd-server/lib/bcprov-jdk15on-1.54.jar ```

By Mohib Zico staff 12 Jun 2020 at 4:07 p.m. CDT

Mohib Zico gravatar
Ok, please allow me to test it a bit locally. Will update you next week.

By Mohib Zico staff 21 Jun 2020 at 9:15 a.m. CDT

Mohib Zico gravatar
Hello Nicolas, I just tried to install 'oxd-server' _at the time of installing Gluu server 4.1.1_; it's looking good. Screenshot attached. Can you please try to install oxd-server while installing 4.1.1 if possible by following [this](https://www.gluu.org/docs/oxd/4.1/install/#installation-via-linux-packages) doc? oxd-server is with CE now.

By Nicolas Rossi named 22 Jun 2020 at 8:03 a.m. CDT

Nicolas Rossi gravatar
Hi Mohib, the issue happens with the Gluu Gateway setup not the Gluu Server. I followed [this](https://gluu.org/docs/gg/installation) doc.

By Mohib Zico staff 25 Jun 2020 at 9:10 a.m. CDT

Mohib Zico gravatar
Hi, Got it, will check.

By Mohib Zico staff 02 Jul 2020 at 11:27 a.m. CDT

Mohib Zico gravatar
Hello Nicolas, I ran the installation in CentOS7 machine, faced little issue with 'openssl' ( where I need to install openssl before running setup script ) but other than that; oxd-server looking good. Am I missing anything? https://youtu.be/dLJSrkE4g0o

By Nicolas Rossi named 03 Jul 2020 at 12:41 p.m. CDT

Nicolas Rossi gravatar
Hello Mohib. I did a fresh install and now the setup has finished without errors. Then I changed the gluu-gateway-ui local.js file to change the [listening address](https://gluu.org/docs/gg/faq/#how-can-i-change-the-listening-address-and-port-for-gg-ui) and restarted the gluu-gateway services. After that I could access to the GG login but when I try to login It throws an OXD error. The OXD logs shows a HTTP 400 Bad Request Exception when validating the token (the full log stack is attached): ``` TRACE [14:30:03.033] [dw-18 - POST /get-authorization-url] o.g.o.s.s.HttpService - Created TRUST_ALL client. DEBUG [14:30:03.034] [dw-18 - POST /get-authorization-url] o.g.o.s.s.UmaTokenService - OauthToken from site configuration, OauthToken: 80ebb892-69e3-4871-a650-9f42d9d35602 TRACE [14:30:03.101] [dw-18 - POST /get-authorization-url] o.g.o.s.s.ValidationService - access_token: ae83a151-532c-4719-a419-04532ced2b62, introspection: IntrospectionResponse{active=true, scope=[openid, oxd], clientId='569c01eb-6b3c-46dd-b7d4-a561dfb9cd50', username='null', tokenType='bearer', expiresAt=1593797694, issuedAt=1593797394, subject='', audience='569c01eb-6b3c-46dd-b7d4-a561dfb9cd50', issuer='https://gluu.hlgv.net', jti='null', acrValues='null'}, clientId: 569c01eb-6b3c-46dd-b7d4-a561dfb9cd50 ERROR [14:30:03.102] [dw-18 - POST /get-authorization-url] o.g.o.s.Processor - HTTP 400 Bad Request org.gluu.oxd.server.HttpException: HTTP 400 Bad Request ``` The browser inspector has more detail on the response: ``` {"error":{"name":"StatusCodeError","statusCode":400,"message":"400 - {\"error\":\"redirect_uri_is_not_registered\",\"error_description\":\"The authorization redirect uri is not registered.\"}","error":{"error":"redirect_uri_is_not_registered","error_description":"The authorization redirect uri is not registered."},"options":{"method":"POST","headers":{"Authorization":"Bearer ae83a151-532c-4719-a419-04532ced2b62"},"uri":"https://gg.hlgv.net:8443/get-authorization-url","body":{"oxd_id":"da8185c9-a094-4b50-8b50-650a97608aa2","scope":["openid","permission","user_name","email"],"redirect_uri":"https://gg.hlgv.net:1338"},"resolveWithFullResponse":true,"json":true,"simple":true,"transform2xxOnly":false},"response":{"statusCode":400,"body":{"error":"redirect_uri_is_not_registered","error_description":"The authorization redirect uri is not registered."},"headers":{"connection":"close","date":"Fri, 03 Jul 2020 17:30:03 GMT","content-type":"application/json","content-length":"114"},"request":{"uri":{"protocol":"https:","slashes":true,"auth":null,"host":"gg.hlgv.net:8443","port":"8443","hostname":"gg.hlgv.net","hash":null,"search":null,"query":null,"pathname":"/get-authorization-url","path":"/get-authorization-url","href":"https://gg.hlgv.net:8443/get-authorization-url"},"method":"POST","headers":{"Authorization":"Bearer ae83a151-532c-4719-a419-04532ced2b62","accept":"application/json","content-type":"application/json","content-length":143}}}}} ``` I don't know where the "The authorization redirect uri is not registered" refers to. I added the new redirect_uri with the domain name instead of "localhost" at the KONGA_GG_UI_CLIENT client in Gluu but nothing changed. Any thoughts?

By Nicolas Rossi named 03 Jul 2020 at 2:28 p.m. CDT

Nicolas Rossi gravatar
We've finally fixed it updating the oxd redirect_uri with a post: ``` curl --location --request POST 'https://oxd-server:8443/update-site' \ --header 'Authorization: Bearer 4dd24775-1cc1-4676-943d-57694a9c96e6' \ --header 'Content-Type: application/json' \ --data-raw '{ "oxd_id": "da8185c9-a094-4b50-8b50-650a97608aa2", "redirect_uris": ["https://gluu-gateway-servert:1338"] }' ``` Maybe it would be useful to use the GG hostname instead of localhost as redirect_uri because nobody will use it at localhost.

By Mohib Zico staff 07 Jul 2020 at 3:09 p.m. CDT

Mohib Zico gravatar
Got it, thanks much Nicholas!!