Spring Boot app connecting to Gluu OpenId

By: Max Anderson Account Admin 16 May 2017 at 4:41 p.m. CDT

9 Responses
Max Anderson gravatar
I am having problems connecting my Spring Boot app to Gluu. I tried looking over the only other Spring Boot ticket and it doesn't seem to show what I'm running into. This is coming from my app: ``` 2017-05-16 15:51:00.814 DEBUG 10798 --- [nio-8080-exec-7] o.a.coyote.http11.Http11InputBuffer : Received [GET /login?code=2bf72556-4237-4984-b5ee-34b0bc9d930e&scope=openid&state=OeYu2u&session_state=69211e06-1076-40a3-a7e4-016b6ad73f6a HTTP/1.1 Host: localhost:8080 Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8 Referer: http://localhost:8080/ Accept-Encoding: gzip, deflate, sdch, br Accept-Language: en-US,en;q=0.8 Cookie: XSRF-TOKEN=f0200374-cd5d-4205-8f69-f3aced790847; JSESSIONID=FBE20FBCE11D5663BBF2DC8040710845; gsScrollPos= ] 2017-05-16 15:51:00.814 DEBUG 10798 --- [nio-8080-exec-7] o.a.t.util.http.Rfc6265CookieProcessor : Cookies: Parsing b[]: XSRF-TOKEN=f0200374-cd5d-4205-8f69-f3aced790847; JSESSIONID=FBE20FBCE11D5663BBF2DC8040710845; gsScrollPos= 2017-05-16 15:51:00.814 DEBUG 10798 --- [nio-8080-exec-7] o.a.catalina.connector.CoyoteAdapter : Requested cookie session id is FBE20FBCE11D5663BBF2DC8040710845 2017-05-16 15:51:00.814 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.authenticator.AuthenticatorBase : Security checking request GET /login 2017-05-16 15:51:00.814 DEBUG 10798 --- [nio-8080-exec-7] org.apache.catalina.realm.RealmBase : No applicable constraints defined 2017-05-16 15:51:00.814 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.authenticator.AuthenticatorBase : Not subject to any constraint 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.w.f.OrderedRequestContextFilter : Bound request context to thread: org.apache.catalina.connector.RequestFacade@7cc087df 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.web.util.matcher.OrRequestMatcher : Trying to match using Ant [pattern='/css/**'] 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.w.u.matcher.AntPathRequestMatcher : Checking match of request : '/login'; against '/css/**' 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.web.util.matcher.OrRequestMatcher : Trying to match using Ant [pattern='/js/**'] 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.w.u.matcher.AntPathRequestMatcher : Checking match of request : '/login'; against '/js/**' 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.web.util.matcher.OrRequestMatcher : Trying to match using Ant [pattern='/images/**'] 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.w.u.matcher.AntPathRequestMatcher : Checking match of request : '/login'; against '/images/**' 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.web.util.matcher.OrRequestMatcher : Trying to match using Ant [pattern='/webjars/**'] 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.w.u.matcher.AntPathRequestMatcher : Checking match of request : '/login'; against '/webjars/**' 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.web.util.matcher.OrRequestMatcher : Trying to match using Ant [pattern='/**/favicon.ico'] 2017-05-16 15:51:00.815 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.w.u.matcher.AntPathRequestMatcher : Checking match of request : '/login'; against '/**/favicon.ico' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.web.util.matcher.OrRequestMatcher : Trying to match using Ant [pattern='/error'] 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.w.u.matcher.AntPathRequestMatcher : Checking match of request : '/login'; against '/error' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.web.util.matcher.OrRequestMatcher : No matches found 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.w.u.matcher.AntPathRequestMatcher : Request '/login' matched by universal pattern '/**' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.security.web.FilterChainProxy : /login?code=2bf72556-4237-4984-b5ee-34b0bc9d930e&scope=openid&state=OeYu2u&session_state=69211e06-1076-40a3-a7e4-016b6ad73f6a at position 1 of 12 in additional filter chain; firing Filter: 'WebAsyncManagerIntegrationFilter' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.security.web.FilterChainProxy : /login?code=2bf72556-4237-4984-b5ee-34b0bc9d930e&scope=openid&state=OeYu2u&session_state=69211e06-1076-40a3-a7e4-016b6ad73f6a at position 2 of 12 in additional filter chain; firing Filter: 'SecurityContextPersistenceFilter' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] w.c.HttpSessionSecurityContextRepository : HttpSession returned null object for SPRING_SECURITY_CONTEXT 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] w.c.HttpSessionSecurityContextRepository : No SecurityContext was available from the HttpSession: org.apache.catalina.session.StandardSessionFacade@3575c38e. A new one will be created. 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.security.web.FilterChainProxy : /login?code=2bf72556-4237-4984-b5ee-34b0bc9d930e&scope=openid&state=OeYu2u&session_state=69211e06-1076-40a3-a7e4-016b6ad73f6a at position 3 of 12 in additional filter chain; firing Filter: 'HeaderWriterFilter' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.w.header.writers.HstsHeaderWriter : Not injecting HSTS header since it did not match the requestMatcher org.springframework.security.web.header.writers.HstsHeaderWriter$SecureRequestMatcher@62f6e774 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.security.web.FilterChainProxy : /login?code=2bf72556-4237-4984-b5ee-34b0bc9d930e&scope=openid&state=OeYu2u&session_state=69211e06-1076-40a3-a7e4-016b6ad73f6a at position 4 of 12 in additional filter chain; firing Filter: 'CsrfFilter' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.security.web.FilterChainProxy : /login?code=2bf72556-4237-4984-b5ee-34b0bc9d930e&scope=openid&state=OeYu2u&session_state=69211e06-1076-40a3-a7e4-016b6ad73f6a at position 5 of 12 in additional filter chain; firing Filter: 'LogoutFilter' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.w.u.matcher.AntPathRequestMatcher : Request 'GET /login' doesn't match 'POST /logout 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.security.web.FilterChainProxy : /login?code=2bf72556-4237-4984-b5ee-34b0bc9d930e&scope=openid&state=OeYu2u&session_state=69211e06-1076-40a3-a7e4-016b6ad73f6a at position 6 of 12 in additional filter chain; firing Filter: 'OAuth2ClientAuthenticationProcessingFilter' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.w.u.matcher.AntPathRequestMatcher : Checking match of request : '/login'; against '/login' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] uth2ClientAuthenticationProcessingFilter : Request is to process authentication 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.f.s.DefaultListableBeanFactory : Creating instance of bean 'scopedTarget.accessTokenRequest' 2017-05-16 15:51:00.816 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.f.s.DefaultListableBeanFactory : Returning cached instance of singleton bean 'org.springframework.security.oauth2.config.annotation.web.configuration.OAuth2ClientConfiguration' 2017-05-16 15:51:00.817 DEBUG 10798 --- [nio-8080-exec-7] org.apache.tomcat.util.http.Parameters : Set encoding to UTF-8 2017-05-16 15:51:00.817 DEBUG 10798 --- [nio-8080-exec-7] org.apache.tomcat.util.http.Parameters : Decoding query null UTF-8 2017-05-16 15:51:00.817 DEBUG 10798 --- [nio-8080-exec-7] org.apache.tomcat.util.http.Parameters : Start processing with input [code=2bf72556-4237-4984-b5ee-34b0bc9d930e&scope=openid&state=OeYu2u&session_state=69211e06-1076-40a3-a7e4-016b6ad73f6a] 2017-05-16 15:51:00.818 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.f.s.DefaultListableBeanFactory : Finished creating instance of bean 'scopedTarget.accessTokenRequest' 2017-05-16 15:51:00.820 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.loader.WebappClassLoaderBase : findResources(META-INF/services/javax.xml.transform.TransformerFactory) 2017-05-16 15:51:00.821 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.loader.WebappClassLoaderBase : findResources(META-INF/services/javax.xml.transform.TransformerFactory) 2017-05-16 15:51:00.821 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.loader.WebappClassLoaderBase : findResources(META-INF/services/javax.xml.transform.TransformerFactory) 2017-05-16 15:51:00.822 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.loader.WebappClassLoaderBase : findResources(META-INF/services/javax.xml.transform.TransformerFactory) 2017-05-16 15:51:00.823 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.loader.WebappClassLoaderBase : findResources(META-INF/services/javax.xml.transform.TransformerFactory) 2017-05-16 15:51:00.824 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.loader.WebappClassLoaderBase : findResources(META-INF/services/javax.xml.transform.TransformerFactory) 2017-05-16 15:51:00.824 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.loader.WebappClassLoaderBase : findResources(META-INF/services/javax.xml.transform.TransformerFactory) 2017-05-16 15:51:00.825 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.loader.WebappClassLoaderBase : findResources(META-INF/services/javax.xml.transform.TransformerFactory) 2017-05-16 15:51:00.828 DEBUG 10798 --- [nio-8080-exec-7] g.c.AuthorizationCodeAccessTokenProvider : Retrieving token from https://<mygluuserver>/oxauth/seam/resource/restv1/oxauth/token 2017-05-16 15:51:00.916 DEBUG 10798 --- [nio-8080-exec-7] o.s.web.client.RestTemplate : Created POST request for "https://<mygluuserver>/oxauth/seam/resource/restv1/oxauth/token" 2017-05-16 15:51:00.916 DEBUG 10798 --- [nio-8080-exec-7] g.c.AuthorizationCodeAccessTokenProvider : Encoding and sending form: {grant_type=[authorization_code], code=[2bf72556-4237-4984-b5ee-34b0bc9d930e], redirect_uri=[http://localhost:8080/login], client_id=[@!988E.A9C3.8A68.AE11!0001!C559.2982!0008!9902.8721.B545.1646], client_secret=[<myclientsecret>]} 2017-05-16 15:51:01.242 DEBUG 10798 --- [nio-8080-exec-7] s.n.www.protocol.http.HttpURLConnection : sun.net.www.MessageHeader@271095399 pairs: {POST /oxauth/seam/resource/restv1/oxauth/token HTTP/1.1: null}{Accept: application/json, application/x-www-form-urlencoded}{Content-Type: application/x-www-form-urlencoded}{Cache-Control: no-cache}{Pragma: no-cache}{User-Agent: Java/1.8.0_91}{Host: <mygluuserver>}{Connection: keep-alive}{Content-Length: 233} 2017-05-16 15:51:01.317 DEBUG 10798 --- [nio-8080-exec-7] s.n.www.protocol.http.HttpURLConnection : sun.net.www.MessageHeader@7934ddf116 pairs: {null: HTTP/1.1 200 OK}{Date: Tue, 16 May 2017 20:51:01 GMT}{Server: Jetty(9.3.15.v20161220)}{X-Frame-Options: SAMEORIGIN}{X-Xss-Protection: 1; mode=block}{X-Content-Type-Options: nosniff}{Strict-Transport-Security: max-age=31536000; includeSubDomains}{Expires: Thu, 01 Jan 1970 00:00:00 GMT}{Content-Type: application/json}{Cache-Control: no-store}{Pragma: no-cache}{Set-Cookie: JSESSIONID=1er9mae62hqff1o4zziii90zyj;Path=/oxauth;Secure;HttpOnly}{Access-Control-Allow-Origin: *}{Keep-Alive: timeout=5, max=100}{Connection: Keep-Alive}{Transfer-Encoding: chunked} 2017-05-16 15:51:01.318 DEBUG 10798 --- [nio-8080-exec-7] o.s.web.client.RestTemplate : POST request for "https://<mygluuserver>/oxauth/seam/resource/restv1/oxauth/token" resulted in 200 (OK) 2017-05-16 15:51:01.337 DEBUG 10798 --- [nio-8080-exec-7] o.s.w.c.HttpMessageConverterExtractor : Reading [interface org.springframework.security.oauth2.common.OAuth2AccessToken] as "application/json" using [org.springframework.http.converter.json.MappingJackson2HttpMessageConverter@49d91640] 2017-05-16 15:51:01.363 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.a.s.o.r.UserInfoTokenServices : Getting user info from: https://<mygluuserver>/oxauth/seam/resource/restv1/oxauth/authorize 2017-05-16 15:51:01.366 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.oauth2.client.OAuth2RestTemplate : Created GET request for "https://<mygluuserver>/oxauth/seam/resource/restv1/oxauth/authorize?access_token=bc572b82-5c47-443f-9100-7f04646374f3" 2017-05-16 15:51:01.366 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.oauth2.client.OAuth2RestTemplate : Setting request Accept header to [application/json, application/*+json] 2017-05-16 15:51:01.423 DEBUG 10798 --- [nio-8080-exec-7] s.n.www.protocol.http.HttpURLConnection : sun.net.www.MessageHeader@7ea6f4f5 pairs: {GET /oxauth/seam/resource/restv1/oxauth/authorize?access_token=bc572b82-5c47-443f-9100-7f04646374f3 HTTP/1.1: null}{Accept: application/json}{User-Agent: Java/1.8.0_91}{Host: <mygluuserver>}{Connection: keep-alive} 2017-05-16 15:51:01.450 DEBUG 10798 --- [nio-8080-exec-7] s.n.www.protocol.http.HttpURLConnection : sun.net.www.MessageHeader@3738a02a13 pairs: {null: HTTP/1.1 406 No match for accept header}{Date: Tue, 16 May 2017 20:51:01 GMT}{Server: Jetty(9.3.15.v20161220)}{X-Frame-Options: SAMEORIGIN}{X-Xss-Protection: 1; mode=block}{X-Content-Type-Options: nosniff}{Strict-Transport-Security: max-age=31536000; includeSubDomains}{Cache-Control: must-revalidate,no-cache,no-store}{Set-Cookie: JSESSIONID=1um5edtmbx19218o80a8qzq2bn;Path=/oxauth;Secure;HttpOnly}{Access-Control-Allow-Origin: *}{Keep-Alive: timeout=5, max=100}{Connection: Keep-Alive}{Transfer-Encoding: chunked} 2017-05-16 15:51:01.450 DEBUG 10798 --- [nio-8080-exec-7] o.s.s.oauth2.client.OAuth2RestTemplate : GET request for "https://<mygluuserver>/oxauth/seam/resource/restv1/oxauth/authorize" resulted in 406 (No match for accept header); invoking error handler 2017-05-16 15:51:01.454 WARN 10798 --- [nio-8080-exec-7] o.s.b.a.s.o.r.UserInfoTokenServices : Could not fetch user details: class org.springframework.web.client.HttpClientErrorException, 406 No match for accept header 2017-05-16 15:51:01.454 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.a.s.o.r.UserInfoTokenServices : userinfo returned error: Could not fetch user details 2017-05-16 15:51:01.457 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.f.s.DefaultListableBeanFactory : Returning cached instance of singleton bean 'authenticationAuditListener' 2017-05-16 15:51:01.457 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.f.s.DefaultListableBeanFactory : Returning cached instance of singleton bean 'delegatingApplicationListener' 2017-05-16 15:51:01.457 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.a.audit.listener.AuditListener : AuditEvent [timestamp=Tue May 16 15:51:01 CDT 2017, principal=UNKNOWN, type=AUTHENTICATION_FAILURE, data={type=org.springframework.security.authentication.BadCredentialsException, message=Could not obtain user details from token}] 2017-05-16 15:51:01.459 DEBUG 10798 --- [nio-8080-exec-7] uth2ClientAuthenticationProcessingFilter : Authentication request failed: org.springframework.security.authentication.BadCredentialsException: Could not obtain user details from token org.springframework.security.authentication.BadCredentialsException: Could not obtain user details from token at org.springframework.security.oauth2.client.filter.OAuth2ClientAuthenticationProcessingFilter.attemptAuthentication(OAuth2ClientAuthenticationProcessingFilter.java:122) ~[spring-security-oauth2-2.0.13.RELEASE.jar:na] at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:212) ~[spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.authentication.logout.LogoutFilter.doFilter(LogoutFilter.java:116) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.csrf.CsrfFilter.doFilterInternal(CsrfFilter.java:100) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.header.HeaderWriterFilter.doFilterInternal(HeaderWriterFilter.java:64) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:105) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:56) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:214) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:262) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:99) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.security.oauth2.client.filter.OAuth2ClientContextFilter.doFilter(OAuth2ClientContextFilter.java:60) [spring-security-oauth2-2.0.13.RELEASE.jar:na] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.web.filter.HttpPutFormContentFilter.doFilterInternal(HttpPutFormContentFilter.java:105) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.web.filter.HiddenHttpMethodFilter.doFilterInternal(HiddenHttpMethodFilter.java:81) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:197) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.boot.actuate.autoconfigure.MetricsFilter.doFilterInternal(MetricsFilter.java:106) [spring-boot-actuator-1.5.3.RELEASE.jar:1.5.3.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:198) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:478) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:140) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:80) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:342) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:799) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:861) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1455) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) [tomcat-embed-core-8.5.14.jar:8.5.14] at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) [na:1.8.0_91] at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) [na:1.8.0_91] at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) [tomcat-embed-core-8.5.14.jar:8.5.14] at java.lang.Thread.run(Thread.java:745) [na:1.8.0_91] Caused by: org.springframework.security.oauth2.common.exceptions.InvalidTokenException: bc572b82-5c47-443f-9100-7f04646374f3 at org.springframework.boot.autoconfigure.security.oauth2.resource.UserInfoTokenServices.loadAuthentication(UserInfoTokenServices.java:93) ~[spring-boot-autoconfigure-1.5.3.RELEASE.jar:1.5.3.RELEASE] at org.springframework.security.oauth2.client.filter.OAuth2ClientAuthenticationProcessingFilter.attemptAuthentication(OAuth2ClientAuthenticationProcessingFilter.java:112) ~[spring-security-oauth2-2.0.13.RELEASE.jar:na] ... 60 common frames omitted 2017-05-16 15:51:01.459 DEBUG 10798 --- [nio-8080-exec-7] uth2ClientAuthenticationProcessingFilter : Updated SecurityContextHolder to contain null Authentication 2017-05-16 15:51:01.459 DEBUG 10798 --- [nio-8080-exec-7] uth2ClientAuthenticationProcessingFilter : Delegating to authentication failure handler org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler@1f9687f 2017-05-16 15:51:01.459 DEBUG 10798 --- [nio-8080-exec-7] .a.SimpleUrlAuthenticationFailureHandler : No failure URL set, sending 401 Unauthorized error 2017-05-16 15:51:01.459 DEBUG 10798 --- [nio-8080-exec-7] w.c.HttpSessionSecurityContextRepository : SecurityContext is empty or contents are anonymous - context will not be stored in HttpSession. 2017-05-16 15:51:01.459 DEBUG 10798 --- [nio-8080-exec-7] s.s.w.c.SecurityContextPersistenceFilter : SecurityContextHolder now cleared, as request processing completed 2017-05-16 15:51:01.459 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.w.f.OrderedRequestContextFilter : Cleared thread-bound request context: org.apache.catalina.connector.RequestFacade@7cc087df 2017-05-16 15:51:01.460 DEBUG 10798 --- [nio-8080-exec-7] o.a.c.c.C.[Tomcat].[localhost] : Processing ErrorPage[errorCode=0, location=/error] 2017-05-16 15:51:01.460 DEBUG 10798 --- [nio-8080-exec-7] o.s.web.servlet.DispatcherServlet : DispatcherServlet with name 'dispatcherServlet' processing GET request for [/error] 2017-05-16 15:51:01.460 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.a.e.mvc.EndpointHandlerMapping : Looking up handler method for path /error 2017-05-16 15:51:01.464 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.a.e.mvc.EndpointHandlerMapping : Did not find handler method for [/error] 2017-05-16 15:51:01.464 DEBUG 10798 --- [nio-8080-exec-7] s.w.s.m.m.a.RequestMappingHandlerMapping : Looking up handler method for path /error 2017-05-16 15:51:01.466 DEBUG 10798 --- [nio-8080-exec-7] s.w.s.m.m.a.RequestMappingHandlerMapping : Returning handler method [public org.springframework.web.servlet.ModelAndView org.springframework.boot.autoconfigure.web.BasicErrorController.errorHtml(javax.servlet.http.HttpServletRequest,javax.servlet.http.HttpServletResponse)] 2017-05-16 15:51:01.466 DEBUG 10798 --- [nio-8080-exec-7] o.s.b.f.s.DefaultListableBeanFactory : Returning cached instance of singleton bean 'basicErrorController' 2017-05-16 15:51:01.466 DEBUG 10798 --- [nio-8080-exec-7] o.s.web.servlet.DispatcherServlet : Last-Modified value for [/error] is: -1 ``` I'm also seeing this error in the gluu logs: java.lang.Exception: The Token Authentication Method is not valid. I don't know if there are any issues with my OpenId or Boot config. Thanks!
U1404
closed

Answers

By Mohib Zico Account Admin 16 May 2017 at 4:46 p.m. CDT

Copy
Mohib Zico gravatar
Try to import your Gluu Server's cert into your app's jvm keystore. See how that goes.

By Max Anderson Account Admin 16 May 2017 at 5 p.m. CDT

Copy
Max Anderson gravatar
I did, and I verified it is in there. Just incase I re-pulled the cert, deleted and added again ``` bash-3.2# keytool -importcert -file /tmp/sso.svugoogle.com.cer -keystore cacerts -alias "Gluu" Enter keystore password: Owner: EMAILADDRESS=max.anderson@supervalu.com, CN=sso.svugoogle.com, O=Supervalu, L=Eden Prairie, ST=MN, C=US Issuer: EMAILADDRESS=max.anderson@supervalu.com, CN=sso.svugoogle.com, O=Supervalu, L=Eden Prairie, ST=MN, C=US Serial number: 9cb3b892028f5435 Valid from: Wed May 10 10:17:48 CDT 2017 until: Thu May 10 10:17:48 CDT 2018 Certificate fingerprints: MD5: DD:A5:C4:2C:5C:2A:C1:A7:29:05:64:73:E3:B0:AB:5F SHA1: D7:68:8D:36:86:71:48:77:C1:29:BA:B1:A0:4B:7C:43:BA:A6:91:99 SHA256: 85:EB:05:41:0A:F7:FC:92:0E:A6:7A:F9:72:9F:15:6B:AC:54:E7:6F:E9:82:2C:21:C1:3E:A6:07:AE:9A:AF:C7 Signature algorithm name: SHA256withRSA Version: 1 Trust this certificate? [no]: yes Certificate was added to keystore ``` Still getting the same error.

By Mohib Zico Account Admin 16 May 2017 at 5:06 p.m. CDT

Copy
Mohib Zico gravatar
Alias should be the hostname of your Gluu Server. Also... in your Gluu Server, use client_secret_post authentication mode. Which property values you are using in your boot client for 'authentication-scheme' and 'client-authentication-scheme' ?

By Max Anderson Account Admin 16 May 2017 at 5:11 p.m. CDT

Copy
Max Anderson gravatar
Changed the alias to the hostname. I verified that I'm using client_secret_post. authenticationScheme: form clientAuthenticationScheme: form After changing the alias, I'm still getting the same error.

By Mohib Zico Account Admin 17 May 2017 at 3:14 a.m. CDT

Copy
Mohib Zico gravatar
Can you please check what error you get from Gluu Server?

By Max Anderson Account Admin 17 May 2017 at 1:11 p.m. CDT

Copy
Max Anderson gravatar
What is the best way to do that? Through the console "logs" or going on the server and pulling a specific log file. I'm new to Gluu.

By Mohib Zico Account Admin 22 May 2017 at 6:50 a.m. CDT

Copy
Mohib Zico gravatar
[Here](https://gluu.org/docs/ce/3.0.1/operation/logs/) is the log management doc.

By Max Anderson Account Admin 24 May 2017 at 12:19 p.m. CDT

Copy
Max Anderson gravatar
I think it is something with either my OpenId config or my client, but I'm not getting anything valuable to tell me what exactly is going wrong. From the oxauth err log: ``` 2017-05-24 17:07:15,581 INFO [qtp242131142-10] [org.xdi.oxauth.service.AuthenticationService] (AuthenticationService.java:519) - Attempting to redirect user: SessionUser: SessionState, dn='oxAuthSessionId=d9ba0a5d-eeeb-46fb-8b8c-34d0c1ad81f9,ou=session,o=@!661D.077A.F9DC.CB15!0001!22D5.6DE1,o=gluu', id='d9ba0a5d-eeeb-46fb-8b8c-34d0c1ad81f9', isJwt=false, lastUsedAt=Wed May 24 17:07:15 UTC 2017, userDn='inum=@!661D.077A.F9DC.CB15!0001!22D5.6DE1!0000!D1D8.9C19.4324.89E6,ou=people,o=@!661D.077A.F9DC.CB15!0001!22D5.6DE1,o=gluu', authenticationTime=Wed May 24 17:07:15 UTC 2017, state=authenticated, permissionGranted=null, permissionGrantedMap=org.xdi.oxauth.model.common.SessionIdAccessMap@29cad566, sessionAttributes={auth_step=1, acr=auth_ldap_server, remote_ip=169.155.33.1, scope=openid, response_type=code, redirect_uri=http://localhost:8080/login, state=qPJwSH, client_id=@!661D.077A.F9DC.CB15!0001!22D5.6DE1!0008!AD75.0F41.992D.E96E, auth_user=max.anderson}, persisted=true} 2017-05-24 17:07:15,582 INFO [qtp242131142-10] [org.xdi.oxauth.service.AuthenticationService] (AuthenticationService.java:527) - Attempting to redirect user: User: org.xdi.oxauth.model.common.User@674b0c8a 2017-05-24 17:07:15,586 INFO [qtp242131142-10] [org.xdi.oxauth.auth.Authenticator] (Authenticator.java:323) - Authentication success for User: 'max.anderson' 2017-05-24 17:07:16,372 INFO [qtp242131142-10] [org.xdi.oxauth.auth.Authenticator] (Authenticator.java:189) - Authentication success for Client: '@!661D.077A.F9DC.CB15!0001!22D5.6DE1!0008!AD75.0F41.992D.E96E' 2017-05-24 17:09:51,908 INFO [qtp242131142-18] [org.xdi.oxauth.auth.Authenticator] (Authenticator.java:189) - Authentication success for Client: '@!661D.077A.F9DC.CB15!0001!22D5.6DE1!0008!2FF6.EA59' ``` This looks like Gluu is doing what it is supposed to. I've added and removed the certificate in the /etc/certs directory into my cacerts in my local jvm. I'd like to put this as a contender with our POC for SSO solutions. Here are my current logs from my client app: ``` org.springframework.security.authentication.BadCredentialsException: Could not obtain user details from token at org.springframework.security.oauth2.client.filter.OAuth2ClientAuthenticationProcessingFilter.attemptAuthentication(OAuth2ClientAuthenticationProcessingFilter.java:122) ~[spring-security-oauth2-2.0.13.RELEASE.jar:na] at org.springframework.security.web.authentication.AbstractAuthenticationProcessingFilter.doFilter(AbstractAuthenticationProcessingFilter.java:212) ~[spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.authentication.logout.LogoutFilter.doFilter(LogoutFilter.java:116) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.csrf.CsrfFilter.doFilterInternal(CsrfFilter.java:100) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.header.HeaderWriterFilter.doFilterInternal(HeaderWriterFilter.java:64) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:105) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:56) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:331) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:214) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177) [spring-security-web-4.2.2.RELEASE.jar:4.2.2.RELEASE] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:262) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:99) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.security.oauth2.client.filter.OAuth2ClientContextFilter.doFilter(OAuth2ClientContextFilter.java:60) [spring-security-oauth2-2.0.13.RELEASE.jar:na] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.web.filter.HttpPutFormContentFilter.doFilterInternal(HttpPutFormContentFilter.java:105) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.web.filter.HiddenHttpMethodFilter.doFilterInternal(HiddenHttpMethodFilter.java:81) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.web.filter.CharacterEncodingFilter.doFilterInternal(CharacterEncodingFilter.java:197) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.springframework.boot.actuate.autoconfigure.MetricsFilter.doFilterInternal(MetricsFilter.java:106) [spring-boot-actuator-1.5.3.RELEASE.jar:1.5.3.RELEASE] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107) [spring-web-4.3.8.RELEASE.jar:4.3.8.RELEASE] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:198) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:478) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:140) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:80) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:342) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:799) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:861) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1455) [tomcat-embed-core-8.5.14.jar:8.5.14] at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) [tomcat-embed-core-8.5.14.jar:8.5.14] at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) [na:1.8.0_91] at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) [na:1.8.0_91] at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) [tomcat-embed-core-8.5.14.jar:8.5.14] at java.lang.Thread.run(Thread.java:745) [na:1.8.0_91] Caused by: org.springframework.security.oauth2.common.exceptions.InvalidTokenException: fd52cbb5-28a2-4258-9c44-909b8edd8840 at org.springframework.boot.autoconfigure.security.oauth2.resource.UserInfoTokenServices.loadAuthentication(UserInfoTokenServices.java:93) ~[spring-boot-autoconfigure-1.5.3.RELEASE.jar:1.5.3.RELEASE] at org.springframework.security.oauth2.client.filter.OAuth2ClientAuthenticationProcessingFilter.attemptAuthentication(OAuth2ClientAuthenticationProcessingFilter.java:112) ~[spring-security-oauth2-2.0.13.RELEASE.jar:na] ... 60 common frames omitted 2017-05-24 12:07:16.617 DEBUG 2065 --- [nio-8080-exec-8] uth2ClientAuthenticationProcessingFilter : Updated SecurityContextHolder to contain null Authentication 2017-05-24 12:07:16.617 DEBUG 2065 --- [nio-8080-exec-8] uth2ClientAuthenticationProcessingFilter : Delegating to authentication failure handler org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler@7af62ed1 2017-05-24 12:07:16.617 DEBUG 2065 --- [nio-8080-exec-8] .a.SimpleUrlAuthenticationFailureHandler : No failure URL set, sending 401 Unauthorized error 2017-05-24 12:07:16.617 DEBUG 2065 --- [nio-8080-exec-8] w.c.HttpSessionSecurityContextRepository : SecurityContext is empty or contents are anonymous - context will not be stored in HttpSession. 2017-05-24 12:07:16.617 DEBUG 2065 --- [nio-8080-exec-8] s.s.w.c.SecurityContextPersistenceFilter : SecurityContextHolder now cleared, as request processing completed 2017-05-24 12:07:16.617 DEBUG 2065 --- [nio-8080-exec-8] o.s.b.w.f.OrderedRequestContextFilter : Cleared thread-bound request context: org.apache.catalina.connector.RequestFacade@3c00f64a 2017-05-24 12:07:16.617 DEBUG 2065 --- [nio-8080-exec-8] o.a.c.c.C.[Tomcat].[localhost] : Processing ErrorPage[errorCode=0, location=/error] 2017-05-24 12:07:16.618 DEBUG 2065 --- [nio-8080-exec-8] o.s.web.servlet.DispatcherServlet : DispatcherServlet with name 'dispatcherServlet' processing GET request for [/error] 2017-05-24 12:07:16.618 DEBUG 2065 --- [nio-8080-exec-8] o.s.b.a.e.mvc.EndpointHandlerMapping : Looking up handler method for path /error 2017-05-24 12:07:16.621 DEBUG 2065 --- [nio-8080-exec-8] o.s.b.a.e.mvc.EndpointHandlerMapping : Did not find handler method for [/error] 2017-05-24 12:07:16.621 DEBUG 2065 --- [nio-8080-exec-8] s.w.s.m.m.a.RequestMappingHandlerMapping : Looking up handler method for path /error 2017-05-24 12:07:16.623 DEBUG 2065 --- [nio-8080-exec-8] s.w.s.m.m.a.RequestMappingHandlerMapping : Returning handler method [public org.springframework.web.servlet.ModelAndView org.springframework.boot.autoconfigure.web.BasicErrorController.errorHtml(javax.servlet.http.HttpServletRequest,javax.servlet.http.HttpServletResponse)] 2017-05-24 12:07:16.623 DEBUG 2065 --- [nio-8080-exec-8] o.s.b.f.s.DefaultListableBeanFactory : Returning cached instance of singleton bean 'basicErrorController' 2017-05-24 12:07:16.623 DEBUG 2065 --- [nio-8080-exec-8] o.s.web.servlet.DispatcherServlet : Last-Modified value for [/error] is: -1 2017-05-24 12:07:16.633 DEBUG 2065 --- [nio-8080-exec-8] o.s.c.e.PropertySourcesPropertyResolver : Found key 'spring.template.provider.cache' in [refresh] with type [String] 2017-05-24 12:07:16.635 DEBUG 2065 --- [nio-8080-exec-8] o.s.c.e.PropertySourcesPropertyResolver : Found key 'spring.template.provider.cache' in [refresh] with type [String] 2017-05-24 12:07:16.639 DEBUG 2065 --- [nio-8080-exec-8] o.s.w.s.v.ContentNegotiatingViewResolver : Requested media types are [text/html, text/html;q=0.8] based on Accept header types and producible media types [text/html]) 2017-05-24 12:07:16.639 DEBUG 2065 --- [nio-8080-exec-8] o.s.b.f.s.DefaultListableBeanFactory : Returning cached instance of singleton bean 'error' 2017-05-24 12:07:16.639 DEBUG 2065 --- [nio-8080-exec-8] o.s.w.servlet.view.BeanNameViewResolver : No matching bean found for view name 'error.html' 2017-05-24 12:07:16.640 DEBUG 2065 --- [nio-8080-exec-8] o.s.b.f.s.DefaultListableBeanFactory : Invoking afterPropertiesSet() on bean with name 'error' 2017-05-24 12:07:16.641 DEBUG 2065 --- [nio-8080-exec-8] o.s.b.f.s.DefaultListableBeanFactory : Invoking afterPropertiesSet() on bean with name 'error.html' 2017-05-24 12:07:16.641 DEBUG 2065 --- [nio-8080-exec-8] o.s.w.s.v.ContentNegotiatingViewResolver : Returning [org.springframework.boot.autoconfigure.web.ErrorMvcAutoConfiguration$SpelView@4cd7dd0d] based on requested media type 'text/html' 2017-05-24 12:07:16.641 DEBUG 2065 --- [nio-8080-exec-8] o.s.web.servlet.DispatcherServlet : Rendering view [org.springframework.boot.autoconfigure.web.ErrorMvcAutoConfiguration$SpelView@4cd7dd0d] in DispatcherServlet with name 'dispatcherServlet' 2017-05-24 12:07:16.648 DEBUG 2065 --- [nio-8080-exec-8] o.s.web.servlet.DispatcherServlet : Successfully completed request 2017-05-24 12:07:16.648 DEBUG 2065 --- [nio-8080-exec-8] o.a.c.c.C.[.[.[/].[dispatcherServlet] : Disabling the response for further output 2017-05-24 12:07:16.649 DEBUG 2065 --- [nio-8080-exec-8] o.a.tomcat.util.net.SocketWrapperBase : Socket: [org.apache.tomcat.util.net.NioEndpoint$NioSocketWrapper@4aa16a95:org.apache.tomcat.util.net.NioChannel@44669c69:java.nio.channels.SocketChannel[connected local=/0:0:0:0:0:0:0:1:8080 remote=/0:0:0:0:0:0:0:1:49783]], Read from buffer: [0] 2017-05-24 12:07:16.649 DEBUG 2065 --- [nio-8080-exec-8] o.apache.coyote.http11.Http11Processor : Socket: [org.apache.tomcat.util.net.NioEndpoint$NioSocketWrapper@4aa16a95:org.apache.tomcat.util.net.NioChannel@44669c69:java.nio.channels.SocketChannel[connected local=/0:0:0:0:0:0:0:1:8080 remote=/0:0:0:0:0:0:0:1:49783]], Status in: [OPEN_READ], State out: [OPEN] 2017-05-24 12:07:31.298 DEBUG 2065 --- [on(7)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(7)-127.0.0.1: (port 49764) connection closed 2017-05-24 12:07:31.298 DEBUG 2065 --- [on(7)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(7)-127.0.0.1: close connection 2017-05-24 12:07:46.465 DEBUG 2065 --- [on(9)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(9)-127.0.0.1: accepted socket from [127.0.0.1:49818] 2017-05-24 12:07:46.465 DEBUG 2065 --- [on(9)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(9)-127.0.0.1: (port 49764) op = 80 2017-05-24 12:08:01.469 DEBUG 2065 --- [on(9)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(9)-127.0.0.1: (port 49764) connection closed 2017-05-24 12:08:01.469 DEBUG 2065 --- [on(9)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(9)-127.0.0.1: close connection 2017-05-24 12:08:05.615 DEBUG 2065 --- [io-8080-exec-10] o.apache.tomcat.util.threads.LimitLatch : Counting down[http-nio-8080-exec-10] latch=5 2017-05-24 12:08:05.616 DEBUG 2065 --- [nio-8080-exec-9] o.apache.tomcat.util.threads.LimitLatch : Counting down[http-nio-8080-exec-9] latch=4 2017-05-24 12:08:05.852 DEBUG 2065 --- [nio-8080-exec-1] o.apache.tomcat.util.threads.LimitLatch : Counting down[http-nio-8080-exec-1] latch=3 2017-05-24 12:08:15.894 DEBUG 2065 --- [nio-8080-exec-2] o.apache.tomcat.util.threads.LimitLatch : Counting down[http-nio-8080-exec-2] latch=2 2017-05-24 12:08:16.898 DEBUG 2065 --- [nio-8080-exec-3] o.apache.tomcat.util.threads.LimitLatch : Counting down[http-nio-8080-exec-3] latch=1 2017-05-24 12:08:46.470 DEBUG 2065 --- [n(10)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(10)-127.0.0.1: accepted socket from [127.0.0.1:49824] 2017-05-24 12:08:46.470 DEBUG 2065 --- [n(10)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(10)-127.0.0.1: (port 49764) op = 80 2017-05-24 12:09:01.475 DEBUG 2065 --- [n(10)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(10)-127.0.0.1: (port 49764) connection closed 2017-05-24 12:09:01.475 DEBUG 2065 --- [n(10)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(10)-127.0.0.1: close connection 2017-05-24 12:09:46.474 DEBUG 2065 --- [n(11)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(11)-127.0.0.1: accepted socket from [127.0.0.1:49872] 2017-05-24 12:09:46.475 DEBUG 2065 --- [n(11)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(11)-127.0.0.1: (port 49764) op = 80 2017-05-24 12:09:53.728 DEBUG 2065 --- [Engine[Tomcat]]] org.apache.catalina.session.ManagerBase : Start expire sessions StandardManager at 1495645793728 sessioncount 1 2017-05-24 12:09:53.728 DEBUG 2065 --- [Engine[Tomcat]]] org.apache.catalina.session.ManagerBase : End expire sessions StandardManager processingTime 0 expired sessions: 0 2017-05-24 12:10:01.478 DEBUG 2065 --- [n(11)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(11)-127.0.0.1: (port 49764) connection closed 2017-05-24 12:10:01.478 DEBUG 2065 --- [n(11)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(11)-127.0.0.1: close connection 2017-05-24 12:10:46.483 DEBUG 2065 --- [n(12)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(12)-127.0.0.1: accepted socket from [127.0.0.1:49904] 2017-05-24 12:10:46.484 DEBUG 2065 --- [n(12)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(12)-127.0.0.1: (port 49764) op = 80 2017-05-24 12:11:01.488 DEBUG 2065 --- [n(12)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(12)-127.0.0.1: (port 49764) connection closed 2017-05-24 12:11:01.488 DEBUG 2065 --- [n(12)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(12)-127.0.0.1: close connection 2017-05-24 12:11:46.488 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(13)-127.0.0.1: accepted socket from [127.0.0.1:49930] 2017-05-24 12:11:46.488 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(13)-127.0.0.1: (port 49764) op = 80 2017-05-24 12:11:56.832 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(13)-127.0.0.1: (port 49764) op = 82 2017-05-24 12:11:56.833 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(13)-127.0.0.1: (port 49764) op = 80 2017-05-24 12:11:56.833 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.loader : RMI TCP Connection(13)-127.0.0.1: name = "[Ljava.rmi.server.ObjID;", codebase = "" 2017-05-24 12:11:56.833 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.loader : RMI TCP Connection(13)-127.0.0.1: name = "java.rmi.dgc.Lease", codebase = "" 2017-05-24 12:11:56.834 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.loader : RMI TCP Connection(13)-127.0.0.1: name = "java.rmi.dgc.VMID", codebase = "" 2017-05-24 12:11:56.834 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.loader : RMI TCP Connection(13)-127.0.0.1: name = "[B", codebase = "" 2017-05-24 12:11:56.834 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.loader : RMI TCP Connection(13)-127.0.0.1: name = "java.rmi.server.UID", codebase = "" 2017-05-24 12:12:16.497 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(13)-127.0.0.1: (port 49764) connection closed 2017-05-24 12:12:16.497 DEBUG 2065 --- [n(13)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(13)-127.0.0.1: close connection 2017-05-24 12:12:46.493 DEBUG 2065 --- [n(14)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(14)-127.0.0.1: accepted socket from [127.0.0.1:49939] 2017-05-24 12:12:46.494 DEBUG 2065 --- [n(14)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(14)-127.0.0.1: (port 49764) op = 80 2017-05-24 12:12:53.741 DEBUG 2065 --- [Engine[Tomcat]]] org.apache.catalina.session.ManagerBase : Start expire sessions StandardManager at 1495645973741 sessioncount 1 2017-05-24 12:12:53.741 DEBUG 2065 --- [Engine[Tomcat]]] org.apache.catalina.session.ManagerBase : End expire sessions StandardManager processingTime 0 expired sessions: 0 2017-05-24 12:13:01.498 DEBUG 2065 --- [n(14)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(14)-127.0.0.1: (port 49764) connection closed 2017-05-24 12:13:01.498 DEBUG 2065 --- [n(14)-127.0.0.1] sun.rmi.transport.tcp : RMI TCP Connection(14)-127.0.0.1: close connection ```

By Mohib Zico Account Admin 24 May 2017 at 12:58 p.m. CDT

Copy
Mohib Zico gravatar
Yes, Gluu Server log looks good. Something is off with your app side, unfortunately troubleshooting client app is not covered in community support. What I can tell you... please try to use [Gluu oxD](https://oxd.gluu.org/) if you can, it will heavily reduce the pain of client app setup with Gluu Server.

Post an answer