By: Joseph Haun user 16 Apr 2020 at 10:27 a.m. CDT

10 Responses

Experiencing a strange issue, upon landing on the Gluu Casa oxAuth page external third party identity providers are present, but upon clicking to make use of one of the OpenID Connect providers (Google or LinkedIn) the user is taken nowhere. Upon a second click of the icon, the user is redirected. I would expect that the Gluu Casa script would redirect the end-user to an external identity provider on the first click. but only does so after the user clicks on the icon twice. I believe I have isolated the login attempt in the oxauth logs which are below. The server in question is a CentOS 8.0 Server with the recommended amount of RAM and CPU units. Any thoughts on what could be causing this issue? **UPDATE:** It looks like Gluu Casa is redirecting to the passport-social page which looks identical on my set up. Maybe this is intended, but I would need a weigh in from someone with more knowledge of the default system. In the mean time, I will be looking into having Casa call the passport-social login scripts directly. **oxAuth Log** ``` > 2020-04-16 15:00:52,480 INFO [main] [org.gluu.oxauth.fido2.certification.DirectoryBasedMetadataLoader] (DirectoryBasedMetadataLoader.java:68) - Populating metadata from /etc/gluu/conf/fido2/server_metadata 2020-04-16 15:00:52,619 INFO [main] [org.jboss.weld.environment.servlet.Listener] (Listener.java:112) - WELD-ENV-001006: org.jboss.weld.environment.servlet.EnhancedListener used to initialize Weld 2020-04-16 15:00:55,127 INFO [main] [org.jboss.weld.environment.servlet.EnhancedListener] (EnhancedListener.java:75) - WELD-ENV-001009: org.jboss.weld.environment.servlet.Listener used for ServletRequest and HttpSession notifications 2020-04-16 15:00:55,967 INFO [main] [org.jboss.resteasy.spi.ResteasyDeployment] (ResteasyDeployment.java:546) - RESTEASY002225: Deploying javax.ws.rs.core.Application: class org.gluu.oxauth.service.ResteasyInitializer$Proxy$_$$_WeldClientProxy 2020-04-16 15:00:55,967 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.jackson.PatchMethodFilter is already registered. 2nd registration is being ignored. 2020-04-16 15:00:55,983 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.jaxb.JAXBXmlRootElementProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:55,987 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.InputStreamProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:55,988 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.DefaultBooleanWriter is already registered. 2nd registration is being ignored. 2020-04-16 15:00:55,988 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.FormUrlEncodedProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:55,988 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.DataSourceProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,023 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.DocumentProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,023 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.sse.SseEventOutputProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,023 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.jaxb.JAXBXmlTypeProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,024 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.sse.SseEventSinkInterceptor is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,024 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.ReaderProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,024 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.jaxb.CollectionProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,040 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.interceptors.encoding.MessageSanitizerContainerResponseFilter is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,041 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.StringTextStar is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,041 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.jackson.UnrecognizedPropertyExceptionHandler is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,041 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.JaxrsFormProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,041 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.jackson.ResteasyJackson2Provider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,057 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.IIOImageProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,069 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.jaxb.JAXBElementProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,069 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.FileProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,070 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.jaxb.MapProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,070 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.jaxb.JAXBXmlSeeAlsoProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,070 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.SourceProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,074 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.jaxb.XmlJAXBContextFinder is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,075 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.sse.SseEventProvider is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,075 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.DefaultNumberWriter is already registered. 2nd registration is being ignored. 2020-04-16 15:00:56,075 WARN [main] [org.jboss.resteasy.spi.ResteasyProviderFactory] (ResteasyProviderFactory.java:1675) - RESTEASY002155: Provider class org.jboss.resteasy.plugins.providers.DefaultTextPlain is already registered. 2nd registration is being ignored. 2020-04-16 15:00:59,441 INFO [Thread-18] [org.gluu.oxauth.service.AppInitializer] (AppInitializer.java:348) - Created persistenceEntryManager: org.gluu.persist.ldap.impl.LdapEntryManager@45757484 with operation service: org.gluu.persist.ldap.operation.impl.LdapOperationsServiceImpl@f880127 2020-04-16 15:01:17,102 ERROR [qtp1590550415-17] [org.gluu.oxauth.servlet.OpenIdConfiguration] (OpenIdConfiguration.java:301) - null java.lang.NullPointerException: null at org.gluu.oxauth.service.external.ExternalAuthenticationService.getAcrValuesList(ExternalAuthenticationService.java:446) ~[classes/:?] at org.gluu.oxauth.service.external.ExternalAuthenticationService$Proxy$_$$_WeldClientProxy.getAcrValuesList(Unknown Source) ~[classes/:?] at org.gluu.oxauth.servlet.OpenIdConfiguration.processRequest(OpenIdConfiguration.java:130) ~[classes/:?] at org.gluu.oxauth.servlet.OpenIdConfiguration.doGet(OpenIdConfiguration.java:408) ~[classes/:?] at javax.servlet.http.HttpServlet.service(HttpServlet.java:687) ~[servlet-api-3.1.jar:3.1.0] at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) ~[servlet-api-3.1.jar:3.1.0] at org.eclipse.jetty.servlet.ServletHolder$NotAsyncServlet.service(ServletHolder.java:1395) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:755) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1617) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.websocket.server.WebSocketUpgradeFilter.doFilter(WebSocketUpgradeFilter.java:226) ~[websocket-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.gluu.oxauth.audit.debug.ServletLoggingFilter.doFilter(ServletLoggingFilter.java:67) ~[classes/:?] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1596) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.gluu.server.filters.AbstractCorsFilter.handleNonCORS(AbstractCorsFilter.java:362) ~[oxcore-server-4.1.0.Final.jar:?] at org.gluu.server.filters.AbstractCorsFilter.doFilter(AbstractCorsFilter.java:139) ~[oxcore-server-4.1.0.Final.jar:?] at org.gluu.oxauth.filter.CorsFilter.doFilter(CorsFilter.java:110) ~[classes/:?] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:545) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:590) ~[jetty-security-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1607) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1297) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:485) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1577) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1212) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:221) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.Server.handle(Server.java:500) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:383) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:547) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:375) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:270) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) ~[jetty-io-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103) ~[jetty-io-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117) ~[jetty-io-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:336) ~[jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:313) ~[jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:171) ~[jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.produce(EatWhatYouKill.java:135) ~[jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:806) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:938) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at java.lang.Thread.run(Thread.java:748) [?:1.8.0_222] 2020-04-16 15:01:44,054 INFO [qtp1590550415-15] [org.gluu.oxauth.service.ApplicationFactory] (ApplicationFactory.java:82) - Cache configuration: CacheConfiguration{cacheProviderType=NATIVE_PERSISTENCE, memcachedConfiguration=MemcachedConfiguration{servers='localhost:11211', maxOperationQueueLength=100000, bufferSize=32768, defaultPutExpiration=60, connectionFactoryType=DEFAULT}, redisConfiguration=RedisConfiguration{servers='localhost:6379', defaultPutExpiration=60, redisProviderType=STANDALONE, useSSL=false, sslTrustStoreFilePath=, sentinelMasterGroupName=}, inMemoryConfiguration=InMemoryConfiguration{defaultPutExpiration=60}, nativePersistenceConfiguration=NativePersistenceConfiguration [defaultPutExpiration=60, defaultCleanupBatchSize=10000, deleteExpiredOnGetRequest=false, baseDn=o=gluu]} 2020-04-16 15:01:54,189 INFO [Thread-32] [org.gluu.service.cache.NativePersistenceCacheProvider] (NativePersistenceCacheProvider.java:69) - Created NATIVE_PERSISTENCE cache provider. `baseDn`: ou=cache,o=gluu 2020-04-16 15:02:04,873 INFO [oxAuthScheduler_Worker-3] [org.gluu.oxauth.service.AppInitializer] (AppInitializer.java:348) - Created persistenceEntryManager: org.gluu.persist.ldap.impl.LdapEntryManager@18e1d024 with operation service: org.gluu.persist.ldap.operation.impl.LdapOperationsServiceImpl@398c087e 2020-04-16 15:02:11,580 INFO [qtp1590550415-16] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '1501.16c28d4d-ed14-431e-a974-171bfe156198' 2020-04-16 15:02:12,064 INFO [qtp1590550415-11] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '683afd6c-ccf6-4538-b5ea-54e5e37bb053' 2020-04-16 15:02:12,163 WARN [qtp1590550415-11] [org.gluu.oxauth.model.crypto.AbstractCryptoProvider] (AbstractCryptoProvider.java:238) - WARNING! Expired Key is used, alias: 1dbd4e1c-84f6-4eb7-ab3f-3fab70b3337a_sig_rs256 Expires On: 2020-04-10 20:23:45 Today's Date: 2020-04-16 15:02:12 2020-04-16 15:02:12,861 INFO [qtp1590550415-12] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '1502.c48bc944-5af7-4ba7-aabe-827b075ea446' 2020-04-16 15:02:12,975 INFO [qtp1590550415-10] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '683afd6c-ccf6-4538-b5ea-54e5e37bb053' 2020-04-16 15:02:13,033 WARN [qtp1590550415-10] [org.gluu.oxauth.model.crypto.AbstractCryptoProvider] (AbstractCryptoProvider.java:238) - WARNING! Expired Key is used, alias: 1dbd4e1c-84f6-4eb7-ab3f-3fab70b3337a_sig_rs256 Expires On: 2020-04-10 20:23:45 Today's Date: 2020-04-16 15:02:13 2020-04-16 15:02:15,548 INFO [qtp1590550415-12] [org.gluu.oxauth.service.AppInitializer] (AppInitializer.java:348) - Created persistenceEntryManager: org.gluu.persist.ldap.impl.LdapEntryManager@148f59e with operation service: org.gluu.persist.ldap.operation.impl.LdapOperationsServiceImpl@b403d35 2020-04-16 15:02:20,291 INFO [qtp1590550415-17] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:224) - Authentication failed for '' 2020-04-16 15:02:20,310 ERROR [qtp1590550415-17] [org.gluu.oxauth.exception.GlobalExceptionHandler] (GlobalExceptionHandler.java:50) - #{authenticator.authenticate}: org.gluu.jsf2.exception.RedirectException: Committed javax.faces.FacesException: #{authenticator.authenticate}: org.gluu.jsf2.exception.RedirectException: Committed at com.sun.faces.lifecycle.InvokeApplicationPhase.execute(InvokeApplicationPhase.java:90) ~[javax.faces-2.3.9.jar:2.3.9] at com.sun.faces.lifecycle.Phase.doPhase(Phase.java:100) ~[javax.faces-2.3.9.jar:2.3.9] at com.sun.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:201) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.webapp.FacesServlet.service(FacesServlet.java:670) ~[javax.faces-2.3.9.jar:2.3.9] at org.eclipse.jetty.servlet.ServletHolder$NotAsyncServlet.service(ServletHolder.java:1395) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:755) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1617) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.websocket.server.WebSocketUpgradeFilter.doFilter(WebSocketUpgradeFilter.java:226) ~[websocket-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.gluu.oxauth.audit.debug.ServletLoggingFilter.doFilter(ServletLoggingFilter.java:67) ~[classes/:?] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1596) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:545) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:590) ~[jetty-security-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1607) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1297) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:485) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1577) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1212) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:221) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.Server.handle(Server.java:500) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:383) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:547) [jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:375) [jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:270) [jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) [jetty-io-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103) [jetty-io-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117) [jetty-io-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:336) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:313) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:171) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:129) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:388) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:806) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:938) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at java.lang.Thread.run(Thread.java:748) [?:1.8.0_222] Caused by: javax.faces.FacesException: #{authenticator.authenticate}: org.gluu.jsf2.exception.RedirectException: Committed at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:119) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.component.UICommand.broadcast(UICommand.java:330) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:870) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:1418) ~[javax.faces-2.3.9.jar:2.3.9] at com.sun.faces.lifecycle.InvokeApplicationPhase.execute(InvokeApplicationPhase.java:82) ~[javax.faces-2.3.9.jar:2.3.9] ... 43 more Caused by: javax.faces.el.EvaluationException: org.gluu.jsf2.exception.RedirectException: Committed at javax.faces.component.MethodBindingMethodExpressionAdapter.invoke(MethodBindingMethodExpressionAdapter.java:101) ~[javax.faces-2.3.9.jar:2.3.9] at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:102) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.component.UICommand.broadcast(UICommand.java:330) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:870) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:1418) ~[javax.faces-2.3.9.jar:2.3.9] at com.sun.faces.lifecycle.InvokeApplicationPhase.execute(InvokeApplicationPhase.java:82) ~[javax.faces-2.3.9.jar:2.3.9] ... 43 more Caused by: org.gluu.jsf2.exception.RedirectException: Committed at org.gluu.jsf2.service.FacesService.redirect(FacesService.java:73) ~[oxcore-jsf-util-4.1.0.Final.jar:?] at org.gluu.jsf2.service.FacesService.redirect(FacesService.java:35) ~[oxcore-jsf-util-4.1.0.Final.jar:?] at org.gluu.jsf2.service.FacesService$Proxy$_$$_WeldClientProxy.redirect(Unknown Source) ~[oxcore-jsf-util-4.1.0.Final.jar:?] at org.gluu.oxauth.service.ErrorHandlerService.handleLocalError(ErrorHandlerService.java:70) ~[classes/:?] at org.gluu.oxauth.service.ErrorHandlerService.handleError(ErrorHandlerService.java:58) ~[classes/:?] at org.gluu.oxauth.service.ErrorHandlerService$Proxy$_$$_WeldClientProxy.handleError(Unknown Source) ~[classes/:?] at org.gluu.oxauth.auth.Authenticator.handleScriptError(Authenticator.java:466) ~[classes/:?] at org.gluu.oxauth.auth.Authenticator.authenticationFailed(Authenticator.java:794) ~[classes/:?] at org.gluu.oxauth.auth.Authenticator.authenticate(Authenticator.java:137) ~[classes/:?] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_222] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_222] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_222] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_222] at org.apache.el.parser.AstValue.invoke(AstValue.java:247) ~[org.mortbay.jasper.apache-el-8.5.40.jar:8.5.40] at org.apache.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:267) ~[org.mortbay.jasper.apache-el-8.5.40.jar:8.5.40] at org.jboss.weld.module.web.util.el.ForwardingMethodExpression.invoke(ForwardingMethodExpression.java:40) ~[weld-web-3.1.2.Final.jar:3.1.2.Final] at org.jboss.weld.module.web.el.WeldMethodExpression.invoke(WeldMethodExpression.java:50) ~[weld-web-3.1.2.Final.jar:3.1.2.Final] at com.sun.faces.facelets.el.TagMethodExpression.invoke(TagMethodExpression.java:107) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.component.MethodBindingMethodExpressionAdapter.invoke(MethodBindingMethodExpressionAdapter.java:87) ~[javax.faces-2.3.9.jar:2.3.9] at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:102) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.component.UICommand.broadcast(UICommand.java:330) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:870) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:1418) ~[javax.faces-2.3.9.jar:2.3.9] at com.sun.faces.lifecycle.InvokeApplicationPhase.execute(InvokeApplicationPhase.java:82) ~[javax.faces-2.3.9.jar:2.3.9] ... 43 more 2020-04-16 15:02:20,313 ERROR [qtp1590550415-17] [org.gluu.oxauth.exception.GlobalExceptionHandler] (GlobalExceptionHandler.java:69) - Can't perform redirect to viewId: /error_service.htm java.lang.IllegalStateException: Committed at org.eclipse.jetty.server.HttpChannel.resetBuffer(HttpChannel.java:908) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpOutput.resetBuffer(HttpOutput.java:1413) ~[?:?] at org.eclipse.jetty.server.Response.resetBuffer(Response.java:1132) ~[?:?] at org.eclipse.jetty.server.Response.sendRedirect(Response.java:496) ~[?:?] at org.eclipse.jetty.server.Response.sendRedirect(Response.java:505) ~[?:?] at com.sun.faces.context.ExternalContextImpl.redirect(ExternalContextImpl.java:827) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.context.ExternalContextWrapper.redirect(ExternalContextWrapper.java:621) ~[javax.faces-2.3.9.jar:2.3.9] at org.gluu.oxauth.exception.GlobalExceptionHandler.performRedirect(GlobalExceptionHandler.java:67) ~[classes/:?] at org.gluu.oxauth.exception.GlobalExceptionHandler.handle(GlobalExceptionHandler.java:51) ~[classes/:?] at com.sun.faces.lifecycle.Phase.doPhase(Phase.java:118) ~[javax.faces-2.3.9.jar:2.3.9] at com.sun.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:201) ~[javax.faces-2.3.9.jar:2.3.9] at javax.faces.webapp.FacesServlet.service(FacesServlet.java:670) ~[javax.faces-2.3.9.jar:2.3.9] at org.eclipse.jetty.servlet.ServletHolder$NotAsyncServlet.service(ServletHolder.java:1395) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:755) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1617) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.websocket.server.WebSocketUpgradeFilter.doFilter(WebSocketUpgradeFilter.java:226) ~[websocket-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.gluu.oxauth.audit.debug.ServletLoggingFilter.doFilter(ServletLoggingFilter.java:67) ~[classes/:?] at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1596) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:545) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:590) ~[jetty-security-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1607) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1297) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:485) ~[jetty-servlet-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1577) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1212) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:221) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.Server.handle(Server.java:500) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:383) ~[jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:547) [jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:375) [jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:270) [jetty-server-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) [jetty-io-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103) [jetty-io-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117) [jetty-io-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:336) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:313) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:171) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:129) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:388) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:806) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:938) [jetty-util-9.4.26.v20200117.jar:9.4.26.v20200117] at java.lang.Thread.run(Thread.java:748) [?:1.8.0_222] 2020-04-16 15:02:20,985 INFO [qtp1590550415-10] [org.gluu.oxauth.service.AppInitializer] (AppInitializer.java:348) - Created persistenceEntryManager: org.gluu.persist.ldap.impl.LdapEntryManager@6d85ae4a with operation service: org.gluu.persist.ldap.operation.impl.LdapOperationsServiceImpl@4f22f584 2020-04-16 15:02:25,476 INFO [qtp1590550415-10] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:363) - Authentication reset to step : '1' 2020-04-16 15:02:25,910 INFO [qtp1590550415-15] [org.gluu.oxauth.service.AppInitializer] (AppInitializer.java:348) - Created persistenceEntryManager: org.gluu.persist.ldap.impl.LdapEntryManager@5683918a with operation service: org.gluu.persist.ldap.operation.impl.LdapOperationsServiceImpl@6121115c 2020-04-16 15:02:32,717 INFO [qtp1590550415-15] [org.gluu.oxauth.service.AuthenticationService] (AuthenticationService.java:589) - Attempting to redirect user: SessionUser: SessionId {dn='0591caf9-02dc-4725-a968-cca0e8eb4524', id='0591caf9-02dc-4725-a968-cca0e8eb4524', lastUsedAt=Thu Apr 16 15:02:32 UTC 2020, userDn='inum=9dd1f6dc-4a17-4aae-9e22-6f0b5cc408c1,ou=people,o=gluu', authenticationTime=Thu Apr 16 15:02:32 UTC 2020, state=authenticated, sessionState='e1ae1580fe00c46d691bb308cf059a584009a55ed9648fe171f50dc79aebf061.ea6c1d90-da5a-4c33-a520-397f0110769b', permissionGranted=null, isJwt=false, jwt=null, permissionGrantedMap=SessionIdAccessMap{permissionGranted={683afd6c-ccf6-4538-b5ea-54e5e37bb053=false}}, involvedClients=null, sessionAttributes={auth_external_attributes=[{"externalProviders":"java.lang.String"}], opbs=64206934-a008-4e70-98a9-4747558ba15c, externalProviders={"BlentechThroughLinkedIn": {"requestForEmail": true, "displayName": "LinkedIn", "emailLinkingSafe": true, "type": "oauth", "logo_img": "img/linkedin.png", "saml": false}, "BlentechThroughGoogle": {"requestForEmail": true, "displayName": "Google", "emailLinkingSafe": true, "type": "oauth", "logo_img": "img/google.png", "saml": false}}, response_type=code, nonce=sfuifm22mfilk7dud518j9igpj, selectedProvider=null, client_id=683afd6c-ccf6-4538-b5ea-54e5e37bb053, auth_step=1, acr=passport_social, remote_ip=76.21.102.166, auth_user=jhaun@blentech.com, scope=openid profile user_name clientinfo oxd, acr_values=passport_social, redirect_uri=https://ccloudid.com/casa, state=69g6i1mrsbbks8aps8ui32ck5o}, persisted=true} 2020-04-16 15:02:32,718 INFO [qtp1590550415-15] [org.gluu.oxauth.service.AuthenticationService] (AuthenticationService.java:597) - Attempting to redirect user: User: org.gluu.oxauth.model.common.User@32183323 2020-04-16 15:02:32,722 INFO [qtp1590550415-15] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:430) - Authentication success for User: 'jhaun@blentech.com' 2020-04-16 15:02:33,320 INFO [qtp1590550415-15] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '683afd6c-ccf6-4538-b5ea-54e5e37bb053' 2020-04-16 15:02:33,343 WARN [qtp1590550415-15] [org.gluu.oxauth.model.crypto.AbstractCryptoProvider] (AbstractCryptoProvider.java:238) - WARNING! Expired Key is used, alias: 1dbd4e1c-84f6-4eb7-ab3f-3fab70b3337a_sig_rs256 Expires On: 2020-04-10 20:23:45 Today's Date: 2020-04-16 15:02:33 2020-04-16 15:02:33,594 INFO [qtp1590550415-15] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '683afd6c-ccf6-4538-b5ea-54e5e37bb053' 2020-04-16 15:02:33,617 WARN [qtp1590550415-15] [org.gluu.oxauth.model.crypto.AbstractCryptoProvider] (AbstractCryptoProvider.java:238) - WARNING! Expired Key is used, alias: 1dbd4e1c-84f6-4eb7-ab3f-3fab70b3337a_sig_rs256 Expires On: 2020-04-10 20:23:45 Today's Date: 2020-04-16 15:02:33 2020-04-16 15:02:33,925 INFO [qtp1590550415-15] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '683afd6c-ccf6-4538-b5ea-54e5e37bb053' 2020-04-16 15:02:33,937 WARN [qtp1590550415-15] [org.gluu.oxauth.model.crypto.AbstractCryptoProvider] (AbstractCryptoProvider.java:238) - WARNING! Expired Key is used, alias: 1dbd4e1c-84f6-4eb7-ab3f-3fab70b3337a_sig_rs256 Expires On: 2020-04-10 20:23:45 Today's Date: 2020-04-16 15:02:33 2020-04-16 15:02:44,003 INFO [qtp1590550415-17] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '683afd6c-ccf6-4538-b5ea-54e5e37bb053' 2020-04-16 15:02:44,037 WARN [qtp1590550415-17] [org.gluu.oxauth.model.crypto.AbstractCryptoProvider] (AbstractCryptoProvider.java:238) - WARNING! Expired Key is used, alias: 1dbd4e1c-84f6-4eb7-ab3f-3fab70b3337a_sig_rs256 Expires On: 2020-04-10 20:23:45 Today's Date: 2020-04-16 15:02:44 2020-04-16 15:02:46,461 INFO [qtp1590550415-17] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '683afd6c-ccf6-4538-b5ea-54e5e37bb053' 2020-04-16 15:02:46,491 WARN [qtp1590550415-17] [org.gluu.oxauth.model.crypto.AbstractCryptoProvider] (AbstractCryptoProvider.java:238) - WARNING! Expired Key is used, alias: 1dbd4e1c-84f6-4eb7-ab3f-3fab70b3337a_sig_rs256 Expires On: 2020-04-10 20:23:45 Today's Date: 2020-04-16 15:02:46 2020-04-16 15:02:47,227 INFO [qtp1590550415-15] [org.gluu.oxauth.service.AppInitializer] (AppInitializer.java:348) - Created persistenceEntryManager: org.gluu.persist.ldap.impl.LdapEntryManager@4ffd5e66 with operation service: org.gluu.persist.ldap.operation.impl.LdapOperationsServiceImpl@f79a7f6 2020-04-16 15:03:36,608 INFO [qtp1590550415-19] [org.gluu.oxauth.service.AuthenticationService] (AuthenticationService.java:589) - Attempting to redirect user: SessionUser: SessionId {dn='93e39cd1-c93c-4ae8-b196-0087fe6df263', id='93e39cd1-c93c-4ae8-b196-0087fe6df263', lastUsedAt=Thu Apr 16 15:03:36 UTC 2020, userDn='inum=f40f6403-b04a-4aa2-9fea-94c0161eaf7c,ou=people,o=gluu', authenticationTime=Thu Apr 16 15:03:36 UTC 2020, state=authenticated, sessionState='642fa787b65253de810bdb6d33e7b119568366c8fff651ebb086cb4026e2a106.6904f06a-6577-44a7-9845-e4c3a4d62f26', permissionGranted=null, isJwt=false, jwt=null, permissionGrantedMap=SessionIdAccessMap{permissionGranted={1001.206d8893-6147-475d-90b1-37b076edf44c=false}}, involvedClients=null, sessionAttributes={auth_external_attributes=null, opbs=84d16499-f09f-46c1-9f11-75a37d0616db, response_type=code, nonce=b63a0b24-8f15-446a-ba86-c08a2702d217, client_id=1001.206d8893-6147-475d-90b1-37b076edf44c, auth_step=1, acr=simple_password_auth, remote_ip=76.21.102.166, auth_user=admin, scope=openid profile email user_name, acr_values=simple_password_auth, redirect_uri=https://ccloudid.com/identity/authcode.htm, state=8562b515-727d-49b1-bbba-18e2c326b717}, persisted=true} 2020-04-16 15:03:36,609 INFO [qtp1590550415-19] [org.gluu.oxauth.service.AuthenticationService] (AuthenticationService.java:597) - Attempting to redirect user: User: org.gluu.oxauth.model.common.User@17e7d17d 2020-04-16 15:03:36,610 INFO [qtp1590550415-19] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:430) - Authentication success for User: 'admin' 2020-04-16 15:03:36,997 INFO [qtp1590550415-12] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '1001.206d8893-6147-475d-90b1-37b076edf44c' 2020-04-16 15:05:52,025 INFO [metrics-reporter-1-thread-1] [org.gluu.oxauth.service.AppInitializer] (AppInitializer.java:365) - Created persistenceMetricEntryManager: org.gluu.persist.ldap.impl.LdapEntryManager@4186f9d0 with operation service: org.gluu.persist.ldap.operation.impl.LdapOperationsServiceImpl@8f9e122 2020-04-16 15:07:05,468 INFO [qtp1590550415-16] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '1501.16c28d4d-ed14-431e-a974-171bfe156198' 2020-04-16 15:12:05,763 INFO [qtp1590550415-16] [org.gluu.oxauth.auth.Authenticator] (Authenticator.java:277) - Authentication success for Client: '1501.16c28d4d-ed14-431e-a974-171bfe156198' ``` **Updated log mark down**

CentOS 8.0

closed

By Jose Gonzalez staff 22 Apr 2020 at 8:17 a.m. CDT

Copy

Hi Joseph, Several comments about your issue (and potential upcoming tickets): - Please provide better contextual information around your problem. In this case, I guess you are using the account linking plugin, however, that's not really evident - Attaching a single line log excerpt of 34KB makes it very hard for us to dig into the issue. If you are not presented an option to attach files, use an external site such as paste bin to share (drop or scramble sensitive data) - For small sized log excerpts use proper markdown (text surrounded by triple backtics) Assuming you followed the account linking plugin docs, I suppose you integrated your external providers according to https://www.gluu.org/docs/ce/4.1/authn-guide/passport/ and that you [tested](https://www.gluu.org/docs/gluu-server/4.1/authn-guide/inbound-oauth-passport/#protect-the-application-with-passport_social-authentication). In that setup, does it work as expected (single click)? Casa login page (used in acct-linking) was built based on the default login page used in passport, so they have to behave similarly. Is the issue presented in different browsers, eg. FF, Chrome, etc...? To be able to help you please provide the following: - A har file recording the browser requests starting from access to `/casa` until after you make one click on the identity provider (use the persist/preserve log option) - The errors (if they appear) in your browser's web developer console when you make the one click - oxauth_script.log covering the whole flow: from access to `/casa` until you are taken back to the application after visiting the external identity provider

By Joseph Haun user 23 Apr 2020 at 10:01 a.m. CDT

Copy

Hello Jose, Thank you for the information. I am a novice when it comes to posting to help forums such as these. I'll put your comments down in my notes and make sure to provide comprehensive documentation for all future questions. I will also recreate the issue and give you a log file dump so that you can investigate the issue. In regards to the setup, the server is an out-of-the-box variant of Gluu with the only change being to Casa to allow for external identity providers. I used the script that was provided in the Casa docs for this and have only had this strange issue when clicking on the icons for login. Before integrating that script, I had tested that the passport-social script was working as intended off a single click. I will work on providing you the requested har file and log files.

By Joseph Haun user 23 Apr 2020 at 11:55 a.m. CDT

Copy

Hello Jose, I was able to recreate the conditions of the login. I have included a link to a Google Drive folder that contains the har file, oxAuth log file, and developer console log files. Please let me know if you have any issues viewing the files and I will find a different service to store the files.

Video or screenshot link

By Jose Gonzalez staff 23 Apr 2020 at 2:47 p.m. CDT

Copy

Thank you, much better now. You forgot to include `oxauth_script.log` (it's in the same directory of `oxauth.log`). Please share. By now I think you missed some step in configurations because in normal casa acct linking flow you should not be taken to `https://ccloudid.com/oxauth/auth/passport/passportlogin.htm`

By Joseph Haun user 24 Apr 2020 at 10:13 a.m. CDT

Copy

Ah, my apologies on the oversight. I have added the oxauth_script log excerpt of a recreated event to the previous Google Drive folder. I will review the configuration documentation that I followed and make sure that I went through every step. For reference I was following [Casa Account Linking](https://gluu.org/docs/casa/plugins/account-linking/) and used the custom Casa script mentioned there.

Video or screenshot link

By Joseph Haun user 24 Apr 2020 at 10:35 a.m. CDT

Copy

Having looked back through the [Activate Necessary Scripts](https://gluu.org/docs/casa/plugins/account-linking/#activate-the-custom-scripts-needed) section, I remember being slightly confused in regards to adding the configuration parameter. I was unable to see an obvious "configuration parameter" field, so I added another custom property. Was this the correct step or did I make the mistake here?

By Jose Gonzalez staff 24 Apr 2020 at 11:56 a.m. CDT

Copy

Yes, a custom property in the passport_social script in your case. Are you sure you added that before testing? Your log suggests you did not do

By Joseph Haun user 24 Apr 2020 at 12:12 p.m. CDT

Copy

I had added it to the passport_social script in the oxTrust GUI long before the excerpt was taken. As a precaution, I have just checked again and it was still present. It was not present in the Casa script, which I just added and this has fixed this issue. Thank you for your help in this issue, might I suggest explicitly stating that it needs to be added to the Casa script? I am likely a small section of your user base that would have this issue, but it would make your documentation all more helpful and comprehensive. Thanks again.

By Jose Gonzalez staff 24 Apr 2020 at 1:46 p.m. CDT

Copy

Hi Joseph, We are talking about `authz_req_param_provider` right ? I'm totally sure the custom property has to be added to passport scripts only, not casa. If you check casa script, there is no mentions of it at all. I checked one of our 4.1 production servers where account linking is running... see screenshot attached

passport_social.png

By Joseph Haun user 28 Apr 2020 at 11:21 a.m. CDT

Copy

Correct, we are talking about the authz_req_param_provider. I had it placed on the passport script previously, but it was not until I placed it into the Casa script that I did not have the redirect issue. Perhaps it did not propagate to the server when I entered it previously? So, only when I added a new parameter and hit update did it initialize? Either way, it seems to be working now. I will attempt to remove it from Casa and see if the issue resurfaces.

You need to Login in order to post an answer

Gluu Casa Requiring Double Click for External Providers

By: Joseph Haun user 16 Apr 2020 at 10:27 a.m. CDT

Answers

By Jose Gonzalez staff 22 Apr 2020 at 8:17 a.m. CDT

By Joseph Haun user 23 Apr 2020 at 10:01 a.m. CDT

By Joseph Haun user 23 Apr 2020 at 11:55 a.m. CDT

By Jose Gonzalez staff 23 Apr 2020 at 2:47 p.m. CDT

By Joseph Haun user 24 Apr 2020 at 10:13 a.m. CDT

By Joseph Haun user 24 Apr 2020 at 10:35 a.m. CDT

By Jose Gonzalez staff 24 Apr 2020 at 11:56 a.m. CDT

By Joseph Haun user 24 Apr 2020 at 12:12 p.m. CDT

By Jose Gonzalez staff 24 Apr 2020 at 1:46 p.m. CDT

By Joseph Haun user 28 Apr 2020 at 11:21 a.m. CDT

Post an answer