By: Doug Harris named 17 Apr 2020 at 2:10 p.m. CDT

2 Responses

Hi; Just wanted to give you a heads-up that the latest release of Java 8 (8.252) breaks oxAuth. It looks like the class org.gluu.oxauth.model.crypto.AbstractCryptoProvider is using sun.security.rsa.RSAPublicKeyImpl which is an internal non-API library class that no longer works as of Java 8.252.... 2020-04-17 15:08:20.908:WARN:oejs.HttpChannel:qtp475266352-16: /oxauth/restv1/token java.lang.NoSuchMethodError: sun.security.rsa.RSAPublicKeyImpl.<init>(Ljava/math/BigInteger;Ljava/math/BigInteger;)V at org.gluu.oxauth.model.crypto.AbstractCryptoProvider.getPublicKey(AbstractCryptoProvider.java:208) at org.gluu.oxauth.model.crypto.OxAuthCryptoProvider.verifySignature(OxAuthCryptoProvider.java:278) at org.gluu.oxauth.model.crypto.AbstractCryptoProvider$Proxy$_$$_WeldClientProxy.verifySignature(Unknown Source) at org.gluu.oxauth.model.token.ClientAssertion.load(ClientAssertion.java:114) at org.gluu.oxauth.model.token.ClientAssertion.<init>(ClientAssertion.java:45) at org.gluu.oxauth.auth.AuthenticationFilter.processJwtAuth(AuthenticationFilter.java:406) at org.gluu.oxauth.auth.AuthenticationFilter.doFilter(AuthenticationFilter.java:120) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at org.gluu.oxauth.audit.debug.ServletLoggingFilter.doFilter(ServletLoggingFilter.java:67) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at org.gluu.server.filters.AbstractCorsFilter.handleNonCORS(AbstractCorsFilter.java:362) at org.gluu.server.filters.AbstractCorsFilter.doFilter(AbstractCorsFilter.java:139) at org.gluu.oxauth.filter.CorsFilter.doFilter(CorsFilter.java:110) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at com.microsoft.applicationinsights.web.internal.WebRequestTrackingFilter.doFilter(WebRequestTrackingFilter.java:143) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1596) at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:545) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:590) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1607) at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1297) at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:485) at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1577) at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1212) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:221) at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) at org.eclipse.jetty.server.Server.handle(Server.java:500) at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:383) at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:547) at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:375) at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:270) at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103) at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:336) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:313) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:171) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:129) at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:388) at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:806) at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:938) at java.lang.Thread.run(Thread.java:748)

Rhel 7.0

closed

By Yuriy Zabrovarnyy staff 18 Apr 2020 at 6:43 a.m. CDT

Copy

Thanks for report, we will fix it ASAP. Ticket posted https://github.com/GluuFederation/oxAuth/issues/1320

By Yuriy Zabrovarnyy staff 24 Apr 2020 at 4:20 a.m. CDT

Copy

Closing ticket since it's solved. Feel free to re-open if needed.

You need to Login in order to post an answer

Java 8.252 breaks oxAuth

By: Doug Harris named 17 Apr 2020 at 2:10 p.m. CDT

Answers

By Yuriy Zabrovarnyy staff 18 Apr 2020 at 6:43 a.m. CDT

By Yuriy Zabrovarnyy staff 24 Apr 2020 at 4:20 a.m. CDT

Post an answer