尝试访问安全网址时,会将其重定向到已发布的OpenAM登录页面。但登录后,浏览器中的以下网址出现403错误。 我已经设置了代理过滤模式' as' SSO_ONLY'对于' MagentoWebServices-1'。
请在以下代理商日志中查找详细信息:
amIdm:12/06/2016 12:15:04:589 PM IST: Thread[main,5,main]
ERROR: IdUtils.initialize: Loading default types.
Message:The user does not have permission to perform the operation.
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:57)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
at java.lang.reflect.Constructor.newInstance(Constructor.java:526)
at com.sun.identity.shared.jaxrpc.SOAPClient$SOAPContentHandler.createResourceBasedException(SOAPClient.java:855)
at com.sun.identity.shared.jaxrpc.SOAPClient$SOAPContentHandler.endDocument(SOAPClient.java:808)
at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.endDocument(AbstractSAXParser.java:745)
at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanDocument(XMLDocumentFragmentScannerImpl.java:515)
at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:848)
at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:777)
at com.sun.org.apache.xerces.internal.parsers.XMLParser.parse(XMLParser.java:141)
at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1213)
at com.sun.org.apache.xerces.internal.jaxp.SAXParserImpl$JAXPSAXParser.parse(SAXParserImpl.java:648)
at com.sun.identity.shared.jaxrpc.SOAPClient.send(SOAPClient.java:346)
at com.sun.identity.shared.jaxrpc.SOAPClient.send(SOAPClient.java:315)
at com.sun.identity.sm.jaxrpc.SMSJAXRPCObject.read(SMSJAXRPCObject.java:121)
at com.sun.identity.sm.SMSEntry.read(SMSEntry.java:704)
at com.sun.identity.sm.SMSEntry.read(SMSEntry.java:681)
at com.sun.identity.sm.SMSEntry.<init>(SMSEntry.java:475)
at com.sun.identity.sm.CachedSMSEntry.getInstance(CachedSMSEntry.java:382)
at com.sun.identity.sm.ServiceConfigImpl.checkAndUpdatePermission(ServiceConfigImpl.java:625)
at com.sun.identity.sm.ServiceConfigImpl.getInstance(ServiceConfigImpl.java:509)
at com.sun.identity.sm.ServiceConfigImpl.getInstance(ServiceConfigImpl.java:464)
at com.sun.identity.sm.ServiceConfigManagerImpl.getGlobalConfig(ServiceConfigManagerImpl.java:201)
at com.sun.identity.sm.ServiceConfigManager.getGlobalConfig(ServiceConfigManager.java:253)
at com.sun.identity.idm.IdUtils.initialize(IdUtils.java:131)
at com.sun.identity.idm.IdUtils.<clinit>(IdUtils.java:119)
at com.sun.identity.agents.realm.AmRealm.initPrivilegedAttributeTypes(AmRealm.java:100)
at com.sun.identity.agents.realm.AmRealm.initialize(AmRealm.java:71)
at com.sun.identity.agents.arch.ServiceFactory.getAmRealm(ServiceFactory.java:165)
at com.sun.identity.agents.realm.AmRealmManager.<init>(AmRealmManager.java:49)
at com.sun.identity.agents.realm.AmRealmManager.<clinit>(AmRealmManager.java:139)
at com.sun.identity.agents.tomcat.v6.AmTomcatRealm.<clinit>(AmTomcatRealm.java:67)
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:57)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
at java.lang.reflect.Constructor.newInstance(Constructor.java:526)
at java.lang.Class.newInstance(Class.java:379)
at org.apache.tomcat.util.digester.ObjectCreateRule.begin(ObjectCreateRule.java:117)
at org.apache.tomcat.util.digester.Digester.startElement(Digester.java:1184)
at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.startElement(AbstractSAXParser.java:509)
at com.sun.org.apache.xerces.internal.parsers.AbstractXMLDocumentParser.emptyElement(AbstractXMLDocumentParser.java:182)
at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanStartElement(XMLDocumentFragmentScannerImpl.java:1343)
at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl$FragmentContentDriver.next(XMLDocumentFragmentScannerImpl.java:2786)
at com.sun.org.apache.xerces.internal.impl.XMLDocumentScannerImpl.next(XMLDocumentScannerImpl.java:606)
at com.sun.org.apache.xerces.internal.impl.XMLDocumentFragmentScannerImpl.scanDocument(XMLDocumentFragmentScannerImpl.java:510)
at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:848)
at com.sun.org.apache.xerces.internal.parsers.XML11Configuration.parse(XML11Configuration.java:777)
at com.sun.org.apache.xerces.internal.parsers.XMLParser.parse(XMLParser.java:141)
at com.sun.org.apache.xerces.internal.parsers.AbstractSAXParser.parse(AbstractSAXParser.java:1213)
at com.sun.org.apache.xerces.internal.jaxp.SAXParserImpl$JAXPSAXParser.parse(SAXParserImpl.java:648)
at org.apache.tomcat.util.digester.Digester.parse(Digester.java:1457)
at org.apache.catalina.startup.Catalina.load(Catalina.java:551)
at org.apache.catalina.startup.Catalina.load(Catalina.java:599)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:310)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:484)
amFilter:12/06/2016 12:15:57:705 PM IST: Thread[http-apr-8080-exec-4,5,main]
ERROR: LibertyAuthnResponseHandler : Response received from an untrusted provider - http://mynetwork:8100/OpenAM-13.0.0/cdcservlet
amFilter:12/06/2016 12:15:57:706 PM IST: Thread[http-apr-8080-exec-4,5,main]
ERROR: CDSSOResultTaskHandler : One or more AuthnResponse conditions might not have been met. Denying to requested URI - /agentapp/sunwCDSSORedirectURI
amFilter:12/06/2016 12:16:23:688 PM IST: Thread[http-apr-8080-exec-7,5,main]
ERROR: LibertyAuthnResponseHandler : Response received from an untrusted provider - http://mynetwork:8100/OpenAM-13.0.0/cdcservlet
amFilter:12/06/2016 12:16:23:689 PM IST: Thread[http-apr-8080-exec-7,5,main]
ERROR: CDSSOResultTaskHandler : One or more AuthnResponse conditions might not have been met. Denying to requested URI - /agentapp/sunwCDSSORedirectURI
amAgentCore:12/06/2016 12:19:22:447 PM IST: Thread[http-apr-8080-exec-9,5,main]
答案 0 :(得分:0)
错误:LibertyAuthnResponseHandler:从不受信任的提供商收到的回复 - http://mynetwork:8100/OpenAM-13.0.0/cdcservlet
您需要在代理配置文件中更新属性“CDSSO Servlet URL”并添加代理正在抱怨的URL。这可能是由OpenAM多实例设置或HTTP RP等的使用引起的。