Hi there,
Recently, we have deployed Cloud Foundry v2 on openStack based on cf-release v194.
When we do
CF_TRACE=true /home/ubuntu/cf login -u admin -p admin
We get an error 500 on trace:
REQUEST: [2015-01-13T11:18:28Z]
GET /login HTTP/1.1
Host: login.cf.ot:8080
Accept: application/json
Content-Type: application/json
User-Agent: go-cli 6.8.0-b15c536 / linux
RESPONSE: [2015-01-13T11:18:28Z]
HTTP/1.1 200 OK
Transfer-Encoding: chunked
Cache-Control: no-cache
Cache-Control: no-store
Cache-Control: no-cache, no-store, max-age=0
Content-Language: en-US
Content-Type: application/json;charset=UTF-8
Date: Tue, 13 Jan 2015 11:18:28 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Pragma: no-cache
Server: Apache-Coyote/1.1
X-Frame-Options: DENY
20d
{"timestamp":"2014-11-14T23:30:29+0000","app":{"version":"1.9.1"},"idpDefinitions":[],"commit_id":"55a5ba4","prompts":{"username":["text","Email"],"password":["password","Password"],"passcode":["password","One Time Code (Get one at http://login.cf.ot/passcode)"]},"createAccountLink":"http://console.cf.ot:8080/register","links":{"register":"http://console.cf.ot:8080/register","passwd":"http://console.cf.ot:8080/password_resets/new","login":"http://login.cf.ot:8080","uaa":"http://uaa.cf.ot:8080"},"entityID":"login.cf.ot"}
0
Authenticating...
REQUEST: [2015-01-13T11:18:28Z]
POST /oauth/token HTTP/1.1
Host: login.cf.ot:8080
Accept: application/json
Authorization: [PRIVATE DATA HIDDEN]
Content-Type: application/x-www-form-urlencoded
User-Agent: go-cli 6.8.0-b15c536 / linux
grant_type=password&password=[PRIVATE DATA HIDDEN]&scope=&username=admin
RESPONSE: [2015-01-13T11:18:29Z]
HTTP/1.1 500 Internal Server Error
Connection: close
Transfer-Encoding: chunked
Cache-Control: no-cache, no-store, max-age=0
Content-Language: en-US
Content-Type: application/json;charset=UTF-8
Date: Tue, 13 Jan 2015 11:18:28 GMT
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: no-cache
Server: Apache-Coyote/1.1
6a
{"passwd":"http://console.cf.ot:8080/password_resets/new","register":"http://console.cf.ot:8080/register"}
0
We think that it's because the DNS "console.cf.ot" doesn't resolve correctly to the appropiate service. And the error captured in the login VM is:
[2015-01-13 11:18:29.571] login - 8342 [http-bio-8080-exec-8] .... DEBUG --- RequestMappingHandlerMapping: Returning handler method [public java.lang.String org.cloudfoundry.identity.uaa.login.HomeController.error500(org.springframework.ui.Model,javax.servlet.http.HttpServletRequest)]
[2015-01-13 11:18:29.572] login - 8342 [http-bio-8080-exec-8] .... ERROR --- HomeController: Internal error
error="access_denied", error_description="Error requesting access token."
at org.springframework.security.oauth2.client.token.OAuth2AccessTokenSupport.retrieveToken(OAuth2AccessTokenSupport.java:144)
at org.springframework.security.oauth2.client.token.grant.client.ClientCredentialsAccessTokenProvider.obtainAccessToken(ClientCredentialsAccessTokenProvider.java:44)
at org.springframework.security.oauth2.client.token.AccessTokenProviderChain.obtainNewAccessTokenInternal(AccessTokenProviderChain.java:142)
at org.springframework.security.oauth2.client.token.AccessTokenProviderChain.obtainAccessToken(AccessTokenProviderChain.java:118)
The deploy (attached here) YML was generated with SPIFF and the dns console.cf.ot was autogenerated. We don't know where should resolve and we've modified to point to UAA job to test it. But it doesn't work. Where should it to point?
Thank you!