NO_CREDENTIALS

62 views
Skip to first unread message

Neil Shannon

unread,
Mar 24, 2011, 1:57:40 PM3/24/11
to Eureka Streams Development
I've been able to build successfully on Windows with all tests
passing. I used the batch file provided in other discussions to
handle the database migrations, and have made the changes suggested in
the github fork in order to get the build working (e.g. commenting out
checkstyle).

When I run Jetty (which I had to downgrade to 6.1.10 due to
incompatibilities with the Spring 2.5 jars) the app starts up
successfully, connects to the DB and memcached (Membase), but I get a
blank screen when opening localhost:8080 in my browser.

Upon viewing the source, I'm redirected to no_credentials.html which
only contains the text "NO_CREDENTIALS". Any ideas? I am trying to
build the open access security model.

I also noticed during the GWT build process there are some errors:

INFO] Compiling module org.eurekastreams.web.Application
[INFO] Validating newly compiled units
[INFO] [ERROR] Errors in 'jar:file:/C:/Users/neil.shannon/.m2/
repository/org/eurekastreams/eurekastreams-server/1.0-SNAPSHOT/
eurekastreams-server-1.0-SNAPSHOT.jar!/org/eurekastreams/server/action/
request/opensocial/GetConsumerInfoRequest.java'
[INFO] [ERROR] Line 37: No source code is available for type
org.apache.shindig.auth.SecurityToken; did you forget to inherit a
required module?
[INFO] [ERROR] Line 47: No source code is available for type
net.oauth.OAuthServiceProvider; did you forget to inherit a required
module?
[INFO] [ERROR] Errors in 'jar:file:/C:/Users/neil.shannon/.m2/
repository/org/eurekastreams/eurekastreams-server/1.0-SNAPSHOT/
eurekastreams-server-1.0-SNAPSHOT.jar!/org/eurekastreams/server/action/
request/opensocial/GetConsumerTokenInfoRequest.java'
[INFO] [ERROR] Line 43: No source code is available for type
org.apache.shindig.auth.SecurityToken; did you forget to inherit a
required module?
[INFO] [ERROR] Line 43: No source code is available for type
org.apache.shindig.gadgets.oauth.OAuthStore.ConsumerInfo; did you
forget to inherit a required module?
[INFO] [ERROR] Errors in 'jar:file:/C:/Users/neil.shannon/.m2/
repository/org/eurekastreams/eurekastreams-server/1.0-SNAPSHOT/
eurekastreams-server-1.0-SNAPSHOT.jar!/org/eurekastreams/server/action/
request/opensocial/OAuthConsumerTokenRequest.java'
[INFO] [ERROR] Line 36: No source code is available for type
org.apache.shindig.auth.SecurityToken; did you forget to inherit a
required module?
[INFO] [ERROR] Line 41: No source code is available for type
org.apache.shindig.gadgets.oauth.OAuthStore.ConsumerInfo; did you
forget to inherit a required module?
[INFO] [ERROR] Errors in 'jar:file:/C:/Users/neil.shannon/.m2/
repository/org/eurekastreams/eurekastreams-server/1.0-SNAPSHOT/
eurekastreams-server-1.0-SNAPSHOT.jar!/org/eurekastreams/server/action/
request/opensocial/RemoveConsumerTokenRequest.java'
[INFO]

Neil Shannon

unread,
Mar 25, 2011, 10:43:57 AM3/25/11
to Eureka Streams Development
This may be related to Spring Security--although I'm quite sure I
built with the -Dopenaccess-security flag.

Log snippet:
2011-03-25 10:43:44,149 DEBUG
org.springframework.security.intercept.AbstractSecurityInterceptor -
Secure object: FilterInvocation: URL: /eureka.nocache.js?
1300997855067; ConfigAttributes: [ROLE_USER]
2011-03-25 10:43:44,149 DEBUG
org.springframework.security.intercept.web.DefaultFilterInvocationDefinitionSource
- Candidate is: '/scripts/external-js-min.js'; pattern is /style/**;
matched=false
2011-03-25 10:43:44,149 DEBUG
org.springframework.security.intercept.web.DefaultFilterInvocationDefinitionSource
- Candidate is: '/scripts/external-js-min.js'; pattern is /scripts/**;
matched=true
2011-03-25 10:43:44,149 DEBUG
org.springframework.security.intercept.AbstractSecurityInterceptor -
Previously Authenticated:
org.springframework.security.providers.anonymous.AnonymousAuthenticationToken@69ec09e9:
Principal: roleAnonymous; Password: [PROTECTED]; Authenticated: true;
Details:
org.springframework.security.ui.WebAuthenticationDetails@957e:
RemoteIpAddress: 127.0.0.1; SessionId: null; Granted Authorities:
ROLE_ANONYMOUS
2011-03-25 10:43:44,149 DEBUG
org.springframework.security.intercept.AbstractSecurityInterceptor -
Secure object: FilterInvocation: URL: /scripts/external-js-min.js?
1300997855067; ConfigAttributes: [ROLE_ANONYMOUS, ROLE_USER]
2011-03-25 10:43:44,149 DEBUG
org.springframework.security.intercept.AbstractSecurityInterceptor -
Previously Authenticated:
org.springframework.security.providers.anonymous.AnonymousAuthenticationToken@69ec09e9:
Principal: roleAnonymous; Password: [PROTECTED]; Authenticated: true;
Details:
org.springframework.security.ui.WebAuthenticationDetails@957e:
RemoteIpAddress: 127.0.0.1; SessionId: null; Granted Authorities:
ROLE_ANONYMOUS
2011-03-25 10:43:44,149 DEBUG
org.springframework.security.intercept.AbstractSecurityInterceptor -
Authorization successful
2011-03-25 10:43:44,149 DEBUG
org.springframework.security.intercept.AbstractSecurityInterceptor -
RunAsManager did not change Authentication object
2011-03-25 10:43:44,150 DEBUG
org.springframework.security.util.FilterChainProxy - /scripts/external-
js-min.js?1300997855067 reached end of additional filter chain;
proceeding with original chain
2011-03-25 10:43:44,152 DEBUG
org.springframework.security.ui.ExceptionTranslationFilter - Chain
processed normally
2011-03-25 10:43:44,154 DEBUG
org.springframework.security.context.HttpSessionContextIntegrationFilter
- HttpSession is null, but SecurityContextHolder has not changed from
default: '
org.springframework.security.context.SecurityContextImpl@ffffffff:
Null authentication'; not creating HttpSession or storing
SecurityContextHolder contents
2011-03-25 10:43:44,154 DEBUG
org.springframework.security.context.HttpSessionContextIntegrationFilter
- SecurityContextHolder now cleared, as request processing completed
2011-03-25 10:43:44,154 DEBUG
org.springframework.security.ui.ExceptionTranslationFilter - Access is
denied (user is anonymous); redirecting to authentication entry point
org.springframework.security.AccessDeniedException: Access is denied
at
org.springframework.security.vote.AffirmativeBased.decide(AffirmativeBased.java:
68)
at
org.springframework.security.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:
262)
at
org.springframework.security.intercept.web.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:
106)
at
org.springframework.security.intercept.web.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:
83)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.ui.SessionFixationProtectionFilter.doFilterHttp(SessionFixationProtectionFilter.java:
52)
at
org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:
53)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.oauth.provider.OAuthProviderProcessingFilter.doFilter(OAuthProviderProcessingFilter.java:
173)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.oauth.provider.OAuthProviderProcessingFilter.doFilter(OAuthProviderProcessingFilter.java:
193)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.ui.AbstractProcessingFilter.doFilterHttp(AbstractProcessingFilter.java:
278)
at
org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:
53)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.oauth.provider.OAuthProviderProcessingFilter.doFilter(OAuthProviderProcessingFilter.java:
193)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.ui.ExceptionTranslationFilter.doFilterHttp(ExceptionTranslationFilter.java:
101)
at
org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:
53)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.providers.anonymous.AnonymousProcessingFilter.doFilterHttp(AnonymousProcessingFilter.java:
105)
at
org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:
53)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.ui.rememberme.RememberMeProcessingFilter.doFilterHttp(RememberMeProcessingFilter.java:
109)
at
org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:
53)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.wrapper.SecurityContextHolderAwareRequestFilter.doFilterHttp(SecurityContextHolderAwareRequestFilter.java:
91)
at
org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:
53)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.ui.basicauth.BasicProcessingFilter.doFilterHttp(BasicProcessingFilter.java:
174)
at
org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:
53)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.ui.AbstractProcessingFilter.doFilterHttp(AbstractProcessingFilter.java:
278)
at
org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:
53)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.ui.logout.LogoutFilter.doFilterHttp(LogoutFilter.java:
89)
at
org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:
53)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.context.HttpSessionContextIntegrationFilter.doFilterHttp(HttpSessionContextIntegrationFilter.java:
235)
at
org.springframework.security.ui.SpringSecurityFilter.doFilter(SpringSecurityFilter.java:
53)
at org.springframework.security.util.FilterChainProxy
$VirtualFilterChain.doFilter(FilterChainProxy.java:406)
at
org.springframework.security.util.FilterChainProxy.doFilter(FilterChainProxy.java:
185)
at
org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:
236)
at
org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:
167)
at org.mortbay.jetty.servlet.ServletHandler
$CachedChain.doFilter(ServletHandler.java:1088)
at
org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:
360)
at
org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:
216)
at
org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:
181)
at
org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:
729)
at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:
405)
at
org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:
206)
at
org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:
114)
at
org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:
152)
at org.mortbay.jetty.Server.handle(Server.java:324)
at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:
505)
at org.mortbay.jetty.HttpConnection
$RequestHandler.headerComplete(HttpConnection.java:829)
at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:513)
at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:211)
at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:380)
at
org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:
395)
at org.mortbay.thread.QueuedThreadPool
$PoolThread.run(QueuedThreadPool.java:488)
2011-03-25 10:43:44,164 DEBUG
org.springframework.security.ui.ExceptionTranslationFilter -
Authentication entry point being called; SavedRequest added to
Session: SavedRequest[http://localhost:8080/eureka.nocache.js?
1300997855067]
2011-03-25 10:43:44,168 DEBUG
org.springframework.security.context.HttpSessionContextIntegrationFilter
- SecurityContextHolder now cleared, as request processing completed

Neil Shannon

unread,
Mar 25, 2011, 1:57:55 PM3/25/11
to Eureka Streams Development
I finally just gave up on master and got the 1.0.2 branch to build :)

chrismarx

unread,
Apr 30, 2011, 1:01:56 PM4/30/11
to eureka-st...@googlegroups.com
did anyone ever get 1.1 to work, i'm at the same place you were-

chrismarx

unread,
Apr 30, 2011, 2:42:22 PM4/30/11
to eureka-st...@googlegroups.com
solved! it seems that the necessary changes to the other security context settings files haven't been made since the move to gwt 2.2 (congrats for the move!!). The new gwt config no longer produces a org.eurekastreams.web.ApplicationDev.nocache.js, instead, all the modules are configured to create a eureka.nocache.js file now, so this:

<intercept-url pattern="/org.eurekastreams.web.ApplicationDev.nocache.js" access="ROLE_ANONYMOUS, ROLE_USER"/>

needs to change to this:

 <intercept-url pattern="/eureka.nocache.js" access="ROLE_ANONYMOUS, ROLE_USER"/>

also, the cached js used to be served as an html file in the older gwt version, but now its served (more appropriately) as a .js file, so change this:

<intercept-url pattern="/*.cache.html" access="ROLE_ANONYMOUS, ROLE_USER"/>

to this:

<intercept-url pattern="/*.cache.js" access="ROLE_ANONYMOUS, ROLE_USER"/>

and now the app is loading. 
The fact that so simple a mistake was overlooked would suggest that the devs are not testing es under the openaccess security config, which seems a shame, since that's what most first timers are trying to use to just get the app to load, try it out, etc.-

Rob Keane

unread,
Apr 30, 2011, 2:45:42 PM4/30/11
to eureka-st...@googlegroups.com
Oddly enough most of the team does use openaccess for development.

I will look into what is different about our internal config that
prevented us from seeing this issue.

I'll make sure it is resolved before the 1.1 branch is snapped off of
trunk (probably Monday or Tuesday)

chrismarx

unread,
Apr 30, 2011, 2:56:45 PM4/30/11
to eureka-st...@googlegroups.com
hi, good to hear! thanks for the quick response, and now that i have 1.1 loading, i'm really looking forward to checking out some of the new features and putting es into production. thanks for creating such a great product-

Blake Caldwell

unread,
May 3, 2011, 12:23:32 PM5/3/11
to eureka-st...@googlegroups.com
Wow, thanks Chris - huge find

chrismarx

unread,
May 3, 2011, 12:35:19 PM5/3/11
to eureka-st...@googlegroups.com
no problem, did someone just forgot to commit that?
Reply all
Reply to author
Forward
0 new messages