Security Token Issues - WAS 6.1 and WPS 6.0.2
Manglu
I am attempting a call from WAS 6.1 to WPS 6.0.2 and both of them are
secured. I ahve the
LTPA token and SSL Certs exchanged and noticed that hte LTPA token
validation failed.
Key elements from the file:
[8/13/07 11:12:48:127 CDT] 00000097 LTPACrypto 3
BadPaddingException validating token, normal when token generated from
other factory.
Given final block not properly padded
[8/13/07 11:12:48:127 CDT] 00000097 LTPACrypto 3 Total decryption
time: 1
[8/13/07 11:12:48:127 CDT] 00000097 LTPAServerObj 3 Calling
tokenFactory[2].validateTokenBytes()
[8/13/07 11:12:48:127 CDT] 00000097 AuthzPropToke > AuthzPropToken
from byte[] Entry
[8/13/07 11:12:48:129 CDT] 00000097 AuthzPropToke 3 Before parsing,
length: 169
, string: B4> l<jEQ hV 0rgk0E3l?
s <i.CXq] r% E{ w ??# # H Sg)5"d ]p'B> Y e(Vq & $Z {0 ?_/K1W?
·[[\?] D k &yS0P3[K]c?j!X?g1ØL!) ym N. 8%"EwY id ^? ?#kE(@gh 1Pp2;?
VCtH) Tnm _j
[8/13/07 11:12:48:130 CDT] 00000097 AuthzPropToke 3 UserData
delimiter not found.
[8/13/07 11:12:48:130 CDT] 00000097 LTPAServerObj 3
security.ltpa.validate.verifytoken.failed
Here is the trace file containing the errors/info
[8/13/07 11:12:48:117 CDT] 00000097 EJSWebCollabo > preInvoke Entry
[8/13/07 11:12:48:117 CDT] 00000097 SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:12:48:117 CDT] 00000097 StateofCurrOb 3
setWSReceivedCreds() null subject
[8/13/07 11:12:48:117 CDT] 00000097 SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:12:48:117 CDT] 00000097 StateofCurrOb 3 setWSOwnCred()
null subject
[8/13/07 11:12:48:118 CDT] 00000097 SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:12:48:118 CDT] 00000097 StateofCurrOb 3
setWSInvocationCred() null subject
[8/13/07 11:12:48:118 CDT] 00000097 EJSWebCollabo < preInvoke Exit
<null>
[8/13/07 11:12:48:118 CDT] 00000097 EJSWebCollabo > preInvoke Entry
com.ibm.ws.webcontainer.srt.SRTServletRequest@55cb45d7
com.ibm.ws.webcontainer.srt.SRTServletResponse@552305d7
Test
default_host
/index.jsp
true
[8/13/07 11:12:48:118 CDT] 00000097 EJSWebCollabo 3 Http Header
names and values:
Accept=[image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,
application/vnd.ms-excel, application/vnd.ms-powerpoint, application/
msword, application/x-shockwave-flash, */*]
Referer=[http://rcwas01.ibm.com:9081/WillThisWorkWeb/index.jsp]
Accept-Language=[en-us]
Accept-Encoding=[gzip, deflate]
User-Agent=[Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)]
Host=[rcwps.ibm.com:9080]
Connection=[Keep-Alive]
Cookie=[LtpaToken2=QuDVNLWcPqXsE8nSbDzvEGqWPkW8olEbaFajIJADBDDbz5UBcmf4pKWxa4EGMMUxRTNs5a
+l+q7iyXMT3Dk8ae5nLkO/
4KPuWHHFK13LQBLS7nLaysosqCnZEaKI1Arsvl4lA0V7znEDtNynLZAIEIuldwvKsOedpSMf77vRI/
hr1D4eBwfa6EgCyBDLTVNnKTUiZBb01F2B6dJecLKSJ0I
+F1m0RgVlKNl0p1uYdqtjVpZNcRqpChigGSYCJL4L8Sla+TjVMAZ7wz4wBNYq27DlN1/
T9C9Lrhgxq3lXhiDEhgDCt1tb3ktcr8rqiO6OfdWgXckL0XcYRBCKkGuENRYmeVP
+iDCBUVAz6OZbS11jivTpp7baA2ohWMArz4PDQ+lUZ//
FMYfXw5iLiP9NncefT9NP2MyroEwhKYcxDu/zpq3uskThs195bR/w/
04uy3QR8cPg8zglIkV3Wbnwv9gfaepkq+Sx9GSMi/QxGReZtKn/
XtuQ2wqes6wFC8iNgUWMWyNrz0WMiEUoQJ3XZ2gTyxq8LLbaMZHIUHDAsjvfnZIUVkN0SK3X3jm/
DykIl52iYRzDCFRubfbPIF9q7Q==; LtpaToken=rdSABSitQlzy4jn/
mCXnskqwd8Pa2slOCkxJ8CP1f5NmKGPoa1x09gnZlcXzZLdC79ZlfhYWXLGTQraE7tQnAGjhSSglm/
+RpIhQc88G/3UCd9W
+hyeta87JKPVQ51W9fLHd4oMAAe4T8B9S4zrlDtaZpFFLJWHxl2at4oAFJYpCMLdW1A05wChp0POYAtNXUluuytcA/
tqtRTGM0Ez9zO2YbTyopHw
+AqOiO0+ksJlxZ4MQ5XzkCFYVcheqFqZs4bx541uevtLPgg9uxbuITtiLqhve1xDq]
[8/13/07 11:12:48:118 CDT] 00000097 EJSWebCollabo 3 Request Context
Path=/Test, Servlet Path=/index.jsp, Path Info=null
[8/13/07 11:12:48:118 CDT] 00000097 StateofCurrOb 3 secConfig has
been initialized.
[8/13/07 11:12:48:119 CDT] 00000097 SASRas 3
[CurrentImpl.get_invocation_subject], [ServerID: server1]
Invocation subject is null.
[8/13/07 11:12:48:119 CDT] 00000097 WebSecurityCo > <init> Entry
<null>
<null>
<null>
[8/13/07 11:12:48:119 CDT] 00000097 WebSecurityCo < <init> Exit
com.ibm.ws.security.web.WebSecurityContext@5fb145f9
[8/13/07 11:12:48:119 CDT] 00000097 WebCollaborat >
SetUnauthenticatedSubjectIfNeeded Entry
[8/13/07 11:12:48:119 CDT] 00000097 WebCollaborat 3 Invoked and
received Subject are null, setting it anonymous/unauthenticated.
[8/13/07 11:12:48:119 CDT] 00000097 SASRas 3
[CurrentImpl.set_invocation_subject], [ServerID: server1]
Setting caller subject: Subject:
Principal: /UNAUTHENTICATED
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@3fef45db[com.ibm.ws.security.auth.distWSCredentialImpl@31e445db]
[8/13/07 11:12:48:119 CDT] 00000097 StateofCurrOb 3
setInvocationSubject() principal "/UNAUTHENTICATED"
[8/13/07 11:12:48:119 CDT] 00000097 WebCollaborat <
SetUnauthenticatedSubjectIfNeeded:true Exit
[8/13/07 11:12:48:119 CDT] 00000097 SASRas 3
[CurrentImpl.get_invocation_subject], [ServerID: server1]
Getting invocation subject: Subject:
Principal: /UNAUTHENTICATED
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@3fef45db[com.ibm.ws.security.auth.distWSCredentialImpl@31e445db]
[8/13/07 11:12:48:119 CDT] 00000097 EJSWebCollabo 3
WebComponentMetaData
MetaDataImpl@841844187
[8/13/07 11:12:48:119 CDT] 00000097 WebCollaborat > authorize Entry
com.ibm.ws.webcontainer.srt.SRTServletRequest@55cb45d7
com.ibm.ws.webcontainer.srt.SRTServletResponse@552305d7
default_host:Test
true
TestOnWPS
[8/13/07 11:12:48:119 CDT] 00000097 WebCollaborat 3 URI requested: /
index.jsp
[8/13/07 11:12:48:119 CDT] 00000097 WebCollaborat 3 uriName
returned: /index.jsp
[8/13/07 11:12:48:119 CDT] 00000097 WebAppCache >
getWebAccessContext Entry
TestOnWPS
default_host:Test
[8/13/07 11:12:48:119 CDT] 00000097 WebAppCache 3 Okay, I found
the entry for [TestOnWPS:default_host:Test]
[8/13/07 11:12:48:119 CDT] 00000097 WebAppCache <
getWebAccessContext Exit
[8/13/07 11:12:48:119 CDT] 00000097 WebAccessCont > WebAccessContext
Entry
[8/13/07 11:12:48:119 CDT] 00000097 WebAccessCont < WebAccessContext
Exit
[8/13/07 11:12:48:119 CDT] 00000097 WebConstraint > getConstraints:
Entry
/index.jsp
GET
[8/13/07 11:12:48:119 CDT] 00000097 WebConstraint 3
webConstraintsTable.length = 1
[8/13/07 11:12:48:120 CDT] 00000097 WebConstraint 3
webConstraintsTable.length = 1
[8/13/07 11:12:48:120 CDT] 00000097 WebResourceCo > matches Entry
/index.jsp
GET
[8/13/07 11:12:48:120 CDT] 00000097 WebResourceCo 3 Checking URL: *
[8/13/07 11:12:48:120 CDT] 00000097 WebResourceCo 3 Checking URL: /*
[8/13/07 11:12:48:120 CDT] 00000097 WebResourceCo < matches Exit
[8/13/07 11:12:48:120 CDT] 00000097 WebResourceCo > getMatchType
Entry
/*
[8/13/07 11:12:48:120 CDT] 00000097 WebResourceCo 3 URI Match type =
PATHNAME
[8/13/07 11:12:48:120 CDT] 00000097 WebResourceCo < getMatchType Exit
[8/13/07 11:12:48:120 CDT] 00000097 WebConstraint < getConstraints
not null Exit
[8/13/07 11:12:48:120 CDT] 00000097 WebAppCache >
getWebAccessContext Entry
TestOnWPS
default_host:Test
[8/13/07 11:12:48:120 CDT] 00000097 WebAppCache 3 Okay, I found
the entry for [TestOnWPS:default_host:Test]
[8/13/07 11:12:48:120 CDT] 00000097 WebAppCache <
getWebAccessContext Exit
[8/13/07 11:12:48:120 CDT] 00000097 WebAccessCont > WebAccessContext
Entry
[8/13/07 11:12:48:120 CDT] 00000097 WebAccessCont < WebAccessContext
Exit
[8/13/07 11:12:48:120 CDT] 00000097 WebCollaborat > checkConstraints
Entry
[8/13/07 11:12:48:120 CDT] 00000097 WebCollaborat > isSSLRequired
Entry
[8/13/07 11:12:48:120 CDT] 00000097 LRUCache > get Entry
com.ibm.ws.security.web.WebAccessPermission@c635bbda
[8/13/07 11:12:48:120 CDT] 00000097 LRUCache < get Exit
[8/13/07 11:12:48:120 CDT] 00000097 WebCollaborat < checkConstraints
Exit
<null>
[8/13/07 11:12:48:120 CDT] 00000097 LRUCache > get Entry
com.ibm.ws.security.web.WebAccessPermission@c635bbda
[8/13/07 11:12:48:120 CDT] 00000097 LRUCache < get Exit
[8/13/07 11:12:48:120 CDT] 00000097 WSAccessManag > isEveryoneGranted
Entry
com.ibm.ws.security.web.WebAccessContext@64c5c5f9
[Lcom.ibm.etools.j2ee.common.SecurityRole;@12e905d9
[8/13/07 11:12:48:120 CDT] 00000097 WSAccessManag >
isSpecialSubjectGrantedAnyRole Entry
com.ibm.ejs.models.base.bindings.applicationbnd.impl.AuthorizationTableImpl@2f1785de
[Lcom.ibm.etools.j2ee.common.SecurityRole;@12e905d9
com.ibm.ejs.models.base.bindings.applicationbnd.impl.EveryoneImpl@14a9058b
(name: Everyone, accessId: Everyone)
[8/13/07 11:12:48:121 CDT] 00000097 WSAccessManag <
isSpecialSubjectGrantedAnyRole Exit
false
[8/13/07 11:12:48:121 CDT] 00000097 WSAccessManag < isEveryoneGranted
Exit
false
[8/13/07 11:12:48:121 CDT] 00000097 WebCollaborat 3 URI - /
index.jsp.GET is protected
[8/13/07 11:12:48:121 CDT] 00000097 WebCollaborat 3 Saving previous
subject null
[8/13/07 11:12:48:121 CDT] 00000097 WebAuthentica > authenticate
Entry
[8/13/07 11:12:48:121 CDT] 00000097 WebAuthentica > handleSSO Entry
[8/13/07 11:12:48:121 CDT] 00000097 WebAuthentica 3 Attempting
primary cookie validation for: LtpaToken2
[8/13/07 11:12:48:121 CDT] 00000097 WebAuthentica > getCookieValues
Entry
LtpaToken2
[8/13/07 11:12:48:121 CDT] 00000097 WebAuthentica 3
QuDVNLWcPqXsE8nSbDzvEGqWPkW8olEbaFajIJADBDDbz5UBcmf4pKWxa4EGMMUxRTNs5a
+l+q7iyXMT3Dk8ae5nLkO/
4KPuWHHFK13LQBLS7nLaysosqCnZEaKI1Arsvl4lA0V7znEDtNynLZAIEIuldwvKsOedpSMf77vRI/
hr1D4eBwfa6EgCyBDLTVNnKTUiZBb01F2B6dJecLKSJ0I
+F1m0RgVlKNl0p1uYdqtjVpZNcRqpChigGSYCJL4L8Sla+TjVMAZ7wz4wBNYq27DlN1/
T9C9Lrhgxq3lXhiDEhgDCt1tb3ktcr8rqiO6OfdWgXckL0XcYRBCKkGuENRYmeVP
+iDCBUVAz6OZbS11jivTpp7baA2ohWMArz4PDQ+lUZ//
FMYfXw5iLiP9NncefT9NP2MyroEwhKYcxDu/zpq3uskThs195bR/w/
04uy3QR8cPg8zglIkV3Wbnwv9gfaepkq+Sx9GSMi/QxGReZtKn/
XtuQ2wqes6wFC8iNgUWMWyNrz0WMiEUoQJ3XZ2gTyxq8LLbaMZHIUHDAsjvfnZIUVkN0SK3X3jm/
DykIl52iYRzDCFRubfbPIF9q7Q==
[8/13/07 11:12:48:121 CDT] 00000097 WebAuthentica < getCookieValues
Exit
[8/13/07 11:12:48:121 CDT] 00000097 WebAuthentica > validate Entry
[8/13/07 11:12:48:121 CDT] 00000097 distContextMa > login(realm,
token, auth_mech, . . ., null_subject) Entry
[8/13/07 11:12:48:121 CDT] 00000097 distContextMa > login(realm,
token, auth_mech, . . .) -> (customRealm, token,
system.WEB_INBOUND, . . .) Entry
[8/13/07 11:12:48:121 CDT] 00000097 distContextMa 3 Web inbound
login config: system.WEB_INBOUND
[8/13/07 11:12:48:121 CDT] 00000097 distContextMa 3 Looking for
opaque token on the thread before Subject cache lookup.
[8/13/07 11:12:48:121 CDT] 00000097 distContextMa >
getSubjectFromTokenHolderCacheKey Entry
[8/13/07 11:12:48:121 CDT] 00000097 distContextMa <
getSubjectFromTokenHolderCacheKey Exit
[8/13/07 11:12:48:121 CDT] 00000097 distContextMa 3 Looking for
subject from cache using token as lookup.
[8/13/07 11:12:48:121 CDT] 00000097 AuthCache > getSubject Entry
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...
[8/13/07 11:12:48:122 CDT] 00000097 AuthCache > getSubject Entry
com.ibm.ws.security.util.ByteArray@ea77ba06
[8/13/07 11:12:48:122 CDT] 00000097 Cache > get Entry
com.ibm.ws.security.util.ByteArray@ea77ba06
[8/13/07 11:12:48:122 CDT] 00000097 Cache < get Exit
<null>
[8/13/07 11:12:48:122 CDT] 00000097 AuthCache < getSubject Exit
<null>
[8/13/07 11:12:48:122 CDT] 00000097 AuthCache < getSubject Exit
<null>
[8/13/07 11:12:48:122 CDT] 00000097 distContextMa >
getOpaqueTokenFromCacheOrOriginatingServer Entry
[8/13/07 11:12:48:122 CDT] 00000097 distContextMa 3 Getting
distributed object from DynaCache.
[8/13/07 11:12:48:122 CDT] 00000097 WSCredentialT >
getDistributedObject: com.ibm.ws.security.util.ByteArray@ea77ba06
Entry
[8/13/07 11:12:48:122 CDT] 00000097 WSCredentialT <
getDistributedObject Exit
[8/13/07 11:12:48:122 CDT] 00000097 WSCredentialT >
getDistributedObjectNotShared:
com.ibm.ws.security.util.ByteArray@ea77ba06 Entry
[8/13/07 11:12:48:122 CDT] 00000097 WSCredentialT <
getDistributedObjectNotShared (null) Exit
[8/13/07 11:12:48:122 CDT] 00000097 distContextMa 3 Not found in
DynaCache, getting distributed object using MBean.
[8/13/07 11:12:48:122 CDT] 00000097 WSCredentialT > validateLTPAToken
Entry
[8/13/07 11:12:48:122 CDT] 00000097 WSCredentialT < validateLTPAToken
Exit
[8/13/07 11:12:48:122 CDT] 00000097 LTPAServerObj > validateToken
Entry
42e0d534b59c3ea5ec13c9d26c3cef106a963e45bca2511b6856a32090030430dbcf95017267f8a4a5b16b810630c53145336ce5afa5faaee2c97313dc393c69ee672e43bfe0a3ee5871c52b5dcb4012d2ee72dacaca2ca829d911a288d40aecbe5e2503457bce7103b4dca72d9008108ba5770bcab0e79da5231fefbbd123f86bd43e1e0707dae84802c810cb4d53672935226416f4d45d81e9d25e70b29227423e1759b446056528d974a75b9876ab6356964d711aa90a18a019260224be0bf1295af938d530067bc33e3004d62adbb0e5375fd3f42f4bae1831ab79578620c48600c2b75b5bde4b5cafcaea88ee8e7dd5a05dc90bd1771844108a906b8435...
[8/13/07 11:12:48:122 CDT] 00000097 LTPAServerObj < BEGIN VALIDATING
TOKEN: some errors may occur, look for SUCCESS: Exit
[8/13/07 11:12:48:122 CDT] 00000097 LTPAServerObj 3 Calling
tokenFactory[0].validateTokenBytes()
[8/13/07 11:12:48:122 CDT] 00000097 LTPAToken > validate
LTPAToken from byte[] Entry
[8/13/07 11:12:48:122 CDT] 00000097 LTPAToken 3 Token bytes
length = 448
[8/13/07 11:12:48:122 CDT] 00000097 LTPAToken > decrypt Entry
[8/13/07 11:12:48:122 CDT] 00000097 LTPACrypto 3 Cipher used to
decrypt: DESede/ECB/PKCS5Padding
[8/13/07 11:12:48:122 CDT] 00000097 LTPACrypto 3 key size: 24
[8/13/07 11:12:48:123 CDT] 00000097 LTPACrypto 3 Array was not
properly paded
[8/13/07 11:12:48:126 CDT] 00000097 LTPAServerObj 3 Calling
tokenFactory[0].validateTokenBytes()
[8/13/07 11:12:48:126 CDT] 00000097 LTPAToken > validate
LTPAToken from byte[] Entry
[8/13/07 11:12:48:126 CDT] 00000097 LTPAToken 3 Token bytes
length = 448
[8/13/07 11:12:48:126 CDT] 00000097 LTPAToken > decrypt Entry
[8/13/07 11:12:48:126 CDT] 00000097 LTPACrypto 3 Cipher used to
decrypt: DESede/ECB/PKCS5Padding
[8/13/07 11:12:48:126 CDT] 00000097 LTPACrypto 3 key size: 24
[8/13/07 11:12:48:126 CDT] 00000097 LTPACrypto 3 Array was not
properly paded
[8/13/07 11:12:48:126 CDT] 00000097 LTPAServerObj 3 Calling
tokenFactory[1].validateTokenBytes()
[8/13/07 11:12:48:126 CDT] 00000097 LTPAToken2 > validate
LTPAToken2 from byte[] Entry
[8/13/07 11:12:48:126 CDT] 00000097 LTPAToken2 3 Token bytes
length = 448
[8/13/07 11:12:48:126 CDT] 00000097 LTPAToken2 > decrypt Entry
[8/13/07 11:12:48:126 CDT] 00000097 LTPACrypto 3 Cipher used to
decrypt: AES/CBC/PKCS5Padding
[8/13/07 11:12:48:126 CDT] 00000097 LTPACrypto 3 key size: 24
[8/13/07 11:12:48:127 CDT] 00000097 LTPACrypto 3
BadPaddingException validating token, normal when token generated from
other factory.
Given final block not properly padded
[8/13/07 11:12:48:127 CDT] 00000097 LTPACrypto 3 Total decryption
time: 1
[8/13/07 11:12:48:127 CDT] 00000097 LTPAServerObj 3 Calling
tokenFactory[2].validateTokenBytes()
[8/13/07 11:12:48:127 CDT] 00000097 AuthzPropToke > AuthzPropToken
from byte[] Entry
[8/13/07 11:12:48:129 CDT] 00000097 AuthzPropToke 3 Before parsing,
length: 169
, string: B4> l<jEQ hV 0rgk0E3l?
s <i.CXq] r% E{ w ??# # H Sg)5"d ]p'B> Y e(Vq & $Z {0 ?_/K1W?
·[[\?] D k &yS0P3[K]c?j!X?g1ØL!) ym N. 8%"EwY id ^? ?#kE(@gh 1Pp2;?
VCtH) Tnm _j
[8/13/07 11:12:48:130 CDT] 00000097 AuthzPropToke 3 UserData
delimiter not found.
[8/13/07 11:12:48:130 CDT] 00000097 LTPAServerObj 3
security.ltpa.validate.verifytoken.failed
[8/13/07 11:12:48:130 CDT] 00000097 LTPAServerObj < LTPAServerObject:
LTPATokenFactory.validateTokenBytes internal error. Exit
[8/13/07 11:12:48:130 CDT] 00000097 LTPAServerObj 3
security.ltpa.validate.verifytoken.failed
[8/13/07 11:12:48:130 CDT] 00000097 LTPAServerObj < LTPAServerObject:
LTPAToken.getInstance internal error. Exit
com.ibm.websphere.security.auth.WSLoginFailedException: Token is null.
at
com.ibm.ws.security.ltpa.LTPAServerObject.validateToken(LTPAServerObject.java:
780)
at
com.ibm.ws.security.token.WSCredentialTokenMapper.validateLTPAToken(WSCredentialTokenMapper.java:
1158)
at
com.ibm.ws.security.auth.distContextManagerImpl.getOpaqueTokenFromCacheOrOriginatingServer(distContextManagerImpl.java:
1568)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1174)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1118)
at
com.ibm.ws.security.web.WebAuthenticator.validate(WebAuthenticator.java:
1587)
at
com.ibm.ws.security.web.WebAuthenticator.validateCookie(WebAuthenticator.java:
541)
at
com.ibm.ws.security.web.WebAuthenticator.handleSSO(WebAuthenticator.java:
462)
at
com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:
1388)
at
com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:
584)
at
com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:
302)
at
com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:
136)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:
525)
at
com.ibm.wsspi.webcontainer.servlet.GenericServletWrapper.handleRequest(GenericServletWrapper.java:
121)
at
com.ibm.ws.jsp.webcontainerext.JSPExtensionServletWrapper.handleRequest(JSPExtensionServletWrapper.java:
204)
at
com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:
89)
at
com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:
1924)
at
com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:
109)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:
472)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:
411)
at
com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:
101)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java:
566)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java:
619)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java:
952)
at com.ibm.ws.tcp.channel.impl.WorkQueueManager
$Worker.run(WorkQueueManager.java:1039)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java(Compiled
Code))
[8/13/07 11:12:48:130 CDT] 00000097 WSCredentialT 3 Exception
occurred validating LTPA token.
com.ibm.websphere.security.auth.WSLoginFailedException: Token is null.
at
com.ibm.ws.security.ltpa.LTPAServerObject.validateToken(LTPAServerObject.java:
780)
at
com.ibm.ws.security.token.WSCredentialTokenMapper.validateLTPAToken(WSCredentialTokenMapper.java:
1158)
at
com.ibm.ws.security.auth.distContextManagerImpl.getOpaqueTokenFromCacheOrOriginatingServer(distContextManagerImpl.java:
1568)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1174)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1118)
at
com.ibm.ws.security.web.WebAuthenticator.validate(WebAuthenticator.java:
1587)
at
com.ibm.ws.security.web.WebAuthenticator.validateCookie(WebAuthenticator.java:
541)
at
com.ibm.ws.security.web.WebAuthenticator.handleSSO(WebAuthenticator.java:
462)
at
com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:
1388)
at
com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:
584)
at
com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:
302)
at
com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:
136)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:
525)
at
com.ibm.wsspi.webcontainer.servlet.GenericServletWrapper.handleRequest(GenericServletWrapper.java:
121)
at
com.ibm.ws.jsp.webcontainerext.JSPExtensionServletWrapper.handleRequest(JSPExtensionServletWrapper.java:
204)
at
com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:
89)
at
com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:
1924)
at
com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:
109)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:
472)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:
411)
at
com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:
101)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java:
566)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java:
619)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java:
952)
at com.ibm.ws.tcp.channel.impl.WorkQueueManager
$Worker.run(WorkQueueManager.java:1039)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java(Compiled
Code))
[8/13/07 11:12:48:131 CDT] 00000097 WSCredentialT < validateLTPAToken
Exit
[8/13/07 11:12:48:131 CDT] 00000097 distContextMa 3 Exception
getting opaque token from originating server.
com.ibm.websphere.security.auth.WSLoginFailedException: Token is null.
at
com.ibm.ws.security.ltpa.LTPAServerObject.validateToken(LTPAServerObject.java:
780)
at
com.ibm.ws.security.token.WSCredentialTokenMapper.validateLTPAToken(WSCredentialTokenMapper.java:
1158)
at
com.ibm.ws.security.auth.distContextManagerImpl.getOpaqueTokenFromCacheOrOriginatingServer(distContextManagerImpl.java:
1568)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1174)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1118)
at
com.ibm.ws.security.web.WebAuthenticator.validate(WebAuthenticator.java:
1587)
at
com.ibm.ws.security.web.WebAuthenticator.validateCookie(WebAuthenticator.java:
541)
at
com.ibm.ws.security.web.WebAuthenticator.handleSSO(WebAuthenticator.java:
462)
at
com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:
1388)
at
com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:
584)
at
com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:
302)
at
com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:
136)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:
525)
at
com.ibm.wsspi.webcontainer.servlet.GenericServletWrapper.handleRequest(GenericServletWrapper.java:
121)
at
com.ibm.ws.jsp.webcontainerext.JSPExtensionServletWrapper.handleRequest(JSPExtensionServletWrapper.java:
204)
at
com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:
89)
at
com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:
1924)
at
com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:
109)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:
472)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:
411)
at
com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:
101)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java:
566)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java:
619)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java:
952)
at com.ibm.ws.tcp.channel.impl.WorkQueueManager
$Worker.run(WorkQueueManager.java:1039)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java(Compiled
Code))
[8/13/07 11:12:48:131 CDT] 00000097 distContextMa 3 login failed:
com.ibm.websphere.security.auth.WSLoginFailedException: Token is null.
[8/13/07 11:12:48:131 CDT] 00000097 distContextMa < login(realm,
token, auth_mech, . . .) Exit
[8/13/07 11:12:48:131 CDT] 00000097 WebAuthentica < validate Exit
com.ibm.websphere.security.auth.WSLoginFailedException: Token is null.
at
com.ibm.ws.security.ltpa.LTPAServerObject.validateToken(LTPAServerObject.java:
780)
at
com.ibm.ws.security.token.WSCredentialTokenMapper.validateLTPAToken(WSCredentialTokenMapper.java:
1158)
at
com.ibm.ws.security.auth.distContextManagerImpl.getOpaqueTokenFromCacheOrOriginatingServer(distContextManagerImpl.java:
1568)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1174)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1118)
at
com.ibm.ws.security.web.WebAuthenticator.validate(WebAuthenticator.java:
1587)
at
com.ibm.ws.security.web.WebAuthenticator.validateCookie(WebAuthenticator.java:
541)
at
com.ibm.ws.security.web.WebAuthenticator.handleSSO(WebAuthenticator.java:
462)
at
com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:
1388)
at
com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:
584)
at
com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:
302)
at
com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:
136)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:
525)
at
com.ibm.wsspi.webcontainer.servlet.GenericServletWrapper.handleRequest(GenericServletWrapper.java:
121)
at
com.ibm.ws.jsp.webcontainerext.JSPExtensionServletWrapper.handleRequest(JSPExtensionServletWrapper.java:
204)
at
com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:
89)
at
com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:
1924)
at
com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:
109)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:
472)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:
411)
at
com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:
101)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java:
566)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java:
619)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java:
952)
at com.ibm.ws.tcp.channel.impl.WorkQueueManager
$Worker.run(WorkQueueManager.java:1039)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java(Compiled
Code))
[8/13/07 11:12:48:131 CDT] 00000097 WebAuthentica < validate Exit
[8/13/07 11:12:48:131 CDT] 00000097 WebAuthentica < handleSSO: (null)
Exit
[8/13/07 11:12:48:131 CDT] 00000097 WebAuthentica > handleBasicAuth
Entry
[8/13/07 11:12:48:131 CDT] 00000097 WebAuthentica 3 basic 401
[8/13/07 11:12:48:132 CDT] 00000097 WebAuthentica < handleBasicAuth
Exit
[8/13/07 11:12:48:132 CDT] 00000097 WebAuthentica < authenticate Exit
[8/13/07 11:12:48:132 CDT] 00000097 WebCollaborat 3 authentication
failed - sending a 401
[8/13/07 11:12:48:132 CDT] 00000097 WebCollaborat < checkAuthStatus
Exit
com.ibm.ws.security.web.ChallengeReply@778485ff
[8/13/07 11:12:48:132 CDT] 00000097 WebCollaborat < authorize Exit
com.ibm.ws.security.web.ChallengeReply@778485ff
[8/13/07 11:12:48:132 CDT] 00000097 EJSWebCollabo > handleException
Entry
com.ibm.ws.webcontainer.srt.SRTServletRequest@55cb45d7
com.ibm.ws.webcontainer.srt.SRTServletResponse@552305d7
com.ibm.ws.security.web.WebSecurityException: Basic
realm="customRealm"
at
com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:
307)
at
com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:
136)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:
525)
at
com.ibm.wsspi.webcontainer.servlet.GenericServletWrapper.handleRequest(GenericServletWrapper.java:
121)
at
com.ibm.ws.jsp.webcontainerext.JSPExtensionServletWrapper.handleRequest(JSPExtensionServletWrapper.java:
204)
at
com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:
89)
at
com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:
1924)
at
com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:
109)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:
472)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:
411)
at
com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:
101)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java:
566)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java:
619)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java:
952)
at com.ibm.ws.tcp.channel.impl.WorkQueueManager
$Worker.run(WorkQueueManager.java:1039)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java(Compiled
Code))
[8/13/07 11:12:48:132 CDT] 00000097 EJSWebCollabo < handleException
Exit
[8/13/07 11:12:48:132 CDT] 00000097 EJSWebCollabo > postInvoke Entry
com.ibm.ws.security.web.WebSecurityContext@5fb145f9
[8/13/07 11:12:48:132 CDT] 00000097 EJSWebCollabo 3 Resetting
invoked: null and received: nullsubjects
[8/13/07 11:12:48:132 CDT] 00000097 SASRas 3
[CurrentImpl.set_invocation_subject], [ServerID: server1]
Setting invocation subject to NULL.
[8/13/07 11:12:48:132 CDT] 00000097 SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:12:48:132 CDT] 00000097 StateofCurrOb 3
setInvocationSubject() null subject
[8/13/07 11:12:48:132 CDT] 00000097 SASRas 3
[CurrentImpl.set_caller_subject], [ServerID: server1]
Setting caller subject to NULL.
[8/13/07 11:12:48:132 CDT] 00000097 SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:12:48:132 CDT] 00000097 StateofCurrOb 3
setCallerSubject() null subject
[8/13/07 11:12:48:132 CDT] 00000097 SubjectHelper >
updatePropagationTokenWithSubjectChange Entry
[8/13/07 11:12:48:132 CDT] 00000097 SubjectHelper <
updatePropagationTokenWithSubjectChange Exit
[8/13/07 11:12:48:133 CDT] 00000097 EJSWebCollabo < postInvoke Exit
[8/13/07 11:12:48:133 CDT] 00000097 EJSWebCollabo > postInvoke Entry
<null>
[8/13/07 11:12:48:133 CDT] 00000097 EJSWebCollabo < postInvoke Exit
[8/13/07 11:12:54:488 CDT] 0000008e EJSWebCollabo > preInvoke Entry
[8/13/07 11:12:54:488 CDT] 0000008e SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:12:54:488 CDT] 0000008e StateofCurrOb 3
setWSReceivedCreds() null subject
[8/13/07 11:12:54:488 CDT] 0000008e SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:12:54:488 CDT] 0000008e StateofCurrOb 3 setWSOwnCred()
null subject
[8/13/07 11:12:54:488 CDT] 0000008e SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:12:54:488 CDT] 0000008e StateofCurrOb 3
setWSInvocationCred() null subject
[8/13/07 11:12:54:488 CDT] 0000008e EJSWebCollabo < preInvoke Exit
<null>
[8/13/07 11:12:54:488 CDT] 0000008e EJSWebCollabo > preInvoke Entry
com.ibm.ws.webcontainer.srt.SRTServletRequest@55cb45d7
com.ibm.ws.webcontainer.srt.SRTServletResponse@552305d7
Test
default_host
/index.jsp
true
[8/13/07 11:12:54:489 CDT] 0000008e EJSWebCollabo 3 Http Header
names and values:
Accept=[image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,
application/vnd.ms-excel, application/vnd.ms-powerpoint, application/
msword, application/x-shockwave-flash, */*]
Referer=[http://rcwas01.ibm.com:9081/WillThisWorkWeb/index.jsp]
Accept-Language=[en-us]
Accept-Encoding=[gzip, deflate]
User-Agent=[Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)]
Host=[rcwps.ibm.com:9080]
Connection=[Keep-Alive]
Cookie=[LtpaToken2=QuDVNLWcPqXsE8nSbDzvEGqWPkW8olEbaFajIJADBDDbz5UBcmf4pKWxa4EGMMUxRTNs5a
+l+q7iyXMT3Dk8ae5nLkO/
4KPuWHHFK13LQBLS7nLaysosqCnZEaKI1Arsvl4lA0V7znEDtNynLZAIEIuldwvKsOedpSMf77vRI/
hr1D4eBwfa6EgCyBDLTVNnKTUiZBb01F2B6dJecLKSJ0I
+F1m0RgVlKNl0p1uYdqtjVpZNcRqpChigGSYCJL4L8Sla+TjVMAZ7wz4wBNYq27DlN1/
T9C9Lrhgxq3lXhiDEhgDCt1tb3ktcr8rqiO6OfdWgXckL0XcYRBCKkGuENRYmeVP
+iDCBUVAz6OZbS11jivTpp7baA2ohWMArz4PDQ+lUZ//
FMYfXw5iLiP9NncefT9NP2MyroEwhKYcxDu/zpq3uskThs195bR/w/
04uy3QR8cPg8zglIkV3Wbnwv9gfaepkq+Sx9GSMi/QxGReZtKn/
XtuQ2wqes6wFC8iNgUWMWyNrz0WMiEUoQJ3XZ2gTyxq8LLbaMZHIUHDAsjvfnZIUVkN0SK3X3jm/
DykIl52iYRzDCFRubfbPIF9q7Q==; LtpaToken=rdSABSitQlzy4jn/
mCXnskqwd8Pa2slOCkxJ8CP1f5NmKGPoa1x09gnZlcXzZLdC79ZlfhYWXLGTQraE7tQnAGjhSSglm/
+RpIhQc88G/3UCd9W
+hyeta87JKPVQ51W9fLHd4oMAAe4T8B9S4zrlDtaZpFFLJWHxl2at4oAFJYpCMLdW1A05wChp0POYAtNXUluuytcA/
tqtRTGM0Ez9zO2YbTyopHw
+AqOiO0+ksJlxZ4MQ5XzkCFYVcheqFqZs4bx541uevtLPgg9uxbuITtiLqhve1xDq]
Authorization=[Basic ZGUxZGF2ZTpwYXNzd29yZA==]
[8/13/07 11:12:54:489 CDT] 0000008e EJSWebCollabo 3 Request Context
Path=/Test, Servlet Path=/index.jsp, Path Info=null
[8/13/07 11:12:54:489 CDT] 0000008e StateofCurrOb 3 secConfig has
been initialized.
[8/13/07 11:12:54:489 CDT] 0000008e SASRas 3
[CurrentImpl.get_invocation_subject], [ServerID: server1]
Invocation subject is null.
[8/13/07 11:12:54:489 CDT] 0000008e WebSecurityCo > <init> Entry
<null>
<null>
<null>
[8/13/07 11:12:54:489 CDT] 0000008e WebSecurityCo < <init> Exit
com.ibm.ws.security.web.WebSecurityContext@7bdcc5fd
[8/13/07 11:12:54:489 CDT] 0000008e WebCollaborat >
SetUnauthenticatedSubjectIfNeeded Entry
[8/13/07 11:12:54:489 CDT] 0000008e WebCollaborat 3 Invoked and
received Subject are null, setting it anonymous/unauthenticated.
[8/13/07 11:12:54:489 CDT] 0000008e SASRas 3
[CurrentImpl.set_invocation_subject], [ServerID: server1]
Setting caller subject: Subject:
Principal: /UNAUTHENTICATED
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@3fef45db[com.ibm.ws.security.auth.distWSCredentialImpl@31e445db]
[8/13/07 11:12:54:489 CDT] 0000008e StateofCurrOb 3
setInvocationSubject() principal "/UNAUTHENTICATED"
[8/13/07 11:12:54:489 CDT] 0000008e WebCollaborat <
SetUnauthenticatedSubjectIfNeeded:true Exit
[8/13/07 11:12:54:489 CDT] 0000008e SASRas 3
[CurrentImpl.get_invocation_subject], [ServerID: server1]
Getting invocation subject: Subject:
Principal: /UNAUTHENTICATED
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@3fef45db[com.ibm.ws.security.auth.distWSCredentialImpl@31e445db]
[8/13/07 11:12:54:489 CDT] 0000008e EJSWebCollabo 3
WebComponentMetaData
MetaDataImpl@841844187
[8/13/07 11:12:54:489 CDT] 0000008e WebCollaborat > authorize Entry
com.ibm.ws.webcontainer.srt.SRTServletRequest@55cb45d7
com.ibm.ws.webcontainer.srt.SRTServletResponse@552305d7
default_host:Test
true
TestOnWPS
[8/13/07 11:12:54:489 CDT] 0000008e WebCollaborat 3 URI requested: /
index.jsp
[8/13/07 11:12:54:489 CDT] 0000008e WebCollaborat 3 uriName
returned: /index.jsp
[8/13/07 11:12:54:489 CDT] 0000008e WebAppCache >
getWebAccessContext Entry
TestOnWPS
default_host:Test
[8/13/07 11:12:54:489 CDT] 0000008e WebAppCache 3 Okay, I found
the entry for [TestOnWPS:default_host:Test]
[8/13/07 11:12:54:490 CDT] 0000008e WebAppCache <
getWebAccessContext Exit
[8/13/07 11:12:54:490 CDT] 0000008e WebAccessCont > WebAccessContext
Entry
[8/13/07 11:12:54:490 CDT] 0000008e WebAccessCont < WebAccessContext
Exit
[8/13/07 11:12:54:490 CDT] 0000008e WebConstraint > getConstraints:
Entry
/index.jsp
GET
[8/13/07 11:12:54:490 CDT] 0000008e WebConstraint 3
webConstraintsTable.length = 1
[8/13/07 11:12:54:490 CDT] 0000008e WebConstraint 3
webConstraintsTable.length = 1
[8/13/07 11:12:54:490 CDT] 0000008e WebResourceCo > matches Entry
/index.jsp
GET
[8/13/07 11:12:54:490 CDT] 0000008e WebResourceCo 3 Checking URL: *
[8/13/07 11:12:54:490 CDT] 0000008e WebResourceCo 3 Checking URL: /*
[8/13/07 11:12:54:490 CDT] 0000008e WebResourceCo < matches Exit
[8/13/07 11:12:54:490 CDT] 0000008e WebResourceCo > getMatchType
Entry
/*
[8/13/07 11:12:54:490 CDT] 0000008e WebResourceCo 3 URI Match type =
PATHNAME
[8/13/07 11:12:54:490 CDT] 0000008e WebResourceCo < getMatchType Exit
[8/13/07 11:12:54:490 CDT] 0000008e WebConstraint < getConstraints
not null Exit
[8/13/07 11:12:54:490 CDT] 0000008e WebAppCache >
getWebAccessContext Entry
TestOnWPS
default_host:Test
[8/13/07 11:12:54:490 CDT] 0000008e WebAppCache 3 Okay, I found
the entry for [TestOnWPS:default_host:Test]
[8/13/07 11:12:54:490 CDT] 0000008e WebAppCache <
getWebAccessContext Exit
[8/13/07 11:12:54:490 CDT] 0000008e WebAccessCont > WebAccessContext
Entry
[8/13/07 11:12:54:490 CDT] 0000008e WebAccessCont < WebAccessContext
Exit
[8/13/07 11:12:54:490 CDT] 0000008e WebCollaborat > checkConstraints
Entry
[8/13/07 11:12:54:490 CDT] 0000008e WebCollaborat > isSSLRequired
Entry
[8/13/07 11:12:54:490 CDT] 0000008e LRUCache > get Entry
com.ibm.ws.security.web.WebAccessPermission@c635bbda
[8/13/07 11:12:54:490 CDT] 0000008e LRUCache < get Exit
[8/13/07 11:12:54:490 CDT] 0000008e WebCollaborat < checkConstraints
Exit
<null>
[8/13/07 11:12:54:490 CDT] 0000008e LRUCache > get Entry
com.ibm.ws.security.web.WebAccessPermission@c635bbda
[8/13/07 11:12:54:490 CDT] 0000008e LRUCache < get Exit
[8/13/07 11:12:54:491 CDT] 0000008e WSAccessManag > isEveryoneGranted
Entry
com.ibm.ws.security.web.WebAccessContext@e43c5fd
[Lcom.ibm.etools.j2ee.common.SecurityRole;@12e905d9
[8/13/07 11:12:54:491 CDT] 0000008e WSAccessManag >
isSpecialSubjectGrantedAnyRole Entry
com.ibm.ejs.models.base.bindings.applicationbnd.impl.AuthorizationTableImpl@2f1785de
[Lcom.ibm.etools.j2ee.common.SecurityRole;@12e905d9
com.ibm.ejs.models.base.bindings.applicationbnd.impl.EveryoneImpl@14a9058b
(name: Everyone, accessId: Everyone)
[8/13/07 11:12:54:491 CDT] 0000008e WSAccessManag <
isSpecialSubjectGrantedAnyRole Exit
false
[8/13/07 11:12:54:491 CDT] 0000008e WSAccessManag < isEveryoneGranted
Exit
false
[8/13/07 11:12:54:491 CDT] 0000008e WebCollaborat 3 URI - /
index.jsp.GET is protected
[8/13/07 11:12:54:491 CDT] 0000008e WebCollaborat 3 Saving previous
subject null
[8/13/07 11:12:54:491 CDT] 0000008e WebAuthentica > authenticate
Entry
[8/13/07 11:12:54:491 CDT] 0000008e WebAuthentica > handleSSO Entry
[8/13/07 11:12:54:491 CDT] 0000008e WebAuthentica 3 Attempting
primary cookie validation for: LtpaToken2
[8/13/07 11:12:54:491 CDT] 0000008e WebAuthentica > getCookieValues
Entry
LtpaToken2
[8/13/07 11:12:54:491 CDT] 0000008e WebAuthentica 3
QuDVNLWcPqXsE8nSbDzvEGqWPkW8olEbaFajIJADBDDbz5UBcmf4pKWxa4EGMMUxRTNs5a
+l+q7iyXMT3Dk8ae5nLkO/
4KPuWHHFK13LQBLS7nLaysosqCnZEaKI1Arsvl4lA0V7znEDtNynLZAIEIuldwvKsOedpSMf77vRI/
hr1D4eBwfa6EgCyBDLTVNnKTUiZBb01F2B6dJecLKSJ0I
+F1m0RgVlKNl0p1uYdqtjVpZNcRqpChigGSYCJL4L8Sla+TjVMAZ7wz4wBNYq27DlN1/
T9C9Lrhgxq3lXhiDEhgDCt1tb3ktcr8rqiO6OfdWgXckL0XcYRBCKkGuENRYmeVP
+iDCBUVAz6OZbS11jivTpp7baA2ohWMArz4PDQ+lUZ//
FMYfXw5iLiP9NncefT9NP2MyroEwhKYcxDu/zpq3uskThs195bR/w/
04uy3QR8cPg8zglIkV3Wbnwv9gfaepkq+Sx9GSMi/QxGReZtKn/
XtuQ2wqes6wFC8iNgUWMWyNrz0WMiEUoQJ3XZ2gTyxq8LLbaMZHIUHDAsjvfnZIUVkN0SK3X3jm/
DykIl52iYRzDCFRubfbPIF9q7Q==
[8/13/07 11:12:54:491 CDT] 0000008e WebAuthentica < getCookieValues
Exit
[8/13/07 11:12:54:491 CDT] 0000008e WebAuthentica > validate Entry
[8/13/07 11:12:54:491 CDT] 0000008e distContextMa > login(realm,
token, auth_mech, . . ., null_subject) Entry
[8/13/07 11:12:54:491 CDT] 0000008e distContextMa > login(realm,
token, auth_mech, . . .) -> (customRealm, token,
system.WEB_INBOUND, . . .) Entry
[8/13/07 11:12:54:491 CDT] 0000008e distContextMa 3 Web inbound
login config: system.WEB_INBOUND
[8/13/07 11:12:54:491 CDT] 0000008e distContextMa 3 Looking for
opaque token on the thread before Subject cache lookup.
[8/13/07 11:12:54:491 CDT] 0000008e distContextMa >
getSubjectFromTokenHolderCacheKey Entry
[8/13/07 11:12:54:491 CDT] 0000008e distContextMa <
getSubjectFromTokenHolderCacheKey Exit
[8/13/07 11:12:54:491 CDT] 0000008e distContextMa 3 Looking for
subject from cache using token as lookup.
[8/13/07 11:12:54:491 CDT] 0000008e AuthCache > getSubject Entry
42e0d534b59c3ea5ec13c9d26c3cef106a963e45bca2511b6856a32090030430dbcf95017267f8a4a5b16b810630c53145336ce5afa5faaee2c97313dc393c69ee672e43bfe0a3ee5871c52b5dcb4012d2ee72dacaca2ca829d911a288d40aecbe5e2503457bce7103b4dca72d9008108ba5770bcab0e79da5231fefbbd123f86bd43e1e0707dae84802c810cb4d53672935226416f4d45d81e9d25e70b29227423e1759b446056528d974a75b9876ab6356964d711aa90a18a019260224be0bf1295af938d530067bc33e3004d62adbb0e5375fd3f42f4bae1831ab79578620c48600c2b75b5bde4b5cafcaea88ee8e7dd5a05dc90bd1771844108a906b8435...
[8/13/07 11:12:54:492 CDT] 0000008e AuthCache > getSubject Entry
com.ibm.ws.security.util.ByteArray@ea77ba06
[8/13/07 11:12:54:492 CDT] 0000008e Cache > get Entry
com.ibm.ws.security.util.ByteArray@ea77ba06
[8/13/07 11:12:54:492 CDT] 0000008e Cache < get Exit
<null>
[8/13/07 11:12:54:492 CDT] 0000008e AuthCache < getSubject Exit
<null>
[8/13/07 11:12:54:492 CDT] 0000008e AuthCache < getSubject Exit
<null>
[8/13/07 11:12:54:492 CDT] 0000008e distContextMa >
getOpaqueTokenFromCacheOrOriginatingServer Entry
[8/13/07 11:12:54:492 CDT] 0000008e distContextMa 3 Getting
distributed object from DynaCache.
[8/13/07 11:12:54:492 CDT] 0000008e WSCredentialT >
getDistributedObject: com.ibm.ws.security.util.ByteArray@ea77ba06
Entry
[8/13/07 11:12:54:492 CDT] 0000008e WSCredentialT <
getDistributedObject Exit
[8/13/07 11:12:54:492 CDT] 0000008e WSCredentialT >
getDistributedObjectNotShared:
com.ibm.ws.security.util.ByteArray@ea77ba06 Entry
[8/13/07 11:12:54:492 CDT] 0000008e WSCredentialT <
getDistributedObjectNotShared (null) Exit
[8/13/07 11:12:54:492 CDT] 0000008e distContextMa 3 Not found in
DynaCache, getting distributed object using MBean.
[8/13/07 11:12:54:492 CDT] 0000008e WSCredentialT > validateLTPAToken
Entry
[8/13/07 11:12:54:492 CDT] 0000008e WSCredentialT < validateLTPAToken
Exit
[8/13/07 11:12:54:492 CDT] 0000008e LTPAServerObj > validateToken
Entry
42e0d534b59c3ea5ec13c9d26c3cef106a963e45bca2511b6856a32090030430dbcf95017267f8a4a5b16b810630c53145336ce5afa5faaee2c97313dc393c69ee672e43bfe0a3ee5871c52b5dcb4012d2ee72dacaca2ca829d911a288d40aecbe5e2503457bce7103b4dca72d9008108ba5770bcab0e79da5231fefbbd123f86bd43e1e0707dae84802c810cb4d53672935226416f4d45d81e9d25e70b29227423e1759b446056528d974a75b9876ab6356964d711aa90a18a019260224be0bf1295af938d530067bc33e3004d62adbb0e5375fd3f42f4bae1831ab79578620c48600c2b75b5bde4b5cafcaea88ee8e7dd5a05dc90bd1771844108a906b8435...
[8/13/07 11:12:54:492 CDT] 0000008e LTPAServerObj < BEGIN VALIDATING
TOKEN: some errors may occur, look for SUCCESS: Exit
[8/13/07 11:12:54:492 CDT] 0000008e LTPAServerObj 3 Calling
tokenFactory[0].validateTokenBytes()
[8/13/07 11:12:54:492 CDT] 0000008e LTPAToken > validate
LTPAToken from byte[] Entry
[8/13/07 11:12:54:492 CDT] 0000008e LTPAToken 3 Token bytes
length = 448
[8/13/07 11:12:54:492 CDT] 0000008e LTPAToken > decrypt Entry
[8/13/07 11:12:54:492 CDT] 0000008e LTPACrypto 3 Cipher used to
decrypt: DESede/ECB/PKCS5Padding
[8/13/07 11:12:54:492 CDT] 0000008e LTPACrypto 3 key size: 24
[8/13/07 11:12:54:493 CDT] 0000008e LTPACrypto 3 Array was not
properly paded
[8/13/07 11:12:54:493 CDT] 0000008e LTPAServerObj 3 Calling
tokenFactory[0].validateTokenBytes()
[8/13/07 11:12:54:493 CDT] 0000008e LTPAToken > validate
LTPAToken from byte[] Entry
[8/13/07 11:12:54:493 CDT] 0000008e LTPAToken 3 Token bytes
length = 448
[8/13/07 11:12:54:493 CDT] 0000008e LTPAToken > decrypt Entry
[8/13/07 11:12:54:493 CDT] 0000008e LTPACrypto 3 Cipher used to
decrypt: DESede/ECB/PKCS5Padding
[8/13/07 11:12:54:493 CDT] 0000008e LTPACrypto 3 key size: 24
[8/13/07 11:12:54:493 CDT] 0000008e LTPACrypto 3 Array was not
properly paded
[8/13/07 11:12:54:493 CDT] 0000008e LTPAServerObj 3 Calling
tokenFactory[1].validateTokenBytes()
[8/13/07 11:12:54:493 CDT] 0000008e LTPAToken2 > validate
LTPAToken2 from byte[] Entry
[8/13/07 11:12:54:493 CDT] 0000008e LTPAToken2 3 Token bytes
length = 448
[8/13/07 11:12:54:493 CDT] 0000008e LTPAToken2 > decrypt Entry
[8/13/07 11:12:54:493 CDT] 0000008e LTPACrypto 3 Cipher used to
decrypt: AES/CBC/PKCS5Padding
[8/13/07 11:12:54:493 CDT] 0000008e LTPACrypto 3 key size: 24
[8/13/07 11:12:54:494 CDT] 0000008e LTPACrypto 3
BadPaddingException validating token, normal when token generated from
other factory.
Given final block not properly padded
[8/13/07 11:12:54:494 CDT] 0000008e LTPACrypto 3 Total decryption
time: 1
[8/13/07 11:12:54:494 CDT] 0000008e LTPAServerObj 3 Calling
tokenFactory[2].validateTokenBytes()
[8/13/07 11:12:54:494 CDT] 0000008e AuthzPropToke > AuthzPropToken
from byte[] Entry
[8/13/07 11:12:54:496 CDT] 0000008e AuthzPropToke 3 Before parsing,
length: 169
, string: B4> l<jEQ hV 0rgk0E3l?
s <i.CXq] r% E{ w ??# # H Sg)5"d ]p'B> Y e(Vq & $Z {0 ?_/K1W?
·[[\?] D k &yS0P3[K]c?j!X?g1ØL!) ym N. 8%"EwY id ^? ?#kE(@gh 1Pp2;?
VCtH) Tnm _j
[8/13/07 11:12:54:496 CDT] 0000008e AuthzPropToke 3 UserData
delimiter not found.
[8/13/07 11:12:54:497 CDT] 0000008e LTPAServerObj 3
security.ltpa.validate.verifytoken.failed
[8/13/07 11:12:54:497 CDT] 0000008e LTPAServerObj < LTPAServerObject:
LTPATokenFactory.validateTokenBytes internal error. Exit
[8/13/07 11:12:54:497 CDT] 0000008e LTPAServerObj 3
security.ltpa.validate.verifytoken.failed
[8/13/07 11:12:54:497 CDT] 0000008e LTPAServerObj < LTPAServerObject:
LTPAToken.getInstance internal error. Exit
com.ibm.websphere.security.auth.WSLoginFailedException: Token is null.
at
com.ibm.ws.security.ltpa.LTPAServerObject.validateToken(LTPAServerObject.java:
780)
at
com.ibm.ws.security.token.WSCredentialTokenMapper.validateLTPAToken(WSCredentialTokenMapper.java:
1158)
at
com.ibm.ws.security.auth.distContextManagerImpl.getOpaqueTokenFromCacheOrOriginatingServer(distContextManagerImpl.java:
1568)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1174)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1118)
at
com.ibm.ws.security.web.WebAuthenticator.validate(WebAuthenticator.java:
1587)
at
com.ibm.ws.security.web.WebAuthenticator.validateCookie(WebAuthenticator.java:
541)
at
com.ibm.ws.security.web.WebAuthenticator.handleSSO(WebAuthenticator.java:
462)
at
com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:
1388)
at
com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:
584)
at
com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:
302)
at
com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:
136)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:
525)
at
com.ibm.wsspi.webcontainer.servlet.GenericServletWrapper.handleRequest(GenericServletWrapper.java:
121)
at
com.ibm.ws.jsp.webcontainerext.JSPExtensionServletWrapper.handleRequest(JSPExtensionServletWrapper.java:
204)
at
com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:
89)
at
com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:
1924)
at
com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:
109)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:
472)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:
411)
at
com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:
101)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java:
566)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java:
619)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java:
952)
at com.ibm.ws.tcp.channel.impl.WorkQueueManager
$Worker.run(WorkQueueManager.java:1039)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1471)
[8/13/07 11:12:54:497 CDT] 0000008e WSCredentialT 3 Exception
occurred validating LTPA token.
com.ibm.websphere.security.auth.WSLoginFailedException: Token is null.
at
com.ibm.ws.security.ltpa.LTPAServerObject.validateToken(LTPAServerObject.java:
780)
at
com.ibm.ws.security.token.WSCredentialTokenMapper.validateLTPAToken(WSCredentialTokenMapper.java:
1158)
at
com.ibm.ws.security.auth.distContextManagerImpl.getOpaqueTokenFromCacheOrOriginatingServer(distContextManagerImpl.java:
1568)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1174)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1118)
at
com.ibm.ws.security.web.WebAuthenticator.validate(WebAuthenticator.java:
1587)
at
com.ibm.ws.security.web.WebAuthenticator.validateCookie(WebAuthenticator.java:
541)
at
com.ibm.ws.security.web.WebAuthenticator.handleSSO(WebAuthenticator.java:
462)
at
com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:
1388)
at
com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:
584)
at
com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:
302)
at
com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:
136)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:
525)
at
com.ibm.wsspi.webcontainer.servlet.GenericServletWrapper.handleRequest(GenericServletWrapper.java:
121)
at
com.ibm.ws.jsp.webcontainerext.JSPExtensionServletWrapper.handleRequest(JSPExtensionServletWrapper.java:
204)
at
com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:
89)
at
com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:
1924)
at
com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:
109)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:
472)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:
411)
at
com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:
101)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java:
566)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java:
619)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java:
952)
at com.ibm.ws.tcp.channel.impl.WorkQueueManager
$Worker.run(WorkQueueManager.java:1039)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1471)
[8/13/07 11:12:54:497 CDT] 0000008e WSCredentialT < validateLTPAToken
Exit
[8/13/07 11:12:54:497 CDT] 0000008e distContextMa 3 Exception
getting opaque token from originating server.
com.ibm.websphere.security.auth.WSLoginFailedException: Token is null.
at
com.ibm.ws.security.ltpa.LTPAServerObject.validateToken(LTPAServerObject.java:
780)
at
com.ibm.ws.security.token.WSCredentialTokenMapper.validateLTPAToken(WSCredentialTokenMapper.java:
1158)
at
com.ibm.ws.security.auth.distContextManagerImpl.getOpaqueTokenFromCacheOrOriginatingServer(distContextManagerImpl.java:
1568)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1174)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1118)
at
com.ibm.ws.security.web.WebAuthenticator.validate(WebAuthenticator.java:
1587)
at
com.ibm.ws.security.web.WebAuthenticator.validateCookie(WebAuthenticator.java:
541)
at
com.ibm.ws.security.web.WebAuthenticator.handleSSO(WebAuthenticator.java:
462)
at
com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:
1388)
at
com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:
584)
at
com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:
302)
at
com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:
136)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:
525)
at
com.ibm.wsspi.webcontainer.servlet.GenericServletWrapper.handleRequest(GenericServletWrapper.java:
121)
at
com.ibm.ws.jsp.webcontainerext.JSPExtensionServletWrapper.handleRequest(JSPExtensionServletWrapper.java:
204)
at
com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:
89)
at
com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:
1924)
at
com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:
109)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:
472)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:
411)
at
com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:
101)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java:
566)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java:
619)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java:
952)
at com.ibm.ws.tcp.channel.impl.WorkQueueManager
$Worker.run(WorkQueueManager.java:1039)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1471)
[8/13/07 11:12:54:498 CDT] 0000008e distContextMa 3 login failed:
com.ibm.websphere.security.auth.WSLoginFailedException: Token is null.
[8/13/07 11:12:54:498 CDT] 0000008e distContextMa < login(realm,
token, auth_mech, . . .) Exit
[8/13/07 11:12:54:498 CDT] 0000008e WebAuthentica < validate Exit
com.ibm.websphere.security.auth.WSLoginFailedException: Token is null.
at
com.ibm.ws.security.ltpa.LTPAServerObject.validateToken(LTPAServerObject.java:
780)
at
com.ibm.ws.security.token.WSCredentialTokenMapper.validateLTPAToken(WSCredentialTokenMapper.java:
1158)
at
com.ibm.ws.security.auth.distContextManagerImpl.getOpaqueTokenFromCacheOrOriginatingServer(distContextManagerImpl.java:
1568)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1174)
at
com.ibm.ws.security.auth.distContextManagerImpl.login(distContextManagerImpl.java:
1118)
at
com.ibm.ws.security.web.WebAuthenticator.validate(WebAuthenticator.java:
1587)
at
com.ibm.ws.security.web.WebAuthenticator.validateCookie(WebAuthenticator.java:
541)
at
com.ibm.ws.security.web.WebAuthenticator.handleSSO(WebAuthenticator.java:
462)
at
com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:
1388)
at
com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:
584)
at
com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:
302)
at
com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:
136)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:
525)
at
com.ibm.wsspi.webcontainer.servlet.GenericServletWrapper.handleRequest(GenericServletWrapper.java:
121)
at
com.ibm.ws.jsp.webcontainerext.JSPExtensionServletWrapper.handleRequest(JSPExtensionServletWrapper.java:
204)
at
com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:
89)
at
com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:
1924)
at
com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:
109)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:
472)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:
411)
at
com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:
101)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.requestComplete(WorkQueueManager.java:
566)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.attemptIO(WorkQueueManager.java:
619)
at
com.ibm.ws.tcp.channel.impl.WorkQueueManager.workerRun(WorkQueueManager.java:
952)
at com.ibm.ws.tcp.channel.impl.WorkQueueManager
$Worker.run(WorkQueueManager.java:1039)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1471)
[8/13/07 11:12:54:498 CDT] 0000008e WebAuthentica < validate Exit
[8/13/07 11:12:54:498 CDT] 0000008e WebAuthentica < handleSSO: (null)
Exit
[8/13/07 11:12:54:498 CDT] 0000008e WebAuthentica > handleBasicAuth
Entry
[8/13/07 11:12:54:498 CDT] 0000008e WebAuthentica 3 Authorization:
Basic ZGUxZGF2ZTpwYXNzd29yZA==
[8/13/07 11:12:54:498 CDT] 0000008e WebAuthentica 3
BasicAuthEncoding:null
[8/13/07 11:12:54:498 CDT] 0000008e WebAuthentica > basicAuthenticate
Entry
[8/13/07 11:12:54:498 CDT] 0000008e distContextMa > login(realm,
user, password) -> login(customRealm, de1dave, ********,
system.WEB_INBOUND) Entry
[8/13/07 11:12:54:498 CDT] 0000008e distContextMa 3 Looking for
opaque token on the thread before Subject cache lookup.
[8/13/07 11:12:54:498 CDT] 0000008e distContextMa >
getSubjectFromTokenHolderCacheKey Entry
[8/13/07 11:12:54:498 CDT] 0000008e distContextMa <
getSubjectFromTokenHolderCacheKey Exit
[8/13/07 11:12:54:498 CDT] 0000008e distContextMa 3 Looking for
subject from cache using token as lookup.
[8/13/07 11:12:54:498 CDT] 0000008e AuthCache > getSubject Entry
customRealm
de1dave
xxxxx
[8/13/07 11:12:54:499 CDT] 0000008e AuthCache 3 One-way password
hash using SHA is: 523317814572971326213962104526266134554315493336
[8/13/07 11:12:54:499 CDT] 0000008e Cache > get Entry
customRealm:de1dave
[8/13/07 11:12:54:499 CDT] 0000008e Cache < get Exit
com.ibm.ws.security.auth.CacheObject@13af45f4
[8/13/07 11:12:54:499 CDT] 0000008e AuthCache < getSubject Exit
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialI > isDestroyed Entry
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialI < isDestroyed Exit
false
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialI > isForwardable
Entry
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialI < isForwardable
Exit
true
[8/13/07 11:12:54:499 CDT] 0000008e AuthCache > getCushion Entry
[8/13/07 11:12:54:499 CDT] 0000008e AuthCache < getCushion Exit
600000
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialT >
checkCushionValidityOfAllTokens Entry
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialI > getExpiration
Entry
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialI < getExpiration
Exit
1187028614231
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialT 3 Total number of
Subject tokens to check: 3
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialT 3 Time remaining
is 6439 seconds, for token:
com.ibm.ws.security.token.SingleSignonTokenImpl
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialT 3 Time remaining
is 6439 seconds, for token:
com.ibm.ws.security.token.AuthorizationTokenImpl
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialT 3 Time remaining
is 6439 seconds, for token:
com.ibm.ws.security.token.AuthenticationTokenImpl
[8/13/07 11:12:54:499 CDT] 0000008e WSCredentialT <
checkCushionValidityOfAllTokens Exit
[8/13/07 11:12:54:499 CDT] 0000008e distContextMa 3 login(realm,
user, password, . . .): is subject valid? true
[8/13/07 11:12:54:499 CDT] 0000008e distContextMa < login(realm,
user, password, auth_mech, . . .) Exit
[8/13/07 11:12:54:499 CDT] 0000008e WebAuthentica < basicAuthenticate
Exit
[8/13/07 11:12:54:499 CDT] 0000008e WebAuthentica < handleBasicAuth
Exit
[8/13/07 11:12:54:500 CDT] 0000008e WebCollaborat >
setPrivateAttributes Entry
AUTH_TYPE
BASIC
[8/13/07 11:12:54:500 CDT] 0000008e WebCollaborat <
setPrivateAttributes Exit
[8/13/07 11:12:54:500 CDT] 0000008e WebAuthentica 3 Successful
authentication
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes >
createCookiesStatic Entry
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 Propagation
enabled, adding new cookie.
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes >
getSingleSignonTokensFromSubject Entry
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes <
getSingleSignonTokensFromSubject Exit
[8/13/07 11:12:54:500 CDT] 0000008e LTPAToken2 3 Returning
existing encrypted bytes from token object.
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 Setting SSO
cookie with name: LtpaToken2 logout false, value:
gsw4006FLuMsQa1tm4XudKOEj6jVAZhvaHB3+d/QTBoRy9VdRYCX/alHY1zrmQbM+F/
HlEhJYUGmvFi7JRSlu1MVwzxoaBjUqoNsycEIDAXkLJnG7PneqcyDqurzIG1Tt6iPl2CzbNjlfm9DFqLViBN7qMIbJAILflQLT1ayD0hz76a9Uv
+5mC/AycvJnNoNeJO4v4ylaT/
et1cxhYcNJBrV5ztahc3gryU6sRK0ZwoSs3DFrhyPmvZargi0fyMyHhNIMQQTs5/
wfyiu5COrY1zBwdyCcrkgxpAwZKoTfFrXIDORXt4jGY44f0nEB1ET5pYHEoN6KRKh3gRr7XKmKnigxgNM4o862pvzMUv9sPG
+2axF
+CK1QImdT7gAyECZuvJkS3kYFFyEpIo87FexxOJ9rJ4TS20bH0LqDUDKA90gdTf4ykfiK4aG9haDJp
+eVV/rcCJD
+N8J4cB5AJcXQoibJdiSmAyEfru5YeSKotrRu2EFr9BQZdM81bZJU2SSlBRnwUJwVTYvnzrr3hFOqnvzLQkQJaqyc0+pgmbE54WuiNMnKuCjjPhrbuZjSyTV
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes > getSSODomain
Entry
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 SSO Domain
List: .ibm.com
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 SSO Domain will
be set to an empty string if a parent domain is not found in the list
above.
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 URL:
http://rcwps.ibm.com:9080/Test/index.jsp
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 Request host:
rcwps.ibm.com
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 Domain match
found: '.ibm.com'
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 SSO Domain is:
'.ibm.com'
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes < getSSODomain Exit
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes > getSSODomain
Entry
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 SSO Domain
List: .ibm.com
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 SSO Domain will
be set to an empty string if a parent domain is not found in the list
above.
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 URL:
http://rcwps.ibm.com:9080/Test/index.jsp
[8/13/07 11:12:54:500 CDT] 0000008e WebAttributes 3 Request host:
rcwps.ibm.com
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 Domain match
found: '.ibm.com'
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 SSO Domain is:
'.ibm.com'
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes < getSSODomain Exit
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 Adding old
cookie.
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 Getting interop
token from default SSO token previously found.
[8/13/07 11:12:54:501 CDT] 0000008e WSCredentialI >
getCredentialToken Entry
[8/13/07 11:12:54:501 CDT] 0000008e WSCredentialI <
getCredentialToken Exit
2e2701a9b7f93e29dbda78ab701d82f835c3684b7968ef332c9b5fc10e201aa3937f13d602c2bb19fc0534fa7b3a4ea7fb22819fe99b616829b40ddb6d29a58614d536a9584fdf4939dc096908bea27b9e94bebfb81bcf99493f17d620dbd2230affa865923d4afba748e4cedc7043ca0cf666ba3d2235d01391f6baaf45ae73211ae466edf06ee3935e63e3f062afa82df3bce352a2c081fe0a90701da90c339d8a4a8cd0dc74ea6962d31561b01ddedc0bcc5ae6a192acfc7139531f66af668d6106e3f8798f2a36cdba58960fb5530d1605b10f287531
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 Setting SSO
cookie with name: LtpaToken logout false, value: LicBqbf5Pinb2nircB2C
+DXDaEt5aO8zLJtfwQ4gGqOTfxPWAsK7GfwFNPp7Ok6n+yKBn
+mbYWgptA3bbSmlhhTVNqlYT99JOdwJaQi+onuelL6/uBvPmUk/F9Yg29IjCv
+oZZI9SvunSOTO3HBDygz2Zro9IjXQE5H2uq9FrnMhGuRm7fBu45NeY+PwYq
+oLfO841KiwIH
+CpBwHakMM52KSozQ3HTqaWLTFWGwHd7cC8xa5qGSrPxxOVMfZq9mjWEG4/h5jyo2zbpYlg
+1Uw0WBbEPKHUx
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes > getSSODomain
Entry
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 SSO Domain
List: .ibm.com
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 SSO Domain will
be set to an empty string if a parent domain is not found in the list
above.
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 URL:
http://rcwps.ibm.com:9080/Test/index.jsp
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 Request host:
rcwps.ibm.com
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 Domain match
found: '.ibm.com'
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 SSO Domain is:
'.ibm.com'
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes < getSSODomain Exit
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes > getSSODomain
Entry
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 SSO Domain
List: .ibm.com
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 SSO Domain will
be set to an empty string if a parent domain is not found in the list
above.
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 URL:
http://rcwps.ibm.com:9080/Test/index.jsp
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 Request host:
rcwps.ibm.com
[8/13/07 11:12:54:501 CDT] 0000008e WebAttributes 3 Domain match
found: '.ibm.com'
[8/13/07 11:12:54:502 CDT] 0000008e WebAttributes 3 SSO Domain is:
'.ibm.com'
[8/13/07 11:12:54:502 CDT] 0000008e WebAttributes < getSSODomain Exit
[8/13/07 11:12:54:502 CDT] 0000008e WebAttributes <
createCookiesStatic: returning 2 cookie(s) to add to response. Exit
[8/13/07 11:12:54:502 CDT] 0000008e WebAuthentica < authenticate Exit
[8/13/07 11:12:54:502 CDT] 0000008e WSCredentialI > getSecurityName
Entry
[8/13/07 11:12:54:502 CDT] 0000008e WSCredentialI < getSecurityName
Exit
de1dave
[8/13/07 11:12:54:502 CDT] 0000008e SASRas 3
[CurrentImpl.set_caller_subject], [ServerID: server1]
Setting caller subject: Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:12:54:502 CDT] 0000008e StateofCurrOb 3
setCallerSubject() principal "customRealm/de1dave"
[8/13/07 11:12:54:502 CDT] 0000008e SubjectHelper >
updatePropagationTokenWithSubjectChange Entry
[8/13/07 11:12:54:502 CDT] 0000008e WSCredentialI > isUnauthenticated
Entry
[8/13/07 11:12:54:502 CDT] 0000008e WSCredentialI < isUnauthenticated
Exit
false
[8/13/07 11:12:54:502 CDT] 0000008e WSCredentialT >
createPropagationTokenFromWSCredential Entry
[8/13/07 11:12:54:502 CDT] 0000008e WSCredentialI >
getRealmSecurityName Entry
[8/13/07 11:12:54:502 CDT] 0000008e WSCredentialI <
getRealmSecurityName Exit
customRealm/de1dave
[8/13/07 11:12:54:502 CDT] 0000008e WSCredentialT 3 Creating
propagation token using factory
com.ibm.ws.security.ltpa.AuthzPropTokenFactory for caller:
rcwpsNode01Cell:MyNode01:server1:customRealm/de1dave, host:
rcwpsNode01Cell:MyNode01:server1
[8/13/07 11:12:54:502 CDT] 0000008e WSCredentialI > getAccessId Entry
[8/13/07 11:12:54:502 CDT] 0000008e WSCredentialI < getAccessId Exit
user:customRealm/131
[8/13/07 11:12:54:502 CDT] 0000008e LTPAServerObj > createLTPAToken
Entry
user:customRealm/131
com.ibm.ws.security.ltpa.AuthzPropTokenFactory
[8/13/07 11:12:54:502 CDT] 0000008e LTPAServerObj > findFactory Entry
com.ibm.ws.security.ltpa.AuthzPropTokenFactory
[8/13/07 11:12:54:502 CDT] 0000008e LTPAServerObj < findFactory Exit
com.ibm.ws.security.ltpa.AuthzPropTokenFactory@7e4b45db
[8/13/07 11:12:54:502 CDT] 0000008e AuthzPropToke > AuthzPropToken
from accessID Entry
[8/13/07 11:12:54:502 CDT] 0000008e AuthzPropToke 3 Expiration set
to: Mon Aug 13 13:12:54 CDT 2007
[8/13/07 11:12:54:503 CDT] 0000008e AuthzPropToke < AuthzPropToken
from accessID Exit
[8/13/07 11:12:54:503 CDT] 0000008e LTPAServerObj < createLTPAToken
Exit
<malformed parameter>
[8/13/07 11:12:54:503 CDT] 0000008e WSCredentialT <
createPropagationTokenFromWSCredential Exit
[8/13/07 11:12:54:503 CDT] 0000008e SubjectHelper <
updatePropagationTokenWithSubjectChange, new Exit
[8/13/07 11:12:54:503 CDT] 0000008e WebCollaborat >
checkAuthorization Entry
[8/13/07 11:12:54:503 CDT] 0000008e WSAccessManag > isGrantedAnyRole
Entry
com.ibm.ws.security.web.WebAccessContext@e43c5fd
[Lcom.ibm.etools.j2ee.common.SecurityRole;@12e905d9
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:12:54:503 CDT] 0000008e WSAccessManag > isGrantedAnyRole
Entry
com.ibm.ejs.models.base.bindings.applicationbnd.impl.AuthorizationTableImpl@2f1785de
[Lcom.ibm.etools.j2ee.common.SecurityRole;@12e905d9
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:12:54:503 CDT] 0000008e WSAccessManag >
getAuthenticatedSubject Entry
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:12:54:503 CDT] 0000008e WSCredentialI > isUnauthenticated
Entry
[8/13/07 11:12:54:503 CDT] 0000008e WSCredentialI < isUnauthenticated
Exit
false
[8/13/07 11:12:54:503 CDT] 0000008e WSCredentialI > isBasicAuth Entry
[8/13/07 11:12:54:503 CDT] 0000008e WSCredentialI < isBasicAuth Exit
false
[8/13/07 11:12:54:503 CDT] 0000008e WSAccessManag <
getAuthenticatedSubject Exit
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:12:54:503 CDT] 0000008e WSAccessManag >
isSpecialSubjectGrantedAnyRole Entry
com.ibm.ejs.models.base.bindings.applicationbnd.impl.AuthorizationTableImpl@2f1785de
[Lcom.ibm.etools.j2ee.common.SecurityRole;@12e905d9
com.ibm.ejs.models.base.bindings.applicationbnd.impl.AllAuthenticatedUsersImpl@9abaee7a
(name: AllAuthenticatedUsers, accessId: AllAuthenticatedUsers)
[8/13/07 11:12:54:503 CDT] 0000008e WSAccessManag <
isSpecialSubjectGrantedAnyRole Exit
true
[8/13/07 11:12:54:503 CDT] 0000008e WSAccessManag < isGrantedAnyRole
Exit
true
[8/13/07 11:12:54:503 CDT] 0000008e WSAccessManag < isGrantedAnyRole
Exit
true
[8/13/07 11:12:54:503 CDT] 0000008e WebCollaborat <
checkAuthorization Exit
[8/13/07 11:12:54:504 CDT] 0000008e WebCollaborat 3 Authorization
check for uri: /index.jsp succeeded.
[8/13/07 11:12:54:504 CDT] 0000008e WebCollaborat < createReply Exit
com.ibm.ws.security.web.PermitReply@506cc582
[8/13/07 11:12:54:504 CDT] 0000008e WebCollaborat < authorize Exit
com.ibm.ws.security.web.PermitReply@506cc582
[8/13/07 11:12:54:504 CDT] 0000008e SASRas 3
[CurrentImpl.get_caller_subject], [ServerID: server1]
Getting caller subject: Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:12:54:504 CDT] 0000008e EJSWebCollabo > delegate Entry
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
default_host:Test
/index.jsp
TestOnWPS
[8/13/07 11:12:54:504 CDT] 0000008e WebAppCache >
getWebAccessContext Entry
TestOnWPS
default_host:Test
[8/13/07 11:12:54:504 CDT] 0000008e WebAppCache 3 Okay, I found
the entry for [TestOnWPS:default_host:Test]
[8/13/07 11:12:54:504 CDT] 0000008e WebAppCache <
getWebAccessContext Exit
[8/13/07 11:12:54:504 CDT] 0000008e WebAccessCont > WebAccessContext
Entry
[8/13/07 11:12:54:504 CDT] 0000008e WebAccessCont < WebAccessContext
Exit
[8/13/07 11:12:54:504 CDT] 0000008e MethodDelegat > delegate /
index.jsp Entry
[8/13/07 11:12:54:504 CDT] 0000008e MethodDelegat 3 Servlet not
Specified in DD for servlet/index.jsp
[8/13/07 11:12:54:504 CDT] 0000008e MethodDelegat < delegate Exit
[8/13/07 11:12:54:504 CDT] 0000008e EJSWebCollabo < delegate Exit
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:12:54:504 CDT] 0000008e SASRas 3
[CurrentImpl.set_invocation_subject], [ServerID: server1]
Setting caller subject: Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:12:54:504 CDT] 0000008e StateofCurrOb 3
setInvocationSubject() principal "customRealm/de1dave"
[8/13/07 11:12:54:504 CDT] 0000008e EJSWebCollabo < preInvoke Exit
com.ibm.ws.security.web.WebSecurityContext@7bdcc5fd
[8/13/07 11:12:54:505 CDT] 0000008e WSCredentialI > isCurrent Entry
[8/13/07 11:12:54:505 CDT] 0000008e WSCredentialI < isCurrent Exit
true
[8/13/07 11:12:54:505 CDT] 0000008e WSCredentialI >
getRealmSecurityName Entry
[8/13/07 11:12:54:505 CDT] 0000008e WSCredentialI <
getRealmSecurityName Exit
customRealm/de1dave
[8/13/07 11:12:54:505 CDT] 0000008e SASRas 3
[CurrentImpl.get_ws_received_credentials], [ServerID: server1]
Getting WS received credential: customRealm/de1dave
[8/13/07 11:12:54:505 CDT] 0000008e WSCredentialI > isUnauthenticated
Entry
[8/13/07 11:12:54:505 CDT] 0000008e WSCredentialI < isUnauthenticated
Exit
false
[8/13/07 11:12:54:505 CDT] 0000008e WSCredentialI >
getRealmSecurityName Entry
[8/13/07 11:12:54:505 CDT] 0000008e WSCredentialI <
getRealmSecurityName Exit
customRealm/de1dave
[8/13/07 11:12:54:505 CDT] 0000008e EJSWebCollabo > postInvoke Entry
com.ibm.ws.security.web.WebSecurityContext@7bdcc5fd
[8/13/07 11:12:54:505 CDT] 0000008e EJSWebCollabo 3 Resetting
invoked: null and received: nullsubjects
[8/13/07 11:12:54:505 CDT] 0000008e SASRas 3
[CurrentImpl.set_invocation_subject], [ServerID: server1]
Setting invocation subject to NULL.
[8/13/07 11:12:54:505 CDT] 0000008e SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:12:54:506 CDT] 0000008e StateofCurrOb 3
setInvocationSubject() null subject
[8/13/07 11:12:54:506 CDT] 0000008e SASRas 3
[CurrentImpl.set_caller_subject], [ServerID: server1]
Setting caller subject to NULL.
[8/13/07 11:12:54:506 CDT] 0000008e SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:12:54:506 CDT] 0000008e StateofCurrOb 3
setCallerSubject() null subject
[8/13/07 11:12:54:506 CDT] 0000008e SubjectHelper >
updatePropagationTokenWithSubjectChange Entry
[8/13/07 11:12:54:506 CDT] 0000008e SubjectHelper <
updatePropagationTokenWithSubjectChange Exit
[8/13/07 11:12:54:506 CDT] 0000008e EJSWebCollabo < postInvoke Exit
[8/13/07 11:12:54:506 CDT] 0000008e EJSWebCollabo > postInvoke Entry
<null>
[8/13/07 11:12:54:506 CDT] 0000008e EJSWebCollabo < postInvoke Exit
[8/13/07 11:13:16:807 CDT] 00000095 EJSWebCollabo > preInvoke Entry
[8/13/07 11:13:16:807 CDT] 00000095 SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:13:16:807 CDT] 00000095 StateofCurrOb 3
setWSReceivedCreds() null subject
[8/13/07 11:13:16:807 CDT] 00000095 SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:13:16:807 CDT] 00000095 StateofCurrOb 3 setWSOwnCred()
null subject
[8/13/07 11:13:16:807 CDT] 00000095 SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:13:16:807 CDT] 00000095 StateofCurrOb 3
setWSInvocationCred() null subject
[8/13/07 11:13:16:807 CDT] 00000095 EJSWebCollabo < preInvoke Exit
<null>
[8/13/07 11:13:16:807 CDT] 00000095 EJSWebCollabo > preInvoke Entry
com.ibm.ws.webcontainer.srt.SRTServletRequest@55cb45d7
com.ibm.ws.webcontainer.srt.SRTServletResponse@552305d7
Test
default_host
<null>
true
[8/13/07 11:13:16:808 CDT] 00000095 EJSWebCollabo 3 Http Header
names and values:
Accept=[*/*]
Referer=[http://rcwps.ibm.com:9080/Test/index.jsp]
Accept-Language=[en-us]
Accept-Encoding=[gzip, deflate]
If-Modified-Since=[Sat, 11 Aug 2007 17:35:36 GMT]
User-Agent=[Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)]
Host=[rcwps.ibm.com:9080]
Connection=[Keep-Alive]
Cookie=[LtpaToken2=gsw4006FLuMsQa1tm4XudKOEj6jVAZhvaHB3+d/
QTBoRy9VdRYCX/alHY1zrmQbM+F/
HlEhJYUGmvFi7JRSlu1MVwzxoaBjUqoNsycEIDAXkLJnG7PneqcyDqurzIG1Tt6iPl2CzbNjlfm9DFqLViBN7qMIbJAILflQLT1ayD0hz76a9Uv
+5mC/AycvJnNoNeJO4v4ylaT/
et1cxhYcNJBrV5ztahc3gryU6sRK0ZwoSs3DFrhyPmvZargi0fyMyHhNIMQQTs5/
wfyiu5COrY1zBwdyCcrkgxpAwZKoTfFrXIDORXt4jGY44f0nEB1ET5pYHEoN6KRKh3gRr7XKmKnigxgNM4o862pvzMUv9sPG
+2axF
+CK1QImdT7gAyECZuvJkS3kYFFyEpIo87FexxOJ9rJ4TS20bH0LqDUDKA90gdTf4ykfiK4aG9haDJp
+eVV/rcCJD
+N8J4cB5AJcXQoibJdiSmAyEfru5YeSKotrRu2EFr9BQZdM81bZJU2SSlBRnwUJwVTYvnzrr3hFOqnvzLQkQJaqyc0+pgmbE54WuiNMnKuCjjPhrbuZjSyTV;
LtpaToken=LicBqbf5Pinb2nircB2C
+DXDaEt5aO8zLJtfwQ4gGqOTfxPWAsK7GfwFNPp7Ok6n+yKBn
+mbYWgptA3bbSmlhhTVNqlYT99JOdwJaQi+onuelL6/uBvPmUk/F9Yg29IjCv
+oZZI9SvunSOTO3HBDygz2Zro9IjXQE5H2uq9FrnMhGuRm7fBu45NeY+PwYq
+oLfO841KiwIH
+CpBwHakMM52KSozQ3HTqaWLTFWGwHd7cC8xa5qGSrPxxOVMfZq9mjWEG4/h5jyo2zbpYlg
+1Uw0WBbEPKHUx; JSESSIONID=0000v5u_l7p6rM9_gENAGFlhYkD:-1]
Authorization=[Basic ZGUxZGF2ZTpwYXNzd29yZA==]
[8/13/07 11:13:16:808 CDT] 00000095 EJSWebCollabo 3 Request Context
Path=/Test, Servlet Path=, Path Info=/theme/Master.css
[8/13/07 11:13:16:808 CDT] 00000095 StateofCurrOb 3 secConfig has
been initialized.
[8/13/07 11:13:16:808 CDT] 00000095 SASRas 3
[CurrentImpl.get_invocation_subject], [ServerID: server1]
Invocation subject is null.
[8/13/07 11:13:16:808 CDT] 00000095 WebSecurityCo > <init> Entry
<null>
<null>
<null>
[8/13/07 11:13:16:808 CDT] 00000095 WebSecurityCo < <init> Exit
com.ibm.ws.security.web.WebSecurityContext@4d81c583
[8/13/07 11:13:16:808 CDT] 00000095 WebCollaborat >
SetUnauthenticatedSubjectIfNeeded Entry
[8/13/07 11:13:16:808 CDT] 00000095 WebCollaborat 3 Invoked and
received Subject are null, setting it anonymous/unauthenticated.
[8/13/07 11:13:16:808 CDT] 00000095 SASRas 3
[CurrentImpl.set_invocation_subject], [ServerID: server1]
Setting caller subject: Subject:
Principal: /UNAUTHENTICATED
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@3fef45db[com.ibm.ws.security.auth.distWSCredentialImpl@31e445db]
[8/13/07 11:13:16:808 CDT] 00000095 StateofCurrOb 3
setInvocationSubject() principal "/UNAUTHENTICATED"
[8/13/07 11:13:16:808 CDT] 00000095 WebCollaborat <
SetUnauthenticatedSubjectIfNeeded:true Exit
[8/13/07 11:13:16:808 CDT] 00000095 SASRas 3
[CurrentImpl.get_invocation_subject], [ServerID: server1]
Getting invocation subject: Subject:
Principal: /UNAUTHENTICATED
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@3fef45db[com.ibm.ws.security.auth.distWSCredentialImpl@31e445db]
[8/13/07 11:13:16:808 CDT] 00000095 EJSWebCollabo 3
WebComponentMetaData
MetaDataImpl@1948665300
[8/13/07 11:13:16:808 CDT] 00000095 WebCollaborat > authorize Entry
com.ibm.ws.webcontainer.srt.SRTServletRequest@55cb45d7
com.ibm.ws.webcontainer.srt.SRTServletResponse@552305d7
default_host:Test
true
TestOnWPS
[8/13/07 11:13:16:808 CDT] 00000095 WebCollaborat 3 URI requested: /
theme/Master.css
[8/13/07 11:13:16:808 CDT] 00000095 WebCollaborat 3 uriName
returned: /theme/Master.css
[8/13/07 11:13:16:808 CDT] 00000095 WebAppCache >
getWebAccessContext Entry
TestOnWPS
default_host:Test
[8/13/07 11:13:16:808 CDT] 00000095 WebAppCache 3 Okay, I found
the entry for [TestOnWPS:default_host:Test]
[8/13/07 11:13:16:808 CDT] 00000095 WebAppCache <
getWebAccessContext Exit
[8/13/07 11:13:16:808 CDT] 00000095 WebAccessCont > WebAccessContext
Entry
[8/13/07 11:13:16:808 CDT] 00000095 WebAccessCont < WebAccessContext
Exit
[8/13/07 11:13:16:808 CDT] 00000095 WebConstraint > getConstraints:
Entry
/theme/Master.css
GET
[8/13/07 11:13:16:808 CDT] 00000095 WebConstraint 3
webConstraintsTable.length = 1
[8/13/07 11:13:16:809 CDT] 00000095 WebConstraint 3
webConstraintsTable.length = 1
[8/13/07 11:13:16:809 CDT] 00000095 WebResourceCo > matches Entry
/theme/Master.css
GET
[8/13/07 11:13:16:809 CDT] 00000095 WebResourceCo 3 Checking URL: *
[8/13/07 11:13:16:809 CDT] 00000095 WebResourceCo 3 Checking URL: /*
[8/13/07 11:13:16:809 CDT] 00000095 WebResourceCo < matches Exit
[8/13/07 11:13:16:809 CDT] 00000095 WebResourceCo > getMatchType
Entry
/*
[8/13/07 11:13:16:809 CDT] 00000095 WebResourceCo 3 URI Match type =
PATHNAME
[8/13/07 11:13:16:809 CDT] 00000095 WebResourceCo < getMatchType Exit
[8/13/07 11:13:16:809 CDT] 00000095 WebConstraint < getConstraints
not null Exit
[8/13/07 11:13:16:809 CDT] 00000095 WebAppCache >
getWebAccessContext Entry
TestOnWPS
default_host:Test
[8/13/07 11:13:16:809 CDT] 00000095 WebAppCache 3 Okay, I found
the entry for [TestOnWPS:default_host:Test]
[8/13/07 11:13:16:809 CDT] 00000095 WebAppCache <
getWebAccessContext Exit
[8/13/07 11:13:16:809 CDT] 00000095 WebAccessCont > WebAccessContext
Entry
[8/13/07 11:13:16:809 CDT] 00000095 WebAccessCont < WebAccessContext
Exit
[8/13/07 11:13:16:809 CDT] 00000095 WebCollaborat > checkConstraints
Entry
[8/13/07 11:13:16:809 CDT] 00000095 WebCollaborat > isSSLRequired
Entry
[8/13/07 11:13:16:809 CDT] 00000095 LRUCache > get Entry
com.ibm.ws.security.web.WebAccessPermission@8a71c8ea
[8/13/07 11:13:16:809 CDT] 00000095 LRUCache < get Exit
[8/13/07 11:13:16:809 CDT] 00000095 WebCollaborat < checkConstraints
Exit
<null>
[8/13/07 11:13:16:809 CDT] 00000095 LRUCache > get Entry
com.ibm.ws.security.web.WebAccessPermission@8a71c8ea
[8/13/07 11:13:16:809 CDT] 00000095 LRUCache < get Exit
[8/13/07 11:13:16:809 CDT] 00000095 WSAccessManag > isEveryoneGranted
Entry
com.ibm.ws.security.web.WebAccessContext@7ae8c583
[Lcom.ibm.etools.j2ee.common.SecurityRole;@6de4c5e5
[8/13/07 11:13:16:809 CDT] 00000095 WSAccessManag >
isSpecialSubjectGrantedAnyRole Entry
com.ibm.ejs.models.base.bindings.applicationbnd.impl.AuthorizationTableImpl@2f1785de
[Lcom.ibm.etools.j2ee.common.SecurityRole;@6de4c5e5
com.ibm.ejs.models.base.bindings.applicationbnd.impl.EveryoneImpl@14a9058b
(name: Everyone, accessId: Everyone)
[8/13/07 11:13:16:809 CDT] 00000095 WSAccessManag <
isSpecialSubjectGrantedAnyRole Exit
false
[8/13/07 11:13:16:810 CDT] 00000095 WSAccessManag < isEveryoneGranted
Exit
false
[8/13/07 11:13:16:810 CDT] 00000095 WebCollaborat 3 URI - /theme/
Master.css.GET is protected
[8/13/07 11:13:16:810 CDT] 00000095 WebCollaborat 3 Saving previous
subject null
[8/13/07 11:13:16:810 CDT] 00000095 WebAuthentica > authenticate
Entry
[8/13/07 11:13:16:810 CDT] 00000095 WebAuthentica > handleSSO Entry
[8/13/07 11:13:16:810 CDT] 00000095 WebAuthentica 3 Attempting
primary cookie validation for: LtpaToken2
[8/13/07 11:13:16:810 CDT] 00000095 WebAuthentica > getCookieValues
Entry
LtpaToken2
[8/13/07 11:13:16:810 CDT] 00000095 WebAuthentica 3
gsw4006FLuMsQa1tm4XudKOEj6jVAZhvaHB3+d/QTBoRy9VdRYCX/alHY1zrmQbM+F/
HlEhJYUGmvFi7JRSlu1MVwzxoaBjUqoNsycEIDAXkLJnG7PneqcyDqurzIG1Tt6iPl2CzbNjlfm9DFqLViBN7qMIbJAILflQLT1ayD0hz76a9Uv
+5mC/AycvJnNoNeJO4v4ylaT/
et1cxhYcNJBrV5ztahc3gryU6sRK0ZwoSs3DFrhyPmvZargi0fyMyHhNIMQQTs5/
wfyiu5COrY1zBwdyCcrkgxpAwZKoTfFrXIDORXt4jGY44f0nEB1ET5pYHEoN6KRKh3gRr7XKmKnigxgNM4o862pvzMUv9sPG
+2axF
+CK1QImdT7gAyECZuvJkS3kYFFyEpIo87FexxOJ9rJ4TS20bH0LqDUDKA90gdTf4ykfiK4aG9haDJp
+eVV/rcCJD
+N8J4cB5AJcXQoibJdiSmAyEfru5YeSKotrRu2EFr9BQZdM81bZJU2SSlBRnwUJwVTYvnzrr3hFOqnvzLQkQJaqyc0+pgmbE54WuiNMnKuCjjPhrbuZjSyTV
[8/13/07 11:13:16:810 CDT] 00000095 WebAuthentica < getCookieValues
Exit
[8/13/07 11:13:16:810 CDT] 00000095 WebAuthentica > validate Entry
[8/13/07 11:13:16:810 CDT] 00000095 distContextMa > login(realm,
token, auth_mech, . . ., null_subject) Entry
[8/13/07 11:13:16:810 CDT] 00000095 distContextMa > login(realm,
token, auth_mech, . . .) -> (customRealm, token,
system.WEB_INBOUND, . . .) Entry
[8/13/07 11:13:16:810 CDT] 00000095 distContextMa 3 Web inbound
login config: system.WEB_INBOUND
[8/13/07 11:13:16:810 CDT] 00000095 distContextMa 3 Looking for
opaque token on the thread before Subject cache lookup.
[8/13/07 11:13:16:810 CDT] 00000095 distContextMa >
getSubjectFromTokenHolderCacheKey Entry
[8/13/07 11:13:16:810 CDT] 00000095 distContextMa <
getSubjectFromTokenHolderCacheKey Exit
[8/13/07 11:13:16:810 CDT] 00000095 distContextMa 3 Looking for
subject from cache using token as lookup.
[8/13/07 11:13:16:810 CDT] 00000095 AuthCache > getSubject Entry
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...
[8/13/07 11:13:16:810 CDT] 00000095 AuthCache > getSubject Entry
com.ibm.ws.security.util.ByteArray@96287735
[8/13/07 11:13:16:810 CDT] 00000095 Cache > get Entry
com.ibm.ws.security.util.ByteArray@96287735
[8/13/07 11:13:16:811 CDT] 00000095 Cache < get Exit
com.ibm.ws.security.auth.CacheObject@13af45f4
[8/13/07 11:13:16:811 CDT] 00000095 AuthCache < getSubject Exit
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:13:16:811 CDT] 00000095 AuthCache < getSubject Exit
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:13:16:811 CDT] 00000095 WSCredentialI > isDestroyed Entry
[8/13/07 11:13:16:811 CDT] 00000095 WSCredentialI < isDestroyed Exit
false
[8/13/07 11:13:16:811 CDT] 00000095 WSCredentialT >
checkCushionValidityOfAllTokens Entry
[8/13/07 11:13:16:811 CDT] 00000095 WSCredentialI > getExpiration
Entry
[8/13/07 11:13:16:811 CDT] 00000095 WSCredentialI < getExpiration
Exit
1187028614231
[8/13/07 11:13:16:811 CDT] 00000095 WSCredentialT 3 Total number of
Subject tokens to check: 3
[8/13/07 11:13:16:811 CDT] 00000095 WSCredentialT 3 Time remaining
is 7017 seconds, for token:
com.ibm.ws.security.token.SingleSignonTokenImpl
[8/13/07 11:13:16:811 CDT] 00000095 WSCredentialT 3 Time remaining
is 7017 seconds, for token:
com.ibm.ws.security.token.AuthorizationTokenImpl
[8/13/07 11:13:16:811 CDT] 00000095 WSCredentialT 3 Time remaining
is 7017 seconds, for token:
com.ibm.ws.security.token.AuthenticationTokenImpl
[8/13/07 11:13:16:811 CDT] 00000095 WSCredentialT <
checkCushionValidityOfAllTokens Exit
[8/13/07 11:13:16:811 CDT] 00000095 distContextMa 3 login(realm,
token, . . .): is subject valid? true
[8/13/07 11:13:16:811 CDT] 00000095 distContextMa < login(realm,
token, auth_mech, . . .) Exit
[8/13/07 11:13:16:811 CDT] 00000095 WebAuthentica < validate Exit
[8/13/07 11:13:16:811 CDT] 00000095 WebAuthentica 3 The LTPA token
was valid.
[8/13/07 11:13:16:811 CDT] 00000095 WebAuthentica < handleSSO Exit
successful ltpa token validation of
gsw4006FLuMsQa1tm4XudKOEj6jVAZhvaHB3+d/QTBoRy9VdRYCX/alHY1zrmQbM+F/
HlEhJYUGmvFi7JRSlu1MVwzxoaBjUqoNsycEIDAXkLJnG7PneqcyDqurzIG1Tt6iPl2CzbNjlfm9DFqLViBN7qMIbJAILflQLT1ayD0hz76a9Uv
+5mC/AycvJnNoNeJO4v4ylaT/
et1cxhYcNJBrV5ztahc3gryU6sRK0ZwoSs3DFrhyPmvZargi0fyMyHhNIMQQTs5/
wfyiu5COrY1zBwdyCcrkgxpAwZKoTfFrXIDORXt4jGY44f0nEB1ET5pYHEoN6KRKh3gRr7XKmKnigxgNM4o862pvzMUv9sPG
+2axF
+CK1QImdT7gAyECZuvJkS3kYFFyEpIo87FexxOJ9rJ4TS20bH0LqDUDKA90gdTf4ykfiK4aG9haDJp
+eVV/rcCJD
+N8J4cB5AJcXQoibJdiSmAyEfru5YeSKotrRu2EFr9BQZdM81bZJU2SSlBRnwUJwVTYvnzrr3hFOqnvzLQkQJaqyc0+pgmbE54WuiNMnKuCjjPhrbuZjSyTV
[8/13/07 11:13:16:811 CDT] 00000095 WebCollaborat >
setPrivateAttributes Entry
AUTH_TYPE
BASIC
[8/13/07 11:13:16:811 CDT] 00000095 WebCollaborat <
setPrivateAttributes Exit
[8/13/07 11:13:16:811 CDT] 00000095 WebAuthentica < handleSSO: found
cookie Exit
[8/13/07 11:13:16:812 CDT] 00000095 WebAuthentica > restorePostParams
Entry
[8/13/07 11:13:16:812 CDT] 00000095 WebAuthentica 3 method : GET
URL:/Test/theme/Master.css
[8/13/07 11:13:16:812 CDT] 00000095 WebAuthentica < restorePostParams
Exit
[8/13/07 11:13:16:812 CDT] 00000095 WebAuthentica < authenticate Exit
[8/13/07 11:13:16:812 CDT] 00000095 WSCredentialI > getSecurityName
Entry
[8/13/07 11:13:16:812 CDT] 00000095 WSCredentialI < getSecurityName
Exit
de1dave
[8/13/07 11:13:16:812 CDT] 00000095 SASRas 3
[CurrentImpl.set_caller_subject], [ServerID: server1]
Setting caller subject: Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:13:16:812 CDT] 00000095 StateofCurrOb 3
setCallerSubject() principal "customRealm/de1dave"
[8/13/07 11:13:16:812 CDT] 00000095 SubjectHelper >
updatePropagationTokenWithSubjectChange Entry
[8/13/07 11:13:16:812 CDT] 00000095 WSCredentialI > isUnauthenticated
Entry
[8/13/07 11:13:16:812 CDT] 00000095 WSCredentialI < isUnauthenticated
Exit
false
[8/13/07 11:13:16:812 CDT] 00000095 WSCredentialT >
createPropagationTokenFromWSCredential Entry
[8/13/07 11:13:16:812 CDT] 00000095 WSCredentialI >
getRealmSecurityName Entry
[8/13/07 11:13:16:812 CDT] 00000095 WSCredentialI <
getRealmSecurityName Exit
customRealm/de1dave
[8/13/07 11:13:16:812 CDT] 00000095 WSCredentialT 3 Creating
propagation token using factory
com.ibm.ws.security.ltpa.AuthzPropTokenFactory for caller:
rcwpsNode01Cell:MyNode01:server1:customRealm/de1dave, host:
rcwpsNode01Cell:MyNode01:server1
[8/13/07 11:13:16:812 CDT] 00000095 WSCredentialI > getAccessId Entry
[8/13/07 11:13:16:812 CDT] 00000095 WSCredentialI < getAccessId Exit
user:customRealm/131
[8/13/07 11:13:16:812 CDT] 00000095 LTPAServerObj > createLTPAToken
Entry
user:customRealm/131
com.ibm.ws.security.ltpa.AuthzPropTokenFactory
[8/13/07 11:13:16:812 CDT] 00000095 LTPAServerObj > findFactory Entry
com.ibm.ws.security.ltpa.AuthzPropTokenFactory
[8/13/07 11:13:16:812 CDT] 00000095 LTPAServerObj < findFactory Exit
com.ibm.ws.security.ltpa.AuthzPropTokenFactory@7e4b45db
[8/13/07 11:13:16:812 CDT] 00000095 AuthzPropToke > AuthzPropToken
from accessID Entry
[8/13/07 11:13:16:812 CDT] 00000095 AuthzPropToke 3 Expiration set
to: Mon Aug 13 13:13:16 CDT 2007
[8/13/07 11:13:16:813 CDT] 00000095 AuthzPropToke < AuthzPropToken
from accessID Exit
[8/13/07 11:13:16:813 CDT] 00000095 LTPAServerObj < createLTPAToken
Exit
<malformed parameter>
[8/13/07 11:13:16:813 CDT] 00000095 WSCredentialT <
createPropagationTokenFromWSCredential Exit
[8/13/07 11:13:16:813 CDT] 00000095 SubjectHelper <
updatePropagationTokenWithSubjectChange, new Exit
[8/13/07 11:13:16:813 CDT] 00000095 WebCollaborat >
checkAuthorization Entry
[8/13/07 11:13:16:813 CDT] 00000095 WSAccessManag > isGrantedAnyRole
Entry
com.ibm.ws.security.web.WebAccessContext@7ae8c583
[Lcom.ibm.etools.j2ee.common.SecurityRole;@6de4c5e5
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:13:16:813 CDT] 00000095 WSAccessManag > isGrantedAnyRole
Entry
com.ibm.ejs.models.base.bindings.applicationbnd.impl.AuthorizationTableImpl@2f1785de
[Lcom.ibm.etools.j2ee.common.SecurityRole;@6de4c5e5
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:13:16:813 CDT] 00000095 WSAccessManag >
getAuthenticatedSubject Entry
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:13:16:813 CDT] 00000095 WSCredentialI > isUnauthenticated
Entry
[8/13/07 11:13:16:813 CDT] 00000095 WSCredentialI < isUnauthenticated
Exit
false
[8/13/07 11:13:16:813 CDT] 00000095 WSCredentialI > isBasicAuth Entry
[8/13/07 11:13:16:813 CDT] 00000095 WSCredentialI < isBasicAuth Exit
false
[8/13/07 11:13:16:813 CDT] 00000095 WSAccessManag <
getAuthenticatedSubject Exit
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:13:16:813 CDT] 00000095 WSAccessManag >
isSpecialSubjectGrantedAnyRole Entry
com.ibm.ejs.models.base.bindings.applicationbnd.impl.AuthorizationTableImpl@2f1785de
[Lcom.ibm.etools.j2ee.common.SecurityRole;@6de4c5e5
com.ibm.ejs.models.base.bindings.applicationbnd.impl.AllAuthenticatedUsersImpl@9abaee7a
(name: AllAuthenticatedUsers, accessId: AllAuthenticatedUsers)
[8/13/07 11:13:16:813 CDT] 00000095 WSAccessManag <
isSpecialSubjectGrantedAnyRole Exit
true
[8/13/07 11:13:16:813 CDT] 00000095 WSAccessManag < isGrantedAnyRole
Exit
true
[8/13/07 11:13:16:813 CDT] 00000095 WSAccessManag < isGrantedAnyRole
Exit
true
[8/13/07 11:13:16:813 CDT] 00000095 WebCollaborat <
checkAuthorization Exit
[8/13/07 11:13:16:814 CDT] 00000095 WebCollaborat 3 Authorization
check for uri: /theme/Master.css succeeded.
[8/13/07 11:13:16:814 CDT] 00000095 WebCollaborat < createReply Exit
com.ibm.ws.security.web.PermitReply@57464583
[8/13/07 11:13:16:814 CDT] 00000095 WebCollaborat < authorize Exit
com.ibm.ws.security.web.PermitReply@57464583
[8/13/07 11:13:16:814 CDT] 00000095 SASRas 3
[CurrentImpl.get_caller_subject], [ServerID: server1]
Getting caller subject: Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:13:16:814 CDT] 00000095 EJSWebCollabo > delegate Entry
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
default_host:Test
<null>
TestOnWPS
[8/13/07 11:13:16:814 CDT] 00000095 WebAppCache >
getWebAccessContext Entry
TestOnWPS
default_host:Test
[8/13/07 11:13:16:814 CDT] 00000095 WebAppCache 3 Okay, I found
the entry for [TestOnWPS:default_host:Test]
[8/13/07 11:13:16:814 CDT] 00000095 WebAppCache <
getWebAccessContext Exit
[8/13/07 11:13:16:814 CDT] 00000095 WebAccessCont > WebAccessContext
Entry
[8/13/07 11:13:16:814 CDT] 00000095 WebAccessCont < WebAccessContext
Exit
[8/13/07 11:13:16:814 CDT] 00000095 MethodDelegat > delegate null
Entry
[8/13/07 11:13:16:814 CDT] 00000095 MethodDelegat 3 Servlet not
Specified in DD for servletnull
[8/13/07 11:13:16:814 CDT] 00000095 MethodDelegat < delegate Exit
[8/13/07 11:13:16:814 CDT] 00000095 EJSWebCollabo < delegate Exit
Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:13:16:814 CDT] 00000095 SASRas 3
[CurrentImpl.set_invocation_subject], [ServerID: server1]
Setting caller subject: Subject:
Principal: customRealm/de1dave
Public Credential:
com.ibm.ws.security.auth.WSCredentialImpl@12c305f7[com.ibm.ws.security.auth.distWSCredentialImpl@b3b45f7]
Private Credential:
com.ibm.ws.security.token.SingleSignonTokenImpl@2a0fc5f7
Private Credential:
com.ibm.ws.security.token.AuthenticationTokenImpl@486805f7
Private Credential:
com.ibm.ws.security.token.AuthorizationTokenImpl@177cc5f7
[8/13/07 11:13:16:814 CDT] 00000095 StateofCurrOb 3
setInvocationSubject() principal "customRealm/de1dave"
[8/13/07 11:13:16:814 CDT] 00000095 EJSWebCollabo < preInvoke Exit
com.ibm.ws.security.web.WebSecurityContext@4d81c583
[8/13/07 11:13:16:815 CDT] 00000095 EJSWebCollabo > postInvoke Entry
com.ibm.ws.security.web.WebSecurityContext@4d81c583
[8/13/07 11:13:16:815 CDT] 00000095 EJSWebCollabo 3 Resetting
invoked: null and received: nullsubjects
[8/13/07 11:13:16:815 CDT] 00000095 SASRas 3
[CurrentImpl.set_invocation_subject], [ServerID: server1]
Setting invocation subject to NULL.
[8/13/07 11:13:16:815 CDT] 00000095 SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:13:16:815 CDT] 00000095 StateofCurrOb 3
setInvocationSubject() null subject
[8/13/07 11:13:16:815 CDT] 00000095 SASRas 3
[CurrentImpl.set_caller_subject], [ServerID: server1]
Setting caller subject to NULL.
[8/13/07 11:13:16:815 CDT] 00000095 SubjectHelper 3 Subject passed
in is null.
[8/13/07 11:13:16:815 CDT] 00000095 StateofCurrOb 3
setCallerSubject() null subject
[8/13/07 11:13:16:815 CDT] 00000095 SubjectHelper >
updatePropagationTokenWithSubjectChange Entry
[8/13/07 11:13:16:815 CDT] 00000095 SubjectHelper <
updatePropagationTokenWithSubjectChange Exit
[8/13/07 11:13:16:816 CDT] 00000095 EJSWebCollabo < postInvoke Exit
[8/13/07 11:13:16:816 CDT] 00000095 EJSWebCollabo > postInvoke Entry
<null>
[8/13/07 11:13:16:816 CDT] 00000095 EJSWebCollabo < postInvoke Exit
[8/13/07 11:14:16:420 CDT] 0000008a Cache > alarm Entry
<null>
[8/13/07 11:14:16:420 CDT] 0000008a Cache > evictStaleEntries
Entry
[8/13/07 11:14:16:420 CDT] 0000008a Cache < evictStaleEntries
Exit
[8/13/07 11:14:16:421 CDT] 0000008a Cache 3
com.ibm.ws.security.auth.AuthCache Time elapsed cleaning cache: 1
milliseconds, Primary cache size: 0, Secondary cache size: 6, Tertiary
cache size: 0
[8/13/07 11:14:16:421 CDT] 0000008a Cache < alarm Exit
[8/13/07 11:14:16:793 CDT] 00000010 SASRas 3
[SessionManager.clean_session_tables], [ServerID: server1]
*** BEGIN SESSION CLEANUP AT 2007-08-13 11:14:16.793 ***
[8/13/07 11:14:16:793 CDT] 00000010 SASRas 3
[SessionManager.clean_session_tables], [ServerID: server1]
Client connection table size: 0
[8/13/07 11:14:16:793 CDT] 00000010 SASRas 3
[SessionManager.clean_session_tables], [ServerID: server1]
Server connection table size: 0
[8/13/07 11:14:16:793 CDT] 00000010 SASRas 3
[SessionManager.clean_session_tables], [ServerID: server1]
*** END SESSION CLEANUP AT 2007-08-13 11:14:16.793 ***
[8/13/07 11:14:17:530 CDT] 0000008c SASRas 3
[CredentialsImpl.is_valid], [ServerID: server1]
Returning true: CREDENTIAL_EXPIRATION_INFINITE.
[8/13/07 11:14:17:530 CDT] 0000008c SASRas 3 [Vault.run],
[ServerID: server1]
Established creds list size: 1
Thanks,
Manglu