Uploaded image for project: 'OpenAM Agents'
  1. OpenAM Agents
  2. AMAGENTS-211

redirect location is not logged in case of access denied

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 4.0.0, 4.0.1
    • Fix Version/s: 5.0.0.0, 4.1.0
    • Component/s: None
    • Environment:
      Agent 4.0.1-7

      Description

      In case com.sun.identity.agents.config.access.denied.url is configured for the agent profile and OpenAM denies access to the requested resource, the agent does not log the redirect location.

      For the sake of troubleshooting it would be very helpful to get this info in the logs, especially if HTTP traces are not available at all.

      Currently the agents logs the following ...

      2016-10-10 11:20:39.375 -0400   DEBUG [0x7f255369d7e0:23505][source/process.c:1210] validate_policy(): trying cache entry for: SOME_URL
      2016-10-10 11:20:39.375 -0400   DEBUG [0x7f255369d7e0:23505][source/process.c:1227] validate_policy(): cached entry: SOME_URL, resource: SOME_URL/, status: exact match
      2016-10-10 11:20:39.375 -0400 WARNING [0x7f255369d7e0:23505] validate_policy(): decision: deny, reason: no action decisions found
      2016-10-10 11:20:39.375 -0400   DEBUG [0x7f255369d7e0:23505][source/process.c:1913] handle_exit(): (entry status: access denied)
      2016-10-10 11:20:39.376 -0400   DEBUG [0x7f255369d7e0:23505][source/apache/agent22.c:540] set_custom_response(): status: redirect (exit: redirect)
      2016-10-10 11:20:39.376 -0400   DEBUG [0x7f255369d7e0:23505][source/apache/agent22.c:846] amagent_auth_handler(): exit status: redirect (1)
      

        Attachments

          Activity

            People

            Assignee:
            mareks Mareks Malnacs
            Reporter:
            bthalmayr Bernhard Thalmayr
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: