Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-13565

agent 4 ft for ssl requires login.url set in profile when using with AM 6

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Won't Fix
    • Affects Version/s: 6.0.0.4
    • Fix Version/s: None
    • Component/s: XUI
    • Environment:
      Affects AM 6.0 up to 23rd Aug Snapshot

      Description

      Bug description

      Functional tests break after using AM6 (whose profiles don't have com.sun.identity.agents.config.login.url set by default)

      How to reproduce the issue

      Details steps outlining how to recreate the issue (remove this text)

      1. use sustaining-4x fts
      Expected behaviour
      works with ssl as normal
      
      Current behaviour
      403 seen instantly, 2018-08-21 03:05:06.436 +1000   ERROR [0x7fe007f1c8c0:40] handle_exit(): unable to find active OpenAM server URL in logs
      This happens for EVERY request.
      

      Work around

      add in AM Login URL, then normal behaviour occurs.

      Code analysis

      Essentially the agent creation is too simple for A4 to work, and needs to be different for this major version.

      existing fts use this

       curl --request PUT ${CURL_CERTS} -s \
      104       --header "iPlanetDirectoryPro: $ADMIN_TOKEN" \
      105       --header "Content-Type: application/json" \
      106       --header "Accept-API-Version: protocol=2.0,resource=1.0" \
      107       --data '{
      108         "userpassword":"password",
      109         "agentUrl":"https://agent.localtest.me:443",
      110         "serverUrl":"https://openam.localtest.me:8443/am"
      111        }' \
      112       "$AM_URL/json/realms/root/realm-config/agents/WebAgent/wpa-agent"
      

      we need this

      curl -X POST ${CURL_CERTS} -s \
      118         "$AM_URL/json/realms/root/agents/?_action=create" \
      119         -H 'accept-api-version: protocol=2.0, resource=1.0' \
      120         -H 'cache-control: no-cache' \
      121         -H 'content-type: application/json' \
      122         -H "iplanetdirectorypro: $ADMIN_TOKEN" \
      123         -d '{
      124           "username":"wpa-agent",
      125           "com.sun.identity.agents.config.fqdn.default":[
      126             "agent.localtest.me"
      127           ],
      128           "com.sun.identity.agents.config.repository.location":[
      129              "centralized"
      130           ],
      131           "agenttype":[
      132              "WebAgent"
      133           ],
      134           "serverurl":[
      135              "https://openam.localtest.me:8443/am"
      136           ],
      137           "agenturl":[
      138             "https://agent.localtest.me:443"
      139           ],
      140           "userpassword":[
      141              "password"
      142           ],
      143           "com.sun.identity.agents.config.login.url":[
      144             "[0]=https://openam.localtest.me:8443/am/XUI/?realm=/#login/"
      145           ],
      146           "com.sun.identity.agents.config.logout.url":[
      147             "[0]=https://openam.localtest.me:8443/am/XUI/?realm=/#logout/"
      148           ],
      149           "sunidentityserverdevicestatus":[
      150             "Active"
      151           ]
      152        }'
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                alex.levin@forgerock.com Alex Levin
              • Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 0h
                  0h
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 6h
                  6h