Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-13929

Authorise endpoint against agent profile is currently failing and impacting performance tests

    Details

    • Target Version/s:
    • Needs QA verification:
      No
    • Functional tests:
      No

      Description

      Bug description

      Its been seen that in the policy evaluation test using agent profile with ID token is failing for performance tests. The test fails to issue the idtoken for agent which is further used to evaluate policy.

      The last successful run was on 90189278ca4 and was first failures seen on 9005dc68ec3 .

      Request:
      Authorize: KO headerRegex((Location,http://picodon.internal.forgerock.com:8080/agentapp/sunwCDSSORedirectURI#scope=openid&id_token=(.*))).find.exists, found nothing
      =========================
      Session:
      Session(CacheHit,1,Map(gatling.http.cache.dns -> io.gatling.http.resolver.ShuffleJdkNameResolver@7b0262be, username -> user.50518, pepTokenId -> RidvI-d5jzSWpFrVoNie7QUAS9A.*AAJTSQACMDEAAlNLABw1VlpsVDQrVndSeWYzYzJNKzJKN3k5QjJTUGM9AAR0eXBlAANDVFMAAlMxAAA.*, resource -> Resource50518, resource_url -> http://picodon.internal.forgerock.com:8080/Resource50518.html, gatling.http.cookies -> CookieJar(Map(CookieKey(amlbcookie,internal.forgerock.com,/) -> StoredCookie(amlbcookie=01; domain=internal.forgerock.com; path=/,false,false,1541504411980), CookieKey(iplanetdirectorypro,internal.forgerock.com,/) -> StoredCookie(iPlanetDirectoryPro=kAUxqJhhC9IKPPEyzEK9cYBFBqs.*AAJTSQACMDEAAlNLABxWV1FLRDl1UU1sN0Q0M0J4MVNUNjAxUUN1V0E9AAR0eXBlAANDVFMAAlMxAAA.*; domain=internal.forgerock.com; path=/,false,false,1541504411980), CookieKey(iplanetdirectorypro,picodon.internal.forgerock.com,/) -> StoredCookie(iPlanetDirectoryPro=kAUxqJhhC9IKPPEyzEK9cYBFBqs.*AAJTSQACMDEAAlNLABxWV1FLRDl1UU1sN0Q0M0J4MVNUNjAxUUN1V0E9AAR0eXBlAANDVFMAAlMxAAA.*,true,false,1541504411981))), userTokenId -> kAUxqJhhC9IKPPEyzEK9cYBFBqs.*AAJTSQACMDEAAlNLABxWV1FLRDl1UU1sN0Q0M0J4MVNUNjAxUUN1V0E9AAR0eXBlAANDVFMAAlMxAAA.*, password -> password),1541504411789,95,KO,List(),io.gatling.core.protocol.ProtocolComponentsRegistry$$Lambda$494/816804727@6657d300)
      =========================
      HTTP request:
      POST http://picodon.internal.forgerock.com:8081/openam/oauth2/authorize?client_id=Agent&scope=openid&nonce=1234&redirect_uri=http%3A%2F%2Fpicodon.internal.forgerock.com%3A8080%2Fagentapp%2FsunwCDSSORedirectURI&response_type=id_token&realm=%2F
      headers=
      Content-Type: application/x-www-form-urlencoded
      Accept: */*
      Cookie: iPlanetDirectoryPro=kAUxqJhhC9IKPPEyzEK9cYBFBqs.*AAJTSQACMDEAAlNLABxWV1FLRDl1UU1sN0Q0M0J4MVNUNjAxUUN1V0E9AAR0eXBlAANDVFMAAlMxAAA.*; iPlanetDirectoryPro=kAUxqJhhC9IKPPEyzEK9cYBFBqs.*AAJTSQACMDEAAlNLABxWV1FLRDl1UU1sN0Q0M0J4MVNUNjAxUUN1V0E9AAR0eXBlAANDVFMAAlMxAAA.*; amlbcookie=01
      Content-Length: 130
      Host: picodon.internal.forgerock.com:8081
      params=
      decision: Allow
      csrf: kAUxqJhhC9IKPPEyzEK9cYBFBqs.*AAJTSQACMDEAAlNLABxWV1FLRDl1UU1sN0Q0M0J4MVNUNjAxUUN1V0E9AAR0eXBlAANDVFMAAlMxAAA.*
      =========================
      HTTP response:
      status=
      302 
      headers= 
      X-Frame-Options: SAMEORIGIN
      Pragma: no-cache
      Cache-Control: no-store
      Date: Tue, 06 Nov 2018 11:40:12 GMT
      Accept-Ranges: bytes
      Location: http://picodon.internal.forgerock.com:8080/agentapp/sunwCDSSORedirectURI#id_token=eyJ0eXAiOiJKV1QiLCJraWQiOiJ3VTNpZklJYUxPVUFSZVJCL0ZHNmVNMVAxUU09IiwiYWxnIjoiUlMyNTYifQ.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.v0Hch4uuwMAheP7v7HEA7wQZQxDh9Wh-VH5Fnr9f5RZh1FIM8IcmqQXiebixESSkpS-WW_ICthL3ADTmFj2799N7C7ENia5IKxAVYuAGpkw7LlaNelD1MrckicJ-DPbrzaDs0xxEm7-__won8Eg4WFt7cODH54ZgerplG4q3hSnf2AARTVKTI5CtO55yAMBY5wVFysgyx-LB2Z_eId2kpr0v3-wVWmgxMjUPrG8AXyXpt7XxkXDNdNIeZJS-VM-jUgWpApyfTmrcvxoLsIxgiIrE0HFCOstxyJhehqbNKulsjonWgZph8d5EYawGdkGAtX71Axa2HH2QwvsBoSCRuQ
      Vary: Accept-Charset, Accept-Encoding, Accept-Language, Accept
      Content-Length: 0
      
      

       

      http://jenkins-fr.internal.forgerock.com:8080/job/AM-6.5.0/job/authorisation/job/authz/154/gatling/report/rest_authz_agent-1541504411237/

      How to reproduce the issue

      this can be reproduced by running the below pyforge command:

      ./run-pybot.py -c perf -s authz.authz -t Gatling_policybenchmark_Agent -n openam

       

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                phillcunnington Phill Cunnington
                Reporter:
                narita.saxena Narita Saxena
              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: