Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-2911

IdP initiated SSO with persistent identifier causes URLNotFoundException: Invalid service host name.

    Details

    • Sprint:
      AM Sustaining Sprint 21, AM Sustaining Sprint 25, AM Sustaining Sprint 26, AM Sustaining Sprint 27
    • Support Ticket IDs:

      Description

      During IdP initiated SSO with persistent identifier the following exception is observed in the CoreSystem debug log on SP (openam2):

      amNaming:08/29/2013 03:28:58:294 PM BST: Thread[http-bio-172.18.8.6-8080-exec-3,5,main]
      ERROR: platformServers: [http://openam2.internal.forgerock.com:8080/openam]
      com.iplanet.services.naming.URLNotFoundException: Invalid service host name. http://openam2.internal.forgerock.com:8080/openam/sessionservice
      	at com.iplanet.services.naming.WebtopNaming.validate(WebtopNaming.java:1371)
      	at com.iplanet.services.naming.WebtopNaming.getServiceURL(WebtopNaming.java:425)
      	at com.iplanet.services.naming.WebtopNaming.getServiceURL(WebtopNaming.java:294)
      	at com.sun.identity.authentication.AuthContext.getAuthServiceURL(AuthContext.java:2392)
      	at com.sun.identity.authentication.AuthContext.login(AuthContext.java:655)
      	at com.sun.identity.authentication.AuthContext.login(AuthContext.java:614)
      	at com.sun.identity.authentication.AuthContext.login(AuthContext.java:417)
      	at com.sun.identity.plugin.session.impl.FMSessionProvider.createSession(FMSessionProvider.java:223)
      	at com.sun.identity.saml2.profile.SPACSUtils.processResponse(SPACSUtils.java:1312)
      	at org.apache.jsp.saml2.jsp.spAssertionConsumer_jsp._jspService(spAssertionConsumer_jsp.java:233)
      	at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
      	at javax.servlet.http.HttpServlet.service(HttpServlet.java:728)
      	at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:432)
      	at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:390)
      	at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:334)
      	at javax.servlet.http.HttpServlet.service(HttpServlet.java:728)
      	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:305)
      	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
      	at org.forgerock.openam.validation.ResponseValidationFilter.doFilter(ResponseValidationFilter.java:44)
      	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243)
      	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
      	at com.sun.identity.setup.AMSetupFilter.doFilter(AMSetupFilter.java:98)
      	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:243)
      	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210)
      	at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:222)
      	at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:123)
      	at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:472)
      	at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
      	at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:99)
      	at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:947)
      	at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118)
      	at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
      	at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1009)
      	at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:589)
      	at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:312)
      	at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886)
      	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908)
      	at java.lang.Thread.run(Thread.java:662)
      

      Steps to reproduce:

      1. initiate SSO from IdP:
        http://openam1.internal.forgerock.com:8080/openam/saml2/jsp/idpSSOInit.jsp?metaAlias=/idp&spEntityID=http%3A%2F%2Fopenam2.internal.forgerock.com%3A8080%2Fopenam
        • log in as idpuser on IdP
        • log in as spuser on SP
        • Single Sign-on succeeded.
      2. observe the CoreSystem debug log on SP.

        Attachments

          Activity

            People

            • Assignee:
              sfraser Sam Fraser
              Reporter:
              n4al Nemanja Lukic
              QA Assignee:
              Nemanja Lukic
            • Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 3h
                3h
                Remaining:
                Remaining Estimate - 0h
                0h
                Logged:
                Time Spent - 3h
                3h