Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-14791

401 is returned 30 minutes after authentication in fullstack

    Details

    • Target Version/s:
    • Support Ticket IDs:
    • Zendesk ID:
      49615

      Description

      To reproduce this issue

      1. Set up full stack. Set AM token lifetime to 1 hour. Set AM session max idle time to 1 hour.

      2. Start OIDC flow, https://backstage.forgerock.com/knowledge/kb/article/a45321184.

      3. Randomly execute REST call to IDM (such as step 5 in the KB) in the first 30 minutes. For each REST call to IDM, there is a corresponding "_action=validate" from IDM to AM.

      {"realm":"/","transactionId":"d9cc5748-670c-4de3-aff8-7597cdc6609d-68536","client":{"ip":"127.0.0.1","port":55084},"server":{"ip":"127.0.0.1","port":8080},"http":{"request":{"secure":false,"method":"POST","queryParameters":{"_action":["validate"]},"headers":{"accept-api-version":["protocol=1.0,resource=1.0"],"host":["openam.example.com:8080"],"user-agent":["Apache-HttpAsyncClient/4.1.4 (Java/1.8.0_171)"]},"cookies":{},"path":"http://openam.example.com:8080/openam/json/sessions"}},"request":{"protocol":"CREST","operation":"ACTION","detail":{"action":"validate"}},"timestamp":"2020-05-22T04:54:28.915Z","eventName":"AM-ACCESS-OUTCOME","component":"Session","response":{"status":"SUCCESSFUL","statusCode":"","elapsedTime":19,"elapsedTimeUnits":"MILLISECONDS"},"_id":"d9cc5748-670c-4de3-aff8-7597cdc6609d-68547"}
      

      4. After 30 minutes, execute the same REST call to IDM, and the result is.

      {
          "code": 401,
          "reason": "Unauthorized",
          "message": "Access Denied"
      }
      

      This time, there is no "_action=validate" from IDM to AM.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              yinyan.cao Yinyan Cao
            • Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

              • Created:
                Updated: