FAQ
After installed CF by BOSH on vSphere, I can push and visit my app, but I
can not login the dashboard and got:(I thought it may be uaa related
problem so I post it here)

Success

Your account login is working and you have authenticated.

But there was an error.


I have tried *uaac member add dashboard.user my_email* but it did not
work.Here is my configuration of uaa part:
uaa:
catalina_opts: -Xmx768m -XX:MaxPermSize=256m
url: http://uaa.cf.local
resource_id: account_manager
client_secret: passwordpassword01
token_secret: passwordpassword01
cc:
token_secret: aaabxaiC371JM # Create your own token secret
client_secret: $2a$08$dahioBqSkqa1AbLvaqkLoe5W0aOPN3Ia9W0xkeB926G.
AZJhq1SsK # Create your own client secret
admin:
client_secret: $2a$08$dahioBqSkqa1AbLvaqkLoe5W0aOPN3Ia9W0xkeB926G.
AZJhq1SsK # Create your own client secret
login:
client_secret: $2a$08$dahioBqSkqa1AbLvaqkLoe5W0aOPN3Ia9W0xkeB926G.
AZJhq1SsK
batch:
username: root # Create a username
password: passwordpassword01 # Create a password

clients:
dashboard:
secret: passwordpassword01
scope: openid,dashboard.user
authorities: uaa.admin,uaa.resource,tokens.read,scim.read,scim.write
authorized-grant-types: client_credentials,authorization_code,
refresh_token

scim:
users:
- root|admin|openid,dashboard.user

Search Discussions

  • Dave Syer at Mar 24, 2013 at 12:14 am

    On 22/03/13 23:44, Harry Zhang wrote:
    After installed CF by BOSH on vSphere, I can push and visit my app,
    but I can not login the dashboard and got:(I thought it maybe uaa
    related problem so I post it here)
    Without some logs from the UAA (and login server if you are using it)
    it's impossible to trace that kind of problem. The manifest looks
    sane. Can you log into the dashboard with the root user initialized
    fomr the manifest?

    --
    Dave Syer
    dsyer@vmware.com
  • Harry Zhang at Mar 25, 2013 at 2:53 am
    There seems no error in login server log below:

    [2013-03-25 02:39:24.623] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- FilterChainProxy: / at position 4 of 5 in additional filter chain;
    firing Filter: 'ExceptionTranslationFilter'
    [2013-03-25 02:39:24.623] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- FilterChainProxy: / at position 5 of 5 in additional filter chain;
    firing Filter: 'FilterSecurityInterceptor'
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- FilterSecurityInterceptor: Secure object: FilterInvocation: URL: /;
    Attributes: [IS_AUTHENTICATED_FULLY]
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- FilterSecurityInterceptor: Previously Authenticated: org.springframework
    .security.authentication.UsernamePasswordAuthenticationToken@ad10bd0d:
    Principal: org.springframework.security.core.userdetails.User@39d107a0:
    Username: 31668-2435-3442-21755; Password: [PROTECTED]; Enabled: true;
    AccountNonExpired: true; credentialsNonExpired: true; AccountNonLocked: true
    ; Granted Authorities: uaa.varz; Credentials: [PROTECTED]; Authenticated:
    true; Details: org.cloudfoundry.identity.uaa.authentication.
    UaaAuthenticationDetails@46552445; Granted Authorities: uaa.varz
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- AffirmativeBased: Voter: org.springframework.security.access.vote.
    RoleVoter@4e857327, returned: 0
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- AffirmativeBased: Voter: org.springframework.security.access.vote.
    AuthenticatedVoter@1b4b2db7, returned: 1
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- FilterSecurityInterceptor: Authorization successful
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- FilterSecurityInterceptor: RunAsManager did not change Authentication
    object
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- FilterChainProxy: / reached end of additional filter chain; proceeding
    with original chain
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- DispatcherServlet: DispatcherServlet with name 'varz' processing GET
    request for [/varz]
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- RequestMappingHandlerMapping: Looking up handler method for path /
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- RequestMappingHandlerMapping: Returning handler method [public java.util
    .Map<java.lang.String, ?> org.cloudfoundry.identity.varz.VarzEndpoint.
    getVarz(java.lang.String) throws java.lang.Exception]
    [2013-03-25 02:39:24.624] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- DispatcherServlet: Last-Modified value for [/varz] is: -1
    [2013-03-25 02:39:24.633] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- RequestResponseBodyMethodProcessor: Written [{type=VARZ, links={
    JMImplementation=http://10.40.97.91:8080/varz/JMImplementation,
    com.sun.management=http://10.40.97.91:8080/varz/com.sun.management,
    Catalina=http://10.40.97.91:8080/varz/Catalina,
    env=http://10.40.97.91:8080/varz/env,
    java.lang=http://10.40.97.91:8080/varz/java.lang,
    java.util.logging=http://10.40.97.91:8080/varz/java.util.logging},
    mem=20784, memory={verbose=false, non_heap_memory_usage={max=136314880,
    committed=58195968, init=24313856, used=58037208},
    object_pending_finalization_count=0, heap_memory_usage={max=253427712,
    committed=42946560, init=16356608, used=21282824}},
    thread_pool={http-bio-8080={port=8080, ssl_protocol=TLS,
    acceptor_thread_count=1, max_header_count=100, so_linger=-1,
    keystore_type=JKS, ciphers_array=[], acceptor_thread_priority=5,
    s_slenabled=false, running=true, use_sendfile=false, local_port=8080,
    algorithm=SunX509, keystore_file=/root/.keystore, keep_alive_timeout=20000,
    socket_properties=error:<(was java.lang.NullPointerException) (through
    reference chain:
    org.apache.tomcat.util.net.SocketProperties["rxBufSize"])>,
    name=http-bio-8080, use_comet=false, bind_on_init=true, connection_count=2,
    defer_accept=false, max_connections=200, client_auth=false,
    max_threads=200, thread_priority=5, use_comet_timeout=false, paused=false,
    session_timeout=86400, modeler_type=org.apache.tomcat.util.net.JIoEndpoint,
    so_timeout=20000, min_spare_threads=10, use_polling=false,
    current_thread_count=10, backlog=100, ssl_enabled_protocols_array=[],
    max_keep_alive_requests=100, current_threads_busy=1, daemon=true,
    tcp_no_delay=true}},
    global_request_processor={http-bio-8080={processing_time=427042,
    max_time=5880, request_count=15575, bytes_sent=17268696,
    bytes_received=164, error_count=3, modeler_type=org.apache.coyote.RequestGroupInfo}},
    config={varz.username=31668-2435-3442-21755, varz.type=login,
    CONFIG_FILE_NAME=varz.yml, varz.password=#,
    logging.config=/var/vcap/jobs/login/config/log4j.properties,
    contextInitializerClasses=org.cloudfoundry.identity.uaa.config.YamlServletProfileInitializer},
    spring.profiles.active=[]}] as "application/json;charset=UTF-8" using
    [org.springframework.http.converter.json.MappingJacksonHttpMessageConverter@aede59e]
    [2013-03-25 02:39:24.633] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- DispatcherServlet: Null ModelAndView returned to DispatcherServlet withname
    'varz': assuming HandlerAdapter completed request handling
    [2013-03-25 02:39:24.633] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- DispatcherServlet: Successfully completed request
    [2013-03-25 02:39:24.633] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- ExceptionTranslationFilter: Chain processed normally
    [2013-03-25 02:39:24.633] login/varz - 798 [http-bio-8080-exec-6] ....DEBUG
    --- SecurityContextPersistenceFilter: SecurityContextHolder now cleared, asrequest processing completed

    And it's the same with uaa log, just some auth and varz info no dashboard
    related:
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    AntPathRequestMatcher: Checking match of request : '/healthz'; against
    '/logout.do*'
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    FilterChainProxy: /healthz at position 1 of 5 in additional filter chain;
    firing Filter: 'SecurityContextPersistenceFilter'
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    FilterChainProxy: /healthz at position 2 of 5 in additional filter chain;
    firing Filter: 'SecurityContextHolderAwareRequestFilter'
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    FilterChainProxy: /healthz at position 3 of 5 in additional filter chain;
    firing Filter: 'AnonymousAuthenticationFilter'
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    AnonymousAuthenticationFilter: SecurityContextHolder not populated with
    anonymous token, as it already contained:
    'org.springframework.security.authentication.AnonymousAuthenticationToken@9055e4a6:
    Principal: anonymousUser; Credentials: [PROTECTED]; Authenticated: true;
    Details:
    org.springframework.security.web.authentication.WebAuthenticationDetails@957e:
    RemoteIpAddress: 10.40.97.86; SessionId: null; Granted Authorities:
    ROLE_ANONYMOUS'
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    FilterChainProxy: /healthz at position 4 of 5 in additional filter chain;
    firing Filter: 'ExceptionTranslationFilter'
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    FilterChainProxy: /healthz at position 5 of 5 in additional filter chain;
    firing Filter: 'FilterSecurityInterceptor'
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    FilterChainProxy: /healthz reached end of additional filter chain;
    proceeding with original chain
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    DispatcherServlet: DispatcherServlet with name 'varz' processing GET
    request for [/healthz]
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    RequestMappingHandlerMapping: Looking up handler method for path /healthz
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    RequestMappingHandlerMapping: Returning handler method [public
    java.lang.String
    org.cloudfoundry.identity.uaa.varz.HealthzEndpoint.getHealthz() throws
    java.lang.Exception]
    [2013-03-25 02:49:35.712] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    DispatcherServlet: Last-Modified value for [/healthz] is: -1
    [2013-03-25 02:49:35.728] uaa - 14769 [http-bio-8080-exec-2] .... DEBUG ---
    JdbcTemplate: Executing prepared SQL query
    [2013-03-25 02:49:35.733] uaa - 14769 [http-bio-8080-exec-2] .... DEBUG ---
    JdbcTemplate: Executing prepared SQL statement [select client_id,
    client_secret, resource_ids, scope, authorized_grant_types,
    web_server_redirect_uri, authorities, access_token_validity,
    refresh_token_validity, additional_information from oauth_client_details
    order by client_id]
    [2013-03-25 02:49:35.734] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    RequestResponseBodyMethodProcessor: Written [ok
    ] as "text/plain;charset=ISO-8859-1" using
    [org.springframework.http.converter.StringHttpMessageConverter@21ba11bc]
    [2013-03-25 02:49:35.734] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    DispatcherServlet: Null ModelAndView returned to DispatcherServlet with
    name 'varz': assuming HandlerAdapter completed request handling
    [2013-03-25 02:49:35.734] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    DispatcherServlet: Successfully completed request
    [2013-03-25 02:49:35.734] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    ExceptionTranslationFilter: Chain processed normally
    [2013-03-25 02:49:35.734] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    ExceptionTranslationFilter: Chain processed normally
    [2013-03-25 02:49:35.734] uaa - 14769 [http-bio-8080-exec-3] .... DEBUG ---
    SecurityContextPersistenceFilter: SecurityContextHolder now cleared, as
    request processing completed
    [2013-03-25 02:49:35.737] uaa - 14769 [http-bio-8080-exec-2] .... DEBUG ---
    JdbcTemplate: Executing prepared SQL query
    [2013-03-25 02:49:35.737] uaa - 14769 [http-bio-8080-exec-2] .... DEBUG ---
    JdbcTemplate: Executing prepared SQL statement [select count(*) from users ]

    On Sunday, March 24, 2013 8:13:56 AM UTC+8, David Syer wrote:

    On 22/03/13 23:44, Harry Zhang wrote:

    After installed CF by BOSH on vSphere, I can push and visit my app, but I
    can not login the dashboard and got:(I thought it may be uaa related
    problem so I post it here)


    Without some logs from the UAA (and login server if you are using it) it's
    impossible to trace that kind of problem. The manifest looks sane. Can
    you log into the dashboard with the root user initialized fomr the manifest?

    --
    Dave Syerds...@vmware.com <javascript:>
  • Dave Syer at Mar 25, 2013 at 4:24 pm

    On 24/03/13 19:53, Harry Zhang wrote:
    Thereseems noerror inlogin server log below|
    There is a lot of chatter to /varz so you would need to filter that out
    to see any real signal. You need to capture the output during the
    authentication process with the dashboard.

    --
    Dave Syer
    dsyer@vmware.com

Related Discussions

Discussion Navigation
viewthread | post
Discussion Overview
groupvcap-dev @
postedMar 23, '13 at 6:45a
activeMar 25, '13 at 4:24p
posts4
users2

2 users in discussion

Harry Zhang: 2 posts Dave Syer: 2 posts

People

Translate

site design / logo © 2021 Grokbase