[ https://issues.apache.org/jira/browse/GEODE-2354?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15836737#comment-15836737 ]
Jared Stewart commented on GEODE-2354: -------------------------------------- {code:java} 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT org.apache.shiro.session.UnknownSessionException: There is no session with id [3d1b415f-0cb9-4e70-b965-b58b2e2462f3]2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.session.mgt.eis.AbstractSessionDAO.readSession(AbstractSessionDAO.java:170) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.session.mgt.DefaultSessionManager.retrieveSessionFromDataSource(DefaultSessionManager.java:236) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.session.mgt.DefaultSessionManager.retrieveSession(DefaultSessionManager.java:222) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.session.mgt.AbstractValidatingSessionManager.doGetSession(AbstractValidatingSessionManager.java:118) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.session.ProxiedSession.getAttribute(ProxiedSession.java:121) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.session.mgt.AbstractNativeSessionManager.lookupSession(AbstractNativeSessionManager.java:148) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.session.mgt.AbstractNativeSessionManager.lookupRequiredSession(AbstractNativeSessionManager.java:152) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.session.mgt.AbstractNativeSessionManager.getAttribute(AbstractNativeSessionManager.java:249) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.session.mgt.DelegatingSession.getAttribute(DelegatingSession.java:141) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.session.ProxiedSession.getAttribute(ProxiedSession.java:121) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.subject.support.DelegatingSubject.getRunAsPrincipalsStack(DelegatingSubject.java:469) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.subject.support.DelegatingSubject.getPrincipals(DelegatingSubject.java:153) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.shiro.subject.support.DelegatingSubject.getPrincipal(DelegatingSubject.java:149) ~[shiro-core-1.3.1.jar!/:1.3.1] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.geode.internal.security.IntegratedSecurityService.authorize(IntegratedSecurityService.java:289) ~[geode-core-1.0.0-incubating.jar!/:na] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.apache.geode.management.internal.security.MBeanServerWrapper.getAttribute(MBeanServerWrapper.java:156) ~[geode-core-1.0.0-incubating.jar!/:na] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at javax.management.remote.rmi.RMIConnectionImpl.doOperation(RMIConnectionImpl.java:1445) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at javax.management.remote.rmi.RMIConnectionImpl.access$300(RMIConnectionImpl.java:76) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at javax.management.remote.rmi.RMIConnectionImpl$PrivilegedOperation.run(RMIConnectionImpl.java:1309) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.security.AccessController.doPrivileged(Native Method) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at javax.management.remote.rmi.RMIConnectionImpl.doPrivilegedOperation(RMIConnectionImpl.java:1408) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at javax.management.remote.rmi.RMIConnectionImpl.getAttribute(RMIConnectionImpl.java:639) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.reflect.GeneratedMethodAccessor202.invoke(Unknown Source) ~[na:na] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.lang.reflect.Method.invoke(Method.java:498) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.server.UnicastServerRef.dispatch(UnicastServerRef.java:324) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.transport.Transport$1.run(Transport.java:200) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.transport.Transport$1.run(Transport.java:197) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.security.AccessController.doPrivileged(Native Method) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.transport.Transport.serviceCall(Transport.java:196) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.transport.tcp.TCPTransport.handleMessages(TCPTransport.java:568) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run0(TCPTransport.java:826) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.lambda$run$0(TCPTransport.java:683) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.security.AccessController.doPrivileged(Native Method) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run(TCPTransport.java:682) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) [na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) [na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.lang.Thread.run(Thread.java:745) [na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.transport.StreamRemoteCall.exceptionReceivedFromServer(StreamRemoteCall.java:276) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.transport.StreamRemoteCall.executeCall(StreamRemoteCall.java:253) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at sun.rmi.server.UnicastRef.invoke(UnicastRef.java:162) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at com.sun.jmx.remote.internal.PRef.invoke(Unknown Source) ~[na:na] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at javax.management.remote.rmi.RMIConnectionImpl_Stub.getAttribute(Unknown Source) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at javax.management.remote.rmi.RMIConnector$RemoteMBeanServerConnection.getAttribute(RMIConnector.java:903) ~[na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at io.pivotal.catbath.Hydrator.run(Hydrator.java:64) ~[classes/:na] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at io.pivotal.catbath.Hydrator$$FastClassBySpringCGLIB$$a1a11383.invoke(<generated>) [classes/:na] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204) [spring-core-4.3.5.RELEASE.jar!/:4.3.5.RELEASE] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:721) [spring-aop-4.3.5.RELEASE.jar!/:4.3.5.RELEASE] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157) [spring-aop-4.3.5.RELEASE.jar!/:4.3.5.RELEASE] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at org.springframework.aop.interceptor.AsyncExecutionInterceptor$1.call(AsyncExecutionInterceptor.java:115) [spring-aop-4.3.5.RELEASE.jar!/:4.3.5.RELEASE] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.util.concurrent.FutureTask.run(FutureTask.java:266) [na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) [na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) [na:1.8.0_111] 2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at java.lang.Thread.run(Thread.java:745) [na:1.8.0_111] {code} > Use of security-manager results in UnknownSessionExceptions after 30 minutes > idle > --------------------------------------------------------------------------------- > > Key: GEODE-2354 > URL: https://issues.apache.org/jira/browse/GEODE-2354 > Project: Geode > Issue Type: Bug > Components: security > Reporter: Kirk Lund > > If the User specifies a SecurityManager with security-manager, all authorized > operations start to fail with UnknownSessionExceptions after 30 minutes idle > which is the default globalSessionTimeout in Apache Shiro. > Workaround: specify security-shiro-init in gemfire.properties and configure > everything via Shiro within a shiro.ini. > Fixing this will require changes to IntegratedSecurityService to set the > globalSessionTimeout higher or to re-authenticate after a timeout. -- This message was sent by Atlassian JIRA (v6.3.4#6332)