[
https://issues.apache.org/jira/browse/GEODE-2354?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15836737#comment-15836737
]
Jared Stewart commented on GEODE-2354:
--------------------------------------
{code:java}
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT
org.apache.shiro.session.UnknownSessionException: There is no session with id
[3d1b415f-0cb9-4e70-b965-b58b2e2462f3]2017-01-24T10:38:27.47-0500
[APP/PROC/WEB/0]OUT at
org.apache.shiro.session.mgt.eis.AbstractSessionDAO.readSession(AbstractSessionDAO.java:170)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.session.mgt.DefaultSessionManager.retrieveSessionFromDataSource(DefaultSessionManager.java:236)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.session.mgt.DefaultSessionManager.retrieveSession(DefaultSessionManager.java:222)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.session.mgt.AbstractValidatingSessionManager.doGetSession(AbstractValidatingSessionManager.java:118)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.session.ProxiedSession.getAttribute(ProxiedSession.java:121)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.session.mgt.AbstractNativeSessionManager.lookupSession(AbstractNativeSessionManager.java:148)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.session.mgt.AbstractNativeSessionManager.lookupRequiredSession(AbstractNativeSessionManager.java:152)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.session.mgt.AbstractNativeSessionManager.getAttribute(AbstractNativeSessionManager.java:249)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.session.mgt.DelegatingSession.getAttribute(DelegatingSession.java:141)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.session.ProxiedSession.getAttribute(ProxiedSession.java:121)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.subject.support.DelegatingSubject.getRunAsPrincipalsStack(DelegatingSubject.java:469)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.subject.support.DelegatingSubject.getPrincipals(DelegatingSubject.java:153)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.shiro.subject.support.DelegatingSubject.getPrincipal(DelegatingSubject.java:149)
~[shiro-core-1.3.1.jar!/:1.3.1]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.geode.internal.security.IntegratedSecurityService.authorize(IntegratedSecurityService.java:289)
~[geode-core-1.0.0-incubating.jar!/:na]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.apache.geode.management.internal.security.MBeanServerWrapper.getAttribute(MBeanServerWrapper.java:156)
~[geode-core-1.0.0-incubating.jar!/:na]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
javax.management.remote.rmi.RMIConnectionImpl.doOperation(RMIConnectionImpl.java:1445)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
javax.management.remote.rmi.RMIConnectionImpl.access$300(RMIConnectionImpl.java:76)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
javax.management.remote.rmi.RMIConnectionImpl$PrivilegedOperation.run(RMIConnectionImpl.java:1309)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.security.AccessController.doPrivileged(Native Method) ~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
javax.management.remote.rmi.RMIConnectionImpl.doPrivilegedOperation(RMIConnectionImpl.java:1408)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
javax.management.remote.rmi.RMIConnectionImpl.getAttribute(RMIConnectionImpl.java:639)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.reflect.GeneratedMethodAccessor202.invoke(Unknown Source) ~[na:na]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.lang.reflect.Method.invoke(Method.java:498) ~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.server.UnicastServerRef.dispatch(UnicastServerRef.java:324)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.transport.Transport$1.run(Transport.java:200) ~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.transport.Transport$1.run(Transport.java:197) ~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.security.AccessController.doPrivileged(Native Method) ~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.transport.Transport.serviceCall(Transport.java:196) ~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.transport.tcp.TCPTransport.handleMessages(TCPTransport.java:568)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run0(TCPTransport.java:826)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.lambda$run$0(TCPTransport.java:683)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.security.AccessController.doPrivileged(Native Method) ~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run(TCPTransport.java:682)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.lang.Thread.run(Thread.java:745) [na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.transport.StreamRemoteCall.exceptionReceivedFromServer(StreamRemoteCall.java:276)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.transport.StreamRemoteCall.executeCall(StreamRemoteCall.java:253)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
sun.rmi.server.UnicastRef.invoke(UnicastRef.java:162) ~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
com.sun.jmx.remote.internal.PRef.invoke(Unknown Source) ~[na:na]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
javax.management.remote.rmi.RMIConnectionImpl_Stub.getAttribute(Unknown Source)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
javax.management.remote.rmi.RMIConnector$RemoteMBeanServerConnection.getAttribute(RMIConnector.java:903)
~[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
io.pivotal.catbath.Hydrator.run(Hydrator.java:64) ~[classes/:na]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
io.pivotal.catbath.Hydrator$$FastClassBySpringCGLIB$$a1a11383.invoke(<generated>)
[classes/:na]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204)
[spring-core-4.3.5.RELEASE.jar!/:4.3.5.RELEASE]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:721)
[spring-aop-4.3.5.RELEASE.jar!/:4.3.5.RELEASE]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157)
[spring-aop-4.3.5.RELEASE.jar!/:4.3.5.RELEASE]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
org.springframework.aop.interceptor.AsyncExecutionInterceptor$1.call(AsyncExecutionInterceptor.java:115)
[spring-aop-4.3.5.RELEASE.jar!/:4.3.5.RELEASE]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.util.concurrent.FutureTask.run(FutureTask.java:266) [na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
[na:1.8.0_111]
2017-01-24T10:38:27.47-0500 [APP/PROC/WEB/0]OUT at
java.lang.Thread.run(Thread.java:745) [na:1.8.0_111]
{code}
> Use of security-manager results in UnknownSessionExceptions after 30 minutes
> idle
> ---------------------------------------------------------------------------------
>
> Key: GEODE-2354
> URL: https://issues.apache.org/jira/browse/GEODE-2354
> Project: Geode
> Issue Type: Bug
> Components: security
> Reporter: Kirk Lund
>
> If the User specifies a SecurityManager with security-manager, all authorized
> operations start to fail with UnknownSessionExceptions after 30 minutes idle
> which is the default globalSessionTimeout in Apache Shiro.
> Workaround: specify security-shiro-init in gemfire.properties and configure
> everything via Shiro within a shiro.ini.
> Fixing this will require changes to IntegratedSecurityService to set the
> globalSessionTimeout higher or to re-authenticate after a timeout.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
