Re: [Carbon-dev] removing atomikos from carbon-kernel : progress update
On Mon, Mar 5, 2012 at 8:27 AM, Pradeep Fernando prad...@wso2.com wrote: Hi, I was looking in to the $subject for last couple of days. Right now transaction manager is tightly couples to the servlet container (tomcat). Atomikos get initialized through a tomcat listener. And the Transaction Factory get initialized by the tomcat itself. After that within the dataservices-core we get the UserTransaction manager via a JNDI lookup. The complication is, the JNDI does not work in OSGi environment at the moment. (Note that it is working for web-apps). The reason is, JNDI try to resolve the context through context classLoader. If the context classLoader is web-app ClassLoader it is working. But if the context classLoader is bundle/context-finder it is not working. I believe this has an impact on the LDAP functionality also, cos LDAP is also based on JNDI. Thanks AmilaJ OSGi enterprise spec has a separate section for JNDI. There they are using a service based model to overcome the above problems. While searching for the reading materials i came across, OSGi JTA spec as well. Apache aries[1] has a OSGi JNDI + JTA modules. [1] http://aries.apache.org/downloads/currentrelease.html -- Pradeep Fernando Software Engineer Member, Management Committee - Platform Cloud Technologies WSO2 Inc; http://wso2.com/ blog: http://pradeepfernando.blogspot.com/ m: +94776603662 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Exception when browsing stratos manager UI
Hi All, While testing authentication changes i got following exception [1] while browsing stratos manager UI. If this is already fixed please ignore. Thank you AmilaJ [1] [2012-02-27 09:26:58,217] INFO {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - 'admin' logged in at [2012-02-27 09:26:58,0217] from IP address SAML2 SSO Authentication java.lang.NullPointerException at org.wso2.carbon.ui.deployment.beans.CarbonUIDefinitions.getMenuDefinitions(CarbonUIDefinitions.java:221) at org.wso2.carbon.ui.deployment.beans.CarbonUIDefinitions.getMenuDefinitions(CarbonUIDefinitions.java:168) at org.wso2.carbon.ui.MenuAdminClient.setDefaultMenus(MenuAdminClient.java:110) at org.wso2.carbon.ui.MenuAdminClient.populateMenuDefinitionsFromOSGiService(MenuAdminClient.java:78) at org.wso2.carbon.ui.MenuAdminClient.getMenuContent(MenuAdminClient.java:221) at org.apache.jsp.admin.layout.region1_jsp._jspService(region1_jsp.java:78) at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:97) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:332) at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:314) at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:264) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.wso2.carbon.ui.JspServlet.service(JspServlet.java:161) at org.wso2.carbon.ui.TilesJspServlet.service(TilesJspServlet.java:80) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.eclipse.equinox.http.helper.ContextPathServletAdaptor.service(ContextPathServletAdaptor.java:36) at org.eclipse.equinox.http.servlet.internal.ServletRegistration.handleRequest(ServletRegistration.java:90) at org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias(ProxyServlet.java:111) at org.eclipse.equinox.http.servlet.internal.ProxyServlet.service(ProxyServlet.java:67) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.wso2.carbon.tomcat.server.ServerManager$DelegationServlet.service(ServerManager.java:228) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:304) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:684) at org.apache.catalina.core.ApplicationDispatcher.doInclude(ApplicationDispatcher.java:593) at org.apache.catalina.core.ApplicationDispatcher.include(ApplicationDispatcher.java:530) at org.eclipse.equinox.http.servlet.internal.RequestDispatcherAdaptor.include(RequestDispatcherAdaptor.java:37) at org.eclipse.equinox.http.helper.ContextPathServletAdaptor$RequestDispatcherAdaptor.include(ContextPathServletAdaptor.java:265) at org.apache.jasper.runtime.JspRuntimeLibrary.include(JspRuntimeLibrary.java:966) at org.apache.jasper.runtime.PageContextImpl.doInclude(PageContextImpl.java:643) at org.apache.jasper.runtime.PageContextImpl.include(PageContextImpl.java:637) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at org.apache.tiles.jsp.context.JspUtil.doInclude(JspUtil.java:87) at org.apache.tiles.jsp.context.JspTilesRequestContext.include(JspTilesRequestContext.java:88) at org.apache.tiles.jsp.context.JspTilesRequestContext.dispatch(JspTilesRequestContext.java:82) at org.apache.tiles.impl.BasicTilesContainer.render(BasicTilesContainer.java:465) at org.apache.tiles.jsp.taglib.InsertAttributeTag.render(InsertAttributeTag.java:140) at org.apache.tiles.jsp.taglib.InsertAttributeTag.render(InsertAttributeTag.java:117) at org.apache.tiles.jsp.taglib.RenderTagSupport.execute(RenderTagSupport.java:171) at org.apache.tiles.jsp.taglib.RoleSecurityTagSupport.doEndTag(RoleSecurityTagSupport.java:75) at org.apache.tiles.jsp.taglib.ContainerTagSupport.doEndTag(ContainerTagSupport.java:80) at org.apache.jsp.admin.layout.template_jsp._jspx_meth_tiles_insertAttribute_1(template_jsp.java:375) at org.apache.jsp.admin.layout.template_jsp._jspService(template_jsp.java:237) at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:97) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:332) at
Re: [Carbon-dev] Different behaviours in ESB 3.2.2 and ESB trunk, when retrieving HttpServletRequest
On Sat, Feb 25, 2012 at 11:09 AM, Thilina Buddhika thili...@wso2.com wrote: On Sat, Feb 25, 2012 at 11:04 AM, Amila Jayasekara ami...@wso2.com wrote: On Sat, Feb 25, 2012 at 10:47 AM, Thilina Buddhika thili...@wso2.com wrote: Hi AmilaJ, The existing authentication handler and authorization handler are mainly used for admin services which are exposed only thru the servlet transport. These handlers will not process the message, if it is not an admin service. That is true. In the case of ESB (nhttp), are we using ServletTransport or NHTTP for admin service communication ? In ESB, we are using Servlet transport for admin service communication. That is mainly because of the way our Carbon core functionality is implemented which is coupled with the servlet transport. Hi Thilina, In that case, i guess ESB is using NHTTP transport for admin services also. Cos, if i try to get the HTTPServletRequest i get null but if i try to get TRANSPORT_HEADERS i get a map of transport headers. (i believe if we are using servlet transport we will not get TRANSPORT_HEADER property within message context). Can u please point to me to exact code where we check whether it is an admin service and switching to servlet transport ? I tried to find it but couldnt find a pointer. Then i can further narrow down the issue. Also pasting the exact exception in [1]. Seems like stack originates from org.apache.synapse.transport.nhttp... Thank you AmilaJ [1] TID: [] [WSO2 ESB] [2012-02-24 17:25:45,228] ERROR {java.lang.Class} - System failure.null {java.lang.Class} java.lang.NullPointerException at org.wso2.carbon.server.admin.module.handler.AuthorizationHandler.doAuthorization(AuthorizationHandler.java:99) at org.wso2.carbon.server.admin.module.handler.AuthorizationHandler.invoke(AuthorizationHandler.java:81) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:262) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:168) at org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HTTPTransportUtils.java:172) at org.apache.synapse.transport.nhttp.ServerWorker.processEntityEnclosingMethod(ServerWorker.java:408) at org.apache.synapse.transport.nhttp.ServerWorker.run(ServerWorker.java:259) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:173) at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) at java.lang.Thread.run(Thread.java:662) TID: [] [WSO2 ESB] [2012-02-24 17:25:45,238] ERROR {org.apache.axis2.engine.AxisEngine} - System failure. {org.apache.axis2.engine.AxisEngine} org.apache.axis2.AxisFault: System failure. at org.wso2.carbon.server.admin.module.handler.AuthorizationHandler.invoke(AuthorizationHandler.java:88) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:262) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:168) at org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HTTPTransportUtils.java:172) at org.apache.synapse.transport.nhttp.ServerWorker.processEntityEnclosingMethod(ServerWorker.java:408) at org.apache.synapse.transport.nhttp.ServerWorker.run(ServerWorker.java:259) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerPool.java:173) at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) at java.lang.Thread.run(Thread.java:662) TID: [] [WSO2 ESB] [2012-02-24 17:25:45,239] ERROR {org.apache.synapse.transport.nhttp.ServerWorker} - Error processing POST request {org.apache.synapse.transport.nhttp.ServerWorker} org.apache.axis2.AxisFault: System failure. at org.wso2.carbon.server.admin.module.handler.AuthorizationHandler.invoke(AuthorizationHandler.java:88) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:262) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:168) at org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HTTPTransportUtils.java:172) at org.apache.synapse.transport.nhttp.ServerWorker.processEntityEnclosingMethod(ServerWorker.java:408) at org.apache.synapse.transport.nhttp.ServerWorker.run(ServerWorker.java:259
[Carbon-dev] Exception when starting identity service in stratos setup
Hi All, I am trying to setup stratos with IS, manager and AS (using trunk build). While starting IS i got following exception. In my setup i have enabled SSO. Thus i am not getting the exception in product. The last exception says it cannot find HTTPService, but i believe NullPointerException has something to do with this. Any idea how i can resolve this ? Thanks AmilaJ amila@aj:~/runenv/Run/stratos/wso2stratos-is-1.1.0-SNAPSHOT/bin$ sh wso2server.sh JAVA_HOME environment variable is set to /home/amila/development/Tools/jdks/jdk1.6.0_23 CARBON_HOME environment variable is set to /home/amila/runenv/Run/stratos/wso2stratos-is-1.1.0-SNAPSHOT [2012-02-24 11:16:50,916] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Starting WSO2 Carbon... [2012-02-24 11:16:51,251] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Operating System : Linux 2.6.35-32-generic, amd64 [2012-02-24 11:16:51,252] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java Home : /home/amila/development/Tools/jdks/jdk1.6.0_23/jre [2012-02-24 11:16:51,252] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java Version : 1.6.0_23 [2012-02-24 11:16:51,252] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java VM : Java HotSpot(TM) 64-Bit Server VM 19.0-b09,Sun Microsystems Inc. [2012-02-24 11:16:51,252] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Carbon Home : /home/amila/runenv/Run/stratos/wso2stratos-is-1.1.0-SNAPSHOT [2012-02-24 11:16:51,252] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java Temp Dir : /home/amila/runenv/Run/stratos/wso2stratos-is-1.1.0-SNAPSHOT/tmp [2012-02-24 11:16:51,252] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - User : amila, en-US, UTC [2012-02-24 11:16:51,323] WARN {org.wso2.carbon.identity.sso.saml.ui.internal.SAMLSSOUIBundleActivator} - Failed to activate SAMLSSOUIBundle Activator, which load the single logout retry count and interval values. And default values for retry count: 5 and interval: 6 will be used. [2012-02-24 11:16:51,762] INFO {org.wso2.carbon.tomcat.ext.service.ExtendedStandardService} - starting extended standard service : StandardService[Catalina] Exception in thread Thread-2 java.lang.NullPointerException at java.io.File.init(File.java:222) at org.apache.catalina.core.StandardContext.engineBase(StandardContext.java:5786) at org.apache.catalina.core.StandardContext.postWorkDirectory(StandardContext.java:6069) at org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5032) at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:145) at org.apache.catalina.core.ContainerBase.startInternal(ContainerBase.java:1033) at org.apache.catalina.core.StandardHost.startInternal(StandardHost.java:774) at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:145) at org.apache.catalina.core.ContainerBase.startInternal(ContainerBase.java:1033) at org.apache.catalina.core.StandardEngine.startInternal(StandardEngine.java:291) at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:145) at org.wso2.carbon.tomcat.ext.service.ExtendedStandardService.startInternal(ExtendedStandardService.java:47) at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:145) at org.apache.catalina.core.StandardServer.startInternal(StandardServer.java:727) at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:145) at org.wso2.carbon.tomcat.internal.CarbonTomcat.start(CarbonTomcat.java:65) at org.wso2.carbon.tomcat.server.ServerManager$1.run(ServerManager.java:80) at java.lang.Thread.run(Thread.java:662) [2012-02-24 11:16:54,146] INFO {org.wso2.carbon.user.core.authorization.PermissionTree} - updated permission tree from database for tenant 0 [2012-02-24 11:16:55,958] INFO {org.wso2.carbon.registry.core.jdbc.EmbeddedRegistryService} - Configured Registry in 1659ms [2012-02-24 11:16:56,465] INFO {org.wso2.carbon.registry.core.jdbc.EmbeddedRegistryService} - Connected to mount at governance in 23ms [2012-02-24 11:16:57,893] INFO {org.wso2.carbon.registry.core.jdbc.EmbeddedRegistryService} - Connected to mount at governance in 1ms [2012-02-24 11:16:58,311] INFO {org.wso2.carbon.registry.core.internal.RegistryCoreServiceComponent} - Registry Mode: READ-WRITE [2012-02-24 11:16:58,371] INFO {org.wso2.carbon.identity.authenticator.saml2.sso.internal.SAML2SSOAuthenticatorDSComponent} - SAML2 SSO Authenticator BE Bundle activated successfuly. [2012-02-24 11:17:00,151] ERROR {org.wso2.carbon.stratos.common.util.CommonUtil} - Unable to locate the stratos configurations file. Default Settings will be used. [2012-02-24 11:17:00,151] ERROR {org.wso2.carbon.stratos.common.util.CommonUtil} - Unable to locate the stratos EULA file. Default value will be used. [2012-02-24 11:17:00,162]
Re: [Carbon-dev] Different behaviours in ESB 3.2.2 and ESB trunk, when retrieving HttpServletRequest
On Sat, Feb 25, 2012 at 10:20 AM, Thilina Buddhika thili...@wso2.com wrote: Hi Amila, Just for my information, Where have we used this particular code ? @Thilina, We have used code like below in AuthorizationHandler as well as in existing AuthetnicationHandler. @carbon-dev Also did we verify ESB functionality after Tomcat OSGIfication ? If so was that verification successful ? Cos, ideally a user should not be able to login to ESB as HttpServletRequest in message context is null. Should throw a NullpoionterException in AuthenticationHandler. Thanks AmilaJ Thanks, Thilina On Fri, Feb 24, 2012 at 10:59 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, For certain operations we get HttpServletRequest as follows, HttpServletRequest request = (HttpServletRequest) msgContext .getProperty(HTTPConstants.MC_HTTP_SERVLETREQUEST); HttpSession httpSession = request.getSession(false); ... But above will not be valid when it comes nhttp (ESB) transport. Thus we have logic written assuming that if HttpServletRequest is null handle request for NHTTP transport. As per current trunk if we try to get HttpServletRequest within ESB we get null. But the situation is different in previous releases. (3.2.2 and before). So in 3.2.2 ESB if i execute above code i will get an implementation of HttpServletRequest. Thus the exact implementation is org.wso2.carbon.core.transports.metering.MeteredServletRequest. I believe difference between trunk and 3.2.2 is after Tomcat OSGIfication. I am bit confused about this. What should be the correct implementation here? (should HttpServletRequest be null for nhttp or should it have a value ?). Also how nhttp is getting a servlet request ? Due to this certain logic breaks as we get a HttpServletRequest object in NHTTP transport. (cos - we write logic thinking that HttpServletRequest is null for nhttp transport) Really appreciate your feedback as i am stuck on this. Thank you Regards, AmilaJ -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Thilina Buddhika Associate Technical Lead WSO2 Inc. ; http://wso2.com lean . enterprise . middleware phone : +94 77 44 88 727 blog : http://blog.thilinamb.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Different behaviours in ESB 3.2.2 and ESB trunk, when retrieving HttpServletRequest
On Sat, Feb 25, 2012 at 10:47 AM, Thilina Buddhika thili...@wso2.com wrote: Hi AmilaJ, The existing authentication handler and authorization handler are mainly used for admin services which are exposed only thru the servlet transport. These handlers will not process the message, if it is not an admin service. That is true. In the case of ESB (nhttp), are we using ServletTransport or NHTTP for admin service communication ? I am not getting this error for other servers (AS, IS etc ...) but only getting for ESB. Thus while debugging i found that HTTPServletRequest is null for admin service call MessageContexts in ESB. (Please see the debug screen shots attached). If we are using same servlet transport for admin service communication in ESB, how HTTPServletRequest is getting null ? Thanks AmilaJ So with nhttp transport, it is not required to process the message at these two handlers. Thanks, Thilina On Sat, Feb 25, 2012 at 10:35 AM, Amila Jayasekara ami...@wso2.com wrote: On Sat, Feb 25, 2012 at 10:20 AM, Thilina Buddhika thili...@wso2.com wrote: Hi Amila, Just for my information, Where have we used this particular code ? @Thilina, We have used code like below in AuthorizationHandler as well as in existing AuthetnicationHandler. @carbon-dev Also did we verify ESB functionality after Tomcat OSGIfication ? If so was that verification successful ? Cos, ideally a user should not be able to login to ESB as HttpServletRequest in message context is null. Should throw a NullpoionterException in AuthenticationHandler. Thanks AmilaJ Thanks, Thilina On Fri, Feb 24, 2012 at 10:59 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, For certain operations we get HttpServletRequest as follows, HttpServletRequest request = (HttpServletRequest) msgContext .getProperty(HTTPConstants.MC_HTTP_SERVLETREQUEST); HttpSession httpSession = request.getSession(false); ... But above will not be valid when it comes nhttp (ESB) transport. Thus we have logic written assuming that if HttpServletRequest is null handle request for NHTTP transport. As per current trunk if we try to get HttpServletRequest within ESB we get null. But the situation is different in previous releases. (3.2.2 and before). So in 3.2.2 ESB if i execute above code i will get an implementation of HttpServletRequest. Thus the exact implementation is org.wso2.carbon.core.transports.metering.MeteredServletRequest. I believe difference between trunk and 3.2.2 is after Tomcat OSGIfication. I am bit confused about this. What should be the correct implementation here? (should HttpServletRequest be null for nhttp or should it have a value ?). Also how nhttp is getting a servlet request ? Due to this certain logic breaks as we get a HttpServletRequest object in NHTTP transport. (cos - we write logic thinking that HttpServletRequest is null for nhttp transport) Really appreciate your feedback as i am stuck on this. Thank you Regards, AmilaJ -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Thilina Buddhika Associate Technical Lead WSO2 Inc. ; http://wso2.com lean . enterprise . middleware phone : +94 77 44 88 727 blog : http://blog.thilinamb.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Thilina Buddhika Associate Technical Lead WSO2 Inc. ; http://wso2.com lean . enterprise . middleware phone : +94 77 44 88 727 blog : http://blog.thilinamb.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Exception when @Deprecated is added to a service class
Hi All, When trying to deprecate service classes/methods i got exception in [1]. (When added @Deprecated tag). I also found a discussion related to this in carbon-dev in [2]. According [2] this exception occurs due to not shipping JSR 311 API with our distribution. Any plans on shipping JSR 311 API libraries with our distribution ? Without this we cannot have @Deprecated tag in service classes or within methods in service classes. OR else is there workaround to resolve this ? Thanks AmilaJ [1] 012-02-20 06:17:53,525] ERROR {org.wso2.carbon.utils.deployment.Axis2ServiceRegistry} - Error building service from bundle : Symbolic Name: org.wso2.carbon.core.services,Bundle Version: 4.0.0.SNAPSHOT, ID: 97 java.lang.NoClassDefFoundError: javax/ws/rs/Produces at org.apache.axis2.jaxrs.JAXRSUtils.getClassModel(JAXRSUtils.java:53) at org.apache.axis2.description.java2wsdl.DefaultSchemaGenerator.generateSchema(DefaultSchemaGenerator.java:272) at org.apache.axis2.deployment.util.Utils.fillAxisService(Utils.java:468) at org.apache.axis2.deployment.ServiceBuilder.populateService(ServiceBuilder.java:389) at org.apache.axis2.deployment.ServiceGroupBuilder.populateServiceGroup(ServiceGroupBuilder.java:101) at org.wso2.carbon.utils.deployment.Axis2ServiceRegistry.addServices(Axis2ServiceRegistry.java:215) at org.wso2.carbon.utils.deployment.Axis2ServiceRegistry.register(Axis2ServiceRegistry.java:105) at org.wso2.carbon.utils.deployment.Axis2ServiceRegistry.register(Axis2ServiceRegistry.java:91) at org.wso2.carbon.core.init.CarbonServerManager.initializeCarbon(CarbonServerManager.java:431) at org.wso2.carbon.core.init.CarbonServerManager.removePendingItem(CarbonServerManager.java:257) at org.wso2.carbon.core.init.OSGiAxis2ServicesListener.bundleChanged(OSGiAxis2ServicesListener.java:84) at org.eclipse.osgi.framework.internal.core.BundleContextImpl.dispatchEvent(BundleContextImpl.java:847) at org.eclipse.osgi.framework.eventmgr.EventManager.dispatchEvent(EventManager.java:230) at org.eclipse.osgi.framework.eventmgr.EventManager$EventThread.run(EventManager.java:340) Caused by: java.lang.ClassNotFoundException: javax.ws.rs.Produces at org.eclipse.osgi.internal.loader.BundleLoader.findClassInternal(BundleLoader.java:513) at org.eclipse.osgi.internal.loader.BundleLoader.findClass(BundleLoader.java:429) at org.eclipse.osgi.internal.loader.BundleLoader.findClass(BundleLoader.java:417) at org.eclipse.osgi.internal.baseadaptor.DefaultClassLoader.loadClass(DefaultClassLoader.java:107) at java.lang.ClassLoader.loadClass(ClassLoader.java:248) ... 14 more [2] http://wso2.org/mailarchive/carbon-dev/2009-November/037774.html -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Carbon kernel is Frozen for Commits from 9.00am IST on 14th Feb, 2012
On Thu, Feb 16, 2012 at 10:43 AM, Sameera Jayasoma same...@wso2.com wrote: Hi Azeez, On Thu, Feb 16, 2012 at 10:22 AM, Afkham Azeez az...@wso2.com wrote: Has the SVN structure been changed to what we discussed during the last meeting? Nope We haven't done it. The plan was to do after the Pradeep's changes. Now that he is done with it, we can apply the new SVN structure. It will be a simple set of SVN moves. I will do it tonight. It will take less than 30 mins. But we need to freeze orbit, carbon and graphite during that time. Is this done ? In addition in the Kernal dependencies i see wss4j dependency. Why we need wss4j in kernal dependencies ? Thanks AmilaJ Thanks, Sameera. On Thu, Feb 16, 2012 at 10:01 AM, Pradeep Fernando prad...@wso2.com wrote: Hi All, Carbon-kernel is unfrozen now. thanks, --Pradeep ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Sameera Jayasoma Technical Lead and Product Manager, WSO2 Carbon WSO2, Inc. (http://wso2.com) email: same...@wso2.com blog: http://tech.jayasoma.org Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Carbon kernel is Frozen for Commits from 9.00am IST on 14th Feb, 2012
On Fri, Feb 17, 2012 at 11:53 AM, Dileepa Jayakody dile...@wso2.com wrote: Hi AmilaJ, As far as i understand we do not do any XML security processing within Kernal. So i am not sure whether this is used anywhere within the kernal code. Thanks AmilaJ wss4j is added under carbon/dependencies/orbit. carbon.core.server.feature has a dependency to wss4j[1]. [1] https://svn.wso2.org/repos/wso2/trunk/carbon/features/org.wso2.carbon.core.server.feature/pom.xml Thanks, Dileepa On Fri, Feb 17, 2012 at 11:42 AM, Amila Jayasekara ami...@wso2.com wrote: On Thu, Feb 16, 2012 at 10:43 AM, Sameera Jayasoma same...@wso2.com wrote: Hi Azeez, On Thu, Feb 16, 2012 at 10:22 AM, Afkham Azeez az...@wso2.com wrote: Has the SVN structure been changed to what we discussed during the last meeting? Nope We haven't done it. The plan was to do after the Pradeep's changes. Now that he is done with it, we can apply the new SVN structure. It will be a simple set of SVN moves. I will do it tonight. It will take less than 30 mins. But we need to freeze orbit, carbon and graphite during that time. Is this done ? In addition in the Kernal dependencies i see wss4j dependency. Why we need wss4j in kernal dependencies ? Thanks AmilaJ Thanks, Sameera. On Thu, Feb 16, 2012 at 10:01 AM, Pradeep Fernando prad...@wso2.com wrote: Hi All, Carbon-kernel is unfrozen now. thanks, --Pradeep ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Sameera Jayasoma Technical Lead and Product Manager, WSO2 Carbon WSO2, Inc. (http://wso2.com) email: same...@wso2.com blog: http://tech.jayasoma.org Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Dileepa Jayakody, Software Engineer, WSO2 Inc. Lean . Enterprise . Middleware Mobile : +94777-857616 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] What is Axis2NodeManager ?
Hi All, What is Axis2NodeManager ? and why its authentication is handled in a different way within AuthenticationHandler [2] ?. To my understanding the Axis2NodeManager comes from axis2. The constant NODE_MANAGER_SERVICE is defined in org.apache.axis2.clustering.ClusteringConstants [1]. In addition how this Axis2NodeManager is an admin service is also a problem for me. Thus i am not able to find the implementation (source) of Axis2NodeManager. Appreciate your help. [1]https://svn.apache.org/repos/asf/axis/axis2/java/core/trunk/modules/kernel/src/org/apache/axis2/clustering/ClusteringConstants.java [2]https://svn.wso2.org/repos/wso2/trunk/carbon/core/org.wso2.carbon.server.admin/src/main/java/org/wso2/carbon/server/admin/module/handler/AuthenticationHandler.java if ((serviceName.equals(ServerConstants.AUTHENTICATION_ADMIN_SERVICE) || serviceName .equals(ClusteringConstants.NODE_MANAGER_SERVICE))) { Thanks AmilaJ -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Trunk dependencies points to frozen branches
On Wed, Feb 15, 2012 at 2:54 PM, Kasun Indrasiri ka...@wso2.com wrote: $subject. For instance, axis2/synapse still points to frozen branches. Either we have to create new versions of them or point to apache trunks. Same applies to Rampart. I believe with new code restructuring we are going to have a single version of dependency. (Which does not point to a frozen branch). Please correct me if i am wrong. Thanks AmilaJ -- Kasun Indrasiri Associate Technical Lead WSO2, Inc.; http://wso2.com lean.enterprise.middleware cell: +94 71 536 4128 Blog : http://kasunpanorama.blogspot.com/ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Cleaning up Carbon Authenticator Framework
Hi All, As i mentioned in the initial mail we will get rid of login call to AuthenticationAdmin and will authenticate users only through provided authenticators. During this change i realise that we were authorising (checking whether users have login permission) users at the same time we authenticate users. IMO the authentication process should not do any permission checks rather it should only validate the user is a legitimate user within the system. If we need to authorise users we need to make a separate call (We are yet to identify which component is going to handle authorization). I will be changing code accordingly. If you have any concerns / feedback please let me know. Thanks AmilaJ On Wed, Feb 15, 2012 at 8:33 AM, Manjula Rathnayake manju...@wso2.com wrote: On Tue, Feb 14, 2012 at 10:14 PM, Sameera Jayasoma same...@wso2.com wrote: https://wso2.org/jira/browse/CARBON-12378 Thanks, Sameera. On Tue, Feb 14, 2012 at 9:50 PM, Amila Jayasekara ami...@wso2.com wrote: On Tue, Feb 14, 2012 at 9:32 PM, Sameera Jayasoma same...@wso2.com wrote: Hi Amila, +1 for the proposed changes. Please see my comments below. On Tue, Feb 14, 2012 at 3:22 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, We had a review discussion on Carbon Authenticators and following are the review notes. 1. There are some common logic that should be implemented in every authenticator. Currently invoking this logic is duplicated among authenticators. So to avoid that we are planning to come up with an abstract Authenticator implementation. 2. As per now AuthenticationHandler first invokes AuthenticationAdmin and then it calls chain of authenticators. The AuthenticationAdmin call is not necessary. We need to refactor code in such a way that authenticator it self will only handle authenticating logic (Rather than within the Handler). 3. Properly implement authenticator chaining pattern. Make use “isHandle”, “priority”, “isAuthenticated” methods and make only authenticator aware about the logic. 4. After cleaning up the API, implement “Basic Auth” authenticator. (As first step) 5. Cleanup Carbon.UI framework to improve the plugability of custom authenticators. I recently wrote an authenticator, but I had to hard code some URLs in the CarbonSecurityHttpContext class. Please have a look at the following method in this class. private boolean skipSSOSessionInvalidation(String requestedURI) { boolean skipSessionInvalidation = false; if ((requestedURI.indexOf(/samlsso) -1) || (requestedURI.indexOf(sso-saml/login.jsp) -1) || (requestedURI.indexOf(stratos-sso/login_ajaxprocessor.jsp) -1) || (requestedURI.indexOf(sso-saml/redirect_ajaxprocessor.jsp) -1) || (requestedURI.indexOf(stratos-sso/redirect_ajaxprocessor.jsp) -1) || (requestedURI.indexOf(sso-acs/redirect_ajaxprocessor.jsp) -1) || (requestedURI.indexOf(stratos-auth/redirect_ajaxprocessor.jsp) -1)) { skipSessionInvalidation = true; } return skipSessionInvalidation; } As a part of this effort, lets refactor this bit of code as well. I have looked into this already, I will come up with set of handler implementations(same as axis2 handlers) to clean up that lengthy method. We will discuss once I am done with the code. Thank you. +1. Will take above into consideration as well. If possible please create a carbon Jira and assigned to me. Thanks AmilaJ Thanks, Sameera. Thanks AmilaJ -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Sameera Jayasoma Technical Lead and Product Manager, WSO2 Carbon WSO2, Inc. (http://wso2.com) email: same...@wso2.com blog: http://tech.jayasoma.org Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Sameera Jayasoma Technical Lead and Product Manager, WSO2 Carbon WSO2, Inc. (http://wso2.com) email: same...@wso2.com blog: http://tech.jayasoma.org Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Manjula Rathnayaka Software Engineer WSO2, Inc. Mobile:+94 77 743 1987 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Can we change interface classes ?
Hi All, Since next release is going to be a major carbon release (4.0.0), is it ok to change interface classes ? (without deprecating them) E.g :- change methods in org.wso2.carbon.core.services.authentication.CarbonServerAuthenticator Thanks AmilaJ -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Cleaning up Carbon Authenticator Framework
Hi All, We had a review discussion on Carbon Authenticators and following are the review notes. 1. There are some common logic that should be implemented in every authenticator. Currently invoking this logic is duplicated among authenticators. So to avoid that we are planning to come up with an abstract Authenticator implementation. 2. As per now AuthenticationHandler first invokes AuthenticationAdmin and then it calls chain of authenticators. The AuthenticationAdmin call is not necessary. We need to refactor code in such a way that authenticator it self will only handle authenticating logic (Rather than within the Handler). 3. Properly implement authenticator chaining pattern. Make use “isHandle”, “priority”, “isAuthenticated” methods and make only authenticator aware about the logic. 4. After cleaning up the API, implement “Basic Auth” authenticator. (As first step) Thanks AmilaJ -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Cleaning up Carbon Authenticator Framework
On Tue, Feb 14, 2012 at 3:42 PM, Prabath Siriwardena prab...@wso2.com wrote: On Tue, Feb 14, 2012 at 3:31 PM, Afkham Azeez az...@wso2.com wrote: On Tue, Feb 14, 2012 at 3:22 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, We had a review discussion on Carbon Authenticators and following are the review notes. 1. There are some common logic that should be implemented in every authenticator. Currently invoking this logic is duplicated among authenticators. So to avoid that we are planning to come up with an abstract Authenticator implementation. 2. As per now AuthenticationHandler first invokes AuthenticationAdmin and then it calls chain of authenticators. The AuthenticationAdmin call is not necessary. We need to refactor code in such a way that authenticator it self will only handle authenticating logic (Rather than within the Handler). 3. Properly implement authenticator chaining pattern. Make use “isHandle” Shouldn't this be isHandled? Yes.. we discussed today to change the name.. and suggestion was to rename it to canHandle().. Yes, names which i mentioned are not precise. Just wanted to give a high level idea of the process. Will name appropriately and after changes we can do a code review. Thanks AmilaJ Thanks regards, -Prabath , “priority”, “isAuthenticated” methods and make only authenticator aware about the logic. 4. After cleaning up the API, implement “Basic Auth” authenticator. (As first step) Thanks AmilaJ -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Thanks Regards, Prabath Mobile : +94 71 809 6732 http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Cleaning up Carbon Authenticator Framework
On Tue, Feb 14, 2012 at 9:32 PM, Sameera Jayasoma same...@wso2.com wrote: Hi Amila, +1 for the proposed changes. Please see my comments below. On Tue, Feb 14, 2012 at 3:22 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, We had a review discussion on Carbon Authenticators and following are the review notes. 1. There are some common logic that should be implemented in every authenticator. Currently invoking this logic is duplicated among authenticators. So to avoid that we are planning to come up with an abstract Authenticator implementation. 2. As per now AuthenticationHandler first invokes AuthenticationAdmin and then it calls chain of authenticators. The AuthenticationAdmin call is not necessary. We need to refactor code in such a way that authenticator it self will only handle authenticating logic (Rather than within the Handler). 3. Properly implement authenticator chaining pattern. Make use “isHandle”, “priority”, “isAuthenticated” methods and make only authenticator aware about the logic. 4. After cleaning up the API, implement “Basic Auth” authenticator. (As first step) 5. Cleanup Carbon.UI framework to improve the plugability of custom authenticators. I recently wrote an authenticator, but I had to hard code some URLs in the CarbonSecurityHttpContext class. Please have a look at the following method in this class. private boolean skipSSOSessionInvalidation(String requestedURI) { boolean skipSessionInvalidation = false; if ((requestedURI.indexOf(/samlsso) -1) || (requestedURI.indexOf(sso-saml/login.jsp) -1) || (requestedURI.indexOf(stratos-sso/login_ajaxprocessor.jsp) -1) || (requestedURI.indexOf(sso-saml/redirect_ajaxprocessor.jsp) -1) || (requestedURI.indexOf(stratos-sso/redirect_ajaxprocessor.jsp) -1) || (requestedURI.indexOf(sso-acs/redirect_ajaxprocessor.jsp) -1) || (requestedURI.indexOf(stratos-auth/redirect_ajaxprocessor.jsp) -1)) { skipSessionInvalidation = true; } return skipSessionInvalidation; } As a part of this effort, lets refactor this bit of code as well. +1. Will take above into consideration as well. If possible please create a carbon Jira and assigned to me. Thanks AmilaJ Thanks, Sameera. Thanks AmilaJ -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Sameera Jayasoma Technical Lead and Product Manager, WSO2 Carbon WSO2, Inc. (http://wso2.com) email: same...@wso2.com blog: http://tech.jayasoma.org Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Reminder: Supporting admin service authentication via OAuth and WS-... @ Thu Feb 9 11am - 12pm (ami...@wso2.com)
Discussion notes General --- Review existing authenticator framework generalize authenticator framework - Should add functionalities such as service level authenticators UI to list existing admin services. Users should be able do actions such as, - Assigning authenticators - Attaching security policies etc ... OAuth Support - This should be supported by writing a new authenticator. Consumer keys and consumer secrets will be generated Basic Auth - Again this is supported through an authenticator WS-Security -- This is also handled through an authenticator. Security policies are attached through the admin service managing UI. Work Items == 1. Schedule a review for authenticator review 2. Incorporate improvements outcome from the review 3. Implement Basic Auth authenticator 4. Implement OAuth authenticator 5. Implement admin service UI 6. Implement WS-Security authenticator On Thu, Feb 9, 2012 at 10:50 AM, Google Calendar calendar-notificat...@google.com wrote: more details »https://www.google.com/calendar/event?action=VIEWeid=ZXJhZDFsaWpwZDAzOTI0ZTliNXQyc2ptODggYW1pbGFqQHdzbzIuY29ttok=MTUjYW1pbGFqQHdzbzIuY29tMGU1ZWIzYjQ4Y2JkMGJkOTYyYWFjOGNlZjM3OGNlZThkOThmYjQxNQctz=Asia%2FColombohl=en Supporting admin service authentication via OAuth and WS-Security Objective of this session is to gather requirements for following task. - Re-do all admin services in Carbon properly (Shared Schema, JAX-WS, Proper Security=get rid of login() method and to it with right security things like OAuth, WS-Security ..) *When* Thu Feb 9 11am – 12pm Colombo *Where* LK #59 2nd Floor Room (maphttp://maps.google.lk/maps?q=LK+%2359+2nd+Floor+Roomhl=en ) *Calendar* ami...@wso2.com *Who* • ami...@wso2.com - organizer • Sanjiva Weerawarana • Selvaratnam Uthaiyashankar • Prabath Siriwardana • Sagara Gunathunga • Thilina Buddhika • Dimuthu Leelarathne • carbon-dev@wso2.org - optional Going? ***Yeshttps://www.google.com/calendar/event?action=RESPONDeid=ZXJhZDFsaWpwZDAzOTI0ZTliNXQyc2ptODggYW1pbGFqQHdzbzIuY29trst=1tok=MTUjYW1pbGFqQHdzbzIuY29tMGU1ZWIzYjQ4Y2JkMGJkOTYyYWFjOGNlZjM3OGNlZThkOThmYjQxNQctz=Asia%2FColombohl=en- Maybehttps://www.google.com/calendar/event?action=RESPONDeid=ZXJhZDFsaWpwZDAzOTI0ZTliNXQyc2ptODggYW1pbGFqQHdzbzIuY29trst=3tok=MTUjYW1pbGFqQHdzbzIuY29tMGU1ZWIzYjQ4Y2JkMGJkOTYyYWFjOGNlZjM3OGNlZThkOThmYjQxNQctz=Asia%2FColombohl=en- Nohttps://www.google.com/calendar/event?action=RESPONDeid=ZXJhZDFsaWpwZDAzOTI0ZTliNXQyc2ptODggYW1pbGFqQHdzbzIuY29trst=2tok=MTUjYW1pbGFqQHdzbzIuY29tMGU1ZWIzYjQ4Y2JkMGJkOTYyYWFjOGNlZjM3OGNlZThkOThmYjQxNQctz=Asia%2FColombohl=en ***more options »https://www.google.com/calendar/event?action=VIEWeid=ZXJhZDFsaWpwZDAzOTI0ZTliNXQyc2ptODggYW1pbGFqQHdzbzIuY29ttok=MTUjYW1pbGFqQHdzbzIuY29tMGU1ZWIzYjQ4Y2JkMGJkOTYyYWFjOGNlZjM3OGNlZThkOThmYjQxNQctz=Asia%2FColombohl=en Invitation from Google Calendar https://www.google.com/calendar/ You are receiving this email at the account ami...@wso2.com because you set a reminder for this event on the calendar ami...@wso2.com. You can change your reminders for specific events in the event details page in https://www.google.com/calendar/. -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Invitation: Supporting admin service authentication via OAuth and WS-... @ Thu Feb 9 11am - 12pm (carbon-dev@wso2.org)
BEGIN:VCALENDAR PRODID:-//Google Inc//Google Calendar 70.9054//EN VERSION:2.0 CALSCALE:GREGORIAN METHOD:REQUEST BEGIN:VEVENT DTSTART:20120209T053000Z DTEND:20120209T063000Z DTSTAMP:20120208T080345Z ORGANIZER;CN=ami...@wso2.com:mailto:ami...@wso2.com UID:erad1lijpd03924e9b5t2sj...@google.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Sanjiva Weerawarana;X-NUM-GUESTS=0:mailto:sanj...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Selvaratnam Uthaiyashankar;X-NUM-GUESTS=0:mailto:shan...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Prabath Siriwardana;X-NUM-GUESTS=0:mailto:prab...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Sagara Gunathunga;X-NUM-GUESTS=0:mailto:sag...@wso2.com ATTENDEE;CUTYPE=RESOURCE;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP=TR UE;CN=LK #59 2nd Floor Room;X-NUM-GUESTS=0:mailto:wso2.com_3832343234393438 393...@resource.calendar.google.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Thilina Buddhika;X-NUM-GUESTS=0:mailto:thili...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=OPT-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=carbon-dev@wso2.org;X-NUM-GUESTS=0:mailto:carbon-dev@wso2.org ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=ACCEPTED;RSVP=TRUE ;CN=Amila Jayasekara;X-NUM-GUESTS=0:mailto:ami...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Dimuthu Leelarathne;X-NUM-GUESTS=0:mailto:dimut...@wso2.com CREATED:20120208T080345Z DESCRIPTION:Objective of this session is to gather requirements for followi ng task.\n- Re-do all admin services in Carbon properly (Shared Schema\, JAX-WS\, Proper Security=get rid of login() method and to it with right sec urity things like OAuth\, WS-Security ..) \nView your event at http://www .google.com/calendar/event?action=VIEWeid=ZXJhZDFsaWpwZDAzOTI0ZTliNXQyc2pt ODggY2FyYm9uLWRldkB3c28yLm9yZwtok=MTUjYW1pbGFqQHdzbzIuY29tNjMzMjllZjU4ZDkz OTU4MDM4YmFhMzcwMDEyNzE0NTc1ZjRjMzQ0Zgctz=Asia%2FColombohl=en. LAST-MODIFIED:20120208T080345Z LOCATION:LK #59 2nd Floor Room SEQUENCE:0 STATUS:CONFIRMED SUMMARY:Supporting admin service authentication via OAuth and WS-Security TRANSP:OPAQUE END:VEVENT END:VCALENDAR invite.ics Description: application/ics ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Failed authorization attempt to access service 'RegistryAdminService' operation 'isRegistryReadOnly' by 'user1'
Hi Johann, Seems like the stack originates from core/org.wso2.carbon.ui/src/main/resources/web/admin/jsp/registry_styles_ajaxprocessor.jsp JSP file. It has some logic to execute based on registry's mode (RW..). But i am not sure why we need to execute this logic during logout process. Maybe registry person will be able to give more information. On Fri, Feb 3, 2012 at 5:11 PM, Johann Nallathamby joh...@wso2.com wrote: With regard to the issue https://wso2.org/jira/browse/CARBON-11442, the fix we agreed upon after discussing it, is to ask the user for a confirmation before updating his own roles and signing him out. The fix works fine without any issue in the UI. However, it seems that after the user's own roles have been updated properly, in the process of signing out a very similar exception to the one in the original issue occurs as follows in the console: [2012-02-03 15:56:11,514] ERROR {java.lang.Class} - Access Denied. Failed authorization attempt to access service 'RegistryAdminService' operation 'isRegistryReadOnly' by 'user1' [2012-02-03 15:56:11,516] ERROR {org.apache.axis2.engine.AxisEngine} - Access Denied. org.apache.axis2.AxisFault: Access Denied. at org.wso2.carbon.server.admin.module.handler.AuthorizationHandler.doAuthorization(AuthorizationHandler.java:129) at org.wso2.carbon.server.admin.module.handler.AuthorizationHandler.invoke(AuthorizationHandler.java:81) at org.apache.axis2.engine.Phase.invokeHandler(Phase.java:340) at org.apache.axis2.engine.Phase.invoke(Phase.java:313) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:262) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:168) at org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HTTPTransportUtils.java:172) at org.apache.axis2.transport.http.AxisServlet.doPost(AxisServlet.java:146) at org.wso2.carbon.core.transports.CarbonServlet.doPost(CarbonServlet.java:206) at javax.servlet.http.HttpServlet.service(HttpServlet.java:641) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.eclipse.equinox.http.servlet.internal.ServletRegistration.handleRequest(ServletRegistration.java:90) at org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias(ProxyServlet.java:111) at org.eclipse.equinox.http.servlet.internal.ProxyServlet.service(ProxyServlet.java:67) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.wso2.carbon.bridge.BridgeServlet.service(BridgeServlet.java:164) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:304) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:240) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:164) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:462) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:164) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:100) at org.wso2.carbon.server.CarbonStuckThreadDetectionValve.invoke(CarbonStuckThreadDetectionValve.java:154) at org.wso2.carbon.server.TomcatServer$1.invoke(TomcatServer.java:257) at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:563) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:118) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:399) at org.apache.coyote.http11.Http11NioProcessor.process(Http11NioProcessor.java:396) at org.apache.coyote.http11.Http11NioProtocol$Http11ConnectionHandler.process(Http11NioProtocol.java:356) at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1534) at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) at java.lang.Thread.run(Thread.java:662) [2012-02-03 15:56:11,530] ERROR {org.wso2.carbon.ui.clients.RegistryAdminServiceClient} - Error occurred while checking registry mode org.apache.axis2.AxisFault: Access Denied. at org.apache.axis2.util.Utils.getInboundFaultFromMessageContext(Utils.java:531) at org.apache.axis2.description.OutInAxisOperationClient.handleResponse(OutInAxisOperation.java:375) at org.apache.axis2.description.OutInAxisOperationClient.send(OutInAxisOperation.java:421) at org.apache.axis2.description.OutInAxisOperationClient.executeImpl(OutInAxisOperation.java:229) at org.apache.axis2.client.OperationClient.execute(OperationClient.java:165) at org.wso2.carbon.core.commons.stub.registry.service.RegistryAdminServiceStub.isRegistryReadOnly(RegistryAdminServiceStub.java:470) at
[Carbon-dev] Invitation: Rampart - OpenSAML migration review @ Mon Jan 30 11am - 12pm (carbon-dev@wso2.org)
BEGIN:VCALENDAR PRODID:-//Google Inc//Google Calendar 70.9054//EN VERSION:2.0 CALSCALE:GREGORIAN METHOD:REQUEST BEGIN:VEVENT DTSTART:20120130T053000Z DTEND:20120130T063000Z DTSTAMP:20120126T074114Z ORGANIZER;CN=ami...@wso2.com:mailto:ami...@wso2.com UID:bnqfqgsla3b1k7rqbnejgor...@google.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Selvaratnam Uthaiyashankar;X-NUM-GUESTS=0:mailto:shan...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Sagara Gunathunga;X-NUM-GUESTS=0:mailto:sag...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Afkham Azeez;X-NUM-GUESTS=0:mailto:az...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Thilina Buddhika;X-NUM-GUESTS=0:mailto:thili...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=ACCEPTED;RSVP=TRUE ;CN=Amila Jayasekara;X-NUM-GUESTS=0:mailto:ami...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=carbon-dev@wso2.org;X-NUM-GUESTS=0:mailto:carbon-dev@wso2.org ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Manjula Rathnayake;X-NUM-GUESTS=0:mailto:manju...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Asela Pathberiya;X-NUM-GUESTS=0:mailto:as...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Prabath Siriwardana;X-NUM-GUESTS=0:mailto:prab...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Suresh Attanayaka;X-NUM-GUESTS=0:mailto:sur...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Johann Nallathamby;X-NUM-GUESTS=0:mailto:joh...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Amila Suriarachchi;X-NUM-GUESTS=0:mailto:am...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Hasini Gunasinghe;X-NUM-GUESTS=0:mailto:has...@wso2.com CREATED:20120126T074113Z DESCRIPTION:Objective of this session is to review the OpenSAML latest vers ion migration and discuss possible improvements to WS-Trust (Rampart) code. \nView your event at http://www.google.com/calendar/event?action=VIEWeid=Y m5xZnFnc2xhM2IxazdycWJuZWpnb3JibWsgY2FyYm9uLWRldkB3c28yLm9yZwtok=MTUjYW1pb GFqQHdzbzIuY29tY2MwMWRjMmY1NzQ4NjM3MDIxYThiMmJmMDU2MWQ1NTU4YjEzMzRhNgctz=A sia%2FColombohl=en. LAST-MODIFIED:20120126T074113Z LOCATION:#59\, 2nd Floor Board Room SEQUENCE:0 STATUS:CONFIRMED SUMMARY:Rampart - OpenSAML migration review TRANSP:OPAQUE END:VEVENT END:VCALENDAR invite.ics Description: application/ics ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Axis2 Transport Version Property in ESB Product
Its kind of confusing to have multiple dependency versions in trunk. Is it possible to have a single dependency version in trunk ? Thanks AmilaJ On Fri, Jan 13, 2012 at 8:05 AM, Harshana Martin harsh...@wso2.com wrote: Hi, I made this change and it has fixed the ESB Build failures. Thanks and Regards, Harshana On Fri, Jan 13, 2012 at 2:12 AM, Harshana Martin harsh...@wso2.com wrote: Hi, Currently $Subject is set to axis2.transport.version1.1.0-wso2v4/axis2.transport.version in the ESB Product pom. But the version we build in dependencies is 1.1.0-wso2v6. Therefore it causes a build failure in ESB Service P2-Profile gen module. Thanks and Regards, Harshana -- Harshana Martin Software Engineer WSO2 Inc. Web:http://wso2.com http://wso2.org Mobile: +94 716062650 Blog: http://harshana05.blogspot.com Profile: https://www.google.com/profiles/harshana05 Twitter: http://twitter.com/harshana05 -- Harshana Martin Software Engineer WSO2 Inc. Web:http://wso2.com http://wso2.org Mobile: +94 716062650 Blog: http://harshana05.blogspot.com Profile: https://www.google.com/profiles/harshana05 Twitter: http://twitter.com/harshana05 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] [Carbon-commits] [Carbon] svn commit r118821 - trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider
On Wed, Jan 11, 2012 at 1:28 PM, Afkham Azeez az...@wso2.com wrote: Please remove the year from the license header. Will do. Also, do you think it is a good idea to add a test case for this fix? To reproduce this issue we need to have a hosted service in ESB or AS (secured with SAML policy) and IS. Is it possible to start 2 types of servers within an integration test ? On Wed, Jan 11, 2012 at 12:14 PM, ami...@wso2.com wrote: Author: amilaj Date: Tue Jan 10 22:44:40 2012 New Revision: 118821 URL: http://wso2.org/svn/browse/wso2?view=revrevision=118821 Log: Fixing issue CARBON-10878. Made attribute statement use claim URI instead of name Modified: trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider/AttributeCallbackHandler.java Modified: trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider/AttributeCallbackHandler.java URL: http://wso2.org/svn/browse/wso2/trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider/AttributeCallbackHandler.java?rev=118821r1=118820r2=118821view=diff == --- trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider/AttributeCallbackHandler.java (original) +++ trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider/AttributeCallbackHandler.java Tue Jan 10 22:44:40 2012 @@ -1,20 +1,20 @@ -/* -* Copyright (c) 2005-2010, WSO2 Inc. (http://www.wso2.org) All Rights Reserved. -* -* WSO2 Inc. licenses this file to you under the Apache License, -* Version 2.0 (the License); you may not use this file except -* in compliance with the License. -* You may obtain a copy of the License at -* -* http://www.apache.org/licenses/LICENSE-2.0 -* -* Unless required by applicable law or agreed to in writing, -* software distributed under the License is distributed on an -* AS IS BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY -* KIND, either express or implied. See the License for the -* specific language governing permissions and limitations -* under the License. -*/ +/* +* Copyright (c) 2005-2010, WSO2 Inc. (http://www.wso2.org) All Rights Reserved. +* +* WSO2 Inc. licenses this file to you under the Apache License, +* Version 2.0 (the License); you may not use this file except +* in compliance with the License. +* You may obtain a copy of the License at +* +* http://www.apache.org/licenses/LICENSE-2.0 +* +* Unless required by applicable law or agreed to in writing, +* software distributed under the License is distributed on an +* AS IS BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY +* KIND, either express or implied. See the License for the +* specific language governing permissions and limitations +* under the License. +*/ package org.wso2.carbon.identity.provider; import org.apache.axiom.om.OMElement; @@ -236,8 +236,7 @@ claimData.setValue(mapValues.get(claimData.getUri())); if (claimData.getValue() != null) { if (RahasConstants.TOK_TYPE_SAML_20.equals(rahasData.getTokenType())) { - saml2Attribute = getSAML2Attribute(supportedClaims.get(claimData.getUri()) - .getDisplayTag(), claimData.getValue(), claimData.getUri()); + saml2Attribute = getSAML2Attribute(claimData.getUri(), claimData.getValue(), claimData.getUri()); callback.addAttributes(saml2Attribute); } else { attribute = new SAMLAttribute(supportedClaims.get(claimData.getUri()) ___ Carbon-commits mailing list carbon-comm...@wso2.org https://wso2.org/cgi-bin/mailman/listinfo/carbon-commits -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] [Carbon-commits] [Carbon] svn commit r118821 - trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider
On Wed, Jan 11, 2012 at 1:51 PM, Senaka Fernando sen...@wso2.com wrote: Hi Amila, Just wondering why the method getSAML2Attribute() accepts the same parameter twice? Is this different in other places, or can't we get rid of one parameter? Method is used more than once in the code. Thus the parameter values can be different. Thanks AmilaJ Thanks, Senaka. On Wed, Jan 11, 2012 at 1:28 PM, Afkham Azeez az...@wso2.com wrote: Please remove the year from the license header. Also, do you think it is a good idea to add a test case for this fix? On Wed, Jan 11, 2012 at 12:14 PM, ami...@wso2.com wrote: Author: amilaj Date: Tue Jan 10 22:44:40 2012 New Revision: 118821 URL: http://wso2.org/svn/browse/wso2?view=revrevision=118821 Log: Fixing issue CARBON-10878. Made attribute statement use claim URI instead of name Modified: trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider/AttributeCallbackHandler.java Modified: trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider/AttributeCallbackHandler.java URL: http://wso2.org/svn/browse/wso2/trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider/AttributeCallbackHandler.java?rev=118821r1=118820r2=118821view=diff == --- trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider/AttributeCallbackHandler.java (original) +++ trunk/carbon/components/identity/org.wso2.carbon.identity.provider/src/main/java/org/wso2/carbon/identity/provider/AttributeCallbackHandler.java Tue Jan 10 22:44:40 2012 @@ -1,20 +1,20 @@ -/* -* Copyright (c) 2005-2010, WSO2 Inc. (http://www.wso2.org) All Rights Reserved. -* -* WSO2 Inc. licenses this file to you under the Apache License, -* Version 2.0 (the License); you may not use this file except -* in compliance with the License. -* You may obtain a copy of the License at -* -* http://www.apache.org/licenses/LICENSE-2.0 -* -* Unless required by applicable law or agreed to in writing, -* software distributed under the License is distributed on an -* AS IS BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY -* KIND, either express or implied. See the License for the -* specific language governing permissions and limitations -* under the License. -*/ +/* +* Copyright (c) 2005-2010, WSO2 Inc. (http://www.wso2.org) All Rights Reserved. +* +* WSO2 Inc. licenses this file to you under the Apache License, +* Version 2.0 (the License); you may not use this file except +* in compliance with the License. +* You may obtain a copy of the License at +* +* http://www.apache.org/licenses/LICENSE-2.0 +* +* Unless required by applicable law or agreed to in writing, +* software distributed under the License is distributed on an +* AS IS BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY +* KIND, either express or implied. See the License for the +* specific language governing permissions and limitations +* under the License. +*/ package org.wso2.carbon.identity.provider; import org.apache.axiom.om.OMElement; @@ -236,8 +236,7 @@ claimData.setValue(mapValues.get(claimData.getUri())); if (claimData.getValue() != null) { if (RahasConstants.TOK_TYPE_SAML_20.equals(rahasData.getTokenType())) { - saml2Attribute = getSAML2Attribute(supportedClaims.get(claimData.getUri()) - .getDisplayTag(), claimData.getValue(), claimData.getUri()); + saml2Attribute = getSAML2Attribute(claimData.getUri(), claimData.getValue(), claimData.getUri()); callback.addAttributes(saml2Attribute); } else { attribute = new SAMLAttribute(supportedClaims.get(claimData.getUri()) ___ Carbon-commits mailing list carbon-comm...@wso2.org https://wso2.org/cgi-bin/mailman/listinfo/carbon-commits -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Senaka Fernando Product Manager - WSO2 Governance Registry; Associate Technical Lead; WSO2 Inc.; http://wso2.com Member; Apache Software Foundation; http://apache.org E-mail: senaka AT wso2.com P: +1 408 754 7388; ext: 51736; M: +94 77 322 1818 Linked-In:
[Carbon-dev] Need to patch Axiom
Hi All, In-order to fix [1] we need to patch Axiom. But currently we are not maintaining an Axiom local branch. How should we proceed with this ? The relevant Axiom issue is in [2] and the fix for the issue is in Axiom-1.2.3-SNAPSHOT. Thanks AmilaJ [1] https://wso2.org/jira/browse/CARBON-11163 [2] https://issues.apache.org/jira/browse/AXIOM-386 -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Need to patch Axiom
On Wed, Jan 11, 2012 at 5:08 PM, Thilina Buddhika thili...@wso2.com wrote: Hi AmilaJ, Shall we check whether there will be an Axiom release before next Carbon major release? Will do. Thanks AmilaJ Thanks, Thilina On Wed, Jan 11, 2012 at 2:45 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, In-order to fix [1] we need to patch Axiom. But currently we are not maintaining an Axiom local branch. How should we proceed with this ? The relevant Axiom issue is in [2] and the fix for the issue is in Axiom-1.2.3-SNAPSHOT. Thanks AmilaJ [1] https://wso2.org/jira/browse/CARBON-11163 [2] https://issues.apache.org/jira/browse/AXIOM-386 -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Thilina Buddhika Associate Technical Lead WSO2 Inc. ; http://wso2.com lean . enterprise . middleware phone : +94 77 44 88 727 blog : http://blog.thilinamb.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Module version updates for root and dependency pom in trunk
Versions are updated and committed to trunk. Thanks AmilaJ On Wed, Jan 11, 2012 at 9:43 AM, Thilini Ishaka thil...@wso2.com wrote: On Wed, Jan 11, 2012 at 9:21 AM, Amila Jayasekara ami...@wso2.com wrote: On Tue, Jan 10, 2012 at 3:34 PM, Thilini Ishaka thil...@wso2.com wrote: Hi, Carbon root pom and dependency pom need version updates for wss4j, rampart and synapse modules. Need to be corrected as; wss4j 1.5.11-wso2v3 rampart 1.6.1-wso2v3 synapse 2.1.0-wso2v5 root pom (currently) version.wss4j1.5.11-wso2v1/version.wss4j rampart.version1.6.1-wso2v2/rampart.version version.synapse2.1.0-wso2v2/version.synapse dependency pom (currently) wss4j 1.5.11-wso2v1 rampart 1.6.1-wso2v2 synapse 2.1.0-wso2v4 Guess we also need to change relevant orbit versions also (rampart.osgi.version, orbit.version.wss4j) ? Yes. Shall i proceed with the change ? (people need to build dependencies and orbit again) +1 Thanks AmilaJ Thanks -- Regards Thilini Ishaka WSO2 Inc ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Regards Thilini Ishaka WSO2 Inc ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Module version updates for root and dependency pom in trunk
On Tue, Jan 10, 2012 at 3:34 PM, Thilini Ishaka thil...@wso2.com wrote: Hi, Carbon root pom and dependency pom need version updates for wss4j, rampart and synapse modules. Need to be corrected as; wss4j 1.5.11-wso2v3 rampart 1.6.1-wso2v3 synapse 2.1.0-wso2v5 root pom (currently) version.wss4j1.5.11-wso2v1/version.wss4j rampart.version1.6.1-wso2v2/rampart.version version.synapse2.1.0-wso2v2/version.synapse dependency pom (currently) wss4j 1.5.11-wso2v1 rampart 1.6.1-wso2v2 synapse 2.1.0-wso2v4 Guess we also need to change relevant orbit versions also (rampart.osgi.version, orbit.version.wss4j) ? Shall i proceed with the change ? (people need to build dependencies and orbit again) Thanks AmilaJ Thanks -- Regards Thilini Ishaka WSO2 Inc ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Moving Jar Signing of Products in to a separate Profile
On Wed, Jan 11, 2012 at 12:00 PM, Afkham Azeez az...@wso2.com wrote: +1. this will reduce the product build time by about 60%. Sanjaya, in our Stratos setup script, by default, let's do the jar signing, using the private key in the carbon.jks by default. Let's make the keystore a configurable parameter so that a different one can be used during setup. Are we planning to disable security policy enforcement also ? Otherwise we will not be able to start stratos packs after a build. Thanks AmilaJ On Wed, Jan 11, 2012 at 11:54 AM, Harshana Martin harsh...@wso2.com wrote: Hi All, As per offline discussion had with Azeez and Shankar, we are planning to move Jar Signing process to a separate maven profile in order to improve the Carbon Build time. Idea is to avoid Jar signing for normal builds since it consumes lot of time and it is not required for normal users. if someone wants it, they can use the maven profile. Thanks and Regards, Harshana -- Harshana Martin Software Engineer WSO2 Inc. Web:http://wso2.com http://wso2.org Mobile: +94 716062650 Blog: http://harshana05.blogspot.com Profile: https://www.google.com/profiles/harshana05 Twitter: http://twitter.com/harshana05 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] identity with openldap problems
On Tue, Jan 3, 2012 at 11:24 PM, Bram Cymet bcy...@cbnco.com wrote: Ok i figured out my problem. I was missing the GroupNameListFilter property. Now I am able to log in. The next thing I would like to figure out is if I can use my existing kerberos KDC for authentication? Hi Bram, Can you elaborate your question bit further ? Are you trying authenticate users in WSO2 server using an external Kerberos KDC OR else are you trying to setup KDC server which comes with embedded LDAP for user authentication ? Thanks AmilaJ Thanks, Bram On 12-01-03 11:28 AM, Bram Cymet wrote: Hi Hasini, Here is my user-mgt.xml file UserManager Realm Configuration AdminRoleadmin/AdminRole AdminUser UserNamebcymet/UserName PasswordXX/Password /AdminUser EveryOneRoleNameeveryone/EveryOneRoleName !-- By default users in thsi role sees the registry root -- ReadOnlytrue/ReadOnly MaxUserNameListLength500/MaxUserNameListLength Property name=urljdbc:h2:repository/database/WSO2CARBON_DB/Property Property name=userNamewso2carbon/Property Property name=passwordwso2carbon/Property Property name=driverNameorg.h2.Driver/Property Property name=maxActive50/Property Property name=maxWait6/Property Property name=minIdle5/Property /Configuration UserStoreManager class=org.wso2.carbon.user.core.ldap.LDAPUserStoreManager Property name=ReadOnlytrue/Property Property name=MaxUserNameListLength100/Property Property name=ConnectionURLldap://localhost:389/Property Property name=ConnectionNamecn=admin,dc=TESTLDAP,dc=CBN/Property Property name=ConnectionPassword**/Property Property name=UserSearchBaseou=people,dc=TESTLDAP,dc=CBN/Property Property name=UserNameListFilter(objectClass=inetOrgPerson)/Property Property name=UserNameAttributeuid/Property Property name=ReadLDAPGroupsfalse/Property Property name=GroupSearchBaseou=groups,dc=TESTLDAP,dc=CBN/Property Property name=GroupSearchFilter(objectClass=groupOfNames)/Property Property name=GroupNameAttributecn/Property Property name=MembershipAttributemember/Property /UserStoreManager AuthorizationManager class=org.wso2.carbon.user.core.authorization.JDBCAuthorizationManager /AuthorizationManager /Realm /UserManager I followed the directions for the read only setup at first. I thought that the part in the file: AdminRoleadmin/AdminRole AdminUser UserNamebcymet/UserName PasswordXX/Password /AdminUser would give my user permissions that it needed. I guess I am missing something else. On 12-01-03 11:23 AM, Hasini Gunasinghe wrote: Hi Bram, In order to login, you need to have login permission as well. (i.e only matching user name, password is not sufficient) In the first time login, you should login as the admin user which you specify in the user-mgt.xml. Admin user can then create users, roles and assign users to roles and permissions to those roles. So can you please make sure that you specify the admin user and admin role in user-mgt.xml correctly and also the admin user belongs to the admin role in the LDAP. Also, please make sure that you provided the correct value for the group search base property in user-mgt.xml If you can attach the user-mgt.xml, we might be able to provide more insight. Thanks, Hasini. On Tue, Jan 3, 2012 at 8:45 PM, Bram Cymet bcy...@cbnco.com mailto:bcy...@cbnco.com wrote: Hi, I am attempting to setup a wso2 identity server using my existing openldap instance as the userstore. I can see the server connecting to my ldap instance when I attempt to log in so I know the ConnectionURL, Name, and Password are correct. I can even see the server bind to my ldap instance successfully. However I can not log into the identity web interface. In the logs all I get is: [2012-01-03 09:55:11,033] WARN {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - Failed Administrator login attempt 'bcymet[0]' at [2012-01-03 09:55:11,0032] from IP address 172.20.22.157 Any idea what might be going on or how I can up the logging to get a more detailed message? Thanks, -- Bram Cymet Software Developer Canadian Bank Note Co. Ltd. 613-608-9752 ___ Carbon-dev mailing list Carbon-dev@wso2.org mailto:Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___
Re: [Carbon-dev] External Authentication API in Carbon
2012/1/3 Güçlü Akkaya guclu.akk...@ardictech.com: Hi, We want to use the user-store database of the Carbon servers for providing authentication to a non-carbon server. In the wso2 carbon is there an api providing authentication module for non-carbon servers, which uses user-store database schema of carbon servers? Hi Akkaya, WSO2 servers provide a web service API to authenticate users. WSO2 servers provide an admin webservice called AuthenticationAdmin. You can check the WSDL of this web service using a URL similar to [1] (In this example i am running WSO2 server in my local machine in port 9443). In order to access WSDL in [1] you need to enable viewing admin webservice WSDLs. For that you need to enable following configuration in ${CARBON_HOME/repository/conf//carbon.xml. HideAdminServiceWSDLsfalse/HideAdminServiceWSDLs (Under Axis2Config). Hope this helpful. [1] https://localhost:9443/services/AuthenticationAdmin?wsdl Thanks AmilaJ Fatih Güçlü Akkaya Software Development Engineer ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] ApacheDS as default user store of core ?
On Tue, Jan 3, 2012 at 4:07 PM, Paul Fremantle p...@wso2.com wrote: Is there any other difference betwee ApacheDS embedded and H2? In general I think that what you have suggested is the right way forward, but I want to check what else? Hi Paul, Following are some other differences between ApacheDS and Embedded H2. 1. ApacheDS has an internal KDC server. By default this is disabled. (It is enabled only for IS). But can be enable using a configuration change and run a KDC server in other products also. 2. Embedded H2 allows a single client connection, but multiple clients can connect to ApacheDS 3. ApacheDS adds about 7.4 MB to distribution size Thanks AmilaJ Paul On 28 June 2011 07:27, Amila Jayasekara ami...@wso2.com wrote: Hi All, It seems that lot of members were under the impression that embedded LDAP server is not binding an address. Thus most of the people are under the impression that it behaves like H2. But this is not the case. We (me, Shankar, Amila and Azeez) had a discussion about this. As per our current implementation we have LDAP servers embedded in all products. Also it seems having LDAP servers in all products is not architecturally sound. Thus apacheds has a way of by passing the network layer and using just like H2. For this we need to write a new user store manager. But IMO we are not going to gain much from implementing a user store manager which uses only apacheds (By passing network layer). Instead we could use H2. So the conclusion was to use apacheds only within Identity Server and make it an optional feature for other products. Other products will use H2 as it was used to be. Please let us know what you all think about this conclusion. Feedback appreciated. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Paul Fremantle CTO and Co-Founder, WSO2 OASIS WS-RX TC Co-chair, VP, Apache Synapse UK: +44 207 096 0336 US: +1 646 595 7614 blog: http://pzf.fremantle.org twitter.com/pzfreo p...@wso2.com wso2.com Lean Enterprise Middleware Disclaimer: This communication may contain privileged or other confidential information and is intended exclusively for the addressee/s. If you are not the intended recipient/s, or believe that you may have received this communication in error, please reply to the sender indicating that fact and delete the copy you received and in addition, you should not print, copy, retransmit, disseminate, or otherwise use the information contained in this communication. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. The sender does not accept liability for any errors or omissions. ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Mobile : +94773330538 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Latest set of packs available for testing
Please check jar file inside ${carbon.home}/lib/patches. Thanks AmilaJ On Tue, Sep 6, 2011 at 2:12 AM, Supun Malinga sup...@wso2.com wrote: Hi, Looks like some jars hasn't been signed. Will fix. thanks, On Tue, Sep 6, 2011 at 1:04 AM, Prabath Siriwardena prab...@wso2.com wrote: Stratos app server fails at the startup... App Server team please have a look.. [2011-09-06 01:00:39,342] ERROR {org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource} - Error reading descriptors java.lang.SecurityException: class org.apache.coyote.RequestInfo's signer information does not match signer information of other classes in the same package at java.lang.ClassLoader.checkCerts(ClassLoader.java:806) at java.lang.ClassLoader.preDefineClass(ClassLoader.java:487) at java.lang.ClassLoader.defineClassCond(ClassLoader.java:625) at java.lang.ClassLoader.defineClass(ClassLoader.java:615) at java.security.SecureClassLoader.defineClass(SecureClassLoader.java:141) at java.net.URLClassLoader.defineClass(URLClassLoader.java:283) at java.net.URLClassLoader.access$000(URLClassLoader.java:58) at java.net.URLClassLoader$1.run(URLClassLoader.java:197) at java.security.AccessController.doPrivileged(Native Method) at java.net.URLClassLoader.findClass(URLClassLoader.java:190) at java.lang.ClassLoader.loadClass(ClassLoader.java:306) at java.lang.ClassLoader.loadClass(ClassLoader.java:247) at java.lang.Class.getDeclaredMethods0(Native Method) at java.lang.Class.privateGetDeclaredMethods(Class.java:2427) at java.lang.Class.privateGetPublicMethods(Class.java:2547) at java.lang.Class.getMethods(Class.java:1410) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.createManagedBean(MbeansDescriptorsIntrospectionSource.java:307) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.execute(MbeansDescriptorsIntrospectionSource.java:83) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.loadDescriptors(MbeansDescriptorsIntrospectionSource.java:76) at org.apache.tomcat.util.modeler.Registry.load(Registry.java:696) at org.apache.tomcat.util.modeler.Registry.loadDescriptors(Registry.java:807) at org.apache.tomcat.util.modeler.Registry.findManagedBean(Registry.java:595) at org.apache.tomcat.util.modeler.Registry.findManagedBean(Registry.java:885) at org.apache.tomcat.util.modeler.Registry.registerComponent(Registry.java:737) at org.apache.coyote.AbstractProtocolHandler.init(AbstractProtocolHandler.java:348) at org.apache.coyote.http11.AbstractHttp11JsseProtocol.init(AbstractHttp11JsseProtocol.java:119) at org.apache.catalina.connector.Connector.initInternal(Connector.java:910) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.core.StandardService.initInternal(StandardService.java:559) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.core.StandardServer.initInternal(StandardServer.java:781) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:136) at org.apache.catalina.startup.Tomcat.start(Tomcat.java:305) at org.wso2.carbon.tomcat.BetterTomcat.start(BetterTomcat.java:68) at org.wso2.carbon.server.TomcatServer.start(TomcatServer.java:114) at org.wso2.carbon.server.Main.startServer(Main.java:74) at org.wso2.carbon.server.Main.start(Main.java:192) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at org.wso2.carbon.bootstrap.Bootstrap.loadClass(Bootstrap.java:62) at org.wso2.carbon.bootstrap.Bootstrap.main(Bootstrap.java:43) [2011-09-06 01:00:39,349] WARN {org.apache.tomcat.util.modeler.Registry} - No metadata found for org.apache.coyote.RequestGroupInfo [2011-09-06 01:00:39,349] ERROR {org.apache.tomcat.util.modeler.Registry} - Error registering Tomcat:type=GlobalRequestProcessor,name=http-nio-9763 java.lang.NullPointerException at org.apache.tomcat.util.modeler.Registry.registerComponent(Registry.java:740) at org.apache.coyote.AbstractProtocolHandler.init(AbstractProtocolHandler.java:348) at org.apache.coyote.http11.AbstractHttp11JsseProtocol.init(AbstractHttp11JsseProtocol.java:119) at org.apache.catalina.connector.Connector.initInternal(Connector.java:910) at
Re: [Carbon-dev] Invitation: [Code Review][Group C] ApacheDS server component @ Thu Sep 1 2pm - 3pm (carbon-dev@wso2.org)
This is going to take place at 2nd floor board room. Thanks AmilaJ On Wed, Aug 31, 2011 at 6:37 PM, Amila Jayasekara ami...@wso2.com wrote: more details »https://www.google.com/calendar/event?action=VIEWeid=bHA2c3VnbDhndGQ4YWc4OWNwMjJyNzBvZW8gY2FyYm9uLWRldkB3c28yLm9yZwtok=MTUjYW1pbGFqQHdzbzIuY29tNDMxMDJlZTk1NjlkY2ZiMTU1NjVjZWZjMzQwM2YzOWNmYmFmZTg3Zgctz=Asia%2FColombohl=en [Code Review][Group C] ApacheDS server component Reviewing apacheds wrapping code. Crucible link - https://wso2.org/crucible/cru/ApacheDS-Core-1http://www.google.com/url?q=https%3A%2F%2Fwso2.org%2Fcrucible%2Fcru%2FApacheDS-Core-1usd=2usg=AFQjCNF0b6UBCoWnaGc06-5c6RjEpfYKEw *When* Thu Sep 1 2pm – 3pm Colombo *Where* 4th Floor Meeting Space (maphttp://maps.google.lk/maps?q=4th+Floor+Meeting+Spacehl=en ) *Calendar* carbon-dev@wso2.org *Who* • ami...@wso2.com - organizer • Prabath Siriwardana • Samisa Abeysinghe • Afkham Azeez • Amila Suriarachchi • carbon-dev@wso2.org • Sumedha Rubasinghe Going? ***Yeshttps://www.google.com/calendar/event?action=RESPONDeid=bHA2c3VnbDhndGQ4YWc4OWNwMjJyNzBvZW8gY2FyYm9uLWRldkB3c28yLm9yZwrst=1tok=MTUjYW1pbGFqQHdzbzIuY29tNDMxMDJlZTk1NjlkY2ZiMTU1NjVjZWZjMzQwM2YzOWNmYmFmZTg3Zgctz=Asia%2FColombohl=en- Maybehttps://www.google.com/calendar/event?action=RESPONDeid=bHA2c3VnbDhndGQ4YWc4OWNwMjJyNzBvZW8gY2FyYm9uLWRldkB3c28yLm9yZwrst=3tok=MTUjYW1pbGFqQHdzbzIuY29tNDMxMDJlZTk1NjlkY2ZiMTU1NjVjZWZjMzQwM2YzOWNmYmFmZTg3Zgctz=Asia%2FColombohl=en- Nohttps://www.google.com/calendar/event?action=RESPONDeid=bHA2c3VnbDhndGQ4YWc4OWNwMjJyNzBvZW8gY2FyYm9uLWRldkB3c28yLm9yZwrst=2tok=MTUjYW1pbGFqQHdzbzIuY29tNDMxMDJlZTk1NjlkY2ZiMTU1NjVjZWZjMzQwM2YzOWNmYmFmZTg3Zgctz=Asia%2FColombohl=en ***more options »https://www.google.com/calendar/event?action=VIEWeid=bHA2c3VnbDhndGQ4YWc4OWNwMjJyNzBvZW8gY2FyYm9uLWRldkB3c28yLm9yZwtok=MTUjYW1pbGFqQHdzbzIuY29tNDMxMDJlZTk1NjlkY2ZiMTU1NjVjZWZjMzQwM2YzOWNmYmFmZTg3Zgctz=Asia%2FColombohl=en Invitation from Google Calendar https://www.google.com/calendar/ You are receiving this courtesy email at the account carbon-dev@wso2.orgbecause you are an attendee of this event. To stop receiving future notifications for this event, decline this event. Alternatively you can sign up for a Google account at https://www.google.com/calendar/ and control your notification settings for your entire calendar. ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Invitation: [Code Review][Group C] ApacheDS server component @ Thu Sep 1 2pm - 3pm (carbon-dev@wso2.org)
BEGIN:VCALENDAR PRODID:-//Google Inc//Google Calendar 70.9054//EN VERSION:2.0 CALSCALE:GREGORIAN METHOD:REQUEST BEGIN:VEVENT DTSTART:20110901T083000Z DTEND:20110901T093000Z DTSTAMP:20110831T130703Z ORGANIZER;CN=ami...@wso2.com:mailto:ami...@wso2.com UID:lp6sugl8gtd8ag89cp22r70...@google.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Prabath Siriwardana;X-NUM-GUESTS=0:mailto:prab...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Samisa Abeysinghe;X-NUM-GUESTS=0:mailto:sam...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Afkham Azeez;X-NUM-GUESTS=0:mailto:az...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Amila Suriarachchi;X-NUM-GUESTS=0:mailto:am...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=ACCEPTED;RSVP=TRUE ;CN=Amila Jayasekara;X-NUM-GUESTS=0:mailto:ami...@wso2.com ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=carbon-dev@wso2.org;X-NUM-GUESTS=0:mailto:carbon-dev@wso2.org ATTENDEE;CUTYPE=INDIVIDUAL;ROLE=REQ-PARTICIPANT;PARTSTAT=NEEDS-ACTION;RSVP= TRUE;CN=Sumedha Rubasinghe;X-NUM-GUESTS=0:mailto:sume...@wso2.com CREATED:20110831T130703Z DESCRIPTION:Reviewing apacheds wrapping code.\nCrucible link - https://wso2 .org/crucible/cru/ApacheDS-Core-1\nView your event at http://www.google.com /calendar/event?action=VIEWeid=bHA2c3VnbDhndGQ4YWc4OWNwMjJyNzBvZW8gY2FyYm9 uLWRldkB3c28yLm9yZwtok=MTUjYW1pbGFqQHdzbzIuY29tNDMxMDJlZTk1NjlkY2ZiMTU1NjV jZWZjMzQwM2YzOWNmYmFmZTg3Zgctz=Asia%2FColombohl=en. LAST-MODIFIED:20110831T130703Z LOCATION:4th Floor Meeting Space SEQUENCE:0 STATUS:CONFIRMED SUMMARY:[Code Review][Group C] ApacheDS server component TRANSP:OPAQUE END:VEVENT END:VCALENDAR invite.ics Description: application/ics ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Code reviews for this week.
Hi Azeez, I am stuck with few support issues. Also i am working from home today. Therefore i will not be able to do a code review today. Thus Hasini is on vacation on this week. Thanks AmilaJ On Tue, Aug 30, 2011 at 9:04 AM, Afkham Azeez az...@wso2.com wrote: HasiniG/AmilaJ, Please prepare for a code review in place of the one which was scheduled for today. Thanks Azeez On Mon, Aug 29, 2011 at 7:21 PM, Thilina Buddhika thili...@wso2.com wrote: Hi Azeez, I will be on vacation this week. Also there are some refactoring work going on for SSO impl. So I would like to do it in the 3rd week of Sept. if possible. Thanks, Thilina On Mon, Aug 29, 2011 at 5:34 PM, Afkham Azeez az...@wso2.com wrote: Please note the following, and send out invitations with Crucible project link; Group A Registry Caching - Senaka Group B Distributed Transactions - Anjana Group C Single Sign-On implementation - Thilina Group D Sample Installer - Shariq Group E DeploymentSynchronizer - Hiranya Code review groups WSO2 Technical reviews schedule: https://docs.google.com/a/wso2.com/spreadsheet/ccc?key=0AggG9aSKPgHOdEU4bTdVdnBZLURrVzl4TTU5Ni1lM1Ehl=en_US#gid=1 Please let me know if your name is not in any code review group. Thanks Azeez -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware -- Thilina Buddhika Associate Technical Lead WSO2 Inc. ; http://wso2.com lean . enterprise . middleware phone : +94 77 44 88 727 blog : http://blog.thilinamb.com -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Code reviews for this week.
On Tue, Aug 30, 2011 at 1:23 PM, Afkham Azeez az...@wso2.com wrote: What about Thursday or Friday? Hi Azeez, I am fine with Thursday. Which area are we focusing on ? (I am not that familiar with single sign on code) If there isnt a specific area, i would like to present some rampart code which i am re-factoring these days. Thanks AmilaJ Sent from my phone On Aug 30, 2011 1:05 PM, Amila Jayasekara ami...@wso2.com wrote: Hi Azeez, I am stuck with few support issues. Also i am working from home today. Therefore i will not be able to do a code review today. Thus Hasini is on vacation on this week. Thanks AmilaJ On Tue, Aug 30, 2011 at 9:04 AM, Afkham Azeez az...@wso2.com wrote: HasiniG/AmilaJ, Please prepare for a code review in place of the one which was scheduled for today. Thanks Azeez On Mon, Aug 29, 2011 at 7:21 PM, Thilina Buddhika thili...@wso2.com wrote: Hi Azeez, I will be on vacation this week. Also there are some refactoring work going on for SSO impl. So I would like to do it in the 3rd week of Sept. if possible. Thanks, Thilina On Mon, Aug 29, 2011 at 5:34 PM, Afkham Azeez az...@wso2.com wrote: Please note the following, and send out invitations with Crucible project link; Group A Registry Caching - Senaka Group B Distributed Transactions - Anjana Group C Single Sign-On implementation - Thilina Group D Sample Installer - Shariq Group E DeploymentSynchronizer - Hiranya Code review groups WSO2 Technical reviews schedule: https://docs.google.com/a/wso2.com/spreadsheet/ccc?key=0AggG9aSKPgHOdEU4bTdVdnBZLURrVzl4TTU5Ni1lM1Ehl=en_US#gid=1 Please let me know if your name is not in any code review group. Thanks Azeez -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware -- Thilina Buddhika Associate Technical Lead WSO2 Inc. ; http://wso2.com lean . enterprise . middleware phone : +94 77 44 88 727 blog : http://blog.thilinamb.com -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Build failure in 3.2.2 branch
On Sun, Aug 7, 2011 at 1:49 AM, Kathiravelu Pradeeban pradee...@wso2.com wrote: Seems this hasn't been fixed yet, where this becomes the first build failure in 3.2.2 branch. AmilaJ, May I get your expertise on quickly fixing this (indicated in bold face below)? Well, as the error suggested the org.slf4j 1.5.10.wso2v1 is not in the OSGI environment. This could be due to not specifying org.slf4j 1.5.10.wso2v1 as a feature. Thanks AmilaJ Thank you. Regards, Pradeeban. On Wed, Jul 27, 2011 at 3:40 PM, Rajika Kumarasiri raj...@wso2.com wrote: [INFO] Installing org.wso2.carbon.core.feature.group 3.2.2. [ERROR] Cannot complete the install because one or more required items could not be found. [ERROR] Software being installed: WSO2 Carbon - Carbon Feature 3.2.2 (org.wso2.carbon.core.feature.group 3.2.2) [ERROR] Missing requirement: opensaml2 2.0.0.alpha1-wso2v1 (opensaml2 2.0.0.alpha1-wso2v1) requires 'package org.slf4j 1.5.10.wso2v1' but it could not be found [ERROR] Cannot satisfy dependency: [ERROR] From: WSO2 Carbon - Carbon Common Feature 3.2.2 (org.wso2.carbon.core.common.feature.group 3.2.2) [ERROR] To: opensaml2 [2.0.0.alpha1-wso2v1] [ERROR] Cannot satisfy dependency: [ERROR] From: WSO2 Carbon - Carbon Feature 3.2.2 (org.wso2.carbon.core.feature.group 3.2.2) [ERROR] To: org.wso2.carbon.core.common.feature.group [3.2.2] [ERROR] Application failed, log file location: /home/rajika/projects/carbon/3.2.0/core/p2-profile-generation/carbon-p2-profile/3.2.2/target/p2-agent/configuration/1311757295149.log [INFO] [ERROR] BUILD ERROR [INFO] [INFO] ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Kathiravelu Pradeeban. Software Engineer. WSO2 Inc. Blog: [Llovizna] http://kkpradeeban.blogspot.com/ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Crypto Caching use in RampartConfig.
On Fri, Aug 5, 2011 at 11:25 PM, Jorge Infante Osorio jorg...@uci.cu wrote: Hi folks. I´m using Crypto Caching as a way to improve the security performance. I have a service deployed inside AS 4.1.0 with SecConSgnEncrUsername security policy. Also I use the IS 3.2.0 for STS request. In the policy attach you can see a lot of RampartConfig, this is the normal behavior? I load my service and sts policies from xml files. Hi Jorge, This is not the expected behavior. Ideally you should have a one crypto config for bootstrap policy and one for endpoint policy. Could you please let us know the steps of reproducing this ? Also are you experiencing this in client side or server side ? If it is in server side, please let us know how you hosted your loadPolicyService implementations into server. Thanks AmilaJ I figure out that this due to my load policy method: private Policy loadPolicyservice(String xmlPath) throws Exception { StAXOMBuilder builder = null; Policy policy = null; RampartConfig rc = null; CryptoConfig sigCryptoConfig = null; String path = null; String keystore = null; Properties merlinProp = null; CryptoConfig encrCryptoConfig = null; builder = new StAXOMBuilder(xmlPath); policy = PolicyEngine.getPolicy(builder.getDocumentElement()); rc = new RampartConfig(); rc.setUser(jorgeio); rc.setUserCertAlias(wso2carbon); rc.setEncryptionUser(wso2carbon); rc.setPwCbClass(PWCBHandlerESB.class.getName()); path = System.getProperty(user.dir); keystore = c:\\keys\\wso2carbon.jks; merlinProp = new Properties(); merlinProp.put(org.apache.ws.security.crypto.merlin.keystore.type, JKS); merlinProp.put(org.apache.ws.security.crypto.merlin.file, keystore); merlinProp.put(org.apache.ws.security.crypto.merlin.keystore.password, wso2carbon); sigCryptoConfig = new CryptoConfig(); sigCryptoConfig.setProvider(org.apache.ws.security.components.crypto.Merlin ); sigCryptoConfig.setProp(merlinProp); encrCryptoConfig = new CryptoConfig(); encrCryptoConfig.setProvider(org.apache.ws.security.components.crypto.Merli n); encrCryptoConfig.setProp(merlinProp); rc.setSigCryptoConfig(sigCryptoConfig); rc.setEncrCryptoConfig(encrCryptoConfig); policy.addAssertion(rc); return policy; } How can avoid this RampartConfig replication? I have another doubt : Why if I use org.apache.ws.security.components.crypto.Merlin as the crypto provider in my load policy methods, in the attach policy appear org.wso2.carbon.security.util.ServerCrypto. in this case what is the correct value to cryptoKey? Saludos, Ing. Jorge Infante Osorio. J´Dpto Soluciones SOA. CDAE. Fac. 5. UCI. ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Use an LDAP group to authorize a webapp access in AS 4.1
Hi Guillaume, Did you try giving login permission to GROUPA ? You can do that through the management console. Select Users and Roles - Roles - Select particular group - Select permissions Thanks AmilaJ On Sat, Jul 30, 2011 at 4:06 AM, Guillaume Devianne gdevia...@gmail.com wrote: Hi, My AS 4.1 is setup with an Active Directory through. In a Webapp, I use the Carbon authentification through : org.wso2.carbon.authenticator.proxy.AuthenticationAdminClient that calls the Carbon AuthenticationAdmin service. Now, if a user want to log in, I must include him in my admin group in the AS. How can I tell carbon that users from the GROUPA, defined in Active Directory and available in AS can log on to my app? Thanks, Guillaume ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] [Stratos-dev] Code freeze on Monday morning
I am working [1]. Seems like i will not be able to finish it before 10 am. [1] https://wso2.org/jira/browse/STRATOS-1190 Thanks AmilaJ On Mon, Jul 11, 2011 at 9:39 AM, Nuwan Bandara nu...@wso2.com wrote: Hi On Mon, Jul 11, 2011 at 9:12 AM, Dimuthu Leelarathne dimut...@wso2.com wrote: Hi Nuwan, On Sun, Jul 10, 2011 at 6:52 PM, Nuwan Bandara nu...@wso2.com wrote: Hi, there is an L1 issue [1] in Mashup server reported, however this cannot be reproduced, we will keep on lesting in latest packs, and in the meantime will reduce its priority to L2. This issue looks like an L1 to me because somehow the all services are undeployed and redeployed. Just my thoughts :) True, I went through the JS deployer, but couldnt find any possible causes. will investigate more into this. Also We have tested in two local setups several times but couldn't reproduce. Regards, /Nuwan tx, dimuthu Regards, /Nuwan [1] https://wso2.org/jira/browse/STRATOS-1402 On Sun, Jul 10, 2011 at 1:11 PM, Deependra Ariyadewa d...@wso2.com wrote: On Sat, Jul 9, 2011 at 2:43 PM, Dimuthu Leelarathne dimut...@wso2.com wrote: Hi, When looking at Cassandra code, I can see the previously discussed security hole is not there. It was just that we didn't know that the code existed. And Deep is currently enhancing and testing it. There is no issue in Keyspace isolation but I found some issue in keyspaces sharing among roles. I am working on it to fix it. Thankx, Deependra. tx, dimuthu On Fri, Jul 8, 2011 at 11:54 PM, Dimuthu Leelarathne dimut...@wso2.com wrote: Hi, As per STRATOS L1s, these are the people having most L1s. Rajika - 4 Sanjeewa - 4 @ Rajika and Sanjeewa are everything under control? @ Waruna - Can you/team look at the 2 issues assigned to Milinda? Still under development - Cassandra security (DimuthuL) - NIO transport issues (Hiranya) @ Hiranya can we get this done by Monday? Please shout if we cannot code freeze on Monday. thanks, dimuthul On Fri, Jul 8, 2011 at 4:04 PM, Dimuthu Leelarathne dimut...@wso2.com wrote: Hi all, Code freeze will be on Monday morning 10.00AM. Please checkin your L1 fixes by then. thanks, dimuthu ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Deependra Ariyadewa WSO2, Inc.; http://wso2.com/ email: d...@wso2.com; cell: +94 71 403 5996 ; PGP info: KeyID: 'DC627E6F' ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Thanks Regards, Nuwan Bandara Senior Software Engineer WSO2 Inc. | http://wso2.com lean . enterprise . middleware http://nuwan.bandara.co ___ Stratos-dev mailing list stratos-...@wso2.org https://wso2.org/cgi-bin/mailman/listinfo/stratos-dev -- Thanks Regards, Nuwan Bandara Senior Software Engineer WSO2 Inc. | http://wso2.com lean . enterprise . middleware http://nuwan.bandara.co ___ Stratos-dev mailing list stratos-...@wso2.org https://wso2.org/cgi-bin/mailman/listinfo/stratos-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Creating 3.2.1 for core/org.wso2.carbon.base
Please note that i create 3.2.1 for core/org.wso2.carbon.utils. Thanks AmilaJ On Wed, Jul 6, 2011 at 10:18 AM, Amila Jayasekara ami...@wso2.com wrote: Hi All, Just wanted to let you know that i created a 3.2.1 for core/org.wso2.carbon.base. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Carbon trunk build got struck at core/org.wso2.carbon.ldap.server/
Hi Melan, This is fixed. Thanks AmilaJ On Fri, Jul 8, 2011 at 9:22 AM, Melan Nimesh me...@wso2.com wrote: Hi, $subject, please have a look [INFO] [INFO] Building WSO2 Carbon - Directory Server [INFO] task-segment: [clean, install] [INFO] [INFO] [clean:clean {execution: default-clean}] [INFO] Deleting /home/carbontrunk/carbon/core/org.wso2.carbon.ldap.server/target [INFO] [incremental-build:incremental-build {execution: default}] [INFO] Verifying module descriptor ... [INFO] Pom descriptor modification detected. [INFO] Deleting /home/carbontrunk/carbon/core/org.wso2.carbon.ldap.server/target [INFO] [clean:clean {execution: auto-clean}] [INFO] Deleting /home/carbontrunk/carbon/core/org.wso2.carbon.ldap.server/target [INFO] [resources:resources {execution: default-resources}] [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 1 resource [INFO] [compiler:compile {execution: default-compile}] [INFO] Compiling 22 source files to /home/carbontrunk/carbon/core/org.wso2.carbon.ldap.server/target/classes [INFO] [resources:testResources {execution: default-testResources}] [INFO] Using 'UTF-8' encoding to copy filtered resources. [INFO] Copying 0 resource [INFO] Copying 0 resource [INFO] Copying 3 resources [INFO] [compiler:testCompile {execution: default-testCompile}] [INFO] Compiling 7 source files to /home/carbontrunk/carbon/core/org.wso2.carbon.ldap.server/target/test-classes [INFO] [surefire:test {execution: default-test}] [INFO] Surefire report directory: /home/carbontrunk/carbon/core/org.wso2.carbon.ldap.server/target/surefire-reports --- T E S T S --- Running org.wso2.carbon.apacheds.impl.ApacheKDCServerTest Running Test case - testKDC SLF4J: Class path contains multiple SLF4J bindings. SLF4J: Found binding in [jar:file:/home/carbontrunk/.m2/repository/org/slf4j/slf4j-log4j12/1.5.10/slf4j-log4j12-1.5.10.jar!/org/slf4j/impl/StaticLoggerBinder.class] SLF4J: Found binding in [jar:file:/home/carbontrunk/.m2/repository/slf4j/wso2/slf4j/1.5.10.wso2v1/slf4j-1.5.10.wso2v1.jar!/org/slf4j/impl/StaticLoggerBinder.class] SLF4J: See http://www.slf4j.org/codes.html#multiple_bindings for an explanation. log4j:WARN No appenders could be found for logger (org.wso2.carbon.apacheds.impl.CarbonSchemaLdifExtractor). log4j:WARN Please initialize the log4j system properly. Exception in thread Thread-0 java.lang.NoSuchMethodError: org.bouncycastle.x509.X509V1CertificateGenerator.generate(Ljava/security/PrivateKey;Ljava/lang/String;)Ljava/security/cert/X509Certificate; at org.apache.directory.server.core.security.TlsKeyGenerator.addKeyPair(TlsKeyGenerator.java:267) at org.apache.directory.server.core.DefaultDirectoryService.createBootstrapEntries(DefaultDirectoryService.java:1118) at org.apache.directory.server.core.DefaultDirectoryService.initialize(DefaultDirectoryService.java:1444) at org.apache.directory.server.core.DefaultDirectoryService.startup(DefaultDirectoryService.java:907) at org.wso2.carbon.apacheds.impl.CarbonDirectoryServiceFactory.build(CarbonDirectoryServiceFactory.java:224) at org.wso2.carbon.apacheds.impl.CarbonDirectoryServiceFactory.init(CarbonDirectoryServiceFactory.java:123) at org.wso2.carbon.apacheds.impl.ApacheLDAPServer.initializeDefaultDirectoryService(ApacheLDAPServer.java:163) at org.wso2.carbon.apacheds.impl.ApacheLDAPServer.init(ApacheLDAPServer.java:98) at org.wso2.carbon.apacheds.impl.AbstractDirectoryTestCase$DirectoryServerWorker.run(AbstractDirectoryTestCase.java:162) at java.lang.Thread.run(Thread.java:662) Thanks --Melan ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Need help resolving a AS startup issue
Hi All, I am getting following exception when starting a locally build AS server, [2011-07-06 18:03:29,993] ERROR {org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource} - Error reading descriptors java.lang.SecurityException: class org.apache.coyote.RequestInfo's signer information does not match signer information of other classes in the same package at java.lang.ClassLoader.checkCerts(ClassLoader.java:806) Complete stack trace is in [1]. Any idea how to resolve this issue ? Note that i am starting server without security manager. Also i am able to start core server without any issue. Thanks AmilaJ [1] [2011-07-06 18:03:29,993] ERROR {org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource} - Error reading descriptors java.lang.SecurityException: class org.apache.coyote.RequestInfo's signer information does not match signer information of other classes in the same package at java.lang.ClassLoader.checkCerts(ClassLoader.java:806) at java.lang.ClassLoader.preDefineClass(ClassLoader.java:487) at java.lang.ClassLoader.defineClassCond(ClassLoader.java:625) at java.lang.ClassLoader.defineClass(ClassLoader.java:615) at java.security.SecureClassLoader.defineClass(SecureClassLoader.java:141) at java.net.URLClassLoader.defineClass(URLClassLoader.java:283) at java.net.URLClassLoader.access$000(URLClassLoader.java:58) at java.net.URLClassLoader$1.run(URLClassLoader.java:197) at java.security.AccessController.doPrivileged(Native Method) at java.net.URLClassLoader.findClass(URLClassLoader.java:190) at java.lang.ClassLoader.loadClass(ClassLoader.java:306) at java.lang.ClassLoader.loadClass(ClassLoader.java:247) at java.lang.Class.getDeclaredMethods0(Native Method) at java.lang.Class.privateGetDeclaredMethods(Class.java:2427) at java.lang.Class.privateGetPublicMethods(Class.java:2547) at java.lang.Class.getMethods(Class.java:1410) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.createManagedBean(MbeansDescriptorsIntrospectionSource.java:307) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.execute(MbeansDescriptorsIntrospectionSource.java:83) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.loadDescriptors(MbeansDescriptorsIntrospectionSource.java:76) at org.apache.tomcat.util.modeler.Registry.load(Registry.java:696) at org.apache.tomcat.util.modeler.Registry.loadDescriptors(Registry.java:807) at org.apache.tomcat.util.modeler.Registry.findManagedBean(Registry.java:595) at org.apache.tomcat.util.modeler.Registry.findManagedBean(Registry.java:885) at org.apache.tomcat.util.modeler.Registry.registerComponent(Registry.java:737) at org.apache.coyote.AbstractProtocolHandler.init(AbstractProtocolHandler.java:348) at org.apache.coyote.http11.AbstractHttp11JsseProtocol.init(AbstractHttp11JsseProtocol.java:119) at org.apache.catalina.connector.Connector.initInternal(Connector.java:910) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.core.StandardService.initInternal(StandardService.java:559) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.core.StandardServer.initInternal(StandardServer.java:781) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:136) at org.apache.catalina.startup.Tomcat.start(Tomcat.java:305) at org.wso2.carbon.tomcat.BetterTomcat.start(BetterTomcat.java:68) at org.wso2.carbon.server.TomcatServer.start(TomcatServer.java:108) at org.wso2.carbon.server.Main.startServer(Main.java:64) at org.wso2.carbon.server.Main.start(Main.java:156) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at org.wso2.carbon.bootstrap.Bootstrap.loadClass(Bootstrap.java:62) at org.wso2.carbon.bootstrap.Bootstrap.main(Bootstrap.java:43) [2011-07-06 18:03:29,995] WARN {org.apache.tomcat.util.modeler.Registry} - No metadata found for org.apache.coyote.RequestGroupInfo [2011-07-06 18:03:29,995] ERROR {org.apache.tomcat.util.modeler.Registry} - Error registering Tomcat:type=GlobalRequestProcessor,name=http-nio-9766 java.lang.NullPointerException at org.apache.tomcat.util.modeler.Registry.registerComponent(Registry.java:740) at
Re: [Carbon-dev] Need help resolving a AS startup issue
On Wed, Jul 6, 2011 at 6:08 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, I am getting following exception when starting a locally build AS server, [2011-07-06 18:03:29,993] ERROR {org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource} - Error reading descriptors java.lang.SecurityException: class org.apache.coyote.RequestInfo's signer information does not match signer information of other classes in the same package at java.lang.ClassLoader.checkCerts(ClassLoader.java:806) Complete stack trace is in [1]. Any idea how to resolve this issue ? Note that i am starting server without security manager. Also i am able to start core server without any issue. Forgot to mentioned, i am trying to start stratos service. I can also start AS product without any problem. Thanks AmilaJ Thanks AmilaJ [1] [2011-07-06 18:03:29,993] ERROR {org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource} - Error reading descriptors java.lang.SecurityException: class org.apache.coyote.RequestInfo's signer information does not match signer information of other classes in the same package at java.lang.ClassLoader.checkCerts(ClassLoader.java:806) at java.lang.ClassLoader.preDefineClass(ClassLoader.java:487) at java.lang.ClassLoader.defineClassCond(ClassLoader.java:625) at java.lang.ClassLoader.defineClass(ClassLoader.java:615) at java.security.SecureClassLoader.defineClass(SecureClassLoader.java:141) at java.net.URLClassLoader.defineClass(URLClassLoader.java:283) at java.net.URLClassLoader.access$000(URLClassLoader.java:58) at java.net.URLClassLoader$1.run(URLClassLoader.java:197) at java.security.AccessController.doPrivileged(Native Method) at java.net.URLClassLoader.findClass(URLClassLoader.java:190) at java.lang.ClassLoader.loadClass(ClassLoader.java:306) at java.lang.ClassLoader.loadClass(ClassLoader.java:247) at java.lang.Class.getDeclaredMethods0(Native Method) at java.lang.Class.privateGetDeclaredMethods(Class.java:2427) at java.lang.Class.privateGetPublicMethods(Class.java:2547) at java.lang.Class.getMethods(Class.java:1410) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.createManagedBean(MbeansDescriptorsIntrospectionSource.java:307) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.execute(MbeansDescriptorsIntrospectionSource.java:83) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.loadDescriptors(MbeansDescriptorsIntrospectionSource.java:76) at org.apache.tomcat.util.modeler.Registry.load(Registry.java:696) at org.apache.tomcat.util.modeler.Registry.loadDescriptors(Registry.java:807) at org.apache.tomcat.util.modeler.Registry.findManagedBean(Registry.java:595) at org.apache.tomcat.util.modeler.Registry.findManagedBean(Registry.java:885) at org.apache.tomcat.util.modeler.Registry.registerComponent(Registry.java:737) at org.apache.coyote.AbstractProtocolHandler.init(AbstractProtocolHandler.java:348) at org.apache.coyote.http11.AbstractHttp11JsseProtocol.init(AbstractHttp11JsseProtocol.java:119) at org.apache.catalina.connector.Connector.initInternal(Connector.java:910) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.core.StandardService.initInternal(StandardService.java:559) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.core.StandardServer.initInternal(StandardServer.java:781) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:136) at org.apache.catalina.startup.Tomcat.start(Tomcat.java:305) at org.wso2.carbon.tomcat.BetterTomcat.start(BetterTomcat.java:68) at org.wso2.carbon.server.TomcatServer.start(TomcatServer.java:108) at org.wso2.carbon.server.Main.startServer(Main.java:64) at org.wso2.carbon.server.Main.start(Main.java:156) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at org.wso2.carbon.bootstrap.Bootstrap.loadClass(Bootstrap.java:62) at org.wso2.carbon.bootstrap.Bootstrap.main(Bootstrap.java:43) [2011-07-06 18:03:29,995] WARN {org.apache.tomcat.util.modeler.Registry} - No metadata found for org.apache.coyote.RequestGroupInfo [2011-07-06 18:03:29,995] ERROR {org.apache.tomcat.util.modeler.Registry} - Error registering
Re: [Carbon-dev] Need help resolving a AS startup issue
On Wed, Jul 6, 2011 at 7:29 PM, Milinda Pathirage mili...@wso2.com wrote: I tested with stratos BPS. Will check and confirm. Guess we need to sign jars in lib/patch directory also. (For all stratos services) Thanks AmilaJ Thanks Milinda On Wed, Jul 6, 2011 at 6:35 PM, Afkham Azeez az...@wso2.com wrote: Milinda, It seems Tomcat is doing signature validation for its jars. Did you test this with Stratos AS? On Wed, Jul 6, 2011 at 6:31 PM, Afkham Azeez az...@wso2.com wrote: This Coyote RequestInfo was added recently by Milinda to support metering webapps requests gathering webapp request/response statistics. On Wed, Jul 6, 2011 at 6:08 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, I am getting following exception when starting a locally build AS server, [2011-07-06 18:03:29,993] ERROR {org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource} - Error reading descriptors java.lang.SecurityException: class org.apache.coyote.RequestInfo's signer information does not match signer information of other classes in the same package at java.lang.ClassLoader.checkCerts(ClassLoader.java:806) Complete stack trace is in [1]. Any idea how to resolve this issue ? Note that i am starting server without security manager. Also i am able to start core server without any issue. Thanks AmilaJ [1] [2011-07-06 18:03:29,993] ERROR {org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource} - Error reading descriptors java.lang.SecurityException: class org.apache.coyote.RequestInfo's signer information does not match signer information of other classes in the same package at java.lang.ClassLoader.checkCerts(ClassLoader.java:806) at java.lang.ClassLoader.preDefineClass(ClassLoader.java:487) at java.lang.ClassLoader.defineClassCond(ClassLoader.java:625) at java.lang.ClassLoader.defineClass(ClassLoader.java:615) at java.security.SecureClassLoader.defineClass(SecureClassLoader.java:141) at java.net.URLClassLoader.defineClass(URLClassLoader.java:283) at java.net.URLClassLoader.access$000(URLClassLoader.java:58) at java.net.URLClassLoader$1.run(URLClassLoader.java:197) at java.security.AccessController.doPrivileged(Native Method) at java.net.URLClassLoader.findClass(URLClassLoader.java:190) at java.lang.ClassLoader.loadClass(ClassLoader.java:306) at java.lang.ClassLoader.loadClass(ClassLoader.java:247) at java.lang.Class.getDeclaredMethods0(Native Method) at java.lang.Class.privateGetDeclaredMethods(Class.java:2427) at java.lang.Class.privateGetPublicMethods(Class.java:2547) at java.lang.Class.getMethods(Class.java:1410) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.createManagedBean(MbeansDescriptorsIntrospectionSource.java:307) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.execute(MbeansDescriptorsIntrospectionSource.java:83) at org.apache.tomcat.util.modeler.modules.MbeansDescriptorsIntrospectionSource.loadDescriptors(MbeansDescriptorsIntrospectionSource.java:76) at org.apache.tomcat.util.modeler.Registry.load(Registry.java:696) at org.apache.tomcat.util.modeler.Registry.loadDescriptors(Registry.java:807) at org.apache.tomcat.util.modeler.Registry.findManagedBean(Registry.java:595) at org.apache.tomcat.util.modeler.Registry.findManagedBean(Registry.java:885) at org.apache.tomcat.util.modeler.Registry.registerComponent(Registry.java:737) at org.apache.coyote.AbstractProtocolHandler.init(AbstractProtocolHandler.java:348) at org.apache.coyote.http11.AbstractHttp11JsseProtocol.init(AbstractHttp11JsseProtocol.java:119) at org.apache.catalina.connector.Connector.initInternal(Connector.java:910) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.core.StandardService.initInternal(StandardService.java:559) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.core.StandardServer.initInternal(StandardServer.java:781) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:101) at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:136) at org.apache.catalina.startup.Tomcat.start(Tomcat.java:305) at org.wso2.carbon.tomcat.BetterTomcat.start(BetterTomcat.java:68) at org.wso2.carbon.server.TomcatServer.start(TomcatServer.java:108) at org.wso2.carbon.server.Main.startServer(Main.java:64) at org.wso2.carbon.server.Main.start(Main.java:156) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39
[Carbon-dev] Build failure in 3.2.1 branch
I am getting following build failure in [1]. org.wso2.carbon.context is referring org.wso2.carbon.utils version as ${pom.version} But org.wso2.carbon.utils does not have a 3.2.1 yet. Thanks AmilaJ [1] [INFO] Building WSO2 Carbon - Context [INFO]task-segment: [install] [INFO] Downloading: http://maven.wso2.org/nexus/content/groups/wso2-public//org/wso2/carbon/org.wso2.carbon.utils/3.2.1/org.wso2.carbon.utils-3.2.1.pom [INFO] Unable to find resource 'org.wso2.carbon:org.wso2.carbon.utils:pom:3.2.1' in repository wso2-nexus (http://maven.wso2.org/nexus/content/groups/wso2-public/) Downloading: http://repo1.maven.org/maven2/org/wso2/carbon/org.wso2.carbon.utils/3.2.1/org.wso2.carbon.utils-3.2.1.pom [INFO] Unable to find resource 'org.wso2.carbon:org.wso2.carbon.utils:pom:3.2.1' in repository central (http://repo1.maven.org/maven2) Downloading: http://maven.wso2.org/nexus/content/groups/wso2-public//org/wso2/carbon/org.wso2.carbon.utils/3.2.1/org.wso2.carbon.utils-3.2.1.jar [INFO] Unable to find resource 'org.wso2.carbon:org.wso2.carbon.utils:jar:3.2.1' in repository wso2-nexus (http://maven.wso2.org/nexus/content/groups/wso2-public/) Downloading: http://repo1.maven.org/maven2/org/wso2/carbon/org.wso2.carbon.utils/3.2.1/org.wso2.carbon.utils-3.2.1.jar [INFO] Unable to find resource 'org.wso2.carbon:org.wso2.carbon.utils:jar:3.2.1' in repository central (http://repo1.maven.org/maven2) [INFO] [ERROR] BUILD ERROR [INFO] [INFO] Failed to resolve artifact. Missing: -- 1) org.wso2.carbon:org.wso2.carbon.utils:jar:3.2.1 Try downloading the file manually from the project website. Then, install it using the command: mvn install:install-file -DgroupId=org.wso2.carbon -DartifactId=org.wso2.carbon.utils -Dversion=3.2.1 -Dpackaging=jar -Dfile=/path/to/file Alternatively, if you host your own repository you can deploy the file there: mvn deploy:deploy-file -DgroupId=org.wso2.carbon -DartifactId=org.wso2.carbon.utils -Dversion=3.2.1 -Dpackaging=jar -Dfile=/path/to/file -Durl=[url] -DrepositoryId=[id] Path to dependency: 1) org.wso2.carbon:org.wso2.carbon.context:bundle:3.2.1 2) org.wso2.carbon:org.wso2.carbon.utils:jar:3.2.1 -- 1 required artifact is missing. ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Creating 3.2.1 for core/org.wso2.carbon.base
Hi All, Just wanted to let you know that i created a 3.2.1 for core/org.wso2.carbon.base. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Carbon Core JNDI Lookup Issue
On Sun, Jul 3, 2011 at 12:46 AM, Anjana Fernando anj...@wso2.com wrote: Hi, There is a bit of a strange issue with the CarbonInitialJNDIContext based implementation. The issue I got is like, after like service deployment and all in a server like DSS or ESB, some of the JNDI lookups fail. For example, for DSS, the JNDI lookup to get the TransactionManager instance works fine when the service is starting up, but it will fails if you again do you a hotdeployment/hotupdate after the server starts up. Same is with the ESB, where it's Transaction mediator cannot be used at all, since it does the JNDI lookup for the TransactionManager when a request is coming, so it fails always. And also, defining data sources using Tomcat also doesn't work due to this. I debugged the code in CarbonContextHolder a bit, and found out the problem is with how the line Context urlContext = NamingManager.getURLContext(scheme, initialContext.getEnvironment()); works. Here initialContext.getEnvironment() returns an empty Hashtable where it should actually return some info (the initial context factory class and all, as I remember). So basically what happens is, in the class CarbonInitialJNDIContextFactory, in the method getInitialContext, when you said, factory.getInitialContext(h), the h is Hashtable, somehow internally, it empties out this Hastable, so later when you try to check it values, you get that empty Hashtable. So I modified the code to retain the original values, and now it is working without any problems. I'm attaching the modified CarbonContextHolder.java here, somehow please review it and let me know if it's OK. Hi Anjana, Any idea, which call causes CarbonInitialJNDIContextFactory to pass an empty hash table ? Thanks AmilaJ Another thing to note is, the ESB has the geronimo-jta lib. This causes Atomikos to not to work properly, since the JDK also has these libs, and you will ultimately get an ClassCastException. So I simply deleted this jar and it worked without any issues. Cheers, Anjana. -- Anjana Fernando Senior Software Engineer WSO2 Inc. | http://wso2.com lean . enterprise . middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] test failure in dependencies/wss4j/1.5.11-wso2v1/ (carbon trunk rev: 108759, US builder1)
Please, patch your JDK with unlimited jurisdiction key strength policy files. Thanks AmilaJ On Fri, Jul 1, 2011 at 3:02 PM, Melan Nimesh me...@wso2.com wrote: Hi , build fail at /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/, please have a look log: [INFO] Scanning for projects... [INFO] [INFO] Building WSS4J [INFO] task-segment: [clean, install] [INFO] [INFO] [clean:clean {execution: default-clean}] [INFO] Deleting file set: /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/target (included: [**], excluded: []) [INFO] [incremental-build:incremental-build {execution: default}] [INFO] Verifying module descriptor ... [INFO] Pom descriptor modification detected. [INFO] Deleting /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/target [INFO] Preparing pmd:check [INFO] [pmd:pmd {execution: pmd}] [WARNING] File encoding has not been set, using platform encoding UTF-8, i.e. build is platform dependent! [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/KerberosTokenPrincipal.java: Can't use annotations when running in JDK 1. [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/KerberosTokenPrincipal.java: Can't use annotations when running in JDK 1. [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/KerberosTokenPrincipal.java: Can't use annotations when running in JDK 1. [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/kerberos/KrbSessionCache.java: Can't use generics unless running in JDK 1 [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/kerberos/KrbSessionCache.java: Can't use generics unless running in JDK 1 [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/kerberos/KrbSessionCache.java: Can't use generics unless running in JDK 1 [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/kerberos/KrbTicketDecoder.java: Can't use generics unless running in JDK [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/kerberos/KrbTicketDecoder.java: Can't use generics unless running in JDK [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/kerberos/KrbTicketDecoder.java: Can't use generics unless running in JDK [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/message/WSSecKerberosToken.java: Can't use generics unless running in JDK [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/message/WSSecKerberosToken.java: Can't use generics unless running in JDK [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/message/WSSecKerberosToken.java: Can't use generics unless running in JDK [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/processor/KerberosTokenProcessor.java: Can't use generics unless running [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/processor/KerberosTokenProcessor.java: Can't use generics unless running [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/processor/KerberosTokenProcessor.java: Can't use generics unless running [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/saml/SAML2Util.java: Can't use generics unless running in JDK 1.5 mode! [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/saml/SAML2Util.java: Can't use generics unless running in JDK 1.5 mode! [WARNING] Error while parsing /home/carbontrunk/carbon/dependencies/wss4j/1.5.11-wso2v1/src/org/apache/ws/security/saml/SAML2Util.java: Can't use generics unless running in JDK 1.5 mode! [INFO] [pmd:check {execution: validate}] [INFO] [INFO] Setting property: classpath.resource.loader.class = 'org.codehaus.plexus.velocity.ContextClassLoaderResourceLoader'. [INFO] Setting property: velocimacro.messages.on = 'false'. [INFO] Setting property: resource.loader = 'classpath'. [INFO] Setting property: resource.manager.logwhenfound = 'false'. [INFO] [remote-resources:process {execution: default}] [INFO]
[Carbon-dev] Could not login to core server - trunk
Hi All, I am getting error in [1] when try to login to carbon core server in trunk. It seems there are differences between 3.2.0/core/org.wso2.carbon.ui/3.2.1/src/main/java/org/wso2/carbon/ui/MenuAdminClient.java and trunk/core/org.wso2.carbon.ui/src/main/java/org/wso2/carbon/ui/MenuAdminClient.java. Please apply all changes made on 3.2.1 to trunk. Thanks AmilaJ [1] java.lang.NullPointerException at java.util.Arrays$ArrayList.init(Arrays.java:3357) at java.util.Arrays.asList(Arrays.java:3343) at org.wso2.carbon.ui.MenuAdminClient.populateMenuDefinitionsFromOSGiService(MenuAdminClient.java:68) at org.wso2.carbon.ui.MenuAdminClient.getMenuContent(MenuAdminClient.java:211) at org.apache.jsp.admin.layout.region5_jsp._jspService(region5_jsp.java:52) at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:97) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:332) at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:314) at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:264) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.wso2.carbon.ui.JspServlet.service(JspServlet.java:119) at org.wso2.carbon.ui.TilesJspServlet.service(TilesJspServlet.java:80) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.eclipse.equinox.http.helper.ContextPathServletAdaptor.service(ContextPathServletAdaptor.java:36) at org.eclipse.equinox.http.servlet.internal.ServletRegistration.handleRequest(ServletRegistration.java:90) at org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias(ProxyServlet.java:111) at org.eclipse.equinox.http.servlet.internal.ProxyServlet.service(ProxyServlet.java:67) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.wso2.carbon.bridge.BridgeServlet.service(BridgeServlet.java:155) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:304) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:210) at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:684) at org.apache.catalina.core.ApplicationDispatcher.doInclude(ApplicationDispatcher.java:593) at org.apache.catalina.core.ApplicationDispatcher.include(ApplicationDispatcher.java:530) at org.eclipse.equinox.http.servlet.internal.RequestDispatcherAdaptor.include(RequestDispatcherAdaptor.java:37) at org.eclipse.equinox.http.helper.ContextPathServletAdaptor$RequestDispatcherAdaptor.include(ContextPathServletAdaptor.java:265) at org.apache.jasper.runtime.JspRuntimeLibrary.include(JspRuntimeLibrary.java:966) at org.apache.jasper.runtime.PageContextImpl.doInclude(PageContextImpl.java:643) at org.apache.jasper.runtime.PageContextImpl.include(PageContextImpl.java:637) at sun.reflect.GeneratedMethodAccessor27.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at org.apache.tiles.jsp.context.JspUtil.doInclude(JspUtil.java:87) at org.apache.tiles.jsp.context.JspTilesRequestContext.include(JspTilesRequestContext.java:88) at org.apache.tiles.jsp.context.JspTilesRequestContext.dispatch(JspTilesRequestContext.java:82) at org.apache.tiles.impl.BasicTilesContainer.render(BasicTilesContainer.java:465) at org.apache.tiles.jsp.taglib.InsertAttributeTag.render(InsertAttributeTag.java:140) at org.apache.tiles.jsp.taglib.InsertAttributeTag.render(InsertAttributeTag.java:117) at org.apache.tiles.jsp.taglib.RenderTagSupport.execute(RenderTagSupport.java:171) at org.apache.tiles.jsp.taglib.RoleSecurityTagSupport.doEndTag(RoleSecurityTagSupport.java:75) at org.apache.tiles.jsp.taglib.ContainerTagSupport.doEndTag(ContainerTagSupport.java:80) at org.apache.jsp.admin.layout.template_jsp._jspx_meth_tiles_insertAttribute_5(template_jsp.java:474) at org.apache.jsp.admin.layout.template_jsp._jspService(template_jsp.java:256) at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:97) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:332) at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:314) at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:264) at javax.servlet.http.HttpServlet.service(HttpServlet.java:722) at
[Carbon-dev] ApacheDS as default user store of core ?
Hi All, It seems that lot of members were under the impression that embedded LDAP server is not binding an address. Thus most of the people are under the impression that it behaves like H2. But this is not the case. We (me, Shankar, Amila and Azeez) had a discussion about this. As per our current implementation we have LDAP servers embedded in all products. Also it seems having LDAP servers in all products is not architecturally sound. Thus apacheds has a way of by passing the network layer and using just like H2. For this we need to write a new user store manager. But IMO we are not going to gain much from implementing a user store manager which uses only apacheds (By passing network layer). Instead we could use H2. So the conclusion was to use apacheds only within Identity Server and make it an optional feature for other products. Other products will use H2 as it was used to be. Please let us know what you all think about this conclusion. Feedback appreciated. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Invitation: Group A: Code Review - ApacheDSUserStoreManager @ Mon Jun 27 2pm - 3pm (ami...@wso2.com)
Code review notes, Apart from crucible notes we discussed about following. 1. Describe configuration properties in user-mgt.xml 2. Group configuration elements in user-mgt.xml 3. Re-factor property names in user-mgt.xml in more sensible way 4. Search for embedded Java interfaces within apacheds 5. Write comments for initialize methods 6. Rename ApacheDSUserStoreManager to ReadWriteLDAPUserStoreManager Thanks AmilaJ On Fri, Jun 24, 2011 at 12:46 PM, Hasini Gunasinghe has...@wso2.com wrote: more details »https://www.google.com/calendar/event?action=VIEWeid=cTZ0aG5rc2k1NTRnZzNzbGZic2ZkMGpscWcgYW1pbGFqQHdzbzIuY29ttok=MTUjaGFzaW5pQHdzbzIuY29tMzY2Nzk0MGQzYjU2MDRjZjA2YmQ5MDI3OTZhMTdjY2E4NmJiMjIzMwctz=Asia%2FColombohl=en Group A: Code Review - ApacheDSUserStoreManager To review the code of ApacheDSUserStoreManager which is the default user store manager in 3.2.0 release, that supports read/write capability for LDAP based user store. Link for crucible project: https://wso2.org/crucible/cru/ApacheDSUserStoreMnager-1http://www.google.com/url?q=https%3A%2F%2Fwso2.org%2Fcrucible%2Fcru%2FApacheDSUserStoreMnager-1ust=1308907016107000usg=AFQjCNFFQ9FPAD-QefezIVcQ-flMaN45kA *When* Mon Jun 27 2pm – 3pm Colombo *Where* #59, 4th floor. (maphttp://maps.google.com/maps?q=%2359,+4th+floor.hl=en ) *Calendar* ami...@wso2.com *Who* • has...@wso2.com - organizer • Selvaratnam Uthaiyashankar • Supun Kamburugamuwa • Afkham Azeez • Prabath Siriwardana • Dimuthu Leelarathne • Amila Jayasekara • Thilina Buddhika • carbon-dev@wso2.org Going? ***Yeshttps://www.google.com/calendar/event?action=RESPONDeid=cTZ0aG5rc2k1NTRnZzNzbGZic2ZkMGpscWcgYW1pbGFqQHdzbzIuY29trst=1tok=MTUjaGFzaW5pQHdzbzIuY29tMzY2Nzk0MGQzYjU2MDRjZjA2YmQ5MDI3OTZhMTdjY2E4NmJiMjIzMwctz=Asia%2FColombohl=en- Maybehttps://www.google.com/calendar/event?action=RESPONDeid=cTZ0aG5rc2k1NTRnZzNzbGZic2ZkMGpscWcgYW1pbGFqQHdzbzIuY29trst=3tok=MTUjaGFzaW5pQHdzbzIuY29tMzY2Nzk0MGQzYjU2MDRjZjA2YmQ5MDI3OTZhMTdjY2E4NmJiMjIzMwctz=Asia%2FColombohl=en- Nohttps://www.google.com/calendar/event?action=RESPONDeid=cTZ0aG5rc2k1NTRnZzNzbGZic2ZkMGpscWcgYW1pbGFqQHdzbzIuY29trst=2tok=MTUjaGFzaW5pQHdzbzIuY29tMzY2Nzk0MGQzYjU2MDRjZjA2YmQ5MDI3OTZhMTdjY2E4NmJiMjIzMwctz=Asia%2FColombohl=en ***more options »https://www.google.com/calendar/event?action=VIEWeid=cTZ0aG5rc2k1NTRnZzNzbGZic2ZkMGpscWcgYW1pbGFqQHdzbzIuY29ttok=MTUjaGFzaW5pQHdzbzIuY29tMzY2Nzk0MGQzYjU2MDRjZjA2YmQ5MDI3OTZhMTdjY2E4NmJiMjIzMwctz=Asia%2FColombohl=en Invitation from Google Calendar https://www.google.com/calendar/ You are receiving this email at the account ami...@wso2.com because you are subscribed for invitations on calendar ami...@wso2.com. To stop receiving these notifications, please log in to https://www.google.com/calendar/ and change your notification settings for this calendar. ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Starting 2 carbon products with embedded LDAP enabled
Hi All, We have following behaviour within carbon products. Say we need to start 2 carbon servers in the same machine. Both servers use embedded LDAP server. User forgets to change LDAP server port in user-mgt.xml configuration for second server. Still user will be able to start 2nd server with few error messages in the console. Error messages are due to LDAP address already used by first carbon server. The second server still, starts because user manager is able to connect to first carbon server's embedded LDAP server. After a chat with Saminda and Milinda, we realised that this could lead to erroneous situations as user is under the impression that second carbon server is connected to embedded-ldap server running within second server. One way to resolve this issue is to stop starting carbon server if embedded-ldap server cannot start successfully. Are there any other better solutions to get rid of this behaviour ? Feedback appreciated. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Starting 2 carbon products with embedded LDAP enabled
Created [1]. Should this be part of 3.2.1 release ? Thanks AmilaJ [1] https://wso2.org/jira/browse/CARBON-10919 On Mon, Jun 27, 2011 at 4:36 PM, Isuru Suriarachchi is...@wso2.com wrote: On Mon, Jun 27, 2011 at 4:21 PM, Saminda Wijeratne samin...@wso2.com wrote: IMO if the server is not behaving according to the given configurations (specially with configurations related to security), it should fail with meaningful logs. +1 Thanks, ~Isuru This could be handled at the OSGi component level. Saminda On Mon, Jun 27, 2011 at 4:15 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, We have following behaviour within carbon products. Say we need to start 2 carbon servers in the same machine. Both servers use embedded LDAP server. User forgets to change LDAP server port in user-mgt.xml configuration for second server. Still user will be able to start 2nd server with few error messages in the console. Error messages are due to LDAP address already used by first carbon server. The second server still, starts because user manager is able to connect to first carbon server's embedded LDAP server. After a chat with Saminda and Milinda, we realised that this could lead to erroneous situations as user is under the impression that second carbon server is connected to embedded-ldap server running within second server. One way to resolve this issue is to stop starting carbon server if embedded-ldap server cannot start successfully. Are there any other better solutions to get rid of this behaviour ? Feedback appreciated. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Isuru Suriarachchi Technical Lead Product Manager, WSO2 Application Server WSO2 Inc. http://wso2.com email : is...@wso2.com blog : http://isurues.wordpress.com/ lean . enterprise . middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Verifying whether the fix for CARBON-10892 needs to be applied to 3.2.1
On Wed, Jun 22, 2011 at 11:45 AM, Hasini Gunasinghe has...@wso2.com wrote: Hi, Can I please know whether the fix for [1] should be applied to 3.2.1 branch as well? +1 for applying this to 3.2.1. Cos, there is a high possibility we may encounter this issue again in an AD used environment. Thanks AmilaJ I have included the details regarding the issue in the carbon jira. This issue has been fixed in trunk and the fix includes a change in user-core and user-mgt.xml [1] https://wso2.org/jira/browse/CARBON-10892 Thanks, Hasini. ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] BundleActivator getting called more than once
Hi All, I am in the process of doing some changes to apacheds component. While doing those changes i came across following issue. I am having a bundle activator (org.wso2.carbon.ldap.server.DirectoryActivator) in my component and due to some reason the bundle activator is getting called twice. By further investigating i found out that OSGI framework is creating 2 BundleActivator objects (See Object id message in output in [1]) and then calling Activator's start method separately. I purposefully add code to print calling stack [1]. Has anyone encountered this issue before ? (OR is this an expected behaviour ?) Any idea, how i can resolve this issue ? Thanks AmilaJ [1] [2011-06-21 11:35:19,337] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - User : amila, en-US, Asia/Colombo [2011-06-21 11:35:19,493] INFO {org.wso2.carbon.ldap.server.configuration.LDAPConfigurationBuilder} - KDC server is disabled. Object id - org.wso2.carbon.ldap.server.DirectoryActivator@5d1d20d3 java.lang.Exception: Stack trace at java.lang.Thread.dumpStack(Thread.java:1206) at org.wso2.carbon.ldap.server.DirectoryActivator.startLdapServer(DirectoryActivator.java:208) at org.wso2.carbon.ldap.server.DirectoryActivator.start(DirectoryActivator.java:83) at org.eclipse.osgi.framework.internal.core.BundleContextImpl$1.run(BundleContextImpl.java:782) at java.security.AccessController.doPrivileged(Native Method) at org.eclipse.osgi.framework.internal.core.BundleContextImpl.startActivator(BundleContextImpl.java:773) at org.eclipse.osgi.framework.internal.core.BundleContextImpl.start(BundleContextImpl.java:754) at org.eclipse.osgi.framework.internal.core.BundleHost.startWorker(BundleHost.java:352) at org.eclipse.osgi.framework.internal.core.AbstractBundle.resume(AbstractBundle.java:370) at org.eclipse.osgi.framework.internal.core.Framework.resumeBundle(Framework.java:1068) at org.eclipse.osgi.framework.internal.core.StartLevelManager.resumeBundles(StartLevelManager.java:557) at org.eclipse.osgi.framework.internal.core.StartLevelManager.incFWSL(StartLevelManager.java:464) at org.eclipse.osgi.framework.internal.core.StartLevelManager.doSetStartLevel(StartLevelManager.java:248) at org.eclipse.osgi.framework.internal.core.StartLevelManager.dispatchEvent(StartLevelManager.java:445) at org.eclipse.osgi.framework.eventmgr.EventManager.dispatchEvent(EventManager.java:220) at org.eclipse.osgi.framework.eventmgr.EventManager$EventThread.run(EventManager.java:330) [2011-06-21 11:35:19,603] INFO {org.wso2.carbon.ldap.server.DirectoryActivator} - Initializing Directory Server with working directory /home/amila/development/wso2/carbon/trunk/core/distribution/target/wso2carbon-core-3.2.0-SNAPSHOT/repository/data/org.wso2.carbon.directory and port 10389 [2011-06-21 11:35:22,737] INFO {org.wso2.carbon.ldap.server.configuration.LDAPConfigurationBuilder} - KDC server is disabled. Object id - org.wso2.carbon.ldap.server.DirectoryActivator@4283df14 java.lang.Exception: Stack trace at java.lang.Thread.dumpStack(Thread.java:1206) at org.wso2.carbon.ldap.server.DirectoryActivator.startLdapServer(DirectoryActivator.java:208) at org.wso2.carbon.ldap.server.DirectoryActivator.start(DirectoryActivator.java:83) at org.eclipse.osgi.framework.internal.core.BundleContextImpl$1.run(BundleContextImpl.java:782) at java.security.AccessController.doPrivileged(Native Method) at org.eclipse.osgi.framework.internal.core.BundleContextImpl.startActivator(BundleContextImpl.java:773) at org.eclipse.osgi.framework.internal.core.BundleContextImpl.start(BundleContextImpl.java:754) at org.eclipse.osgi.framework.internal.core.BundleHost.startWorker(BundleHost.java:352) at org.eclipse.osgi.framework.internal.core.AbstractBundle.resume(AbstractBundle.java:370) at org.eclipse.osgi.framework.internal.core.Framework.resumeBundle(Framework.java:1068) at org.eclipse.osgi.framework.internal.core.StartLevelManager.setBundleSL(StartLevelManager.java:691) at org.eclipse.osgi.framework.internal.core.StartLevelManager.dispatchEvent(StartLevelManager.java:442) at org.eclipse.osgi.framework.eventmgr.EventManager.dispatchEvent(EventManager.java:220) at org.eclipse.osgi.framework.eventmgr.EventManager$EventThread.run(EventManager.java:330) [2011-06-21 11:35:22,738] INFO {org.wso2.carbon.ldap.server.DirectoryActivator} - Initializing Directory Server with working directory /home/amila/development/wso2/carbon/trunk/core/distribution/target/wso2carbon-core-3.2.0-SNAPSHOT/repository/data/org.wso2.carbon.directory and port 10389 [2011-06-21 11:35:22,744] ERROR {org.apache.directory.server.ldap.LdapServer} - ERR_171 Failed to bind an LDAP service (10,389) to the service registry. java.net.BindException: Address already in use
[Carbon-dev] Exported package versions of some bundles are 0.0.0
Hi All, Exported package versions of some bundles are set to 0.0.0. E.g :- commons-io. osgi bundle 27 commons-io_2.0.0.wso2v1 [27] Id=27, Status=ACTIVE Data Root=/home/amila/development/wso2/carbon/trunk/core/distribution/target/wso2carbon-core-3.2.0-SNAPSHOT/repository/components/configuration/org.eclipse.osgi/bundles/27/data No registered services. No services in use. Exported packages org.apache.commons.io.output; version=0.0.0[exported] org.apache.commons.io.monitor; version=0.0.0[exported] org.apache.commons.io.filefilter; version=0.0.0[exported] org.apache.commons.io.comparator; version=0.0.0[exported] org.apache.commons.io.input; version=0.0.0[exported] org.apache.commons.io; version=0.0.0[exported] No imported packages No fragment bundles Named class space commons-io; bundle-version=2.0.0.wso2v1[provided] No required bundles Is this ok ? Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Some changes to orbit/apachds and core/org.wso2.carbon.ldap.server components
Hi All, I made following changes to orbit/apacheds and core/org.wso2.carbon.ldap.server components. 1. There were some wrapping code inside orbit/apachds. Re-factored and moved those wrapping code to core/org.wso2.carbon.ldap.server component 2. Exclude embedding some redundant jar files from apacheds orbit bundle. a. Exclude embedding antlr. But antlr was not a feature in core distribution. Therefore i had to make antlr a feature of core. (This does not affect the distribution size, as we were already embedding antlr in apachds bundle) b. Exclude embedding commons libraries within apacheds orbit bundle and refer the commons bundles already in the OSGI environment. 3. Improve error handling I did some preliminary testing and everything seems to be working fine. Hoping to test further and commit code to trunk. If you have any objections/concerns please let me know. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Main Contributors to Increased Distribution Size of Carbon 3.2.0 products {was: Re: DS pack is HUGE [was Carbon 3.2.0 RC9 for Testing}
Hi Senaka, Shall we create Jira's to fix these ? Thanks AmilaJ On Sun, Jun 12, 2011 at 5:15 PM, Senaka Fernando sen...@wso2.com wrote: On Sun, Jun 12, 2011 at 5:03 PM, Senaka Fernando sen...@wso2.com wrote: FYI, run the following script inside $CARBON_HOME, for f in `find -name '*.jar' | xargs ls -l | mawk '{print $5 $8}' | sort -gr | mawk '{print $2}'`; do ls -lh $f; done; The greatest contributor to the increase is size is Shindig with 16MB. If you open up this bundle, you'll see that it embeds several jars that are already available as dependencies. Ex:- wstx-1.0.7.jar, xercesImpl-2.9.1.jar, xml-apis-1.3.04.jar, jdom-1.0.0.wso2v1.jar, httpclient-4.0.1.jar, icu4j-3.8.jar, jstl-1.2.jar This itself totals to around 7MB, which means that we could easily build a 9MB shindig bundle. The second largest is ./repository/components/plugins/axis2-1.6.1.wso2v1.jar. In here we embed xmlbeans-2.3.0.jar as a jar, and also as a set of classes. This means that we have two copies of xmlbeans-2.3.0.jar inside axis2-1.6.1.wso2v1.jar. Also, xmlbeans-2.3.0.jar is found inside plugins (./repository/components/plugins/xmlbeans-2.3.0.wso2v1.jar). Had we used proper dependencies, the reduction in size of the axis2-1.6.1.wso2v1.jar would be 5.2MB. 3rd Largest is Apache DS, and from the 7.2MB more than 1MB is coming from commons-* bundles that have been embedded inside the apacheds-1.5.7.wso2v1.jar. 4th in-line is apacheds-1.5.7.wso2v1.jar, Correction: 4th in-line is wsdl-validator, whilst ApacheDS remains the 3rd largest. Thanks, Senaka. which embeds icu, which is also available at ./repository/components/plugins/com.ibm.icu-4.0.1.v20090415.jar. If this was properly fixed, the reduction in size is 4.3MB. The fifth largest is Qpid, which embeds derby (2.4MB), and mina twice (300K). If we switch to H2 and get rid of the unwanted mina dependency, the gain is 2.7MB. So, as a summary, we could potentially save around 20MB of size just by fixing the top 5 contributors to our binary size. Thanks, Senaka. On Fri, Jun 10, 2011 at 9:14 PM, Anjana Fernando anj...@wso2.com wrote: Hi Azeez, On Fri, Jun 10, 2011 at 8:28 PM, Afkham Azeez az...@wso2.com wrote: Can we make those optional features? Yeah, we should be able to, atleast the RDF support, it wont be that straightforward to do so, as in the way we typically install features, since it is directly attached to the data service feature functionality, but we can find a way, will do this for the next release. Cheers, Anjana. On Fri, Jun 10, 2011 at 8:24 PM, Anjana Fernando anj...@wso2.com wrote: Yeah, and our docs size have also grown in about 10MB. And we've new dependant libraries, such as, Jena, which is used for RDF handling = 7.3MB, and spreadsheet-ooxml-schemas = 6.4MB for Excel 2007 functionality. Cheers, Anjana. On Fri, Jun 10, 2011 at 4:43 PM, Nuwan Bandara nu...@wso2.com wrote: Dashboard is optional in latest DS, so its not shipped by default. however DS samples are quite big in size (~12MB) Regards, /Nuwan On Fri, Jun 10, 2011 at 4:32 PM, Afkham Azeez az...@wso2.com wrote: AS is 155 MB. DS has dashboard =15MB We have several jars which we can make optional or are duplicated. On Fri, Jun 10, 2011 at 3:53 PM, Samisa Abeysinghe sam...@wso2.com wrote: It is 170M, the largest. All others are less than 160M. Why is DS so large? On Fri, Jun 10, 2011 at 5:25 AM, Sumedha Rubasinghe sume...@wso2.com wrote: On Fri, Jun 10, 2011 at 4:16 AM, Prabath Siriwardena prab...@wso2.com wrote: Location : http://10.100.1.43/~carbon/releases/carbon/3.2.0/rc9/ P2 Repo : http://10.100.1.43/~carbon/releases/carbon/3.2.0/rc9/p2-repo/ Public Location : http://builder.wso2.org/~carbon/releases/carbon/3.2.0/rc9/ [Please give some time to complete copying] It seems copying to public location is still underway. /sumedha Revision : 107602 -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev Thanks, Samisa... Samisa Abeysinghe VP Engineering WSO2 Inc. http://wso2.com http://wso2.org ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list
Re: [Carbon-dev] Unnecessary INFO Logs from the LDAP Component
Hi Hiranya, On Wed, May 25, 2011 at 1:53 PM, Hiranya Jayathilaka hira...@wso2.com wrote: Following logs are still logged at INFO level :( [2011-05-25 13:48:39,667] INFO - LDAPConfigurationBuilder KDC server is disabled. [2011-05-25 13:48:39,671] INFO - DirectoryActivator Initializing Directory Server with working directory /home/hiranya/Projects/Java/carbon-platform/3.2.0/products/esb/4.0.0/modules/distribution/product/target/wso2esb-4.0.0/repository/data/org.wso2.carbon.directory and port 10389 I believe above 2 logs should be in INFO level as user needs to know the port LDAP server started and aware that KDC server is disabled. Rest, i will move to debug level. Thanks AmilaJ [2011-05-25 13:48:39,781] INFO - CarbonSchemaLdifExtractor Schema directory '/home/hiranya/Projects/Java/carbon-platform/3.2.0/products/esb/4.0.0/modules/distribution/product/target/wso2esb-4.0.0/repository/data/org.wso2.carbon.directory/schema' does NOT exist: extracted state set to false. [2011-05-25 13:48:39,974] INFO - CarbonSchemaLdifExtractor Successfully extracted schema files to path /home/hiranya/Projects/Java/carbon-platform/3.2.0/products/esb/4.0.0/modules/distribution/product/target/wso2esb-4.0.0/repository/data/org.wso2.carbon.directory/schema using schema zip file /home/hiranya/Projects/Java/carbon-platform/3.2.0/products/esb/4.0.0/modules/distribution/product/target/wso2esb-4.0.0/repository/data/is-default-schema.zip .. [2011-05-25 13:48:43,896] INFO - ApacheDirectoryPartitionManager Partition created with following attributes, partition id - root, Partition domain - dc=wso2,dc=org, Partition working directory /home/hiranya/Projects/Java/carbon-platform/3.2.0/products/esb/4.0.0/modules/distribution/product/target/wso2esb-4.0.0/repository/data/org.wso2.carbon.directory/root Has to be debug. Thanks -- Hiranya Jayathilaka Senior Software Engineer; WSO2 Inc.; http://wso2.org E-mail: hira...@wso2.com; Mobile: +94 77 633 3491 Blog: http://techfeast-hiranya.blogspot.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Error when building from root pom in trunk
Hi All, I am getting following error when trying to build from root pom in trunk. I took a svn update few minutes before (Revision: 92530). amila@aj:~/development/wso2/carbon/trunk$ mvn -o install -Xmx1024m [INFO] Scanning for projects... [INFO] [ERROR] BUILD FAILURE [INFO] [INFO] Project 'org.wso2.carbon:org.wso2.carbon.logging.ext' is duplicated in the reactor [INFO] [INFO] For more information, run Maven with the -e switch [INFO] [INFO] Total time: 21 seconds [INFO] Finished at: Wed May 25 15:33:14 IST 2011 [INFO] Final Memory: 358M/579M [INFO] Any idea, how to resolve this error ? Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Stratos release - migration tasks
I have a migration tool which extracts data from stratos user store and create a LDIF file. I uploaded LDIF to ApacheDS and tried to connect stratos manager. But end up with some errors. Hoping to look into those issues tomorrow. Note : We only export default profile attributes. Thanks AmilaJ On Thu, May 26, 2011 at 10:18 AM, Afkham Azeez az...@wso2.com wrote: Folks, What's the status of those items? On Thu, May 26, 2011 at 10:16 AM, Selvaratnam Uthaiyashankar shan...@wso2.com wrote: Reminder about the migration stuff ! Shankar On Wed, Apr 27, 2011 at 5:24 PM, Afkham Azeez az...@wso2.com wrote: As discussed with some of you today, we need to start working on the tasks listed in the attached image immediately -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware -- S.Uthaiyashankar Senior Architect Senior Manager WSO2 Inc. http://wso2.com/ - lean . enterprise . middleware -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Troubleshooting LDAP configuration errors
On Fri, May 13, 2011 at 1:15 AM, Afkham Azeez az...@wso2.com wrote: Thilina I discovered today that it is a nightmare to troubleshoot configuration errors with the current embedded LDAP server. There was an authentication failure, and there was no proper error message, and even after debugging, it was not exactly clear what was wrong. Is there a way to make this more use friendly, and make the configuration less cryptic? Hi Azeez/Thilina, What sort of a configuration error you encountered ? Let me try to reproduce it and see the possibility of improving error messages. Thanks AmilaJ -- Afkham Azeez Director of Architecture; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Use of CarbonJNDIContext with LDAP, JMS
On Tue, May 10, 2011 at 11:31 AM, Danushka Menikkumbura danus...@wso2.com wrote: Amila, Shall we make the property name something generic? org.wso2.carbon.context.RequestBaseContext instead of org.wso2.carbon.ldap.RequestBaseContext? Ok, will do. Thanks, Danushka On Tue, May 10, 2011 at 11:26 AM, Amila Jayasekara ami...@wso2.com wrote: Hi All, As per yesterdays discussion on CarbonJNDIContext we came to following conclusion. If there is a JNDI provider which needs additional functionality than specified in CarbonInitialJNDIContext, we have to work with the base initial context. Inorder to make CarbonInitialJNDIContext to return base JNDI context, calling code has to set following property, org.wso2.carbon.ldap.RequestBaseContext - if this property is set in the environment properties given to InitialContext, CarbonInitialJNDIContext will return the base context. Property is also defined as a CarbonConstant. E.g :- environment = new Hashtable(); environment.put(CarbonConstants.REQUEST_BASE_CONTEXT, true); context = new InitialDirContext(environment); Changes are commited to trunk. Please let me know if you face any issues, with this regard. Thank you AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Use of CarbonJNDIContext with LDAP, JMS
Hi All, As per yesterdays discussion on CarbonJNDIContext we came to following conclusion. If there is a JNDI provider which needs additional functionality than specified in CarbonInitialJNDIContext, we have to work with the base initial context. Inorder to make CarbonInitialJNDIContext to return base JNDI context, calling code has to set following property, org.wso2.carbon.ldap.RequestBaseContext - if this property is set in the environment properties given to InitialContext, CarbonInitialJNDIContext will return the base context. Property is also defined as a CarbonConstant. E.g :- environment = new Hashtable(); environment.put(CarbonConstants.REQUEST_BASE_CONTEXT, true); context = new InitialDirContext(environment); Changes are commited to trunk. Please let me know if you face any issues, with this regard. Thank you AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Asking for alternatives to used ports during start up
Another option is to use a port range. If a component is listening on a port then an offset is specified in the configuration. Only the base port number will be a configuration. i.e. if base port number is 5000 and if LDAP server is configured to use offset of 2, LDAP server will actually listen on 5002 (5000 + 2). This way user only needs to change port number at a single location when running multiple instances. Thanks AmilaJ On Sun, May 8, 2011 at 12:16 PM, Tharindu Mathew thari...@wso2.com wrote: Hi, Is it possible to detect used ports and ask for an alternative during our start up script? I was thinking with around 5 ports to change when starting up multiple carbon servers, this might be a nice thing to have. -- Regards, Tharindu ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Directory Server Error While Shutting Down
On Mon, May 9, 2011 at 10:48 AM, Hiranya Jayathilaka hira...@wso2.com wrote: [2011-05-09 10:47:01,346] ERROR - DefaultDirectoryService ERR_74 SynchWorker failed to synch directory. java.util.ConcurrentModificationException at java.util.HashMap$HashIterator.nextEntry(HashMap.java:793) at java.util.HashMap$ValueIterator.next(HashMap.java:822) at org.apache.directory.server.core.partition.DefaultPartitionNexus.sync(DefaultPartitionNexus.java:477) at org.apache.directory.server.core.DefaultDirectoryService$SynchWorker.run(DefaultDirectoryService.java:268) at java.lang.Thread.run(Thread.java:619) [2011-05-09 10:47:02,039] INFO - ApacheLDAPServer LDAP server stopped. Problem is intermittent :( Looking into this. Any clue on how to reproduce this issue ? Thanks AmilaJ Thanks -- Hiranya Jayathilaka Senior Software Engineer; WSO2 Inc.; http://wso2.org E-mail: hira...@wso2.com; Mobile: +94 77 633 3491 Blog: http://techfeast-hiranya.blogspot.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] QPid exception when trying to invoke an admin service
Looking into this. Thanks AmilaJ On Fri, May 6, 2011 at 3:09 PM, Danushka Menikkumbura danus...@wso2.com wrote: Actually the NPE is coming from inside DefaultRealmService.java from the following segment. RealmConfiguration tenantRealmConfig = (RealmConfiguration) tenantManager.getTenant( tenantId).getRealmConfig(); Most probably the returned tenant reference is null. I can handle NPE inside Qpid but there is anything wrong here?. We expect the returned tenant reference to be not-null? Danushka On Fri, May 6, 2011 at 2:57 PM, Supun Kamburugamuva su...@wso2.com wrote: I'm using a build from yesterday and getting the following stack trace while trying to update endpoints. [2011-05-06 14:56:21,458] ERROR - DefaultRealmService java.lang.NullPointerException at org.wso2.carbon.user.core.common.DefaultRealmService.getTenantUserRealm(DefaultRealmService.java:157) at org.wso2.carbon.qpid.authorization.service.qpid.QpidAuthorizationPlugin.getUserRealm(QpidAuthorizationPlugin.java:184) at org.wso2.carbon.qpid.authorization.service.qpid.QpidAuthorizationPlugin.authorise(QpidAuthorizationPlugin.java:124) at org.apache.qpid.server.security.SecurityManager$11.allowed(SecurityManager.java:390) at org.apache.qpid.server.security.SecurityManager.checkAllPlugins(SecurityManager.java:245) at org.apache.qpid.server.security.SecurityManager.authorisePublish(SecurityManager.java:386) at org.apache.qpid.server.transport.ServerSessionDelegate.messageTransfer(ServerSessionDelegate.java:307) at org.apache.qpid.server.transport.ServerSessionDelegate.messageTransfer(ServerSessionDelegate.java:96) at org.apache.qpid.transport.MessageTransfer.dispatch(MessageTransfer.java:108) at org.apache.qpid.transport.SessionDelegate.command(SessionDelegate.java:50) at org.apache.qpid.server.transport.ServerSessionDelegate.command(ServerSessionDelegate.java:112) at org.apache.qpid.server.transport.ServerSessionDelegate.command(ServerSessionDelegate.java:96) at org.apache.qpid.transport.Method.delegate(Method.java:159) at org.apache.qpid.transport.Session.received(Session.java:500) at org.apache.qpid.transport.Connection.dispatch(Connection.java:404) at org.apache.qpid.transport.ConnectionDelegate.handle(ConnectionDelegate.java:64) at org.apache.qpid.transport.ConnectionDelegate.handle(ConnectionDelegate.java:40) at org.apache.qpid.transport.MethodDelegate.messageTransfer(MethodDelegate.java:113) at org.apache.qpid.transport.MessageTransfer.dispatch(MessageTransfer.java:108) at org.apache.qpid.transport.ConnectionDelegate.command(ConnectionDelegate.java:54) at org.apache.qpid.transport.ConnectionDelegate.command(ConnectionDelegate.java:40) at org.apache.qpid.transport.Method.delegate(Method.java:159) at org.apache.qpid.transport.Connection.received(Connection.java:369) at org.apache.qpid.server.transport.ServerConnection.received(ServerConnection.java:196) at org.apache.qpid.server.transport.ServerConnection.received(ServerConnection.java:53) at org.apache.qpid.transport.network.Assembler.emit(Assembler.java:95) at org.apache.qpid.transport.network.Assembler.assemble(Assembler.java:217) at org.apache.qpid.transport.network.Assembler.frame(Assembler.java:129) at org.apache.qpid.transport.network.Frame.delegate(Frame.java:133) at org.apache.qpid.transport.network.Assembler.received(Assembler.java:100) at org.apache.qpid.transport.network.Assembler.received(Assembler.java:42) at org.apache.qpid.transport.network.InputHandler.next(InputHandler.java:187) at org.apache.qpid.transport.network.InputHandler.received(InputHandler.java:103) at org.apache.qpid.transport.network.InputHandler.received(InputHandler.java:42) at org.apache.qpid.server.protocol.MultiVersionProtocolEngine.received(MultiVersionProtocolEngine.java:102) at org.apache.qpid.server.protocol.MultiVersionProtocolEngine.received(MultiVersionProtocolEngine.java:36) at org.apache.qpid.transport.network.mina.MINANetworkDriver.messageReceived(MINANetworkDriver.java:337) at org.apache.mina.common.support.AbstractIoFilterChain$TailFilter.messageReceived(AbstractIoFilterChain.java:703) at org.apache.mina.common.support.AbstractIoFilterChain.callNextMessageReceived(AbstractIoFilterChain.java:362) at org.apache.mina.common.support.AbstractIoFilterChain.access$1200(AbstractIoFilterChain.java:54) at org.apache.mina.common.support.AbstractIoFilterChain$EntryImpl$1.messageReceived(AbstractIoFilterChain.java:800) at org.apache.mina.filter.executor.ExecutorFilter.processEvent(ExecutorFilter.java:243) at
Re: [Carbon-dev] Events are not getting published in latest packs due to qpid error
On Fri, May 6, 2011 at 8:12 PM, Danushka Menikkumbura danus...@wso2.com wrote: AmilaJ fixed the issue in DefaultRealmService as I heard. Hi Danushka, I didnt do any modifications to DefaultRealmService with this regard. Similar error was reported in [Carbon-dev] QPid exception when trying to invoke an admin service mail thread. But later in the same thread you informed the issue was not reproducible with a fresh installation. Let me again investigate the pack i got from Supun. Thanks AmilaJ Danushka On Fri, May 6, 2011 at 5:18 PM, Tharindu Mathew thari...@wso2.com wrote: Hi, We came up with this during smoke tests. Events published by ESB are not being received by BAM due to this. I believe it's due to the qpid error. Please have a look. Stacktrace: [2011-05-06 17:04:35,518] DEBUG - PublisherUtils Event payload svrusrdata:Event xmlns:svrusrdata=http://wso2.org/ns/2009/09/bam/server/user-defined/data;svrusrdata:ServerUserDefinedDatasvrusrdata:ServerNamehttps://10.100.0.191:9444/svrusrdata:ServerNamesvrusrdata:TenantID0/svrusrdata:TenantIDsvrusrdata:Datasvrusrdata:KeyProxyOutMaxProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value1/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutAvgProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0./svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutMinProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCumulativeCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutFaultCount-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutID/svrusrdata:Keysvrusrdata:ValuelafProxy/svrusrdata:Value/svrusrdata:Data/svrusrdata:ServerUserDefinedData/svrusrdata:Event [2011-05-06 17:04:35,518] DEBUG - BAMMediationStatisticsObserver ComponentType.PROXYSERVICE svrusrdata:Event xmlns:svrusrdata=http://wso2.org/ns/2009/09/bam/server/user-defined/data;svrusrdata:ServerUserDefinedDatasvrusrdata:ServerNamehttps://10.100.0.191:9444/svrusrdata:ServerNamesvrusrdata:TenantID0/svrusrdata:TenantIDsvrusrdata:Datasvrusrdata:KeyProxyOutMaxProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value1/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutAvgProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0./svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutMinProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCumulativeCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutFaultCount-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutID/svrusrdata:Keysvrusrdata:ValuelafProxy/svrusrdata:Value/svrusrdata:Data/svrusrdata:ServerUserDefinedData/svrusrdata:Event [2011-05-06 17:04:35,528] DEBUG - BAMMediationStatisticsObserver Event is publishedsvrusrdata:Event xmlns:svrusrdata=http://wso2.org/ns/2009/09/bam/server/user-defined/data;svrusrdata:ServerUserDefinedDatasvrusrdata:ServerNamehttps://10.100.0.191:9444/svrusrdata:ServerNamesvrusrdata:TenantID0/svrusrdata:TenantIDsvrusrdata:Datasvrusrdata:KeyProxyOutMaxProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value1/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutAvgProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0./svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutMinProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCumulativeCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutFaultCount-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutID/svrusrdata:Keysvrusrdata:ValuelafProxy/svrusrdata:Value/svrusrdata:Data/svrusrdata:ServerUserDefinedData/svrusrdata:Event [2011-05-06 17:04:35,597] ERROR - DefaultRealmService java.lang.NullPointerException at org.wso2.carbon.user.core.common.DefaultRealmService.getTenantUserRealm(DefaultRealmService.java:157) at org.wso2.carbon.qpid.authorization.service.qpid.QpidAuthorizationPlugin.getUserRealm(QpidAuthorizationPlugin.java:184) at org.wso2.carbon.qpid.authorization.service.qpid.QpidAuthorizationPlugin.authorise(QpidAuthorizationPlugin.java:124) at
Re: [Carbon-dev] Events are not getting published in latest packs due to qpid error
Hi Danushka, I did bit of debugging with the ESB pack i got from Supun and found following. The tenant id passed to DefaultRealmService.getTenantUserRealm from QpidAuthorizationPlugin.getUserRealm is -1. Thus according to DefaultRealmService.getTenantUserRealm logic the tenant id -1 does not have a special meaning and also it is not representing a normal tenant. Since RealmService cannot find the appropriate tenant when trying to retrieve Realm it gives a null pointer exception. I believe what you actually need is super tenant realm (Since this is running in stand alone mode). You need to pass 0 instead of -1. I will add a null check to tenant, before getting RealmService; to give a descriptive error message. Thanks AmilaJ On Sat, May 7, 2011 at 2:05 AM, Amila Jayasekara ami...@wso2.com wrote: On Fri, May 6, 2011 at 8:12 PM, Danushka Menikkumbura danus...@wso2.com wrote: AmilaJ fixed the issue in DefaultRealmService as I heard. Hi Danushka, I didnt do any modifications to DefaultRealmService with this regard. Similar error was reported in [Carbon-dev] QPid exception when trying to invoke an admin service mail thread. But later in the same thread you informed the issue was not reproducible with a fresh installation. Let me again investigate the pack i got from Supun. Thanks AmilaJ Danushka On Fri, May 6, 2011 at 5:18 PM, Tharindu Mathew thari...@wso2.com wrote: Hi, We came up with this during smoke tests. Events published by ESB are not being received by BAM due to this. I believe it's due to the qpid error. Please have a look. Stacktrace: [2011-05-06 17:04:35,518] DEBUG - PublisherUtils Event payload svrusrdata:Event xmlns:svrusrdata=http://wso2.org/ns/2009/09/bam/server/user-defined/data;svrusrdata:ServerUserDefinedDatasvrusrdata:ServerNamehttps://10.100.0.191:9444/svrusrdata:ServerNamesvrusrdata:TenantID0/svrusrdata:TenantIDsvrusrdata:Datasvrusrdata:KeyProxyOutMaxProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value1/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutAvgProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0./svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutMinProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCumulativeCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutFaultCount-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutID/svrusrdata:Keysvrusrdata:ValuelafProxy/svrusrdata:Value/svrusrdata:Data/svrusrdata:ServerUserDefinedData/svrusrdata:Event [2011-05-06 17:04:35,518] DEBUG - BAMMediationStatisticsObserver ComponentType.PROXYSERVICE svrusrdata:Event xmlns:svrusrdata=http://wso2.org/ns/2009/09/bam/server/user-defined/data;svrusrdata:ServerUserDefinedDatasvrusrdata:ServerNamehttps://10.100.0.191:9444/svrusrdata:ServerNamesvrusrdata:TenantID0/svrusrdata:TenantIDsvrusrdata:Datasvrusrdata:KeyProxyOutMaxProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value1/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutAvgProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0./svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutMinProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCumulativeCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutFaultCount-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutID/svrusrdata:Keysvrusrdata:ValuelafProxy/svrusrdata:Value/svrusrdata:Data/svrusrdata:ServerUserDefinedData/svrusrdata:Event [2011-05-06 17:04:35,528] DEBUG - BAMMediationStatisticsObserver Event is publishedsvrusrdata:Event xmlns:svrusrdata=http://wso2.org/ns/2009/09/bam/server/user-defined/data;svrusrdata:ServerUserDefinedDatasvrusrdata:ServerNamehttps://10.100.0.191:9444/svrusrdata:ServerNamesvrusrdata:TenantID0/svrusrdata:TenantIDsvrusrdata:Datasvrusrdata:KeyProxyOutMaxProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value1/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutAvgProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0./svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutMinProcessingTime-lafProxy/svrusrdata:Keysvrusrdata:Value0/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCount-lafProxy/svrusrdata:Keysvrusrdata:Value27/svrusrdata:Value/svrusrdata:Datasvrusrdata:Datasvrusrdata:KeyProxyOutCumulativeCount-lafProxy
Re: [Carbon-dev] Error obtaining connection from LDAPConnectionContext
Hi Danushka, I was not able to re-produce this issue in my local machine. Can you please give us specific steps. According to error message, the user store is unable to connect to LDAP server. This could be due to LDAP server is down. Thanks AmilaJ On Thu, May 5, 2011 at 11:26 AM, Danushka Menikkumbura danus...@wso2.com wrote: It is intermittent. Server runs fine for some time and then starts to gives this error. Danushka On Thu, May 5, 2011 at 11:20 AM, Danushka Menikkumbura danus...@wso2.com wrote: I see the port is open and directory service is on it. Danushka On Thu, May 5, 2011 at 11:17 AM, Danushka Menikkumbura danus...@wso2.com wrote: I see this in the latest MB pack I just built. [2011-05-05 10:59:02,584] ERROR {org.wso2.carbon.user.core.ldap.LDAPConnectionContext} - Error obtaining connection. localhost:10389 {org.wso2.carbon.user.core.ldap.LDAPConnectionContext} javax.naming.CommunicationException: localhost:10389 [Root exception is java.net.NoRouteToHostException: Cannot assign requested address] at com.sun.jndi.ldap.Connection.init(Connection.java:210) at com.sun.jndi.ldap.LdapClient.init(LdapClient.java:118) at com.sun.jndi.ldap.LdapClient.getInstance(LdapClient.java:1580) at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2652) at com.sun.jndi.ldap.LdapCtx.init(LdapCtx.java:293) at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175) at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193) at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136) at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66) at org.wso2.carbon.utils.multitenancy.CarbonContextHolder$CarbonInitialJNDIContextFactory.getInitialContext(CarbonContextHolder.java:754) at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667) at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288) at javax.naming.InitialContext.init(InitialContext.java:223) at javax.naming.InitialContext.init(InitialContext.java:197) at javax.naming.directory.InitialDirContext.init(InitialDirContext.java:82) at org.wso2.carbon.user.core.ldap.LDAPConnectionContext.getContext(LDAPConnectionContext.java:86) at org.wso2.carbon.user.core.ldap.LDAPUserStoreManager.getListOfNames(LDAPUserStoreManager.java:679) at org.wso2.carbon.user.core.ldap.LDAPUserStoreManager.getRoleListOfUser(LDAPUserStoreManager.java:550) at org.wso2.carbon.qpid.authorization.qpid.QpidAuthorizationHandler.isAdminUser(QpidAuthorizationHandler.java:357) at org.wso2.carbon.qpid.authorization.qpid.QpidAuthorizationHandler.handleConsumeQueue(QpidAuthorizationHandler.java:115) at org.wso2.carbon.qpid.authorization.service.qpid.QpidAuthorizationPlugin.authorise(QpidAuthorizationPlugin.java:147) at org.apache.qpid.server.security.SecurityManager$5.allowed(SecurityManager.java:321) at org.apache.qpid.server.security.SecurityManager.checkAllPlugins(SecurityManager.java:245) at org.apache.qpid.server.security.SecurityManager.authoriseConsume(SecurityManager.java:317) at org.apache.qpid.server.queue.SimpleAMQQueue.registerSubscription(SimpleAMQQueue.java:407) at org.apache.qpid.server.transport.ServerSessionDelegate.messageSubscribe(ServerSessionDelegate.java:260) at org.apache.qpid.server.transport.ServerSessionDelegate.messageSubscribe(ServerSessionDelegate.java:96) at org.apache.qpid.transport.MessageSubscribe.dispatch(MessageSubscribe.java:119) at org.apache.qpid.transport.SessionDelegate.command(SessionDelegate.java:50) at org.apache.qpid.server.transport.ServerSessionDelegate.command(ServerSessionDelegate.java:112) at org.apache.qpid.server.transport.ServerSessionDelegate.command(ServerSessionDelegate.java:96) at org.apache.qpid.transport.Method.delegate(Method.java:159) at org.apache.qpid.transport.Session.received(Session.java:500) at org.apache.qpid.transport.Connection.dispatch(Connection.java:404) at org.apache.qpid.transport.ConnectionDelegate.handle(ConnectionDelegate.java:64) at org.apache.qpid.transport.ConnectionDelegate.handle(ConnectionDelegate.java:40) at org.apache.qpid.transport.MethodDelegate.messageSubscribe(MethodDelegate.java:131) at org.apache.qpid.transport.MessageSubscribe.dispatch(MessageSubscribe.java:119) at org.apache.qpid.transport.ConnectionDelegate.command(ConnectionDelegate.java:54) at org.apache.qpid.transport.ConnectionDelegate.command(ConnectionDelegate.java:40) at org.apache.qpid.transport.Method.delegate(Method.java:159) at org.apache.qpid.transport.Connection.received(Connection.java:369) at org.apache.qpid.server.transport.ServerConnection.received(ServerConnection.java:196) at org.apache.qpid.server.transport.ServerConnection.received(ServerConnection.java:53) at
[Carbon-dev] Defining a role as internal or external
Hi All, How do we define whether a particular role is internal or external ? (Role type) After a chat with Pavithra, we came to following conclusion. If a role is defined within a server we treat those as internal roles. If a server reads role information from some other user store we consider those as external roles. If above definition is not correct, please advice. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Review all L2s today!
On Mon, May 2, 2011 at 9:54 AM, Prabath Siriwardena prab...@wso2.com wrote: Due to the absence of Thilina this week - AmilaJ can you please review - IS and Security related JIRAs... I will review. Thanks AmilaJ Thanks regards, -Prabath On Mon, May 2, 2011 at 9:16 AM, Samisa Abeysinghe sam...@wso2.com wrote: We have 10 L1s as well. But it is time to review and prioritize L2s. Please focus on functional issues. Thanks, Samisa... Samisa Abeysinghe VP Engineering WSO2 Inc. http://wso2.com http://wso2.org ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Build failure : components/identity/org.wso2.carbon.identity.sts
On Mon, May 2, 2011 at 6:00 PM, Isuru Suriarachchi is...@wso2.com wrote: This is due to the Xfer change that I did in the morning. There's an API change in Xfer trunk. Please update the sts code accordingly. Sorry I didn't expect anyone else to use Xfer. I'm still not sure why sts needs Xfer. I am working on this. Thanks AmilaJ Thanks, ~Isuru On Mon, May 2, 2011 at 5:34 PM, Miyuru Wanninayaka miy...@wso2.com wrote: [INFO] Compiling 7 source files to /home/miyuru/code/wso2/carbon/trunk/components/identity/org.wso2.carbon.identity.sts/target/classes [INFO] - [ERROR] COMPILATION ERROR : [INFO] - [ERROR] /home/miyuru/code/wso2/carbon/trunk/components/identity/org.wso2.carbon.identity.sts/src/main/java/org/wso2/carbon/identity/sts/mex/XferGetServiceAdapter.java:[28,7] org.wso2.carbon.identity.sts.mex.XferGetServiceAdapter is not abstract and does not override abstract method delete(org.apache.axiom.om.OMElement) in org.wso2.xfer.WSTransferOperations [ERROR] /home/miyuru/code/wso2/carbon/trunk/components/identity/org.wso2.carbon.identity.sts/src/main/java/org/wso2/carbon/identity/sts/mex/XferGetServiceAdapter.java:[47,13] delete(org.apache.axiom.om.OMElement) in org.wso2.carbon.identity.sts.mex.XferGetServiceAdapter cannot implement delete(org.apache.axiom.om.OMElement) in org.wso2.xfer.WSTransferOperations; attempting to use incompatible return type found : void required: org.apache.axiom.om.OMElement [INFO] 2 errors [INFO] - [INFO] [ERROR] BUILD FAILURE [INFO] [INFO] Compilation failure /home/miyuru/code/wso2/carbon/trunk/components/identity/org.wso2.carbon.identity.sts/src/main/java/org/wso2/carbon/identity/sts/mex/XferGetServiceAdapter.java:[28,7] org.wso2.carbon.identity.sts.mex.XferGetServiceAdapter is not abstract and does not override abstract method delete(org.apache.axiom.om.OMElement) in org.wso2.xfer.WSTransferOperations /home/miyuru/code/wso2/carbon/trunk/components/identity/org.wso2.carbon.identity.sts/src/main/java/org/wso2/carbon/identity/sts/mex/XferGetServiceAdapter.java:[47,13] delete(org.apache.axiom.om.OMElement) in org.wso2.carbon.identity.sts.mex.XferGetServiceAdapter cannot implement delete(org.apache.axiom.om.OMElement) in org.wso2.xfer.WSTransferOperations; attempting to use incompatible return type found : void required: org.apache.axiom.om.OMElement -- Thanks, Miyuru ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Isuru Suriarachchi Technical Lead Product Manager, WSO2 Application Server WSO2 Inc. http://wso2.com email : is...@wso2.com blog : http://isurues.wordpress.com/ lean . enterprise . middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Build failure : components/identity/org.wso2.carbon.identity.sts
Should be fixed. Please take a svn up. Thanks AmilaJ On Mon, May 2, 2011 at 6:02 PM, Amila Jayasekara ami...@wso2.com wrote: On Mon, May 2, 2011 at 6:00 PM, Isuru Suriarachchi is...@wso2.com wrote: This is due to the Xfer change that I did in the morning. There's an API change in Xfer trunk. Please update the sts code accordingly. Sorry I didn't expect anyone else to use Xfer. I'm still not sure why sts needs Xfer. I am working on this. Thanks AmilaJ Thanks, ~Isuru On Mon, May 2, 2011 at 5:34 PM, Miyuru Wanninayaka miy...@wso2.com wrote: [INFO] Compiling 7 source files to /home/miyuru/code/wso2/carbon/trunk/components/identity/org.wso2.carbon.identity.sts/target/classes [INFO] - [ERROR] COMPILATION ERROR : [INFO] - [ERROR] /home/miyuru/code/wso2/carbon/trunk/components/identity/org.wso2.carbon.identity.sts/src/main/java/org/wso2/carbon/identity/sts/mex/XferGetServiceAdapter.java:[28,7] org.wso2.carbon.identity.sts.mex.XferGetServiceAdapter is not abstract and does not override abstract method delete(org.apache.axiom.om.OMElement) in org.wso2.xfer.WSTransferOperations [ERROR] /home/miyuru/code/wso2/carbon/trunk/components/identity/org.wso2.carbon.identity.sts/src/main/java/org/wso2/carbon/identity/sts/mex/XferGetServiceAdapter.java:[47,13] delete(org.apache.axiom.om.OMElement) in org.wso2.carbon.identity.sts.mex.XferGetServiceAdapter cannot implement delete(org.apache.axiom.om.OMElement) in org.wso2.xfer.WSTransferOperations; attempting to use incompatible return type found : void required: org.apache.axiom.om.OMElement [INFO] 2 errors [INFO] - [INFO] [ERROR] BUILD FAILURE [INFO] [INFO] Compilation failure /home/miyuru/code/wso2/carbon/trunk/components/identity/org.wso2.carbon.identity.sts/src/main/java/org/wso2/carbon/identity/sts/mex/XferGetServiceAdapter.java:[28,7] org.wso2.carbon.identity.sts.mex.XferGetServiceAdapter is not abstract and does not override abstract method delete(org.apache.axiom.om.OMElement) in org.wso2.xfer.WSTransferOperations /home/miyuru/code/wso2/carbon/trunk/components/identity/org.wso2.carbon.identity.sts/src/main/java/org/wso2/carbon/identity/sts/mex/XferGetServiceAdapter.java:[47,13] delete(org.apache.axiom.om.OMElement) in org.wso2.carbon.identity.sts.mex.XferGetServiceAdapter cannot implement delete(org.apache.axiom.om.OMElement) in org.wso2.xfer.WSTransferOperations; attempting to use incompatible return type found : void required: org.apache.axiom.om.OMElement -- Thanks, Miyuru ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Isuru Suriarachchi Technical Lead Product Manager, WSO2 Application Server WSO2 Inc. http://wso2.com email : is...@wso2.com blog : http://isurues.wordpress.com/ lean . enterprise . middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Echo Service in ESB
On Tue, Apr 19, 2011 at 4:27 AM, Hiranya Jayathilaka hira...@wso2.com wrote: Hi, Can we add the echo service back to the ESB build? +1. Its really useful for quick experiments. Thanks - AJ If so what are the steps need to be taken? Many of our articles/tutorials assume the echo service in ESB and it will be great if we don't break all these samples in the coming release. Thanks -- Hiranya Jayathilaka Senior Software Engineer; WSO2 Inc.; http://wso2.org E-mail: hira...@wso2.com; Mobile: +94 77 633 3491 Blog: http://techfeast-hiranya.blogspot.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Lot of Ldap warning in the logs
Supun, i believe you are seeing these warnings in physical log files (not in console). Kasun, we need to suppress these warnings for CARBON_LOGFILE and CARBON_MEMORY loggers also. Thanks AmilaJ On Sat, Apr 16, 2011 at 7:14 PM, Kasun Indrasiri ka...@wso2.com wrote: Hi Supun, I cannot reproduce this issue on the latest build. We have fixed this issue by adding log4j.logger.org.apache.directory.shared.ldap=WARN, CARBON_CONSOLE log4j.logger.org.apache.directory.server.ldap.handlers=WARN, CARBON_CONSOLE log4j.logger.org.apache.directory.shared.ldap.entry.DefaultServerAttribute=FATAL, CARBON_CONSOLE log4j.logger.org.apache.directory.shared.ldap.ldif.LdifReader=ERROR, CARBON_CONSOLE log4j.logger.org.apache.directory.server.ldap.LdapProtocolHandler=ERROR, CARBON_CONSOLE to ESB log4j.properties. Please refer carbon-dev:subject :Null LdapSession warning. On Sun, Apr 17, 2011 at 12:23 AM, Supun Kamburugamuva su...@wso2.com wrote: There are lots of Ldap warning in the logs. I was using the UI and did various things like creating proxy services, updating the sequences etc. Now I can see there are lots of Ldap warning in the logs. [2011-04-17 00:20:58,146] INFO - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@1363d9a8 received from null session {org.apache.directory.server.ldap.handlers.LdapRequestHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:20:58,151] INFO - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@f22de0a0 received from null session {org.apache.directory.server.ldap.handlers.LdapRequestHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:20:58,166] INFO - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@1f5178f3 received from null session {org.apache.directory.server.ldap.handlers.LdapRequestHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:20:58,172] INFO - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@2d9b66f8 received from null session {org.apache.directory.server.ldap.handlers.LdapRequestHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:20:58,180] WARN - Null LdapSession given to cleanUpSession. {org.apache.directory.server.ldap.LdapProtocolHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:20:58,186] WARN - Null LdapSession given to cleanUpSession. {org.apache.directory.server.ldap.LdapProtocolHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:20:58,201] WARN - Null LdapSession given to cleanUpSession. {org.apache.directory.server.ldap.LdapProtocolHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:21:01,478] WARN - Null LdapSession given to cleanUpSession. {org.apache.directory.server.ldap.LdapProtocolHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:21:01,484] INFO - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@e29fc4a received from null session {org.apache.directory.server.ldap.handlers.LdapRequestHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:21:01,492] INFO - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@fb360650 received from null session {org.apache.directory.server.ldap.handlers.LdapRequestHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:21:01,503] WARN - Null LdapSession given to cleanUpSession. {org.apache.directory.server.ldap.LdapProtocolHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:21:01,508] WARN - Null LdapSession given to cleanUpSession. {org.apache.directory.server.ldap.LdapProtocolHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:21:12,415] WARN - Null LdapSession given to cleanUpSession. {org.apache.directory.server.ldap.LdapProtocolHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:21:12,423] WARN - Null LdapSession given to cleanUpSession. {org.apache.directory.server.ldap.LdapProtocolHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:21:12,755] INFO - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@c7d16706 received from null session {org.apache.directory.server.ldap.handlers.LdapRequestHandler} log4j:ERROR Attempted to append to closed appender named [CARBON_CONSOLE]. [2011-04-17 00:21:12,760] WARN - Null LdapSession given to cleanUpSession.
Re: [Carbon-dev] Null LdapSession warning
Hi Evanthika, Could you please attach the log4j.properties file that was in the pack ? Thanks AmilaJ On Sun, Apr 3, 2011 at 11:45 PM, Evanthika Amarasiri evanth...@wso2.com wrote: Hi all, I am still seeing this issue on the latest G-Reg pack downloaded from [1]. This may not be harmful for the functionality but it sure slows down the server. For instance, when I do a metadata search, it takes a conciderable amount of time to return the search results since the 'Null LdapSession warning' is being printed continuously. Appreciate if somebody could look into this issue. [1] - http://10.100.1.43/~carbon/releases/carbon/3.2.0/2011-04-04_03-59-05/ Regards, Evanthika On Fri, Mar 25, 2011 at 9:37 PM, Amila Jayasekara ami...@wso2.com wrote: On Fri, Mar 25, 2011 at 4:47 AM, Afkham Azeez az...@wso2.com wrote: Amila, The OOM issue is something different. This issue originally reported by Ishani is related to the ESB hanging on startup, after it is restarted. I believe this server hanging is also related to the memory issue. Cos, while testing yesterday i did experience that server dies without giving any messages to the console. i.e. server does not through a PermGen exception rather it hangs when Graceful Shutdown is invoked. Then if i try to do any operations in management console, server dies. Above test is also carried out without installing LDAP features. But i didnt try this scenario with ESB. I will do more testing with ESB and will confirm whether server hanging is due to a different cause. Thanks AmilaJ The following logs are printed and then the server hangs. osgi [2011-03-25 17:08:28,736] INFO {org.wso2.carbon.core.init.CarbonServerManager} - Gracefully restarting WSO2 ESB... [2011-03-25 17:08:28,738] INFO {org.wso2.carbon.core.ServerManagement} - Starting to switch to maintenance mode... [2011-03-25 17:08:28,739] INFO {org.apache.synapse.transport.nhttp.HttpCoreNIOListener} - HTTPS Listener Shutdown [2011-03-25 17:08:28,742] INFO {org.apache.synapse.transport.nhttp.HttpCoreNIOListener} - HTTP Listener Shutdown [2011-03-25 17:08:28,742] INFO {org.wso2.carbon.core.ServerManagement} - Stopped all transport listeners [2011-03-25 17:08:28,743] INFO {org.wso2.carbon.core.ServerManagement} - Waiting for deployment completion... [2011-03-25 17:08:28,744] INFO {org.wso2.carbon.core.ServerManagement} - All deployment tasks have been completed. [2011-03-25 17:08:28,744] INFO {org.wso2.carbon.core.ServerManagement} - Waiting for request service completion... [2011-03-25 17:08:28,746] INFO {org.wso2.carbon.core.ServerManagement} - All requests have been served. [2011-03-25 17:08:28,747] INFO {org.wso2.carbon.core.init.CarbonServerManager} - Waiting for 5 sec(s) before initiating restart [2011-03-25 17:08:33,894] INFO {org.apache.synapse.task.SynapseTaskManager} - Shutting down the task manager [2011-03-25 17:08:33,897] INFO {org.apache.synapse.Axis2SynapseController} - Undeploying the Synapse service... [2011-03-25 17:08:33,900] INFO {org.apache.synapse.Axis2SynapseController} - Undeploying Proxy services... [2011-03-25 17:08:33,900] INFO {org.apache.synapse.Axis2SynapseController} - Undeploying EventSources... [2011-03-25 17:08:33,971] INFO {org.apache.directory.server.ldap.LdapServer} - Unbind of an LDAP service (10389) is complete. [2011-03-25 17:08:33,971] INFO {org.apache.directory.server.ldap.LdapServer} - Sending notice of disconnect to existing clients sessions. [2011-03-25 17:08:33,971] INFO {org.apache.directory.server.ldap.LdapServer} - Ldap service stopped. [2011-03-25 17:08:34,027] INFO {org.apache.directory.server.core.DefaultDirectoryService} - Waiting for SynchWorkerThread to die. [2011-03-25 17:08:34,027] INFO {org.wso2.carbon.apacheds.impl.ApacheLDAPServer} - LDAP server stopped. On Fri, Mar 25, 2011 at 11:28 AM, Amila Jayasekara ami...@wso2.com wrote: Hi All, I was able to reproduce this issue with carbon core server. I am getting java.lang.OutOfMemoryError: PermGen space as mentioned in https://wso2.org/jira/browse/CARBON-9145. In carbon core server if we invoke Graceful Restart several times we can reproduce this issue (In my machine i was able to reproduce the issue by invoking 3 times). In-order to narrow down the issue i un-installed LDAP specific (apacheds and org.wso2.carbon.ldap) features and connected user manager to a h2 database. Still i was able to reproduce above error after 3 attempts. Therefore i doubt, whether this issue has an impact from LDAP server. When monitoring memory usage in each restart, i observed that memory usage increases about 1-2% for each attempt. (I did the same setof actions in each attempt). I am not quite sure what could be the root cause for the memory increase. We need to further investigate this issue. Thanks AmilaJ
Re: [Carbon-dev] Null LdapSession warning
On Fri, Mar 25, 2011 at 4:47 AM, Afkham Azeez az...@wso2.com wrote: Amila, The OOM issue is something different. This issue originally reported by Ishani is related to the ESB hanging on startup, after it is restarted. I believe this server hanging is also related to the memory issue. Cos, while testing yesterday i did experience that server dies without giving any messages to the console. i.e. server does not through a PermGen exception rather it hangs when Graceful Shutdown is invoked. Then if i try to do any operations in management console, server dies. Above test is also carried out without installing LDAP features. But i didnt try this scenario with ESB. I will do more testing with ESB and will confirm whether server hanging is due to a different cause. Thanks AmilaJ The following logs are printed and then the server hangs. osgi [2011-03-25 17:08:28,736] INFO {org.wso2.carbon.core.init.CarbonServerManager} - Gracefully restarting WSO2 ESB... [2011-03-25 17:08:28,738] INFO {org.wso2.carbon.core.ServerManagement} - Starting to switch to maintenance mode... [2011-03-25 17:08:28,739] INFO {org.apache.synapse.transport.nhttp.HttpCoreNIOListener} - HTTPS Listener Shutdown [2011-03-25 17:08:28,742] INFO {org.apache.synapse.transport.nhttp.HttpCoreNIOListener} - HTTP Listener Shutdown [2011-03-25 17:08:28,742] INFO {org.wso2.carbon.core.ServerManagement} - Stopped all transport listeners [2011-03-25 17:08:28,743] INFO {org.wso2.carbon.core.ServerManagement} - Waiting for deployment completion... [2011-03-25 17:08:28,744] INFO {org.wso2.carbon.core.ServerManagement} - All deployment tasks have been completed. [2011-03-25 17:08:28,744] INFO {org.wso2.carbon.core.ServerManagement} - Waiting for request service completion... [2011-03-25 17:08:28,746] INFO {org.wso2.carbon.core.ServerManagement} - All requests have been served. [2011-03-25 17:08:28,747] INFO {org.wso2.carbon.core.init.CarbonServerManager} - Waiting for 5 sec(s) before initiating restart [2011-03-25 17:08:33,894] INFO {org.apache.synapse.task.SynapseTaskManager} - Shutting down the task manager [2011-03-25 17:08:33,897] INFO {org.apache.synapse.Axis2SynapseController} - Undeploying the Synapse service... [2011-03-25 17:08:33,900] INFO {org.apache.synapse.Axis2SynapseController} - Undeploying Proxy services... [2011-03-25 17:08:33,900] INFO {org.apache.synapse.Axis2SynapseController} - Undeploying EventSources... [2011-03-25 17:08:33,971] INFO {org.apache.directory.server.ldap.LdapServer} - Unbind of an LDAP service (10389) is complete. [2011-03-25 17:08:33,971] INFO {org.apache.directory.server.ldap.LdapServer} - Sending notice of disconnect to existing clients sessions. [2011-03-25 17:08:33,971] INFO {org.apache.directory.server.ldap.LdapServer} - Ldap service stopped. [2011-03-25 17:08:34,027] INFO {org.apache.directory.server.core.DefaultDirectoryService} - Waiting for SynchWorkerThread to die. [2011-03-25 17:08:34,027] INFO {org.wso2.carbon.apacheds.impl.ApacheLDAPServer} - LDAP server stopped. On Fri, Mar 25, 2011 at 11:28 AM, Amila Jayasekara ami...@wso2.com wrote: Hi All, I was able to reproduce this issue with carbon core server. I am getting java.lang.OutOfMemoryError: PermGen space as mentioned in https://wso2.org/jira/browse/CARBON-9145. In carbon core server if we invoke Graceful Restart several times we can reproduce this issue (In my machine i was able to reproduce the issue by invoking 3 times). In-order to narrow down the issue i un-installed LDAP specific (apacheds and org.wso2.carbon.ldap) features and connected user manager to a h2 database. Still i was able to reproduce above error after 3 attempts. Therefore i doubt, whether this issue has an impact from LDAP server. When monitoring memory usage in each restart, i observed that memory usage increases about 1-2% for each attempt. (I did the same setof actions in each attempt). I am not quite sure what could be the root cause for the memory increase. We need to further investigate this issue. Thanks AmilaJ On Thu, Mar 24, 2011 at 8:59 PM, Kasun Indrasiri ka...@wso2.com wrote: On Thu, Mar 24, 2011 at 9:33 PM, Amila Jayasekara ami...@wso2.com wrote: On Thu, Mar 24, 2011 at 12:07 AM, Kasun Indrasiri ka...@wso2.com wrote: Hi Azeez, Yeah. The graceful restarting is still broken. I am still trying to find the exact cause for the error. Kasun, are you getting the PermGen error when you execute Graceful Shutdown ? No. I'm not getting that error in esb logs. Thanks AmilaJ Thanks. On Thu, Mar 24, 2011 at 12:15 PM, Afkham Azeez az...@wso2.com wrote: Kasun, Are you seeing the restart issue? On Thu, Mar 24, 2011 at 12:02 PM, Kasun Indrasiri ka...@wso2.com wrote: Adding following entries to esb log4j.properties solved the issues. Thanks a lot Amila and Hasini
Re: [Carbon-dev] Null LdapSession warning
Hi All, According to apacheds mailing lists and jiras the null ldap session warning is a harmless message. You can find more information about this in other mail discussion [1] we had about this. Thus this warning is suppressed at log4j.properties file in core and therefore we dont see this message in carbon and other products which uses log4j.properties file in core. But ESB, MB and few other products are using log4j.properties files specific to them. On those files the warning is not suppressed. I will work on suppressing these warning in other product specific log4j.properties files. Thanks AmilaJ [1] http://wso2.org/mailarchive/carbon-dev/2011-March/049465.html On Wed, Mar 23, 2011 at 1:47 AM, Hasini Gunasinghe has...@wso2.com wrote: On Wed, Mar 23, 2011 at 2:09 PM, Ishani Ratnayake ish...@wso2.com wrote: On Wed, Mar 23, 2011 at 1:56 PM, Hasini Gunasinghe has...@wso2.com wrote: On Wed, Mar 23, 2011 at 1:43 PM, Kasun Indrasiri ka...@wso2.com wrote: https://wso2.org/jira/browse/CARBON-9163 Hi, We have already reported two similar issue with related to the same. [1] https://wso2.org/jira/browse/CARBON-8853 [2] https://wso2.org/jira/browse/CARBON-8965 Above two issues are same as the issue: https://wso2.org/jira/browse/CARBON-8919 And since that issue has been fixed now, two issues you have mentioned should also have been fixed. Thanks for reporting.. can you please verify and close the issues, if resolved? Thanks, Hasini. Thanks, Ishani We have discussed and avoided a similar continuous log (in that case it is an INFO log) here [1]. Will look into the issue that Kasun has reported as well when we come to fixing issues. Azeez, would it be sufficient if we look into the issue you reported as well, when we come to fixing issues? [1]http://wso2.org/mailarchive/carbon-dev/2011-March/049465.html On Tue, Mar 22, 2011 at 10:27 AM, Kasun Indrasiri ka...@wso2.com wrote: Hi, Getting this warning continuously in the latest ESB builds. Any thoughts ? [2011-03-22 10:23:14,236] INFO {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@3f8efd86 received from null session [2011-03-22 10:23:14,243] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. [2011-03-22 10:23:18,656] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. [2011-03-22 10:23:18,662] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. -- Kasun Indrasiri Senior Software Engineer WSO2, Inc.; http://wso2.com lean.enterprise.middleware cell: +94 71 536 4128 Blog : http://kasunpanorama.blogspot.com/ -- Kasun Indrasiri Senior Software Engineer WSO2, Inc.; http://wso2.com lean.enterprise.middleware cell: +94 71 536 4128 Blog : http://kasunpanorama.blogspot.com/ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Ishani Mobile : 0727136198 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Null LdapSession warning
On Wed, Mar 23, 2011 at 1:19 AM, Afkham Azeez az...@wso2.com wrote: Hasini, Please look into this. It also seems that graceful restart is broken due to the LDAP server not properly shutting down. Hi Azeez, I am unable to re-produce this behaviour using carbon core. Can you give us specific information about this error ? Thanks AmilaJ On Wed, Mar 23, 2011 at 1:43 PM, Kasun Indrasiri ka...@wso2.com wrote: https://wso2.org/jira/browse/CARBON-9163 On Tue, Mar 22, 2011 at 10:27 AM, Kasun Indrasiri ka...@wso2.com wrote: Hi, Getting this warning continuously in the latest ESB builds. Any thoughts ? [2011-03-22 10:23:14,236] INFO {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@3f8efd86 received from null session [2011-03-22 10:23:14,243] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. [2011-03-22 10:23:18,656] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. [2011-03-22 10:23:18,662] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. -- Kasun Indrasiri Senior Software Engineer WSO2, Inc.; http://wso2.com lean.enterprise.middleware cell: +94 71 536 4128 Blog : http://kasunpanorama.blogspot.com/ -- Kasun Indrasiri Senior Software Engineer WSO2, Inc.; http://wso2.com lean.enterprise.middleware cell: +94 71 536 4128 Blog : http://kasunpanorama.blogspot.com/ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Null LdapSession warning
On Thu, Mar 24, 2011 at 12:07 AM, Kasun Indrasiri ka...@wso2.com wrote: Hi Azeez, Yeah. The graceful restarting is still broken. I am still trying to find the exact cause for the error. Kasun, are you getting the PermGen error when you execute Graceful Shutdown ? Thanks AmilaJ Thanks. On Thu, Mar 24, 2011 at 12:15 PM, Afkham Azeez az...@wso2.com wrote: Kasun, Are you seeing the restart issue? On Thu, Mar 24, 2011 at 12:02 PM, Kasun Indrasiri ka...@wso2.com wrote: Adding following entries to esb log4j.properties solved the issues. Thanks a lot Amila and Hasini. log4j.logger.org.apache.directory.shared.ldap=WARN, CARBON_CONSOLE log4j.logger.org.apache.directory.server.ldap.handlers=WARN, CARBON_CONSOLE log4j.logger.org.apache.directory.shared.ldap.entry.DefaultServerAttribute=FATAL, CARBON_CONSOLE log4j.logger.org.apache.directory.shared.ldap.ldif.LdifReader=ERROR, CARBON_CONSOLE log4j.logger.org.apache.directory.server.ldap.LdapProtocolHandler=ERROR, CARBON_CONSOLE On Thu, Mar 24, 2011 at 10:35 AM, Amila Jayasekara ami...@wso2.com wrote: Hi All, According to apacheds mailing lists and jiras the null ldap session warning is a harmless message. You can find more information about this in other mail discussion [1] we had about this. Thus this warning is suppressed at log4j.properties file in core and therefore we dont see this message in carbon and other products which uses log4j.properties file in core. But ESB, MB and few other products are using log4j.properties files specific to them. On those files the warning is not suppressed. I will work on suppressing these warning in other product specific log4j.properties files. Thanks AmilaJ [1] http://wso2.org/mailarchive/carbon-dev/2011-March/049465.html On Wed, Mar 23, 2011 at 1:47 AM, Hasini Gunasinghe has...@wso2.com wrote: On Wed, Mar 23, 2011 at 2:09 PM, Ishani Ratnayake ish...@wso2.com wrote: On Wed, Mar 23, 2011 at 1:56 PM, Hasini Gunasinghe has...@wso2.com wrote: On Wed, Mar 23, 2011 at 1:43 PM, Kasun Indrasiri ka...@wso2.com wrote: https://wso2.org/jira/browse/CARBON-9163 Hi, We have already reported two similar issue with related to the same. [1] https://wso2.org/jira/browse/CARBON-8853 [2] https://wso2.org/jira/browse/CARBON-8965 Above two issues are same as the issue: https://wso2.org/jira/browse/CARBON-8919 And since that issue has been fixed now, two issues you have mentioned should also have been fixed. Thanks for reporting.. can you please verify and close the issues, if resolved? Thanks, Hasini. Thanks, Ishani We have discussed and avoided a similar continuous log (in that case it is an INFO log) here [1]. Will look into the issue that Kasun has reported as well when we come to fixing issues. Azeez, would it be sufficient if we look into the issue you reported as well, when we come to fixing issues? [1]http://wso2.org/mailarchive/carbon-dev/2011-March/049465.html On Tue, Mar 22, 2011 at 10:27 AM, Kasun Indrasiri ka...@wso2.com wrote: Hi, Getting this warning continuously in the latest ESB builds. Any thoughts ? [2011-03-22 10:23:14,236] INFO {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@3f8efd86 received from null session [2011-03-22 10:23:14,243] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. [2011-03-22 10:23:18,656] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. [2011-03-22 10:23:18,662] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. -- Kasun Indrasiri Senior Software Engineer WSO2, Inc.; http://wso2.com lean.enterprise.middleware cell: +94 71 536 4128 Blog : http://kasunpanorama.blogspot.com/ -- Kasun Indrasiri Senior Software Engineer WSO2, Inc.; http://wso2.com lean.enterprise.middleware cell: +94 71 536 4128 Blog : http://kasunpanorama.blogspot.com/ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Ishani Mobile : 0727136198 ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Kasun Indrasiri Senior Software Engineer WSO2, Inc.; http://wso2.com lean.enterprise.middleware cell: +94 71 536 4128 Blog : http://kasunpanorama.blogspot.com/ -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2
Re: [Carbon-dev] Null LdapSession warning
Hi All, I was able to reproduce this issue with carbon core server. I am getting java.lang.OutOfMemoryError: PermGen space as mentioned in https://wso2.org/jira/browse/CARBON-9145. In carbon core server if we invoke Graceful Restart several times we can reproduce this issue (In my machine i was able to reproduce the issue by invoking 3 times). In-order to narrow down the issue i un-installed LDAP specific (apacheds and org.wso2.carbon.ldap) features and connected user manager to a h2 database. Still i was able to reproduce above error after 3 attempts. Therefore i doubt, whether this issue has an impact from LDAP server. When monitoring memory usage in each restart, i observed that memory usage increases about 1-2% for each attempt. (I did the same setof actions in each attempt). I am not quite sure what could be the root cause for the memory increase. We need to further investigate this issue. Thanks AmilaJ On Thu, Mar 24, 2011 at 8:59 PM, Kasun Indrasiri ka...@wso2.com wrote: On Thu, Mar 24, 2011 at 9:33 PM, Amila Jayasekara ami...@wso2.com wrote: On Thu, Mar 24, 2011 at 12:07 AM, Kasun Indrasiri ka...@wso2.com wrote: Hi Azeez, Yeah. The graceful restarting is still broken. I am still trying to find the exact cause for the error. Kasun, are you getting the PermGen error when you execute Graceful Shutdown ? No. I'm not getting that error in esb logs. Thanks AmilaJ Thanks. On Thu, Mar 24, 2011 at 12:15 PM, Afkham Azeez az...@wso2.com wrote: Kasun, Are you seeing the restart issue? On Thu, Mar 24, 2011 at 12:02 PM, Kasun Indrasiri ka...@wso2.com wrote: Adding following entries to esb log4j.properties solved the issues. Thanks a lot Amila and Hasini. log4j.logger.org.apache.directory.shared.ldap=WARN, CARBON_CONSOLE log4j.logger.org.apache.directory.server.ldap.handlers=WARN, CARBON_CONSOLE log4j.logger.org.apache.directory.shared.ldap.entry.DefaultServerAttribute=FATAL, CARBON_CONSOLE log4j.logger.org.apache.directory.shared.ldap.ldif.LdifReader=ERROR, CARBON_CONSOLE log4j.logger.org.apache.directory.server.ldap.LdapProtocolHandler=ERROR, CARBON_CONSOLE On Thu, Mar 24, 2011 at 10:35 AM, Amila Jayasekara ami...@wso2.com wrote: Hi All, According to apacheds mailing lists and jiras the null ldap session warning is a harmless message. You can find more information about this in other mail discussion [1] we had about this. Thus this warning is suppressed at log4j.properties file in core and therefore we dont see this message in carbon and other products which uses log4j.properties file in core. But ESB, MB and few other products are using log4j.properties files specific to them. On those files the warning is not suppressed. I will work on suppressing these warning in other product specific log4j.properties files. Thanks AmilaJ [1] http://wso2.org/mailarchive/carbon-dev/2011-March/049465.html On Wed, Mar 23, 2011 at 1:47 AM, Hasini Gunasinghe has...@wso2.com wrote: On Wed, Mar 23, 2011 at 2:09 PM, Ishani Ratnayake ish...@wso2.com wrote: On Wed, Mar 23, 2011 at 1:56 PM, Hasini Gunasinghe has...@wso2.com wrote: On Wed, Mar 23, 2011 at 1:43 PM, Kasun Indrasiri ka...@wso2.com wrote: https://wso2.org/jira/browse/CARBON-9163 Hi, We have already reported two similar issue with related to the same. [1] https://wso2.org/jira/browse/CARBON-8853 [2] https://wso2.org/jira/browse/CARBON-8965 Above two issues are same as the issue: https://wso2.org/jira/browse/CARBON-8919 And since that issue has been fixed now, two issues you have mentioned should also have been fixed. Thanks for reporting.. can you please verify and close the issues, if resolved? Thanks, Hasini. Thanks, Ishani We have discussed and avoided a similar continuous log (in that case it is an INFO log) here [1]. Will look into the issue that Kasun has reported as well when we come to fixing issues. Azeez, would it be sufficient if we look into the issue you reported as well, when we come to fixing issues? [1]http://wso2.org/mailarchive/carbon-dev/2011-March/049465.html On Tue, Mar 22, 2011 at 10:27 AM, Kasun Indrasiri ka...@wso2.com wrote: Hi, Getting this warning continuously in the latest ESB builds. Any thoughts ? [2011-03-22 10:23:14,236] INFO {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@3f8efd86 received from null session [2011-03-22 10:23:14,243] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. [2011-03-22 10:23:18,656] WARN {org.apache.directory.server.ldap.LdapProtocolHandler} - Null LdapSession given to cleanUpSession. [2011-03-22 10:23
Re: [Carbon-dev] Add all ports to carbon.xml ports section cleanup port definitions in carbon.xml
On Sat, Mar 12, 2011 at 5:44 AM, Afkham Azeez az...@wso2.com wrote: This is mail is targeted at all devs who introduced config files to Carbon. If you config files contain port definitions, you must provide the functionality for users to override those using an entry in the carbon.xml ports section. Also, others who introduced ports into random places in the carbon.xml file, now is the time to clean it up, and use the ports section to define the ports. -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev As per above mail, LDAP server component is now reading ports from $CARBON_HOME/repository/conf/carbon.xml. Both LDAP server port and KDC port can be changed in carbon.xml's following configuration sections, Ports !-- Embedded LDAP server specific ports -- EmbeddedLDAP !-- Port which embedded LDAP server runs -- LDAPServerPort10389/LDAPServerPort !-- Port which KDC (Kerberos Key Distribution Center) server runs -- KDCServerPort8000/KDCServerPort /EmbeddedLDAP /Ports Changes are committed to trunk. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Add all ports to carbon.xml ports section cleanup port definitions in carbon.xml
On Sun, Mar 13, 2011 at 1:27 PM, Afkham Azeez az...@wso2.com wrote: On Mon, Mar 14, 2011 at 1:32 AM, Amila Jayasekara ami...@wso2.com wrote: On Sat, Mar 12, 2011 at 5:44 AM, Afkham Azeez az...@wso2.com wrote: This is mail is targeted at all devs who introduced config files to Carbon. If you config files contain port definitions, you must provide the functionality for users to override those using an entry in the carbon.xml ports section. Also, others who introduced ports into random places in the carbon.xml file, now is the time to clean it up, and use the ports section to define the ports. -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev As per above mail, LDAP server component is now reading ports from $CARBON_HOME/repository/conf/carbon.xml. Both LDAP server port and KDC port can be changed in carbon.xml's following configuration sections, Ports !-- Embedded LDAP server specific ports -- EmbeddedLDAP !-- Port which embedded LDAP server runs -- LDAPServerPort10389/LDAPServerPort This 10389 port needs to be changed in 2 XML files I think. What if we keep those commented out, with instructions for advanced users, in those files, and default to the values specified in the carbon.xml file? Hi Azeez, I didnt understand your question completely. We need to specify LDAP port in carbon.xml (for LDAP server) and usr-mgt.xml (For user manager). Are you suggesting to read LDAP port for user manager from carbon.xml ? Thanks AmilaJ !-- Port which KDC (Kerberos Key Distribution Center) server runs -- KDCServerPort8000/KDCServerPort /EmbeddedLDAP /Ports Changes are committed to trunk. Thanks AmilaJ -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Possible bundle start order issue after LDAP was introduced
On Sun, Mar 13, 2011 at 6:14 PM, Prabath Siriwardana prab...@wso2.com wrote: Hi AmilaJ/Hasini, Can we do something like this to make sure - user only needs to change LDAP ports only in one place.. If embedded LDAP is enabled UserManager reads the LDAP port from carbon.xml - Ports section... - not from user-mgt.xml. In this case user only needs to change the ports section of carbon.xml WDYT? +1 for this solution. Thanks AmilaJ Thanks regards, -Prabath On Mon, Mar 14, 2011 at 12:49 AM, Afkham Azeez az...@wso2.com wrote: Hmm, I had two instances of AS running, and it seems that the second one was binding to the first ones LDAP port. This is really confusing. The LDAP ports needs to be changed in two different XML files. Can you guys (AmilaJ/Hasini?) please fix this? On Mon, Mar 14, 2011 at 12:44 AM, Afkham Azeez az...@wso2.com wrote: I am intermittently seeing the following error, which could mean that UM is trying to start before LDAP has started. [2011-03-14 00:42:47,024] INFO {org.wso2.carbon.apacheds.impl.ApacheDirectoryPartitionManager} - Partitionroot added to directory service. [2011-03-14 00:42:47,997] ERROR {org.wso2.carbon.user.core.ldap.LDAPConnectionContext} - Error obtaining connection. localhost:10389 javax.naming.CommunicationException: localhost:10389 [Root exception is java.net.ConnectException: Connection refused] at com.sun.jndi.ldap.Connection.init(Connection.java:210) at com.sun.jndi.ldap.LdapClient.init(LdapClient.java:118) at com.sun.jndi.ldap.LdapClient.getInstance(LdapClient.java:1580) at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2652) at com.sun.jndi.ldap.LdapCtx.init(LdapCtx.java:293) at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175) at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193) at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136) at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66) at org.wso2.carbon.utils.multitenancy.CarbonContextHolder$CarbonInitialJNDIContextFactory.getInitialContext(CarbonContextHolder.java:756) at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667) at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288) at javax.naming.InitialContext.init(InitialContext.java:223) at javax.naming.InitialContext.init(InitialContext.java:197) at javax.naming.directory.InitialDirContext.init(InitialDirContext.java:82) at org.wso2.carbon.user.core.ldap.LDAPConnectionContext.getContext(LDAPConnectionContext.java:72) at org.wso2.carbon.user.core.ldap.LDAPUserStoreManager.init(LDAPUserStoreManager.java:101) at org.wso2.carbon.user.core.ldap.ApacheDSUserStoreManager.init(ApacheDSUserStoreManager.java:87) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39) at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27) at java.lang.reflect.Constructor.newInstance(Constructor.java:513) at org.wso2.carbon.user.core.common.DefaultRealm.createObjectWithOptions(DefaultRealm.java:194) at org.wso2.carbon.user.core.common.DefaultRealm.initializeObjects(DefaultRealm.java:147) at org.wso2.carbon.user.core.common.DefaultRealm.init(DefaultRealm.java:113) at org.wso2.carbon.user.core.common.DefaultRealmService.initializeRealm(DefaultRealmService.java:225) at org.wso2.carbon.user.core.common.DefaultRealmService.init(DefaultRealmService.java:104) at org.wso2.carbon.user.core.common.DefaultRealmService.init(DefaultRealmService.java:117) at org.wso2.carbon.user.core.internal.Activator.startDeploy(Activator.java:51) at org.wso2.carbon.user.core.internal.BundleCheckActivator.start(BundleCheckActivator.java:54) at org.eclipse.osgi.framework.internal.core.BundleContextImpl$1.run(BundleContextImpl.java:782) at java.security.AccessController.doPrivileged(Native Method) at org.eclipse.osgi.framework.internal.core.BundleContextImpl.startActivator(BundleContextImpl.java:773) at org.eclipse.osgi.framework.internal.core.BundleContextImpl.start(BundleContextImpl.java:754) at org.eclipse.osgi.framework.internal.core.BundleHost.startWorker(BundleHost.java:352) at org.eclipse.osgi.framework.internal.core.AbstractBundle.resume(AbstractBundle.java:370) at org.eclipse.osgi.framework.internal.core.Framework.resumeBundle(Framework.java:1068) at org.eclipse.osgi.framework.internal.core.StartLevelManager.resumeBundles(StartLevelManager.java:557) at org.eclipse.osgi.framework.internal.core.StartLevelManager.incFWSL(StartLevelManager.java:464) at org.eclipse.osgi.framework.internal.core.StartLevelManager.doSetStartLevel(StartLevelManager.java:248) at org.eclipse.osgi.framework.internal.core.StartLevelManager.dispatchEvent(StartLevelManager.java:445) at
Re: [Carbon-dev] Change ldap ports when starting up multiple servers in the same machine
On Thu, Mar 10, 2011 at 8:09 PM, Afkham Azeez az...@wso2.com wrote: This is going to be very confusing for users since there are multiple files and places in which ports have to be changed. Also, it may not be straightforward to figure out which files to change. Is there a better way of doing this? Can we override all port using the ports section in carbon.xml file so that the user has to change only that file and the mgt-transports.xml file? +1 for single location. Thanks AmilaJ How will the multiple instance stuff get affected by this? On Thu, Mar 10, 2011 at 4:22 PM, Tharindu Mathew thari...@wso2.com wrote: Note now that if two servers use qpid, even if indirectly through dependencies you need to change the config located at $SERVER_HOME/repository/conf/qpid/etc/config.xml port5672/port On Thu, Mar 10, 2011 at 3:02 PM, Charitha Kankanamge chari...@wso2.com wrote: Noted. Thanks for the information. /Charitha On Mon, Mar 7, 2011 at 11:21 PM, Tharindu Mathew thari...@wso2.com wrote: Devs, If you are used to starting up multiple servers in the same host machine, please not that in addition to changing http and https ports in the mgt-transports.xml, you need to change ports of the embedded ldap server as well. In $SERVER_HOME/repository/conf/embedded-ldap.xml change: EmbeddedLDAP Property name=enabletrue/Property Property name=instanceIddefault/Property Property name=port10390/Property . /EmbeddedLDAP and also change $SERVER_HOME/repository/conf/user-mgt.xml's connection URL to match the ldap port: UserStoreManager class=org.wso2.carbon.user.core.ldap.ApacheDSUserStoreManager Property name=ReadOnlyfalse/Property Property name=ConnectionURLldap://localhost:10390/Property .. /UserStoreManager -- Regards, Tharindu ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Regards, Tharindu ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] New config files in Carbon conf directory - too many (undocumented) files?
On Tue, Mar 8, 2011 at 2:30 AM, Senaka Fernando sen...@wso2.com wrote: On Mon, Mar 7, 2011 at 7:11 PM, Afkham Azeez az...@wso2.com wrote: Folks, We have too many conf files and it would be very confusing for a user. Perhaps we can merge some of these files. Also, it would be good if the header section of each file mentions the purpose of these files. This practice was followed when we defined the carbon.xml file, but the people who added the other files have not learnt from that. jgroups-s3_ping-aws.xml - Senaka what is this file used for? JCache? Can we have this file elsewhere, or call it jcache-config or something? Why isn't it explained in the README? This is used by JGroups (clustering Infinispan), in a an EC2 setup. IIRC, the name was fixed. Let me check on that, and if not, we might be able to rename it. cache.xml - Senaka why isn't this in the README? Can't we merge this with the above file? I think no, since JGroups is about clustering/group-communication, and Cache configuration is about caching. WDYT? broker-config.xml - Lahiru, Senaka, why isn't this in the README. This comes from event-broker. Amila, if this is no longer needed, we can get rid of it. And, IMO, the following are not needed. 1. cipher-text.properties 2. embedded-ldap.xml (can be merged into user-mgt.xml right?) No, we cannot merge configurations in embedded-ldap.xml with user-mgt.xml. Those are 2 different aspects. embedded-ldap.xml is the configuration file for LDAP server running inside carbon. user-mgt.xml contains configurations about a specific user store for carbon. The user store can point to embedded LDAP server or to a different user store. Therefore we should not merge configurations in embedded-ldap.xml and user-mgt.xml. Thanks AmilaJ 3. node/* (these are outdated and no longer needed, AFAIU). 4. secret-conf.properties The secure-vault documentation should include how to create these files if needed, as they are not mandatory. And, most importantly, we need to s/README/README.txt, or you can't open it in Windows properly. Also, may be we need to use the DOS line-encoding for these files. Can this be done by setting svn:eol-style? ports-config.xml - Lahiru what is this file used for? Multiple instance config? Why isn't it explained in the README? Why isn't the XML aligned? If this is needed, IMHO, this should be a part of mgt-transports.xml. We don't need two config files for transports. And, I have a small question. Is the file name wrapper.conf correct? I'm talking about the extension, is conf correct? Thanks, Senaka. -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Senaka Fernando Product Manager - WSO2 Governance Registry; Associate Technical Lead; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://apache.org E-mail: senaka AT wso2.com P: +1 408 754 7388; ext: 51736; M: +94 77 322 1818 Linked-In: http://www.linkedin.com/in/senakafernando Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] New config files in Carbon conf directory - too many (undocumented) files?
On Tue, Mar 8, 2011 at 10:10 AM, Senaka Fernando sen...@wso2.com wrote: Hi Amila, On Tue, Mar 8, 2011 at 10:49 PM, Amila Jayasekara ami...@wso2.com wrote: On Tue, Mar 8, 2011 at 2:30 AM, Senaka Fernando sen...@wso2.com wrote: On Mon, Mar 7, 2011 at 7:11 PM, Afkham Azeez az...@wso2.com wrote: Folks, We have too many conf files and it would be very confusing for a user. Perhaps we can merge some of these files. Also, it would be good if the header section of each file mentions the purpose of these files. This practice was followed when we defined the carbon.xml file, but the people who added the other files have not learnt from that. jgroups-s3_ping-aws.xml - Senaka what is this file used for? JCache? Can we have this file elsewhere, or call it jcache-config or something? Why isn't it explained in the README? This is used by JGroups (clustering Infinispan), in a an EC2 setup. IIRC, the name was fixed. Let me check on that, and if not, we might be able to rename it. cache.xml - Senaka why isn't this in the README? Can't we merge this with the above file? I think no, since JGroups is about clustering/group-communication, and Cache configuration is about caching. WDYT? broker-config.xml - Lahiru, Senaka, why isn't this in the README. This comes from event-broker. Amila, if this is no longer needed, we can get rid of it. And, IMO, the following are not needed. 1. cipher-text.properties 2. embedded-ldap.xml (can be merged into user-mgt.xml right?) No, we cannot merge configurations in embedded-ldap.xml with user-mgt.xml. Those are 2 different aspects. embedded-ldap.xml is the configuration file for LDAP server running inside carbon. user-mgt.xml contains configurations about a specific user store for carbon. The user store can point to embedded LDAP server or to a different user store. Therefore we should not merge configurations in embedded-ldap.xml and user-mgt.xml. My point was that LDAP is a subset of user-management. Isn't it so? Hi Senaka, embedded-ldap.xml contains configurations related to a LDAP server. In other words LDAP is a user store, a repository to keep user information (like h2, mysql or like any other external LDAP server). user-mgt.xml contains configurations on how you can connect to a user store and manage data in it. So i dont see LDAP as a subset of user-mgt (In carbon perspective). Thanks AmilaJ Thanks, Senaka. Thanks AmilaJ 3. node/* (these are outdated and no longer needed, AFAIU). 4. secret-conf.properties The secure-vault documentation should include how to create these files if needed, as they are not mandatory. And, most importantly, we need to s/README/README.txt, or you can't open it in Windows properly. Also, may be we need to use the DOS line-encoding for these files. Can this be done by setting svn:eol-style? ports-config.xml - Lahiru what is this file used for? Multiple instance config? Why isn't it explained in the README? Why isn't the XML aligned? If this is needed, IMHO, this should be a part of mgt-transports.xml. We don't need two config files for transports. And, I have a small question. Is the file name wrapper.conf correct? I'm talking about the extension, is conf correct? Thanks, Senaka. -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Senaka Fernando Product Manager - WSO2 Governance Registry; Associate Technical Lead; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://apache.org E-mail: senaka AT wso2.com P: +1 408 754 7388; ext: 51736; M: +94 77 322 1818 Linked-In: http://www.linkedin.com/in/senakafernando Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Senaka Fernando Product Manager - WSO2 Governance Registry; Associate Technical Lead; WSO2, Inc.; http://wso2.com Member; Apache Software Foundation; http://apache.org E-mail: senaka AT wso2.com P: +1 408 754 7388; ext: 51736; M: +94 77 322 1818 Linked-In: http://www.linkedin.com/in/senakafernando Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Error logs from ApacheDS component
On Mon, Mar 7, 2011 at 10:14 AM, Hasini Gunasinghe has...@wso2.com wrote: On Thu, Mar 3, 2011 at 10:50 PM, Amila Jayasekara ami...@wso2.com wrote: On Wed, Mar 2, 2011 at 8:43 PM, Hasini Gunasinghe has...@wso2.com wrote: Hi, Yes, I too did not get above error message from a latest build from trunk (from IS or ESB), instead, I only see an unnecessary INFO log as below: [2011-03-02 10:29:59,072] INFO {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@b8f305e3 received from null session I checked in apacheds source code, it is being printed by a following code segment: if( ldapSession == null ) { // in some cases the session is becoming null though the client is sending the UnbindRequest // before closing LOG.info( ignoring the message {} received from null session, message ); return; } Following is what I heard about the possible cause for such a log from apacheds-user's list: If your client disconnect immediately after having sent an UnbindRequest, the session will be null, as the disconnection will be processed faster than the UnbindRequest. You can ignore the message, it's an INFO level log. I also see this message from apacheds user list. It seems we can ignore the message. Maybe we can get rid of the annoyance by suppressing the log level to WARNING, for org.apache.directory.server.ldap.handlers. Also i am not sure how an unbind request is originating from our LDAP user manager code (Hope you comment all the places where we close the context). looking further into this: I connected IS (both trunk and released version) to an external ApacheDS LDAP, and in their console also, I see a similar continuous warning log after logging into management console. [22:39:53] WARN [org.apache.directory.server.ldap.LdapProtocolHandler] - Null LdapSession given to cleanUpSession. [22:39:53] WARN [org.apache.directory.server.ldap.LdapProtocolHandler] - Null LdapSession given to cleanUpSession. I guess this is corresponding to the above INFO log we saw in carbon server console, with embedded-ldap. I just wrote a separate sample code that connects to external LDAP and does queries. There, above messages do not appear unless ldapcontext.close is executed. So may be there is a place we can fix in user-core to avoid above messages, which I could not exactly identify yet. According to the references [1,2,3] we can ignore this also. So for now, shall we add the log4j property to log4j file in carbon/core to get rid of the INFO messages in carbon console? +1. Please do this in all log4j.properties files. Thanks AmilaJ Please let me know if there is any objections. [1]http://osdir.com/ml/users/2011-03/msg00381.html [2]http://www.mail-archive.com/users@directory.apache.org/msg02348.html [3]https://issues.apache.org/jira/browse/DIRSERVER-1432 Thanks, Hasini. In the user-core code, even though I commented out all the places where ldap context is closed, still this log is printed. So I could not find a way to get rid of it yet. I will look more into it. Please let me know if you have an idea about the cause. On a side note, when I checked in ESB, I did not see any logs printed by ApacheDS component, and may be because it is not included in log4j.properties file of ESB. In log4j.properties files of IS and AS(I checked only AS additionally), logs from apacheds component are enabled. Is there any reason why it is not enabled in ESB? It seems ESB is using a different log4j.properties file than that is in the core/distribution/carbon-home/lib/log4j.properties file. AS and IS is using the log4j.properties file in core/distribution/carbon-home/lib/ and it has the apacheds specific log properties. Since apacheds is becoming the user store of ESB also we also need to add properties in core/distribution/carbon-home/lib/log4j.properties to ESB log4j.properties (products/esb/modules/distribution/src/main/conf/log4j.properties) file. Thanks AmilaJ Thanks, Hasini. On Tue, Mar 1, 2011 at 9:03 PM, Hasini Gunasinghe has...@wso2.com wrote: Sure.. I will look into it. At the moment, I only have the latest code of user-core(where I do not get this). So I will get a complete update from trunk and check this. On Tue, Mar 1, 2011 at 6:51 PM, Prabath Siriwardana prab...@wso2.com wrote: Hi Hasini, Can you please have a look.. Login to the console and click on some menu items.. [from the latest trunk] [2011-03-01 18:49:03,404] INFO {org.apache.directory.server.core.authn.AuthenticationInterceptor} - Cannot bind to the server [2011-03-01 18:49:03,404] ERROR {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ERR_732 Cannot process a Request while binding [2011-03-01 18:49:03,405] ERROR {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ERR_732 Cannot
Re: [Carbon-dev] Ports defined all over carbon.xml file
On Mon, Mar 7, 2011 at 5:13 AM, Afkham Azeez az...@wso2.com wrote: Folks, When we first defined the carbon.xml file, we envisioned that multiple ports may be needed for different purposes in the future, and to make it easier for the users to see and change ports in a single place, we added the Ports element. e.g. !-- Ports used by this server -- Ports !-- The JMX Ports -- JMX !--The port RMI registry is exposed-- !--RMIRegistryPort/RMIRegistryPort-- !--The port RMI server should be exposed-- !--RMIServerPort1/RMIServerPort-- /JMX /Ports Nuwan, you have added the following lines; !-- HTTP and HTTPS ports when apache is fronted to a carbon server-- !--ApacheHttpPort80/ApacheHttpPort ApacheHttpsPort443/ApacheHttpsPort-- why can't you use the proxyPorts parameter in the mgt-transports.xml file for this? Nuwan, you have also added the following: !-- In-order to get the registry http Port from the back-end when the default http transport is not the same-- !--RegistryHttpPort9763/RegistryHttpPort-- Why not use the Ports section? Isn't there a better way to do this; for example, query the BE and get this port? Get it from the BE registry.xml? AmilaJ you have added the following: !-- Uncomment following piece of code if you need to use in-built LDAP server when running carbon. Following piece of code states which port to be used when running in-built LDAP server. If the installed product is not IS, you may need to install in-built LDAP as a feature. -- !--LdapServer Transports TcpTransport Port10389/Port /TcpTransport /Transports /LdapServer-- Why can't this be defined in the Ports section? I think now there is a separate LDAP config file right? I am sorry, we have to remove this. Will remove it from carbon.xml. Thanks AmilaJ -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] LDAP integration to Carbon core
On Sat, Mar 5, 2011 at 10:15 PM, Hasini Gunasinghe has...@wso2.com wrote: On Sat, Mar 5, 2011 at 11:13 PM, Amila Jayasekara ami...@wso2.com wrote: Hi Azeez, Please find answers inline. Thanks AmilaJ On Fri, Mar 4, 2011 at 5:59 PM, Afkham Azeez az...@wso2.com wrote: Can somebody briefly explain what were the changes that were carried out to Carbon core to make this work? Where these ports can be defined The apacheds server code is wrapped as an OSGi bundle in orbit/apacheds component. org.wso2.carbon.ldap.server is the component which is responsible for managing LDAP server. It starts, stops LDAP server, in addition it also does partition management. Hi, This component starts before user core in carbon. Can I please know how have we specified that this component starts before user-core? Hi Hasini, Please look at felix plugin configuration in org.wso2.carbon.ldap.server/pom.xml. The DeployBefore tag suppose to do this. But i am also having difficulty recalling where we have defined term UserCore. Will get back to you on this after investigating further. Thanks AmilaJ The LDAP server specific configurations reside in a file called embedded-ldap.xml in repository/conf (In EmbeddedLDAP configuration segment). You can change parameters like, ports, connection passwords in this file. In addition to LDAP server specific configurations, it also has KDC specific configurations. ,what the following messages mean etc. Log messages starting with org.apache.directory.server.ldap.LdapServer are coming from apacheds implementation. LDAP server needs a schema to construct the initial LDAP tree structure. The default schema for the LDAP server is located at repository/data as a zip file (is-default-schema.zip). Thus when we start server for the first time apacheds component will extract this zip file and create a schema directory. In addition, when we start embedded LDAP for the first time it creates a default partition. The default partition name and other properties are read from the embedded-ldap.xml configuration file (DefaultPartition). The latter messages you see in the log are relevant to above actions. How MT ins handled I assume MT=Multi-tenancy. Hasini: Please explain how MT is handled with embedded-ldap. We have two ways that we can make LDAP user-store multi-tenanted. 1. Creating a new partition (i.e new directory tree) for each tenant. This is specific to embedded-apacheds because here we use their API. 2. Creating a new context ('ou' by default) under same directory tree, for each tenant. This is generic because here we use JNDI and hence, not coupled with any LDAP server implementation. We can use any of the above methods with embedded-ldap comes in core. But we can only use the second method above with an external LDAP. Let me briefly describe implementation details of two methods. 1st Method: i. In tenant-mgt.xml we specify HybridLDAPTenantManager as the tenant manager which is initialized when the user-core starts. (at DefaultRealmService.) ii. At the start of ldap.server component, we register an implementation of LDAPTenantManager in OSGi registry, through which managing partitions of tenants happens. iii. HybridLDAPTenantManager uses a reference of an above registered LDAPTenantManager service, to handle tenant mgt with LDAP. iv. Users and groups of a particular tenant is stored inside its partition. v. In stratos-tenant-mgt component, tenant specific user-mgt.xml is stored in registry/JDBC database which is used to map the tenant to specific partition. I have included a class diagram and a screenshot related to this here. 2nd Method: i. In tenant-mgt.xml we specify CommonHybridLDAPTenantManager as the tenant manager which is initialized when the user-core starts. ii. Users and groups of a particular tenant is stored under its context. iii. In stratos-tenant-mgt component, tenant specific user-mgt.xml is stored in registry/JDBC database which is used to map the tenant to specific context. Common remarks regarding both the methods: 1. Hybrid approach is used where mapping between tenant and the user-mgt.xml, and other meta-data is stored in JDBC database. 2. Class names used for tenant manager at each scenario is not that clear. We may need to rename them. Thanks, Hasini. etc. Sorry, I wasn't following the entire conversation. [2011-03-05 07:24:03,001] INFO {org.wso2.carbon.ldap.server.DirectoryActivator} - Starting directory service on port 10389 [2011-03-05 07:24:03,022] INFO {org.apache.directory.server.ldap.LdapServer} - Added Extended Request Handler: 1.3.6.1.4.1.1466.20037 [2011-03-05 07:24:03,106] INFO {org.apache.directory.server.ldap.LdapServer} - Added Extended Request Handler: 1.3.6.1.4.1.18060.0.1.6 [2011-03-05 07:24:03,116] INFO {org.apache.directory.server.ldap.LdapServer} - Successful bind of an LDAP Service (10389) is completed
Re: [Carbon-dev] Error logs from ApacheDS component
On Wed, Mar 2, 2011 at 8:43 PM, Hasini Gunasinghe has...@wso2.com wrote: Hi, Yes, I too did not get above error message from a latest build from trunk (from IS or ESB), instead, I only see an unnecessary INFO log as below: [2011-03-02 10:29:59,072] INFO {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ignoring the message org.apache.directory.shared.ldap.message.UnbindRequestImpl@b8f305e3received from null session I checked in apacheds source code, it is being printed by a following code segment: if( ldapSession == null ) { // in some cases the session is becoming null though the client is sending the UnbindRequest // before closing LOG.info( ignoring the message {} received from null session, message ); return; } Following is what I heard about the possible cause for such a log from apacheds-user's list: *If your client disconnect immediately after having sent an UnbindRequest, the session will be null, as the disconnection will be processed faster than the UnbindRequest. You can ignore the message, it's an INFO level log*. I also see this message from apacheds user list. It seems we can ignore the message. Maybe we can get rid of the annoyance by suppressing the log level to WARNING, for org.apache.directory.server.ldap.handlers. Also i am not sure how an unbind request is originating from our LDAP user manager code (Hope you comment all the places where we close the context). In the user-core code, even though I commented out all the places where ldap context is closed, still this log is printed. So I could not find a way to get rid of it yet. I will look more into it. Please let me know if you have an idea about the cause. On a side note, when I checked in ESB, I did not see any logs printed by ApacheDS component, and may be because it is not included in log4j.properties file of ESB. In log4j.properties files of IS and AS(I checked only AS additionally), logs from apacheds component are enabled. Is there any reason why it is not enabled in ESB? It seems ESB is using a different log4j.properties file than that is in the core/distribution/carbon-home/lib/log4j.properties file. AS and IS is using the log4j.properties file in core/distribution/carbon-home/lib/ and it has the apacheds specific log properties. Since apacheds is becoming the user store of ESB also we also need to add properties in core/distribution/carbon-home/lib/log4j.properties to ESB log4j.properties (products/esb/modules/distribution/src/main/conf/log4j.properties) file. Thanks AmilaJ Thanks, Hasini. On Tue, Mar 1, 2011 at 9:03 PM, Hasini Gunasinghe has...@wso2.com wrote: Sure.. I will look into it. At the moment, I only have the latest code of user-core(where I do not get this). So I will get a complete update from trunk and check this. On Tue, Mar 1, 2011 at 6:51 PM, Prabath Siriwardana prab...@wso2.comwrote: Hi Hasini, Can you please have a look.. Login to the console and click on some menu items.. [from the latest trunk] [2011-03-01 18:49:03,404] INFO {org.apache.directory.server.core.authn.AuthenticationInterceptor} - Cannot bind to the server [2011-03-01 18:49:03,404] ERROR {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ERR_732 Cannot process a Request while binding [2011-03-01 18:49:03,405] ERROR {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ERR_732 Cannot process a Request while binding [2011-03-01 18:49:03,406] ERROR {org.apache.directory.server.ldap.handlers.LdapRequestHandler} - ERR_732 Cannot process a Request while binding -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Making apacheds default user store of all products
On Mon, Feb 28, 2011 at 5:15 AM, Paul Fremantle p...@wso2.com wrote: What is the difference in size this adds? Hi Paul, I assume you are referring to distribution file size. This change adds about 7.2 MB's to the distribution file. Thanks AmilaJ Paul On 28 February 2011 07:44, Amila Jayasekara ami...@wso2.com wrote: This change is now applied to trunk. I verified the core build and IS build with changes. Please let me know if you encounter any build errors due to this change. Thanks AmilaJ On Wed, Feb 23, 2011 at 8:37 PM, Afkham Azeez az...@wso2.com wrote: +1 On Wed, Feb 23, 2011 at 3:02 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, In a chat with Prabath, i got to know that we are planning to make apacheds based embedded LDAP server as default user store for all our products. Currently apacheds is not a core feature. Inorder to make apacheds user store of carbon, we have to move apacheds feature (and component) into core. We are planning to proceed with this change. Let me know if you have any objections/feedback. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Paul Fremantle CTO and Co-Founder, WSO2 OASIS WS-RX TC Co-chair, VP, Apache Synapse Office: +44 844 484 8143 Cell: +44 798 447 4618 blog: http://pzf.fremantle.org twitter.com/pzfreo p...@wso2.com wso2.com Lean Enterprise Middleware Disclaimer: This communication may contain privileged or other confidential information and is intended exclusively for the addressee/s. If you are not the intended recipient/s, or believe that you may have received this communication in error, please reply to the sender indicating that fact and delete the copy you received and in addition, you should not print, copy, retransmit, disseminate, or otherwise use the information contained in this communication. Internet communications cannot be guaranteed to be timely, secure, error or virus-free. The sender does not accept liability for any errors or omissions. ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Kerberos based security scenario
On Fri, Feb 25, 2011 at 12:37 PM, Prabath Siriwardana prab...@wso2.com wrote: In fact the client principal is available for the service end - that is how we do XACML authorization based on the client principal.. How are we extracting client principal name from the incomming kerberos token ? Is it in the kerberos token ? Thanks AmilaJ Thanks regards, -Prabath On Fri, Feb 25, 2011 at 12:30 PM, Amila Suriarachchi am...@wso2.com wrote: On Fri, Feb 25, 2011 at 12:27 PM, Prabath Siriwardana prab...@wso2.com wrote: The client principal name is accessible via the MessageContext.. we need to populate CarbonContext.. What I learned from AmilaJ is that client principal name is not available if we only use Kerbros. Basically what kerboros says is that a valid user has send the message. thanks, Amila. Thanks regards, -Prabath On Fri, Feb 25, 2011 at 12:20 PM, Amila Jayasekara ami...@wso2.com wrote: On Fri, Feb 25, 2011 at 11:34 AM, Amila Suriarachchi am...@wso2.com wrote: When a user authenticated using kerboros, is the user name available to the server? Hi Amila, As far as i know the client only sends a Kerberos token. I am not sure whether client principal name is in it. Thus as per now user name is not available to the server. If user name is needed we need to use a user name token as a supporting token in kerberos policy. Thanks AmilaJ if so can the service get the user name with CarbonContext.getUserName() thanks, Amila. On Thu, Feb 24, 2011 at 11:36 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, As some of you may know, there is a Kerberos KDC server with latest IS build. In-order to complete the use case we added kerberos based security scenario to security-mgt component. Now there is a security scenario 16. See screen-shot for more details. Now users can easily secure services using Kerberos security policy by selecting scenario 16. But this change is not yet in trunk as kerberos related rampart changes are not yet in trunk (Currently i am doing changes in 3.0.1 support branch). But hopefully by next week we will be adding these changes to the trunk. Please review the attached screen shot and let me know, if any of the text needs to be changed. Also we need to add two more config files to support, scenario 16. They are krb5.conf (Contains parameters related to requesting ticket) and jaas.conf (Authorization properties). I am planning to add above mentioned files to esb's conf directory. Please let me know if you have any concerns. Also i have a sample which demonstrate the use of KDC in IS and usage of scenario 16, in esb. Since this sample is related to 2 products, i am not sure where should i place the sample. Will be great if you could give feedback on where to place sample program (In IS or ESB ?). Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Security scenario 15. Issue with header missing or InputStream NULL
Hi Jorge, We use STS in IS when we want to use SAML tokens. We will try to reproduce the issue with the provided client code. Thanks AmilaJ On Thu, Feb 24, 2011 at 12:25 PM, Jorge Infante Osorio jorg...@uci.cu wrote: I now use the STS of ESB and the same errors appears. Take a look to the code I send you, maybe I have a code mistake. The STS use scenario 5. The proxy service use scenario 15. I make a change in the service policy at client side, to pass the UT in the second message, I don´t know if this is the right way to do that. But it work. Jorge. -Mensaje original- De: Amila Jayasekara [mailto:ami...@wso2.com] Enviado el: jueves, 24 de febrero de 2011 0:55 Para: Jorge Infante Osorio CC: carbon-dev@wso2.org Asunto: Re: [Carbon-dev] Security scenario 15. Issue with header missing or InputStream NULL Hi Jorge, Sorry for the delay reply. It will be great if we could have the client code to have a better understanding of your system. But after going through your deployment we suspect following cause for the failure. Your setup involves, ESB, IS and WSAS. According to the description given, it seems you are trying to retrieve a secure conversation token from IS and use that in a communication with proxy service. As you may know we are using Rampart for secure conversation. Rampart is not capable of operating with a third party token issuer other than communication parties. Therefore it should not possible for you to communicate with ESB proxy service with a token given by IS. The reason why the call get success in third attempt is that, your client program might be establishing a security context with ESB proxy service. (Cos, your ESB proxy is secured with scenario 15, and ESB has a token issuer within it). In other words to establish a security context the token issuer service and the actual service you are calling should be in the same JVM. Thanks AmilaJ On Thu, Feb 24, 2011 at 8:40 AM, Jorge Infante Osorio jorg...@uci.cu wrote: Hi folks. Any advance in this issue?? Sometimes the service work fine, still in the ESB log appears errors, and another times the service don´t work but I see the right response in the ESB log. I don´t understand that. Jorge. -Mensaje original- De: carbon-dev-boun...@wso2.org [mailto:carbon-dev-boun...@wso2.org] En nombre de Jorge Infante Osorio Enviado el: lunes, 21 de febrero de 2011 0:43 Para: 'Amila Jayasekara' CC: carbon-dev@wso2.org Asunto: Re: [Carbon-dev] Security scenario 15. Issue with header missing or InputStream NULL Hi Amila. In the attach zip file I send you the XACML policy, STS policy, Service policy, the eclipse console information, and the message exchange between the client/ESB/IS/WSAS taken from the SOAP tracer. I established the security context between the client and the ESB using the IS security token, you can see it in the eclipse console, I print it. In the client service policy I made a modification to pass the UT when it´s remove. This is duo to the need to maintain the UT in the second request message. This is the ESB error log this time, in some occasion the service work just fine: 2011-02-21 00:17:51,908 [-] [HttpServerWorker-8] ERROR AxisEngine SOAP header missing org.apache.axis2.AxisFault: SOAP header missing at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFau lt(Ram partReceiver.java:172) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java :99) at org.apache.axis2.engine.Phase.invoke(Phase.java:318) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:259) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:165) at org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequ est(HT TPTransportUtils.java:173) at org.apache.synapse.transport.nhttp.ServerWorker.processEntityEnclosing Method (ServerWorker.java:404) at org.apache.synapse.transport.nhttp.ServerWorker.run(ServerWorker.java: 260) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeW orkerP ool.java:58) at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecu tor.ja va:886) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor. java:9 08) at java.lang.Thread.run(Thread.java:619) Caused by: org.apache.rampart.RampartException: SOAP header missing at org.apache.rampart.RampartEngine.process(RampartEngine.java:107) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java :92) ... 10 more 2011-02-21 00:17:52,423 [-] [HttpServerWorker-8] ERROR ServerWorker Error processing POST request org.apache.axis2.AxisFault: SOAP header missing at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFau lt(Ram partReceiver.java:172
[Carbon-dev] User core tests fixed
FYI, User core tests are now fixed. Resolution - Added h2 driver to test classpath. Lets keeps tests passed all the time. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Kerberos based security scenario
Adding more info to what Prabath mentioned, In the kerberos configuration (krb.conf) we can define the realms that clients can access. In the case of apacheds for each tenant there will be a separate partition created. In other sense for each tenant a separate realm will be created. Thus when giving the service principle to kerberos scenario as a parameter we need to append appropriate realm. Then GSS-API will check the given service principle in the specified realm. But we have not tested this scenario. As Prabath mentioned we need to spend some more time testing and verifying this scenario. Thanks AmilaJ On Fri, Feb 25, 2011 at 1:11 AM, Prabath Siriwardana prab...@wso2.com wrote: Currently - the JGSS API reads these configuration files as system properties.. So we would be able to setup a single KDC. We need to invest some time on this to find out a ways of doing this with out system properties.. Same issues exists there when a tenant - for example wants to talk to an external service secured with Mutual Authentication. Here we are setting a system property for the key store - and if the external service allows access to a tenant - that means it should let access to the stratos - in other words to the all the tenants.. Same applies - if some wants to secure a service with mutual auth.. I guess this is not possible currently per tenant.. I have look in to the mutual auth issue - and it is possible to get rid of the key store system property... we will work on these to get multitenant ready.. Thanks regards, -Prabath On Fri, Feb 25, 2011 at 12:16 AM, Afkham Azeez az...@wso2.com wrote: So, my usual question, how does this work in a multitenant environment? How are you going to provide tenant specific conf files? Azeez On Thu, Feb 24, 2011 at 11:36 PM, Amila Jayasekara ami...@wso2.com wrote: Hi All, As some of you may know, there is a Kerberos KDC server with latest IS build. In-order to complete the use case we added kerberos based security scenario to security-mgt component. Now there is a security scenario 16. See screen-shot for more details. Now users can easily secure services using Kerberos security policy by selecting scenario 16. But this change is not yet in trunk as kerberos related rampart changes are not yet in trunk (Currently i am doing changes in 3.0.1 support branch). But hopefully by next week we will be adding these changes to the trunk. Please review the attached screen shot and let me know, if any of the text needs to be changed. Also we need to add two more config files to support, scenario 16. They are krb5.conf (Contains parameters related to requesting ticket) and jaas.conf (Authorization properties). I am planning to add above mentioned files to esb's conf directory. Please let me know if you have any concerns. Also i have a sample which demonstrate the use of KDC in IS and usage of scenario 16, in esb. Since this sample is related to 2 products, i am not sure where should i place the sample. Will be great if you could give feedback on where to place sample program (In IS or ESB ?). Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Afkham Azeez Senior Software Architect Senior Manager; WSO2, Inc.; http://wso2.com, Member; Apache Software Foundation; http://www.apache.org/ email: az...@wso2.com cell: +94 77 3320919 blog: http://blog.afkham.org twitter: http://twitter.com/afkham_azeez linked-in: http://lk.linkedin.com/in/afkhamazeez Lean . Enterprise . Middleware ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev -- Thanks Regards, Prabath http://blog.facilelogin.com http://RampartFAQ.com ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
[Carbon-dev] Making apacheds default user store of all products
Hi All, In a chat with Prabath, i got to know that we are planning to make apacheds based embedded LDAP server as default user store for all our products. Currently apacheds is not a core feature. Inorder to make apacheds user store of carbon, we have to move apacheds feature (and component) into core. We are planning to proceed with this change. Let me know if you have any objections/feedback. Thanks AmilaJ ___ Carbon-dev mailing list Carbon-dev@wso2.org http://mail.wso2.org/cgi-bin/mailman/listinfo/carbon-dev
Re: [Carbon-dev] Security scenario 15. Issue with header missing or InputStream NULL
Hi Jorge, Sorry for the delay reply. It will be great if we could have the client code to have a better understanding of your system. But after going through your deployment we suspect following cause for the failure. Your setup involves, ESB, IS and WSAS. According to the description given, it seems you are trying to retrieve a secure conversation token from IS and use that in a communication with proxy service. As you may know we are using Rampart for secure conversation. Rampart is not capable of operating with a third party token issuer other than communication parties. Therefore it should not possible for you to communicate with ESB proxy service with a token given by IS. The reason why the call get success in third attempt is that, your client program might be establishing a security context with ESB proxy service. (Cos, your ESB proxy is secured with scenario 15, and ESB has a token issuer within it). In other words to establish a security context the token issuer service and the actual service you are calling should be in the same JVM. Thanks AmilaJ On Thu, Feb 24, 2011 at 8:40 AM, Jorge Infante Osorio jorg...@uci.cu wrote: Hi folks. Any advance in this issue?? Sometimes the service work fine, still in the ESB log appears errors, and another times the service don´t work but I see the right response in the ESB log. I don´t understand that. Jorge. -Mensaje original- De: carbon-dev-boun...@wso2.org [mailto:carbon-dev-boun...@wso2.org] En nombre de Jorge Infante Osorio Enviado el: lunes, 21 de febrero de 2011 0:43 Para: 'Amila Jayasekara' CC: carbon-dev@wso2.org Asunto: Re: [Carbon-dev] Security scenario 15. Issue with header missing or InputStream NULL Hi Amila. In the attach zip file I send you the XACML policy, STS policy, Service policy, the eclipse console information, and the message exchange between the client/ESB/IS/WSAS taken from the SOAP tracer. I established the security context between the client and the ESB using the IS security token, you can see it in the eclipse console, I print it. In the client service policy I made a modification to pass the UT when it´s remove. This is duo to the need to maintain the UT in the second request message. This is the ESB error log this time, in some occasion the service work just fine: 2011-02-21 00:17:51,908 [-] [HttpServerWorker-8] ERROR AxisEngine SOAP header missing org.apache.axis2.AxisFault: SOAP header missing at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(Ram partReceiver.java:172) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:99) at org.apache.axis2.engine.Phase.invoke(Phase.java:318) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:259) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:165) at org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HT TPTransportUtils.java:173) at org.apache.synapse.transport.nhttp.ServerWorker.processEntityEnclosingMethod (ServerWorker.java:404) at org.apache.synapse.transport.nhttp.ServerWorker.run(ServerWorker.java:260) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerP ool.java:58) at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.ja va:886) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:9 08) at java.lang.Thread.run(Thread.java:619) Caused by: org.apache.rampart.RampartException: SOAP header missing at org.apache.rampart.RampartEngine.process(RampartEngine.java:107) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:92) ... 10 more 2011-02-21 00:17:52,423 [-] [HttpServerWorker-8] ERROR ServerWorker Error processing POST request org.apache.axis2.AxisFault: SOAP header missing at org.apache.rampart.handler.RampartReceiver.setFaultCodeAndThrowAxisFault(Ram partReceiver.java:172) at org.apache.rampart.handler.RampartReceiver.invoke(RampartReceiver.java:99) at org.apache.axis2.engine.Phase.invoke(Phase.java:318) at org.apache.axis2.engine.AxisEngine.invoke(AxisEngine.java:259) at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:165) at org.apache.axis2.transport.http.HTTPTransportUtils.processHTTPPostRequest(HT TPTransportUtils.java:173) at org.apache.synapse.transport.nhttp.ServerWorker.processEntityEnclosingMethod (ServerWorker.java:404) at org.apache.synapse.transport.nhttp.ServerWorker.run(ServerWorker.java:260) at org.apache.axis2.transport.base.threads.NativeWorkerPool$1.run(NativeWorkerP ool.java:58) at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.ja va:886) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:9 08