Uploaded image for project: 'Alfresco'
  1. Alfresco
  2. ALF-21624

SSO alfrescoHeader problems in Share 201604 GA

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: Community Edition 201602 GA, 5.2
    • Fix Version/s: Community Edition 201605 GA
    • Component/s: Platform Authentication and SSO
    • Security Level: external (External user)
    • Labels:
      None
    • Environment:
      Red Hat Enterprise Linux Server release 7.1 (Maipo)
      arch is x86_64
      Apache Tomcat/7.0.x
      Alfresco JVM - v1.8.0_65-b17; maximum heap size 2014.750MB

      Description

      I had exactly same problem as described in MNT-15866.
      I was hopping that 201604 GA upgrade will fix the issue, but it didn't.
      Results are the same: I can successfully authenticate with external CAS system, but next I see the Null Pointer exception.

      catalina.out

      2016-05-11 18:53:31,141 http-bio-8443-exec-9 DEBUG [site.servlet.SSOAuthenticationFilter] [http-bio-8443-exec-9] Processing request /share/page/ SID:04E36E8825936ECA85434D7EBAAEDCF2
      2016-05-11 18:53:31,410 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/configurations/slingshot. site.configuration.xml SID:null
      2016-05-11 18:53:31,412 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:31,452 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/themes/lightTheme.xml SID :null
      2016-05-11 18:53:31,452 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:31,457 http-bio-8443-exec-9 DEBUG [site.servlet.SSOAuthenticationFilter] [http-bio-8443-exec-9] Initial login from externally authenticated user IvanIvanov
      2016-05-11 18:53:31,459 http-bio-8443-exec-9 DEBUG [site.servlet.SSOAuthenticationFilter] [http-bio-8443-exec-9] Accept-Language header present: en-US,en;q=0.8,ru;q=0.6
      2016-05-11 18:53:31,464 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/touch SID:null
      2016-05-11 18:53:31,471 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Authenticating the current user using session based Ticket information.
      2016-05-11 18:53:31,472 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Remote user mapper configured and active.
      2016-05-11 18:53:31,472 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] No external user ID in request.
      2016-05-11 18:53:31,473 DEBUG [web.app.ContextListener] [http-bio-8443-exec-3] HTTP session created: FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:31,473 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] We're not in the portal, getting the login bean.
      2016-05-11 18:53:31,473 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Force guest is: false
      2016-05-11 18:53:31,474 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] The user is null.
      2016-05-11 18:53:31,474 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] The session is not invalidated.
      2016-05-11 18:53:31,474 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Searching for Alfresco auth cookie.
      2016-05-11 18:53:31,474 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Session invalidated - return to login screen.
      2016-05-11 18:53:31,475 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Remote user mapper configured and active.
      2016-05-11 18:53:31,481 http-bio-8443-exec-9 DEBUG [site.servlet.SSOAuthenticationFilter] [http-bio-8443-exec-9] Repository session timed out - restarting auth process...
      2016-05-11 18:53:31,482 http-bio-8443-exec-9 DEBUG [site.servlet.SSOAuthenticationFilter] [http-bio-8443-exec-9] Redirecting to the login page.
      2016-05-11 18:53:31,488 http-bio-8443-exec-9 DEBUG [site.servlet.SSOAuthenticationFilter] [http-bio-8443-exec-9] Processing request /share/page SID:04E36E8825936ECA85434D7EBAAEDCF2
      2016-05-11 18:53:31,488 http-bio-8443-exec-9 DEBUG [site.servlet.SSOAuthenticationFilter] [http-bio-8443-exec-9] Login page requested, chaining ...
      2016-05-11 18:53:31,562 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/api/admin/restrictions SID:null
      2016-05-11 18:53:31,564 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Authenticating the current user using session based Ticket information.
      2016-05-11 18:53:31,564 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Remote user mapper configured and active.
      2016-05-11 18:53:31,564 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] No external user ID in request.
      2016-05-11 18:53:31,565 DEBUG [web.app.ContextListener] [http-bio-8443-exec-3] HTTP session created: 8E419074086A1A266BDD26D9E815D521
      2016-05-11 18:53:31,565 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] We're not in the portal, getting the login bean.
      2016-05-11 18:53:31,565 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Force guest is: true
      2016-05-11 18:53:31,565 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] The user is null.
      2016-05-11 18:53:31,565 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] The session is not invalidated.
      2016-05-11 18:53:31,565 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Searching for Alfresco auth cookie.
      2016-05-11 18:53:31,565 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] No previous authentication or forced Guest - attempt Guest access.
      2016-05-11 18:53:31,590 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Creating an object for guest and storing it in the session
      2016-05-11 18:53:31,590 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Creating an object for guest with ticket: TICKET_d8a449a97c92044b27585227e0f2b5fb4f940407
      2016-05-11 18:53:31,619 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Settings the external authentication flag on the session to false
      2016-05-11 18:53:31,619 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Setting up the request thread.
      2016-05-11 18:53:31,625 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] The general locale is : en_US
      2016-05-11 18:53:31,661 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] The UserPreferencesBean is : null
      2016-05-11 18:53:31,662 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Successfully authenticated as guest.
      2016-05-11 18:53:31,712 http-bio-8443-exec-9 INFO [web.site.EditionInterceptor] [http-bio-8443-exec-9] Successfully retrieved license information from Alfresco.
      2016-05-11 18:53:31,713 http-bio-8443-exec-9 DEBUG [web.site.EditionInterceptor] [http-bio-8443-exec-9] Current EditionInfo: Users: -1 Documents: -1 Edition: UNKNOWN Holder: Built from serv er response: true
      2016-05-11 18:53:31,723 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/pages/site-index.xml SID: null
      2016-05-11 18:53:31,724 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:31,753 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/webframework/content/metadata SID:FE86EEF8D733506539D03079 F65399E2
      2016-05-11 18:53:31,754 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Authenticating the current user using session based Ticket information.
      2016-05-11 18:53:31,755 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Remote user mapper configured and active.
      2016-05-11 18:53:31,755 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] No external user ID in request.
      2016-05-11 18:53:31,755 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] We're not in the portal, getting the login bean.
      2016-05-11 18:53:31,755 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Force guest is: false
      2016-05-11 18:53:31,755 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] The user is null.
      2016-05-11 18:53:31,755 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] The session is not invalidated.
      2016-05-11 18:53:31,755 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Searching for Alfresco auth cookie.
      2016-05-11 18:53:31,756 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Cookies present.
      2016-05-11 18:53:31,756 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Session invalidated - return to login screen.
      2016-05-11 18:53:31,756 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Remote user mapper configured and active.
      2016-05-11 18:53:31,760 http-bio-8443-exec-9 DEBUG [web.site.SlingshotPageView] [http-bio-8443-exec-9] Added model object 'url' of type [org.springframework.extensions.webscripts.DefaultURLHelp er] to request in view with name 'page'
      2016-05-11 18:53:31,776 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/pages/slingshot-login.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:31,776 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:31,785 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/template-instances/simple -guest.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:31,786 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:31,794 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/template-types/org/alfres co/simple-guest.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:31,795 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:31,804 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/template-types/webtemplat e.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:31,805 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:33,861 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/extensions/default-persis ted-extension.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:33,862 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:33,875 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-3] Processing request: /alfresco/wcs/remoteadm/create/alfresco/site-data/extensions/default-per sisted-extension.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:33,878 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Authenticating the current user using session based Ticket information.
      2016-05-11 18:53:33,879 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Remote user mapper configured and active.
      2016-05-11 18:53:33,879 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] No external user ID in request.
      2016-05-11 18:53:33,879 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] We're not in the portal, getting the login bean.
      2016-05-11 18:53:33,879 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Force guest is: false
      2016-05-11 18:53:33,879 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] The user is null.
      2016-05-11 18:53:33,879 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] The session is not invalidated.
      2016-05-11 18:53:33,879 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Searching for Alfresco auth cookie.
      2016-05-11 18:53:33,879 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Cookies present.
      2016-05-11 18:53:33,880 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Session invalidated - return to login screen.
      2016-05-11 18:53:33,880 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-3] Remote user mapper configured and active.
      2016-05-11 18:53:33,895 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-8] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/module-deployments/Debug% 20Enabler%20Extension.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:33,897 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-8] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:33,915 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-8] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/module-deployments/Debug% 20Disabler%20Extension.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:33,916 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-8] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:33,924 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-8] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/module-deployments/Aikau% 201.0.63%20Config%20Module.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:33,924 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-8] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:33,939 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-8] Processing request: /alfresco/wcs/remoteadm/create/alfresco/site-data/module-deployments/Aik au%201.0.63%20Config%20Module.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:33,941 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] Authenticating the current user using session based Ticket information.
      2016-05-11 18:53:33,942 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] Remote user mapper configured and active.
      2016-05-11 18:53:33,942 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] No external user ID in request.
      2016-05-11 18:53:33,942 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] We're not in the portal, getting the login bean.
      2016-05-11 18:53:33,942 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] Force guest is: false
      2016-05-11 18:53:33,942 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] The user is null.
      2016-05-11 18:53:33,942 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] The session is not invalidated.
      2016-05-11 18:53:33,942 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] Searching for Alfresco auth cookie.
      2016-05-11 18:53:33,942 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] Cookies present.
      2016-05-11 18:53:33,942 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] Session invalidated - return to login screen.
      2016-05-11 18:53:33,942 DEBUG [app.servlet.AuthenticationHelper] [http-bio-8443-exec-8] Remote user mapper configured and active.
      2016-05-11 18:53:34,164 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/components/global.head-ti tle.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:34,165 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:34,199 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/components/global.bootstr ap.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:34,200 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:34,214 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/components/global.head-re sources.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:34,215 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:34,227 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/components/page.component s.slingshot-login.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:34,227 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:34,234 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/chrome/slingshot-region-c hrome.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:34,234 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:34,244 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/components/page.tradeMark Logo.slingshot-login.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:34,245 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:34,257 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/component-types/webscript .xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:34,258 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:34,507 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/chrome/.xml SID:FE86EEF8D 733506539D03079F65399E2
      2016-05-11 18:53:34,508 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:34,516 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Processing request: /alfresco/wcs/remoteadm/has/alfresco/site-data/chrome/default-sub-compon ent-chrome.xml SID:FE86EEF8D733506539D03079F65399E2
      2016-05-11 18:53:34,516 DEBUG [app.servlet.WebScriptSSOAuthenticationFilter] [http-bio-8443-exec-6] Found webscript with no authentication - set NO_AUTH_REQUIRED flag.
      2016-05-11 18:53:34,743 http-bio-8443-exec-9 DEBUG [site.servlet.SSOAuthenticationFilter] [http-bio-8443-exec-9] Processing request /share/service/messages_c0f794861c9b277b28eaa48784e79b4f.js S ID:04E36E8825936ECA85434D7EBAAEDCF2
      2016-05-11 18:53:34,745 http-bio-8443-exec-9 DEBUG [site.servlet.SSOAuthenticationFilter] [http-bio-8443-exec-9] Initial login from externally authenticated user IvanIvanov
      2016-05-11 18:53:34,745 http-bio-8443-exec-9 DEBUG [site.servlet.SSOAuthenticationFilter] [http-bio-8443-exec-9] Accept-Language header present: en-US,en;q=0.8,ru;q=0.6
      May 11, 2016 6:53:34 PM org.apache.catalina.core.StandardWrapperValve invoke
      SEVERE: Servlet.service() for servlet [default] in context with path [/share] threw exception
      java.lang.NullPointerException
      at org.alfresco.web.site.servlet.SlingshotAlfrescoConnector.applyRequestHeaders(SlingshotAlfrescoConnector.java:196)
      at org.springframework.extensions.webscripts.connector.HttpConnector.initRemoteClient(HttpConnector.java:269)
      at org.springframework.extensions.webscripts.connector.HttpConnector.call(HttpConnector.java:67)
      at org.springframework.extensions.webscripts.RequestCachingConnector.call(RequestCachingConnector.java:91)
      at org.alfresco.web.site.servlet.SSOAuthenticationFilter.challengeOrPassThrough(SSOAuthenticationFilter.java:843)
      at org.alfresco.web.site.servlet.SSOAuthenticationFilter.doFilter(SSOAuthenticationFilter.java:542)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
      at org.jasig.cas.client.util.HttpServletRequestWrapperFilter.doFilter(HttpServletRequestWrapperFilter.java:71)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
      at org.jasig.cas.client.validation.AbstractTicketValidationFilter.doFilter(AbstractTicketValidationFilter.java:236)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
      at org.jasig.cas.client.authentication.AuthenticationFilter.doFilter(AuthenticationFilter.java:155)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
      at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
      at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
      at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:504)
      at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:170)
      at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
      at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
      at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
      at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:421)
      at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1074)
      at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
      at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316)
      at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
      at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
      at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
      at java.lang.Thread.run(Thread.java:745)

      2016-05-11 18:53:34,813 http-bio-8443-exec-9 ERROR [alfresco.web.site] [http-bio-8443-exec-9] java.lang.NullPointerException

      share-config-custom.xml

      <config evaluator="string-compare" condition="Remote">
      <remote>
      <ssl-config>
      <keystore-path>/opt/alfresco/alf_data/keystore/browser.p12</keystore-path>
      <keystore-type>pkcs12</keystore-type>
      <keystore-password>alfresco</keystore-password>

      <truststore-path>/opt/alfresco/alf_data/keystore/ssl.truststore</truststore-path>
      <truststore-type>JCEKS</truststore-type>
      <truststore-password>kT9X6oe68t</truststore-password>

      <verify-hostname>true</verify-hostname>
      </ssl-config>

      <connector>
      <id>alfrescoCookie</id>
      <name>Alfresco Connector</name>
      <description>Connects to an Alfresco instance using cookie-based authentication</description>
      <class>org.alfresco.web.site.servlet.SlingshotAlfrescoConnector</class>
      </connector>
      .........
      <connector>
      <id>alfrescoHeader</id>
      <name>Alfresco Connector</name>
      <description>Connects to an Alfresco instance using header and cookie-based authentication</description>
      <class>org.alfresco.web.site.servlet.SlingshotAlfrescoConnector</class>
      <userHeader>SsoUserHeader</userHeader>
      </connector>

      <endpoint>
      <id>alfresco</id>
      <name>Alfresco - user access</name>
      <description>Access to Alfresco Repository WebScripts that require user authentication</description>
      <connector-id>alfrescoHeader</connector-id>
      <endpoint-url>https://<hostname>:8443/alfresco/wcs</endpoint-url>
      <identity>user</identity>
      <external-auth>true</external-auth>
      </endpoint>
      .........
      <endpoint>
      <id>alfresco-feed</id>
      <parent-id>alfresco</parent-id>
      <name>Alfresco Feed</name>
      <description>Alfresco Feed - supports basic HTTP authentication via the EndPointProxyServlet</description>.
      <connector-id>alfrescoHeader</connector-id>.
      <endpoint-url>https://<hostname>:8443/alfresco/wcs</endpoint-url>
      <identity>user</identity>
      <external-auth>true</external-auth>
      </endpoint>
      .........
      <endpoint>
      <id>alfresco-api</id>
      <parent-id>alfresco</parent-id>
      <name>Alfresco Public API - user access</name>
      <description>Access to Alfresco Repository Public API that require user authentication.
      This makes use of the authentication that is provided by parent 'alfresco' endpoint.</description>
      <connector-id>alfrescoHeader</connector-id>
      <endpoint-url>https://<hostname>:8443/alfresco/api</endpoint-url>
      <identity>user</identity>
      <external-auth>true</external-auth>
      </endpoint>
      </remote>
      </config>

      alfresco-global.properties
          1. External authentication properties ###
            authentication.chain=external1:external,alfrescoNtlm1:alfrescoNtlm
            external.authentication.proxyUserName=alfresco-system
            external.authentication.enabled=true
            external.authentication.defaultAdministratorUserNames=admin
            external.authentication.proxyHeader=SsoUserHeader
      tomcat/conf/server.xml

      <Connector port="8443" URIEncoding="UTF-8" protocol="org.apache.coyote.http11.Http11Protocol" SSLEnabled="true"
      maxThreads="150" scheme="https" keystoreFile="/opt/alfresco/alf_data/keystore/ssl.keystore" keystorePass="<password>" keystoreType="JCEKS"
      secure="true" connectionTimeout="240000" truststoreFile="/opt/alfresco/alf_data/keystore/ssl.truststore" truststorePass="<password>" truststoreType="JCEKS"
      clientAuth="want" sslProtocol="TLS" allowUnsafeLegacyRenegotiation="true" maxHttpHeaderSize="32768" maxSavePostSize="-1" />..

      alfresco explorer web.xml

      <!-- CAS -->
      <filter>
      <filter-name>CAS Authentication Filter</filter-name>
      <filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
      <init-param>
      <param-name>casServerLoginUrl</param-name>
      <param-value>https://<CASserver>/cas/login</param-value>
      </init-param>
      <init-param>
      <param-name>serverName</param-name>
      <param-value>https://<AlfrescoServer></param-value>
      </init-param>
      </filter>
      <filter>
      <filter-name>CAS Validation Filter</filter-name>
      <filter-class>org.jasig.cas.client.validation.Cas10TicketValidationFilter</filter-class>
      <init-param>
      <param-name>casServerUrlPrefix</param-name>
      <param-value>https://<CASServer>/cas</param-value>
      </init-param>
      <init-param>
      <param-name>serverName</param-name>
      <param-value><AlfrescoServer></param-value>
      </init-param>
      </filter>
      <filter>
      <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
      <filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
      </filter>.
      <!-- /CAS -->
      ...
      <!-- CAS -->
      <filter-mapping>
      <filter-name>CAS Authentication Filter</filter-name>
      <url-pattern>/faces/*</url-pattern>
      </filter-mapping>
      <filter-mapping>
      <filter-name>CAS Validation Filter</filter-name>
      <url-pattern>/faces/*</url-pattern>
      </filter-mapping>
      <filter-mapping>
      <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
      <url-pattern>/faces/*</url-pattern>
      </filter-mapping>
      <!-- /CAS -->

      share web.xml

      <!-- CAS -->
      <filter>
      <filter-name>CAS Authentication Filter</filter-name>
      <filter-class>org.jasig.cas.client.authentication.AuthenticationFilter</filter-class>
      <init-param>
      <param-name>casServerLoginUrl</param-name>
      <param-value>https://<CASserver>/cas/login</param-value>
      </init-param>
      <init-param>
      <param-name>serverName</param-name>
      <param-value>https://<AlfrescoServer></param-value>
      </init-param>
      </filter>
      <filter>
      <filter-name>CAS Validation Filter</filter-name>
      <filter-class>org.jasig.cas.client.validation.Cas10TicketValidationFilter</filter-class>
      <init-param>
      <param-name>casServerUrlPrefix</param-name>
      <param-value>https://<CASserver>/cas</param-value>
      </init-param>
      <init-param>
      <param-name>serverName</param-name>
      <param-value>https://<AlfrescoServer></param-value>
      </init-param>
      </filter>
      <filter>
      <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
      <filter-class>org.jasig.cas.client.util.HttpServletRequestWrapperFilter</filter-class>
      </filter>.
      <!-- /CAS -->
      ...
      <!-- CAS -->
      <filter-mapping>
      <filter-name>CAS Authentication Filter</filter-name>
      <url-pattern>/*</url-pattern>
      </filter-mapping>
      <filter-mapping>
      <filter-name>CAS Validation Filter</filter-name>
      <url-pattern>/*</url-pattern>
      </filter-mapping>
      <filter-mapping>
      <filter-name>CAS HttpServletRequest Wrapper Filter</filter-name>
      <url-pattern>/*</url-pattern>
      </filter-mapping>
      <!-- /CAS -->

      I tried to add debugging to Catalina core, but it dumps so much data, so it is impossible to find information there.
      I am new to Alfresco and Tomcat.

        Attachments

        1. New_Logs.txt
          49 kB
        2. proof.png
          proof.png
          80 kB

          Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. MNT-15866 SSO alfrescoHeader problems in Share 201602-GA

          • Closed
          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. ALF-21607 Share login form doesn't appear as fallback when Kerberos is enabled

          • Unprioritized - No priority set.
          • Closed

            Structure

              Activity

                People

                • Assignee:
                  closedissues Closed Issues
                  Reporter:
                  teterkin Alexander Teterkin (Inactive)
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  3 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved:
                    Date of First Response:

                    Structure Helper Panel