Our application server recently met a really weird problem. We deploy same version of build into different app context for our different client, say /clientA, /clientB
Today one user in clientA portal reported that he suddenly saw clientB portal information. We checked the client A portal log, and the log shows that at, for example, 16:01:10 the user clicked a link, and then at the same time point, clientB portal log shows that the session does not have the required 'member' value. (for every link our application checks if user current session contains required 'member' value, if no we direct users to our front page), then in portal A log it shows our system tried to direct user to front page, however, instead of showing front page content JBoss sent ClientB portal information back (which can be seen from the screen shot our client sent to us).
We are using Apache 2.2.22, Mod_jk 1.2.20, JBoss 4.23, and currently there is no cluster used. The mod_jk file configuration is:
worker.list=admin
worker.admin.type=ajp13
worker.admin.host=localhost
worker.admin.port=8009
worker.admin.connection_pool_size=240
worker.admin.connection_pool_timeout=120
worker.admin.socket_keepalive=1
worker.admin.socket_timeout=120
#worker.admin.recycle_timeout=300
Can somebody explain why it happens???
Related
I am not sure how to correctly handle Google domain application access/revoke. Situation is quite standard:
domain admin installs an application through marketplace workflow (scopes, setup url, ...)
application is than listed in admin console for domain (https://admin.google.com/AdminHome?fral=1#AppsList:serviceType=MARKETPLACE)
everything works fine, users can access app
at some moment, for some reason admin revokes application data access through the admin console for whatever reason (application is not deleted, only "disabled")
since than, as there is no privilege granted for app in domain, every user who accesses the application is redirected to error page
And here comes the question - how to properly detect and handle this. As some Google docs say, app should re-request required privileges through consent screen (approval force param).
But as my tests show - when user (admin or non-admin) accepts scopes needed on consent screen, application on admin console is still displayed with no data access.
But the same application is instead listed in user's connected apps (https://security.google.com/settings/security/permissions), even it is domain-installable app!
So do I programmatically handle this situation. Is there a way, or should I just redirect (admin)user to admin console to manually turn data access for that application on?
BTW, after marketplace installation, "sometimes" another consent screen pops up first time visiting app url - which obviously requests same scopes as marketplace listing - why is that?
On that case, application is dually listed like in previous case - in domain and in user's connected apps.
I have registered a dummy app with Yammer, as I am still in testing phase. I gave the homepage of my org as the redirect URI. Honestly, there is no app hosted anywhere. Still, I think it is possible to test the authentication and go till creating a token. This is what I have done.
Navigated to https://www.yammer.com/client_applications page.
Registered an application. I provided the "RedirectURI". I got a "Client Id", "Client Secret", and "Expected Re-direct".
Since I don't have an app to launch anything from, I manually typed in the following URL in the browser. "https://www.yammer.com/oauth2/authorize?client_id=[:client_id]&response_type=code&redirect_uri=[:redirect_uri]".
I was taken to the app registration page. I clicked "Allow".
Now the page is redirected to the home page of my org, as I provided along with "www.<<>>.com/code=".
I copied this code over, tried to launch "https://www.yammer.com/oauth2/access_token.json?client_id=%s&client_secret=%s&code=%s".
I expected a token to be created, so that I go back to my dummy JAVA program and start connecting to Yammer, but I am not allowed to connect in above step. I am getting a "Not Authorised" error.
Can some please point out what I need to do? My requirement is that I get this token not from with in an app, but then on use it in a SWT based Rich Client JAVA application to connect to Yammer.
I think the request to oauth2/access_token.json needs to be a POST not a GET
I've successfully integrated Spring Social, but I am getting back the same facebook template across sessions.
Consider the following time line
Server restart
User A logs in using facebook
User A goes to another page on the site
User B logs in using facebook on a different computer
User B goes to another page on the site
The access token in the last step is same of the User A. I think I need to customize the behaviour of ConnectionRepository but I am not sure how to do it.
I need help, since I am new to websphere.
We have 2 applications, deployed in the same websphere server. The problem is that we cannot run those 2 applications simultaneously. Running the 2nd application will immediately expire the 1st application (the 2nd application will also expire after a few seconds) .
Here are the series of events
Login to the 1st application http: //stackoverflow:8080/Application1URL/
Leave the application 1 gui running (you must be logged into the application).
Open another browser tab. Run the 2nd application on the new tab: http: //stackoverflow:8080/Application2URL/
You will notice that the application1 session will immediately expire (“Session Expired. Please login again.”). This happens as soon as the application2 login screen appears
If you try to login back into application1 you will get a message saying the user is already logged in (“User is already logged in. Do you want to force logout the other session ?”)
Kindly suggest any ideas to debug the issue.
Your applications probably invalidate sessions for each other. For example they are looking for some attribute in the session and if it is not found they invalidate session. Since same sessionId is shared by default across applications, once the second app invalidate the session the id is changed and first app cannot find its session any more.
Go to one of your applications and change session cookie name to something different.
In web admin console click Enterprise Applications > yourApp > Session management
Check Override session management and click Apply and Save
Click Enable cookies link, and change default cookie name to something custom. Click OK and Save changes
Restart application.
Your applications shouldn't logout each other anymore.
My question is with oracle portal, My portal is able to communicate with the OID because if i provide an incorrect login credentials, then it gives me an appropriate error message and I can view the details also in the ssoServer.log.
But when I provide the correct credentials, it is taking a long time to process and gives a message
"No Response from Application Web Server
There was no response from the application web server for the page you requested.
Please notify the site's webmaster and try your request again later.
I have checked the log file of sso and portal but unfortunately i am not able to trace any error.
Just to give the background, i am able to open all the public pages and custom application. This is only when i try to open the Portal Administration Page from the SSO Login. Please suggest.