Uploaded image for project: 'AdMaxLocal'
  1. AdMaxLocal
  2. AML-1247

Exception in tomcat log after user tries to use an expired reset password token.

          Details

          • Type: Bug
          • Status: Open
          • Priority: Minor
          • Resolution: Unresolved
          • Affects Version/s: None
          • Fix Version/s: All Time Backlog
          • Component/s: None
          • Labels:
            None
          • Environment:

            AML 2.0.2 QA Env:
            UI 35
            SAPI 38
            Core 6
            Bid MGr 5

          • Sprint:
            High Priority

            Description

            When the reset password token expires and the user tries to use it, they get a message in the UI stating that "Unable to reset password at this time" which is expected.

            However, the tomcat log records and exception. I have listed it below. This is expected but should be handled/swallowed so that nagios monitoring won't flag a problem on this. We shouldn't see expected exceptions on the log.

            2013-02-28 20:44:56,706-1235972 [http-8080-2] WARN org.apache.cxf.phase.PhaseInterceptorChain [timezone=UTC, principalId=836a1107-9ce2-4015-9d34-395b7bb89c88, requestId=2f4530cd-367c-419a-be77-7d53cf05efee, locale=en_US, authToken=X2CU34D5NWDJU2DC3DW2NFQJOKRP6INUUZF4FFNWO4UHHKJDZC7MAOMNN2NEQOVSZESMD5AVBVLVJ3UCCY52CEGJ4DDS7UZ33ZTG7AS43O353ZESK22JEYEF57AYVPCSN7TPTB6N6ECJWRTVD7QHZ5WYYGRHNFK67L3NRA5AVCU6LTYSF5TJDSQNWALRXXG5, hostname=70.166.144.17, ipAddress=70.166.144.17] - Interceptor for

            {http://security.services.sapi.thesearchagency.com/}

            SecurityService has thrown exception, unwinding now
            org.apache.cxf.interceptor.security.AccessDeniedException: Unauthorized
            at com.thesearchagency.sapi.security.PermissionsCheckingInterceptor.handleMessage(PermissionsCheckingInterceptor.java:78) ~[PermissionsCheckingInterceptor.class:na]
            at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:262) ~[cxf-api-2.6.2.jar:2.6.2]
            at org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:121) [cxf-api-2.6.2.jar:2.6.2]
            at org.apache.cxf.transport.http.AbstractHTTPDestination.invoke(AbstractHTTPDestination.java:211) [cxf-rt-transports-http-2.6.2.jar:2.6.2]
            at org.apache.cxf.transport.servlet.ServletController.invokeDestination(ServletController.java:213) [cxf-rt-transports-http-2.6.2.jar:2.6.2]
            at org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:154) [cxf-rt-transports-http-2.6.2.jar:2.6.2]
            at org.apache.cxf.transport.servlet.CXFNonSpringServlet.invoke(CXFNonSpringServlet.java:130) [cxf-rt-transports-http-2.6.2.jar:2.6.2]
            at org.apache.cxf.transport.servlet.AbstractHTTPServlet.handleRequest(AbstractHTTPServlet.java:221) [cxf-rt-transports-http-2.6.2.jar:2.6.2]
            at org.apache.cxf.transport.servlet.AbstractHTTPServlet.doPut(AbstractHTTPServlet.java:158) [cxf-rt-transports-http-2.6.2.jar:2.6.2]
            at javax.servlet.http.HttpServlet.service(HttpServlet.java:640) [tomcat6-servlet-2.5-api-6.0.24.jar:na]
            at org.apache.cxf.transport.servlet.AbstractHTTPServlet.service(AbstractHTTPServlet.java:197) [cxf-rt-transports-http-2.6.2.jar:2.6.2]
            at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) [catalina-6.0.24.jar:na]
            at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) [catalina-6.0.24.jar:na]
            at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233) [catalina-6.0.24.jar:na]
            at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191) [catalina-6.0.24.jar:na]
            at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) [catalina-6.0.24.jar:na]
            at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) [catalina-6.0.24.jar:na]
            at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) [catalina-6.0.24.jar:na]
            at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:298) [catalina-6.0.24.jar:na]
            at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:857) [tomcat-coyote-6.0.24.jar:na]
            at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:588) [tomcat-coyote-6.0.24.jar:na]
            at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:489) [tomcat-coyote-6.0.24.jar:na]
            at java.lang.Thread.run(Thread.java:679) [na:1.6.0_24]
            2013-02-28 20:44:56,708-1235974 [http-8080-2] INFO com.thesearchagency.sapi.security.SecurityExceptionInterceptor [timezone=UTC, principalId=836a1107-9ce2-4015-9d34-395b7bb89c88, requestId=2f4530cd-367c-419a-be77-7d53cf05efee, locale=en_US, authToken=X2CU34D5NWDJU2DC3DW2NFQJOKRP6INUUZF4FFNWO4UHHKJDZC7MAOMNN2NEQOVSZESMD5AVBVLVJ3UCCY52CEGJ4DDS7UZ33ZTG7AS43O353ZESK22JEYEF57AYVPCSN7TPTB6N6ECJWRTVD7QHZ5WYYGRHNFK67L3NRA5AVCU6LTYSF5TJDSQNWALRXXG5, hostname=70.166.144.17, ipAddress=70.166.144.17] - Setting HTTP status code to 403

              Attachments

                Issue Links

                depends on

                Sub-task - The sub-task of the issue AML-1159 L10N of validation messages

                • Major - Major loss of function.
                • Closed

                  Activity

                    People

                    • Assignee:
                      Unassigned
                      Reporter:
                      jeff.brown Jeff Brown (Inactive)
                    • Votes:
                      0 Vote for this issue
                      Watchers:
                      0 Start watching this issue

                      Dates

                      • Created:
                        Updated: