Uploaded image for project: 'AdMaxLocal'
  1. AdMaxLocal
  2. AML-2841

Reseller/Merchant user can't reset password - getting error code 403

          Details

          • Type: Bug
          • Status: Closed
          • Priority: Critical
          • Resolution: Fixed
          • Affects Version/s: Newport
          • Fix Version/s: Newport
          • Component/s: Security Framework
          • Labels:
            None
          • Environment:

            Description

            While resetting the password for Reseller or Merchant user, it throws error 403 in UI.

            Steps:

            1.Access Reseller UI login page.

            http://qa3amltest.aml-qa3-front1:9967/reseller/#LOGIN

            2.Click on Forgot password Link and reset the password. It sends email for reset password.

            3.Click on Reset password link and enter valid password/confirm password and click SUBMIT button.

            Actual result:

            It throws error message,"Unfortunately we were unable to process your
            activation request at this time"
            Error code 403 (PFA screenshot)

            Snippet of tomcat log (Full trace of log attached)

            ddress: http://127.0.0.1:8080/sapi/rest/users/Test123/password
            Encoding: UTF-8
            Http-Method: PUT
            Content-Type: text/plain; charset=utf-8
            Headers:

            {Accept=[application/json, text/plain], connection=[Keep-Alive], content-encoding=[UTF-8], Content-Length=[416], content-type=[text/plain; charset=utf-8], host=[127.0.0.1:8080], user-agent=[Apache-HttpClient/4.2.1 (java 1.5)], x-tsa-authenticate=[9ceaeb2c-37dd-4be0-89b6-a62b4288ec3b]}

            Payload: LK3CYKUPKK2RW3LROA4OEWB5JZ5CDZQKEOKP7BAK2JTGXUGVHYGEGUXRW3CTADXAJ7HA4VNQJ4TGWO3IWVY2EMVE2KU5MEW2FMSNYQZDZ6SZ33JHJM5KY5XF3EZCOHIC4KH7VL4QQVX5A2NLBUHVZDR2NQ7RN2OKM6UXJXAWKTU2CVEKDUBJOQFMBUMUFZ2OJT5MVZGGHAVXTIEMJLPH6EULEAG25MZOLOJ36VRS2XXEQVGPORULMSI2K2R6A2OAYRUOXDUPH6FZHWO3DM5FSN2QH6U32CJ32GI3QWB4JHHFRXFCYZ4EAVBOGXT5VJEETGJMFIKH54INW2U7PD6J4PXCMFSHNVHH2MYTKOG4MXGXIPYW6K7OO2Q7KPELTRJPF7STFSD3P4JYEMLAANTNJ2UDTU======
            --------------------------------------
            2014-05-05 11:36:19,497-252925759 [http-8080-25] ERROR com.thesearchagency.security.TokenizedSecurityContext [timezone=Etc/UTC, requestId=af9ed2de-d05a-44d0-854c-fb90aea3f609, locale=en_US, authToken=9ceaeb2c-37dd-4be0-89b6-a62b4288ec3b, hostname=127.0.0.1, ipAddress=127.0.0.1] - Exception thrown in demarshall()
            java.io.EOFException: null
            at java.io.DataInputStream.readUnsignedShort(DataInputStream.java:340) ~[na:1.6.0_24]
            at java.io.DataInputStream.readUTF(DataInputStream.java:589) ~[na:1.6.0_24]
            at java.io.DataInputStream.readUTF(DataInputStream.java:564) ~[na:1.6.0_24]
            at com.thesearchagency.security.TokenizedSecurityUtils.decode(TokenizedSecurityUtils.java:143) ~[tsa-security-2.2.2.jar:2.2.2]
            at com.thesearchagency.security.TokenizedSecurityContext.demarshall(TokenizedSecurityContext.java:200) ~[tsa-security-2.2.2.jar:2.2.2]
            at com.thesearchagency.services.commons.cxf.RequestLoggingFilter.getPrincipalId(RequestLoggingFilter.java:90) [aml-service-commons-2.2.6.jar:2.2.6]

            P.S. This behavior has observed while resetting password for Merchant also.

            Expected Result:

            Reseller/merchant user should able to reset his password.

              Attachments

                Activity

                  People

                  • Assignee:
                    mholly Mike Holly
                    Reporter:
                    atul.sanagar Atul Sanagar (Inactive)
                  • Votes:
                    0 Vote for this issue
                    Watchers:
                    3 Start watching this issue

                    Dates

                    • Created:
                      Updated:
                      Resolved: