Uploaded image for project: 'AdMaxLocal'
  1. AdMaxLocal
  2. AML-2841

Reseller/Merchant user can't reset password - getting error code 403

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: Newport
    • Fix Version/s: Newport
    • Component/s: Security Framework
    • Labels:
      None
    • Environment:

      Description

      While resetting the password for Reseller or Merchant user, it throws error 403 in UI.

      Steps:

      1.Access Reseller UI login page.

      http://qa3amltest.aml-qa3-front1:9967/reseller/#LOGIN

      2.Click on Forgot password Link and reset the password. It sends email for reset password.

      3.Click on Reset password link and enter valid password/confirm password and click SUBMIT button.

      Actual result:

      It throws error message,"Unfortunately we were unable to process your
      activation request at this time"
      Error code 403 (PFA screenshot)

      Snippet of tomcat log (Full trace of log attached)

      ddress: http://127.0.0.1:8080/sapi/rest/users/Test123/password
      Encoding: UTF-8
      Http-Method: PUT
      Content-Type: text/plain; charset=utf-8
      Headers:

      {Accept=[application/json, text/plain], connection=[Keep-Alive], content-encoding=[UTF-8], Content-Length=[416], content-type=[text/plain; charset=utf-8], host=[127.0.0.1:8080], user-agent=[Apache-HttpClient/4.2.1 (java 1.5)], x-tsa-authenticate=[9ceaeb2c-37dd-4be0-89b6-a62b4288ec3b]}

      Payload: LK3CYKUPKK2RW3LROA4OEWB5JZ5CDZQKEOKP7BAK2JTGXUGVHYGEGUXRW3CTADXAJ7HA4VNQJ4TGWO3IWVY2EMVE2KU5MEW2FMSNYQZDZ6SZ33JHJM5KY5XF3EZCOHIC4KH7VL4QQVX5A2NLBUHVZDR2NQ7RN2OKM6UXJXAWKTU2CVEKDUBJOQFMBUMUFZ2OJT5MVZGGHAVXTIEMJLPH6EULEAG25MZOLOJ36VRS2XXEQVGPORULMSI2K2R6A2OAYRUOXDUPH6FZHWO3DM5FSN2QH6U32CJ32GI3QWB4JHHFRXFCYZ4EAVBOGXT5VJEETGJMFIKH54INW2U7PD6J4PXCMFSHNVHH2MYTKOG4MXGXIPYW6K7OO2Q7KPELTRJPF7STFSD3P4JYEMLAANTNJ2UDTU======
      --------------------------------------
      2014-05-05 11:36:19,497-252925759 [http-8080-25] ERROR com.thesearchagency.security.TokenizedSecurityContext [timezone=Etc/UTC, requestId=af9ed2de-d05a-44d0-854c-fb90aea3f609, locale=en_US, authToken=9ceaeb2c-37dd-4be0-89b6-a62b4288ec3b, hostname=127.0.0.1, ipAddress=127.0.0.1] - Exception thrown in demarshall()
      java.io.EOFException: null
      at java.io.DataInputStream.readUnsignedShort(DataInputStream.java:340) ~[na:1.6.0_24]
      at java.io.DataInputStream.readUTF(DataInputStream.java:589) ~[na:1.6.0_24]
      at java.io.DataInputStream.readUTF(DataInputStream.java:564) ~[na:1.6.0_24]
      at com.thesearchagency.security.TokenizedSecurityUtils.decode(TokenizedSecurityUtils.java:143) ~[tsa-security-2.2.2.jar:2.2.2]
      at com.thesearchagency.security.TokenizedSecurityContext.demarshall(TokenizedSecurityContext.java:200) ~[tsa-security-2.2.2.jar:2.2.2]
      at com.thesearchagency.services.commons.cxf.RequestLoggingFilter.getPrincipalId(RequestLoggingFilter.java:90) [aml-service-commons-2.2.6.jar:2.2.6]

      P.S. This behavior has observed while resetting password for Merchant also.

      Expected Result:

      Reseller/merchant user should able to reset his password.

        Attachments

          Activity

            People

            • Assignee:
              mholly Mike Holly
              Reporter:
              atul.sanagar Atul Sanagar (Inactive)
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: