Closed jfernandezsqs closed 2 years ago
@jfernandezsqs Please update the tag as follows and confirm if it works.
"ids:securityProfile": { "@id": "https://w3id.org/idsa/code/BASE_SECURITY_PROFILE", "@type": "ids:SecurityProfile" },
Where can I find/change that tag?
this needs to be updated from connector end too, please confirm this with @tmberthold
Here is my knowledge, please correct if I see it wrong:
securityProfile
is part of the DAT - see DAT mandatory securityProfileConnectorUpdateMessage
itself no SecurityProfile
is specified according to the infomodel java artifactI can't see from the logs which entry is missing, the one from the DAT or the one from the payload. Would have to be evaluated at the broker, which of the two SecurityProfile entries is checked there (DAT or payload).
Note: SecurityProfile in the payload is not mandatory, because there are messages that do not have this information, for example query-message-payloads (plain query based on a template) and also the response-payloads to queries of the broker don't have this information.
@NehaThawani44 I can not follow this proposed solution (https://github.com/International-Data-Spaces-Association/metadata-broker-open-core/issues/93#issuecomment-1048682105) Is it supposed to be a change at the Metadata Broker? Can you specify the file to change in order to follow the proposed solution? We have deployed the DAPS, DSC, App Store and Clearing House, and these components are not having this issue.
Local DAPS:
eyJ0eXAiOiJKV1QiLCJraWQiOiJkZWZhdWx0IiwiYWxnIjoiUlMyNTYifQ.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.SO8qdLP0e5aqXA4rRsdTTt_Mp3sgSfhBx3FC_Bm51CjmeD6Xe0hYNtGDoyYKbUbs4_CldR-RAzxsq02IJZ0ktTI75Su7RaMLRKuS6WkPLwCUqIvZfHzmJL_qspB_kV-hW4nMWe1O2XJCx4HBHQSPAhXxFwp4vJMxqR9wf8Whr9BVFy_um29XRWSYx880cDLQqDIby3cJhNMXUSg5DZ_SD-ryv-_ntFSLS-bA3BO9AKv3gU0gXHXRkkev3RP2emNvq9PFtoc7Xpet3-7GYBVi7YPlAc4Ynva7M4V68oe2dIszSoaiKn-RqzHL8YmpRkUTmTI3vPNxQ1R6os7Jnk-pUA
Fraunhofer DAPS:
eyJ0eXAiOiJhdCtqd3QiLCJraWQiOiJUQ1VGZUNOYXphbEtIZzlLenJ6TElBelJXVE1ERFdTYTdMY005WndITXlvIiwiYWxnIjoiUlMyNTYifQ.eyJhdWQiOiJpZHNjOklEU19DT05ORUNUT1JTX0FMTCIsImlzcyI6Imh0dHBzOi8vZGFwcy5haXNlYy5mcmF1bmhvZmVyLmRlIiwic3ViIjoiNjM6NDQ6REE6QjE6RUE6Mzc6NTY6OEQ6RTk6ODc6N0E6MjI6Nzk6REI6QUU6RDk6RTY6Mzk6MTQ6REI6a2V5aWQ6Q0I6OEM6Qzc6QjY6ODU6Nzk6QTg6MjM6QTY6Q0I6MTU6QUI6MTc6NTA6MkY6RTY6NjU6NDM6NUQ6RTgiLCJuYmYiOjE2NDU2MjY3NDgsImlhdCI6MTY0NTYyNjc0OCwianRpIjoiT1RneE9ESTBNVFV4TWpJME1qRXlNalk1TUE9PSIsImV4cCI6MTY0NTYzMDM0OCwiY2xpZW50X2lkIjoiNjM6NDQ6REE6QjE6RUE6Mzc6NTY6OEQ6RTk6ODc6N0E6MjI6Nzk6REI6QUU6RDk6RTY6Mzk6MTQ6REI6a2V5aWQ6Q0I6OEM6Qzc6QjY6ODU6Nzk6QTg6MjM6QTY6Q0I6MTU6QUI6MTc6NTA6MkY6RTY6NjU6NDM6NUQ6RTgiLCJzZWN1cml0eVByb2ZpbGUiOiJpZHNjOkJBU0VfU0VDVVJJVFlfUFJPRklMRSIsInJlZmVycmluZ0Nvbm5lY3RvciI6Imh0dHA6Ly90ZXN0aWRzYTkuZGVtbyIsIkB0eXBlIjoiaWRzOkRhdFBheWxvYWQiLCJAY29udGV4dCI6Imh0dHBzOi8vdzNpZC5vcmcvaWRzYS9jb250ZXh0cy9jb250ZXh0Lmpzb25sZCIsInRyYW5zcG9ydENlcnRzU2hhMjU2IjoiYzY4ZDllNmJhM2YxNzk5YmNiZTViZWM5ZDdkOThiMTViMGVmMmYyOTJjODBmNmJjYTk5NDE3OGFhOTVhZTEwZCIsInNjb3BlcyI6WyJpZHNjOklEU19DT05ORUNUT1JfQVRUUklCVVRFU19BTEwiXX0.JyrODO3FngBSFTmP_I2Y0C0CV7W8LfvNqxllMjQsNUqE1ve3yP04Tyj6xIb2bU3FMuYnEcAgOlo1J0uBxTcIG3_Y6C0jQCFW88K9n8w0QO-3purWZTeFvGrRKJLDw45TR1gp8Nw1eTZgaGkHUDCFZsbl6bcif7qfe9wAXG7TzBbobA36kHcn6UKJXIy0a9p3pzZzpp6WVKVBztDcJx_v9CnGyj8mNXRb1bXdBatbDJ4prqYFx9jVjXsHaWHKSixH6rYM9bAtzukGSmjJQXN9QNu7yJUIF_JSDajSFdiaPsMGWzjAtGS6LuSKu18jjVroQsQHFEkJhVTQsQWZhU6_jg
These tokens can be viewed in jwt.io As you can see, the security profile information is the same.
could be related (seems to be a bug according to PR label / infomodel 5.0.0-SNAPSHOT incompatibilities): https://github.com/International-Data-Spaces-Association/metadata-broker-open-core/pull/89#issuecomment-1036011075
I had a discussion with @sebbader regarding that issue. We found out, that the securityProfile is set correctly. But due to a new infomodel version in the broker a breaking change happened, which results in the issue, you @jfernandezsqs are addressing here. In the meantime of https://github.com/International-Data-Spaces-Association/metadata-broker-open-core/pull/89 I did not manage to check yet, if that solution works. To not being a blocker here: @jfernandezsqs It would be great if you could check the solution of this PR. I will try my best to accept the PR until end of the week.
We have tested the proposed PR, and we are facing the same issue. response=({reason=https://w3id.org/idsa/code/NOT_AUTHENTICATED, payload=Security profile not set, type=class de.fraunhofer.iais.eis.RejectionMessageImpl})
Strange. I tested it in a local setup with DSC v7.0.2 and everything looks good so far. Switching back and forth from branch bugfix/breaking-changes-in-java-5.0.0 and master of https://github.com/International-Data-Spaces-Association/metadata-broker-open-core I am able to reproduce and fix the issue. So I can't confirm that the problem still occurs with the mentioned PR.
After a meeting with Sebastian Opriel we managed to solve the issue, and the following PR fix it: https://github.com/International-Data-Spaces-Association/metadata-broker-open-core/pull/89
Check after merge to master branch.
I have deployed DSCA version 7.0.1 with a local DAPS in HTTPS and set-up the Metadata Broker accrodingly. I am able to obtain the self-description of the Metadata Broker, by this validating the local DAPS set-up.
When I try to update the Dataspace Connector to the Metadata Broker it is giving the following error at the DSC logs:
These are the logs obtained from the Metadata Broker:
It seems that the security profile of the Broker is not correct and it is not working the update connector to the Broker.