search

argus-authz / argus-pep-server

Argus PEP Server
5 stars 3 forks source link

Service fails to start in case of an empty value or quoted commas in subjectdn's policy field #34

Closed enricovianello closed 1 year ago

enricovianello commented 1 year ago

From https://ggus.eu/index.php?mode=ticket_info&ticket_id=158702

can not start argus pepd process after update of IGTF certs I'm unable to restat the argus pepd process after updating to the latest release of European Grid Infrastructure EGI Trust Anchor release 1.117 2022.08.29 The error i get (from the   /var/log/argus/pepd/process.log)

... 2022-09-02 09:15:25.283Z - ERROR [AuthenticationProfilePIPConfigurationParser] - AUTHN_PROFILE_PIP: error building authentication profile PIP: The string 'Inc./CN=DigiCert Assured ID Grid Client RSA2048 SHA256 2022 CA1' is not a valid OpenSSL-encoded DN  java.lang.IllegalArgumentException: The string 'Inc./CN=DigiCert Assured ID Grid Client RSA2048 SHA256 2022 CA1' is not a valid OpenSSL-encoded DN

could it be the ',' in the dn is causing an issue. i don't see any other dn with a ',' in the dn?


subjectdn = "/C=US/O=DigiCert, Inc./CN=DigiCert Assured ID Grid Client RSA2048 SHA256 2022 CA1"
enricovianello commented 1 year ago

Fix by https://github.com/argus-authz/argus-pep-server/commit/1d384b94db908a51e45bc3bdaf44ad1cd64874da