Verifica - errore 401-Unauthorized - invalid_token?

Buongiorno, sono Giovanni Foini di Ao Mauriziano, stiamo facendo alcuni tentativi di connessione al Gateway per la validazione del cda (inizialmente doc.RAD). Inviando una richiesta di verifica (con un file di test) riceviamo il seguente errore (401-Unauthorized) relativo, credo, a dati invalidi nel FSE-JWT Token:

System.Net.Http Information: 0 : [24504] HttpClient#21454193 - La richiesta per HttpRequestMessage#11898202 è stata completata. Restituzione della risposta HttpResponseMessage#59312528: StatusCode: 401, ReasonPhrase: 'Unauthorized', Version: 1.1, Content: System.Net.Http.StreamContent, Headers: { X-Backside-Transport: FAIL FAIL Connection: Keep-Alive Transfer-Encoding: chunked Pragma: no-cache GovWay-Transaction-ErrorType: TokenAuthenticationFailed GovWay-Transaction-ID: 5d370f09-bce7-11ed-adb9-005056ae54fa Vary: * X-Content-Type-Options: nosniff X-Global-Transaction-ID: 3f7e3e2d640746d451ea644d Cache-Control: no-store, must-revalidate, no-cache Date: Tue, 07 Mar 2023 14:15:01 GMT Server: GovWay-SOGEI WWW-Authenticate: Bearer realm="FSE-JWT-Signature", error="invalid_token", error_description="Token invalid" Content-Type: application/problem+json Expires: 0 }

Sarebbe possibile avere maggiori dettagli sull'errore riscontrato?

A disposizione per chiarimenti, vi ringrazio in anticipo.

grazie buona giornata

Buon pomeriggio Giovanni, per velocizzare l'analisi sull'errore, potrebbe inviarci requestBody ed header (comprensivo di token) che sta inviando? Grazie

Buon pomeriggio Giovanni, per velocizzare l'analisi sull'errore, potrebbe inviarci requestBody ed header (comprensivo di token) che sta inviando? Grazie

Certo, ecco qui sotto i valori (escludendo il pdf)

Authorization: Bearer eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsIng1YyI6W1tdXX0.W1tbXV0sW1tdXSxbW11dLFtbXV0sW1tdXSxbW11dXQ.FT5Gt4IcAG_vyy-h5tw1eRnAKAEJh6Fy4Z6IUnonzwdHtZpLRDDzBjuf0aSTIxLLpy1-OmVoMee1jPBDIQe2_WHlP3FnpdnS61-JII5wAGfeGthBKYR5fg5jB98r6Dzlc0ABJ4uaKRXbXE3nz-lDuNwl_lMxLhzQuQG9IBWBO7wHwwh1q83obib7rKs1p_EzNJM8GFsSMrd_ljFJvuRZTFOUashjGeORiFw5pOkEG1srTMBlshru8wj1GI4Ingrz_aGyYfbdsC2hJ2TXx9U5MW8JFTT0KNTX_xlIdPPUMNB549HlGZWznbZKjRjQ_Hy1elvSqg_8TQsdwoKaWjX5Vg

FSE-JWT-Signature: eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsIng1YyI6W1tdXX0.W1tbXV0sW1tdXSxbW11dLFtbXV0sW1tdXSxbW11dLFtbXV0sW1tdXSxbW11dLFtbXV0sW1tdXSxbW11dLFtbXV0sW1tdXSxbW11dLFtbXV0sW1tdXSxbW11dXQ.fSiUB94q6TovwPLNU9qvRDrJ6MjV3BRlGO2ZtF2tpox8s_E99DQSea-KUIffh1N3kxLxNLmLafi1anHQk_hamTL-wLowo89JZLrTI7T8a08CqEDSyJBLMg2QgamLFWs0FUUDYzQJ93rar6XPGw-ve3kPH4hH8ji5jo0uDXxBvig7_46zFVKgrdRl2De0eEyFbSxajl7i4sIecZ7vmp3sxYXiUKGnzLbDqBJb9CMq9F6S9QWqVC7F-94sPuuAFNNs-_oZ4_FDl_6iZ0ELW-xBLI2VeOYBBLL4oD9FCFNd1VsmvuubpibQ9GKJuc0zSvgT7Xw0Xz0l8n1IyjfM4EQu6w

{ "healthDataFormat": "CDA", "mode": "ATTACHMENT", "activity": "VERIFICA" }

Abbiamo provato a decodificare i 2 token, ma apparentemente sembrerebbero vuoti:

Può verificare se ha allegato i token corretti?

Salve, effettivamente a causa di mio errore sull'encoding con certificato i token erano vuoti. Ora ho corretto, ma ottengo sempre il medesimo errore (401) Riuscireste gentilmente a verificare dove sbaglio? Grazie Questi sotto sono i nuovi valori (controllando con jwt.io sono compilati..)

Authorization: Bearer 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.eyJpc3MiOiJhdXRoOkNBIE1pbmlzdGVybyBkZWxsYSBTYWx1dGUgVGVzdCIsImlhdCI6MTY3ODI3NjQ0MCwiZXhwIjoxNjc4Mjc2NjIwLCJqdGkiOiJjNGVjNmE3Ny0yM2Q0LTQ3YmYtODM0MC1lNzA3ZDVlNDVlM2QiLCJhdWQiOiJodHRwczovL21vZGlwYS12YWwuZnNlLnNhbHV0ZS5nb3YuaXQvZ292d2F5L3Jlc3QvaW4vRlNFL2dhdGV3YXkvdjEiLCJzdWIiOiJTMSMwMTA5MDgwMDAwMDAwMF5eXlx1MDAyNjIuMTYuODQwLjEuMTEzODgzLjIuOS40LjMuMlx1MDAyNklTTyJ9.OcMj01dDRztmvdQigBRCo2tzScX1s4QWXEBbl86rge1PJxSrLPt-wk8cTn4jxlH-cFWJ9QPpmIA_w1JL8KLJMaiXKLBj1NgPAQmM8ZHxQ_5LDKFYa_jov1Gs8LYYarIhUqyrWVs0GOfphoq8xW_pzQ6ueeFUlakyEaJMdprE9itMyQchtUyu26CKN-lMfLPbdR9bp3woWsgW5ESTUIfsQgXcLdzku5vX7QSxCIcoIryM82SIXFFPP4kPX5_V9iouFxjAgkJpf7L_hFOzFrZ4D3GmMF9YThRURquJiddmx4rF3D1BgtO3CQvOYFJPyRcx7sgSsZCKyJ9b8BNYZvg1kA

FSE-JWT-Signature: eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.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.C296U-WnEccY2kah2dBZ9aZuMF73fJq75msiDHO-hjJKBENajXAhLOpH0opn4m39vkhgjt0SlQ46e61O7oQ7NWHwtHN16xHSg5rg9clPK7R_jAxwYzEJGCrbeT3tamuhMeAB4ZsHLES7XteXR8bVIejJTDOgO_o8LtUQmQzNdO1pgBeF5Io0VmBTyO2uc_J91f3z9VqQ9xFWpGAU30zRFZSmYIpFJdCO6MjE5C635YNg8vApMjTsoNGWrSZtWExLOjLmd4OgVt5sbKufcEpC-4KstBy_sGu-5p9q7eJog3_WXGI6chLQaI3PC_paVfFDMEfbIgDp6oz9LcIgKatUAw

jwt

Buon pomeriggio Giovanni, abbiamo verificato, e sembrerebbe che Authorization Bearer

il parametro iss è errato: deve contenere il common name "auth:S1#01090800000000"
il parametro sub è errato: deve contenere il codice fiscale. esempio "VRDMRC67T20I257E^^^&2.16.840.1.113883.2.9.4.3.2&ISO"

FSE-JWT-Signature

manca il parametro x5c nella sezione di header
il parametro sub è errato: deve contenere il codice fiscale. esempio "VRDMRC67T20I257E^^^&2.16.840.1.113883.2.9.4.3.2&ISO"

Può far riferimento alla documentazione al link.

Vi ringrazio per l'immediato riscontro 👍

ho corretto il parametro iss e sub nell' Authorization Bearer
aggiunto x5c nell' header e corretto il sub in FSE-JWT-Signature Ma ottengo lo stesso errore (401), vi chiedo ancora gentilmente un riscontro.

qui sotto i token corretti :

Authorization: Bearer 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.eyJpc3MiOiJhdXRoOlMxIzAxMDkwODAwMDAwMDAwIiwiaWF0IjoxNjc4MzU2MTc5LCJleHAiOjE2NzgzNTYzNTksImp0aSI6IjEzNTQ5YWQ1LTU3ZTctNGQwNy1iYmFiLWQwZWI4YjQ5MDIyNSIsImF1ZCI6Imh0dHBzOi8vbW9kaXBhLXZhbC5mc2Uuc2FsdXRlLmdvdi5pdC9nb3Z3YXkvcmVzdC9pbi9GU0UvZ2F0ZXdheS92MSIsInN1YiI6IlRSUlNMVjU3QTUxTDIxOVFeXl5cdTAwMjYyLjE2Ljg0MC4xLjExMzg4My4yLjkuNC4zLjJcdTAwMjZJU08ifQ.JoX_dmc15jyayZxgvULslUFuvlt9QJARllBq1uTSHcVqGl9hG6mEoPiiMafKI0aqF3h3aIZusof_632qnV5THCRX2fnjT6XUBgNMYfB3rSgGUdbV1XWnYlzJ_m-sYcuTIUo-YM8SK6Ei-jFtzd48V4CY0ilkSDU75fHitQqtzkt30WAEtXcaxfBHyqkor4P0oZva-VOvwsXf-1KHdrk241QNxn19Mqt2_GSqEKRXYv8ctmH9qNcJLhi3IylanoI8lM8p4RA3dcA7GTjOi71G38fLJp5rkdwu56GDk_L0xsnsOnH0TZlyy8BfC9tDA3f1hAguwo0kBjjf5mygvVew

FSE-JWT-Signature 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.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.U01sB5GsRGQt0O9eSMBsmYKEKw-ZLvBDSdPtFq6PA2Pl5ILc_Hq1vPbmf0fOfetie5CantL8G7jhQB5_rHbcXSyom0SDZm54C6scxHrp7_OFT04sRiIY2TkxrpK0-1NJgyoklqKgmoG7IzwYAPvtvLXeBcecM4c4eFMlGtiufuDjwZWPG6cDEyrhOV6-shvxAZGsjb46HmpFbh5D1uAyHhPAD-Nj_PCOQqRLrd3j5Xw5Qc7WiM5ppafPrdFEaxWKzkY0S8xqHf0aZkk3yhpP4ai6r7GHUXlb2mbg18w7qTXMD8-EoQdd2Zpwzb25hXBxxr2HBpThPuA619XefP0jrg

Buongiorno, ora a prima vista i token si direbbero corretti. Potrebbe inviarci cortesemente la response completa ricevuta (comprensiva di trace id/govway), per consentirci indagini più approfondite? Grazie

Buongiorno, ecco la response :

System.Net Information: 0 : [3204] Connection#59817589 - Ricevuta riga di stato: Version=1.1, StatusCode=401, StatusDescription=Unauthorized. System.Net Information: 0 : [3204] Connection#59817589 - Ricevute intestazioni { X-Backside-Transport: FAIL FAIL Connection: Keep-Alive Transfer-Encoding: chunked Pragma: no-cache GovWay-Transaction-ErrorType: TokenAuthenticationFailed GovWay-Transaction-ID: fc53c942-be6f-11ed-adb9-005056ae54fa Vary: * X-Content-Type-Options: nosniff X-Global-Transaction-ID: 3f7e3e2d6409dd4b53b85b4d Cache-Control: no-cache, no-store, must-revalidate Content-Type: application/problem+json Date: Thu, 09 Mar 2023 13:21:32 GMT Expires: 0 Server: GovWay-SOGEI WWW-Authenticate: Bearer realm="FSE-JWT-Signature", error="invalid_token", error_description="Token invalid" }

Buon pomeriggio, dalle analisi è emerso che l'errore dipende dai certificati. Le suggeriamo pertanto di controllare che i certificati siano stati generati correttamente e che stia utilizzando quello corretto per la firma. Grazie

Grazie del riscontro, abbiamo ricontrollato il certificato di firma e ci sembra tutto corretto.

Le nostre particolarità sono che :

abbiamo dovuto rigenerare le CSR e quindi SOGEI ha revocato e rigenerato la coppia di certificati Auth e Sign
le CSR sono state generate in ambiente microsoft (non da openssl come da istruzioni )
il processo di autenticazione avviene da applicativo .NET

Potrebbero essere queste anomalie ad interferire con l'operazione di autenticazione? Sarebbe possibile avere un vostro contatto (mail-o altro) sulle problematiche sui certificati?

grazie in anticipo, buon pomeriggio

Buongiorno, potrebbe fornirci indicazioni più precise su come avete generato la CSR (specificando il comando utilizzato)? Grazie.

Buongiorno, potrebbe fornirci indicazioni più precise su come avete generato la CSR (specificando il comando utilizzato)? Grazie.

Buongiorno. Per le 2 CSR non abbiamo usato specificatamente un comando, ma il tool (Windows) Microsoft Management Console (MMC) seguendo pedissequamente una guida (link)

compilando i campi Common Name/Organization/Locality etc...
Key size: 2048
Make private key exportable
Hash Algorithm = sha256

Da queste 2 CSR abbiamo avuto di ritorno 2 .PEM con queste caratteristiche (ricavate con il comando openssl)

.pem di Autorizzazione : Signature Algorithm: sha1WithRSAEncryption
.pem di Signature : Signature Algorithm: sha256WithRSAEncryption

E' possibile che il .pem di autorizzazione sia errato? (SHA1 risulta deprecato dal 2011..) Cosa ci consigliate in merito? di rigenerare le 2 CSR con i tool consigliati nella vostra guida o i nostri passaggi erano corretti?

Scusate le tante domande, ma siamo bloccati su questo punto e non sappiamo come andare avanti nella certificazione. Grazie e buona giornata.

Buon pomeriggio, di seguito riportiamo l'errore registrato a sistema nei log: "Process 'x5c' error: parsing issue: long form definite-length more than 31 bits". Ci conferma inoltre che per la generazione dei token state utilizzando il tool messo a disposizione sul portale? Grazie

Buon pomeriggio, di seguito riportiamo l'errore registrato a sistema nei log: "Process 'x5c' error: parsing issue: long form definite-length more than 31 bits". Ci conferma inoltre che per la generazione dei token state utilizzando il tool messo a disposizione sul portale? Grazie

Buongiorno, come da voi consigliato, siamo ripartiti generando i JWT token da vostro tool "jwt-generator". Adesso otteniamo (con tool Postman) l'errore 502 Vi ringrazio in anticipo per un cortese riscontro.

{"type":"https://govway.org/handling-errors/502/InvalidResponse.html","title":"InvalidResponse","status":502,"detail":"Invalid response received from the API Implementation","govway_id":"2a13b773-c899-11ed-a9a6-005056ae7395"}

POST /govway/rest/in/FSE/gateway/v1/documents/validation HTTP/1.1 FSE-JWT-Signature: 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.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.nphFWdqzcwCU_AvBiQR9izRB8h1rMjpY593Z_fWn582qHm3snBZcxOx_fdufMkkw6mcQAzAXoa7CICwWcZ-4bqgJl3XKHRHxPyPs0tqpsK0HTittbopaOw0fuy2d_Jlfd_EqqW0uKSLeU82HXPYWYXTMOctdZMD5XDumMoTrBSJ8pyuVs8PopojMRNa_NkBiLfFJaHpYf-lCfFOWiiha2o6UcLxv-evP6QTPu1339FrX57qOzd3hB-Q5pnmPXWhwnnkCa9dfgmd88jx8pX-MawSGcUlmcdOlB8TL_ea5IEDqFO_5dJ-tt2UK0giWU-jY2pZuKFhdKVwTNpIzF9iNMQ accept: application/json Authorization: Bearer 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.eyJzdWIiOiJUUlJTTFY1N0E1MUwyMTlRXl5eJjIuMTYuODQwLjEuMTEzODgzLjIuOS40LjMuMiZJU08iLCJhdWQiOiJodHRwczovL21vZGlwYS12YWwuZnNlLnNhbHV0ZS5nb3YuaXQvZ292d2F5L3Jlc3QvaW4vRlNFL2dhdGV3YXkvdjEiLCJpc3MiOiJhdXRoOlMxIzAxMDkwODAwMDAwMDAwIiwiZXhwIjoxNjc5NTY3Nzg3LCJpYXQiOjE2Nzk0ODEzODcsImp0aSI6IjhhNWE3NTRjLTZiNGQtNGNiMi05MDNkLWYwZTIyYzEyMDBhNyJ9.dICyqyyiA9Be2EOU8KScHcwpZwm6FIhrhhGY3-KHd2gBbY6DZY5arTrNXodckUPAuyC9c6_uZJyos9WeOhmc9O7k0bApQji2utDFhMNQurQXN3HfnoXcSAIFYYe8zFBS9wJiJziMKQwKpYR-P-nfvI7xxyehJ9s2Jn-g9TEhot9-CK23CNqms6RlFaOLLCTgQmMeyGZbQEbbBYt6jklXGRntsCUX1XeswiNzWrcCz69FhSxgwAYQp0V8pvtXlj2WkFgDFyKZHsQqzarBR0TIVA1qjoTL1mYFFBN3qAAWkv2yI937kbgHPW_OeenZtCCNerXInYjuWzf47xPFNUOpOw Host: modipa-val.fse.salute.gov.it Connection: keep-alive Content-Type: multipart/form-data; boundary=--------------------------872431149800304341413174 Cookie: 894d46ecfc124039ee218b63c12a3329=39cf1440165e40ce2a2c0daad2576e73 Content-Length: 184672

----------------------------872431149800304341413174 Content-Disposition: form-data; name="requestBody" {"healthDataFormat": "CDA","mode": "RESOURCE","activity": "VERIFICA"} ----------------------------872431149800304341413174 Content-Disposition: form-data; name=""; filename="3621989_CDA2.pdf"

<3621989_CDA2.pdf> ----------------------------872431149800304341413174-- HTTP/1.1 502 Bad Gateway X-Backside-Transport: FAIL FAIL Connection: Keep-Alive Transfer-Encoding: chunked Expires: 0 Cache-Control: no-cache, no-store, must-revalidate Server: GovWay-SOGEI Pragma: no-cache GovWay-Message-ID: 8a5a754c-6b4d-4cb2-903d-f0e22c1200a7 GovWay-Transaction-ErrorType: InvalidResponse GovWay-Transaction-ID: 2a13b773-c899-11ed-a9a6-005056ae7395 Date: Wed, 22 Mar 2023 11:13:56 GMT Vary: * X-Content-Type-Options: nosniff Content-Type: application/problem+json X-Global-Transaction-ID: 3f7e3e2d641ae2f45f6be58d {"type":"https://govway.org/handling-errors/502/InvalidResponse.html","title":"InvalidResponse","status":502,"detail":"Invalid response received from the API Implementation","govway_id":"2a13b773-c899-11ed-a9a6-005056ae7395"

scusate, errore mio, il nostro file doveva essere inviato con mode: "ATTACHMENT" (non RESOURCE), difatti adesso riceviamo

{"traceID":"8438f81740ea0343","spanID":"8438f81740ea0343","type":"/msg/syntax","title":"Errore di sintassi.","detail":"Schema with version POCD_HD000040 not found on database.","status":400,"instance":"/validation/error","workflowInstanceId":"2.16.840.1.113883.2.9.2.10908.4.4.2.0d0002200a27e9ead4de0891c19736a630eab68fb09f7851561bbfeed7389948.67838be1a5^^^^urn:ihe:iti:xdw:2013:workflowInstanceId"}

chiudo la chiamata, eventualmente apro l'errore in altro contesto. grazie per i riscontri, buona giornata

ministero-salute / it-fse-support

Verifica - errore 401-Unauthorized - invalid_token? #137