search

wso2 / product-is

Welcome to the WSO2 Identity Server source code! For info on working with the WSO2 Identity Server repository and contributing code, click the link below.
http://wso2.github.io/
Apache License 2.0
746 stars 724 forks source link

Error in user-portal when retrieve user profile by Active Directory user store #9126

Open marcelogwolff opened 4 years ago

marcelogwolff commented 4 years ago

Describe the issue: When I login using Active Directory credentials, a 500 error occours in console debug when calling https://localhost:9443/scim2/Me endpoint. If I use a internal userstore It works.

In Management Console the users appears normaly.

Below is my log frament when I log in in user-portal.

[2020-07-31 10:54:36,668] [ac1cb5bd-b755-4d32-a5bd-006123a2bd44] ERROR {org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/scim2].[SCIM2Servlet]} - Servlet.service() for servlet [SCIM2Servlet] in context with path [/scim2] threw exception java.lang.NullPointerException

  | at org.wso2.carbon.identity.scim2.common.impl.SCIMUserManager.getSCIMUser(SCIMUserManager.java:2779)   | at org.wso2.carbon.identity.scim2.common.impl.SCIMUserManager.getMe(SCIMUserManager.java:1757)   | at org.wso2.charon3.core.protocol.endpoints.MeResourceManager.get(MeResourceManager.java:71)   | at org.wso2.carbon.identity.scim2.provider.resources.MeResource.getUser(MeResource.java:67)   | at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)   | at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)   | at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)   | at java.base/java.lang.reflect.Method.invoke(Method.java:566)   | at org.apache.cxf.service.invoker.AbstractInvoker.performInvocation(AbstractInvoker.java:179)   | at org.apache.cxf.service.invoker.AbstractInvoker.invoke(AbstractInvoker.java:96)   | at org.apache.cxf.jaxrs.JAXRSInvoker.invoke(JAXRSInvoker.java:193)   | at org.apache.cxf.jaxrs.JAXRSInvoker.invoke(JAXRSInvoker.java:103)   | at org.apache.cxf.interceptor.ServiceInvokerInterceptor$1.run(ServiceInvokerInterceptor.java:59)   | at org.apache.cxf.interceptor.ServiceInvokerInterceptor.handleMessage(ServiceInvokerInterceptor.java:96)   | at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:308)   | at org.apache.cxf.transport.ChainInitiationObserver.onMessage(ChainInitiationObserver.java:121)   | at org.apache.cxf.transport.http.AbstractHTTPDestination.invoke(AbstractHTTPDestination.java:267)   | at org.apache.cxf.transport.servlet.ServletController.invokeDestination(ServletController.java:234)   | at org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:208)   | at org.apache.cxf.transport.servlet.ServletController.invoke(ServletController.java:160)   | at org.apache.cxf.transport.servlet.CXFNonSpringServlet.invoke(CXFNonSpringServlet.java:216)   | at org.apache.cxf.transport.servlet.AbstractHTTPServlet.handleRequest(AbstractHTTPServlet.java:301)   | at org.apache.cxf.transport.servlet.AbstractHTTPServlet.doGet(AbstractHTTPServlet.java:225)   | at javax.servlet.http.HttpServlet.service(HttpServlet.java:634)   | at org.apache.cxf.transport.servlet.AbstractHTTPServlet.service(AbstractHTTPServlet.java:276)   | at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:231)   | at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)   | at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:53)   | at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)   | at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)   | at org.wso2.carbon.ui.filters.cache.ContentTypeBasedCachePreventionFilter.doFilter(ContentTypeBasedCachePreventionFilter.java:53)   | at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)   | at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)   | at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilter(HttpHeaderSecurityFilter.java:126)   | at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)   | at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)   | at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:202)   | at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96)   | at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:666)   | at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:139)   | at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:92)   | at org.wso2.carbon.identity.context.rewrite.valve.TenantContextRewriteValve.invoke(TenantContextRewriteValve.java:86)   | at org.wso2.carbon.identity.authz.valve.AuthorizationValve.invoke(AuthorizationValve.java:102)   | at org.wso2.carbon.identity.auth.valve.AuthenticationValve.invoke(AuthenticationValve.java:94)   | at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInvocation(CompositeValve.java:99)   | at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invokeValves(TomcatValveContainer.java:49)   | at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(CompositeValve.java:62)   | at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValve.invoke(CarbonStuckThreadDetectionValve.java:145)   | at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:688)   | at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve.invoke(CarbonContextCreatorValve.java:57)   | at org.wso2.carbon.tomcat.ext.valves.RequestEncodingValve.invoke(RequestEncodingValve.java:49)   | at org.wso2.carbon.tomcat.ext.valves.RequestCorrelationIdValve.invoke(RequestCorrelationIdValve.java:119)   | at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:74)   | at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343)   | at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:367)   | at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65)   | at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:868)   | at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1639)   | at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)   | at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)   | at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)   | at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)   | at java.base/java.lang.Thread.run(Thread.java:834)

How to reproduce: Add a Active Directory user store and login in user-portal with AD credentials.

Expected behavior: In provious versions the user profile data shows in dashboard. In version 5.10 it doesn't show the user profile data. I downloaded the 5.11.0-m29 version to test and the same issue occours.

Environment information (Please complete the following information; remove any unnecessary fields) :

marcelogwolff commented 4 years ago

Hi all,

I mapped userid claim to uid from Active Directory and the problem was resolved. In previous versions this configuration was not necessary.