Comments (5)
After checking on clean environment we had this issue commonly for each time
when we
throw the security exception on the AuthenticationServiceBean or
IdentifiationServiceBean which is implementation of the AuthenticationService
and
Identification service bean. We always have Generic exception with the
following
trace.
As you can see in the error when excption throw by server it indicate the http
response code 500 and in the controller class if the response code is not ok it
will
fall in to the IO exception.
Refer sendMessage(Object message) method.
This is really strange infact if exception from the server and its security
execption it must display as security exception not generic error but due to
I/O
execption throwing it will not fall in the security exception.
What is your opinion on this?
Error trace
-----------
HTTP response code: 500
<html><head><title>JBossWeb/2.0.1.GA - Rapport d'erreur</title><style><!--H1
{font-
family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22
px;}
H2
{font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-
size:16px;} H3 {font-family:Tahoma,Arial,sans-serif;color:white;background-
color:#525D76;font-size:14px;} BODY {font-family:Tahoma,Arial,sans-
serif;color:black;background-color:white;} B {font-family:Tahoma,Arial,sans-
serif;color:white;background-color:#525D76;} P {font-family:Tahoma,Arial,sans-
serif;background:white;color:black;font-size:12px;}A {color : black;}A.name
{color :
black;}HR {color : #525D76;}--></style> </head><body><h1>Etat HTTP 500 -
</h1><HR
size="1" noshade="noshade"><p>type Rapport d'exception</p><p>message
<u></u></p><p>description <u>Le serveur a rencontré une erreur interne ()
qui l'a empêché de satisfaire la requête.</u></p><p>exception
<pre>javax.ejb.EJBException: java.lang.SecurityException
org.jboss.ejb3.tx.Ejb3TxPolicy.handleExceptionInOurTx(Ejb3TxPolicy.java:63)
org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:83)
org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:191)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.aspects.tx.TxPropagationInterceptor.invoke
(TxPropagationInterceptor.java:95)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke
(StatelessInstanceInterceptor.java:62)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.aspects.security.AuthenticationInterceptor.invoke
(AuthenticationInterceptor.java:77)
org.jboss.ejb3.security.Ejb3AuthenticationInterceptor.invoke
(Ejb3AuthenticationInterceptor.java:110)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.ejb3.ENCPropagationInterceptor.invoke
(ENCPropagationInterceptor.java:46)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.ejb3.asynchronous.AsynchronousInterceptor.invoke
(AsynchronousInterceptor.java:106)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.ejb3.stateless.StatelessContainer.localInvoke
(StatelessContainer.java:240)
org.jboss.ejb3.stateless.StatelessContainer.localInvoke
(StatelessContainer.java:210)
org.jboss.ejb3.stateless.StatelessLocalProxy.invoke
(StatelessLocalProxy.java:84)
$Proxy76.validateCertificateChain(Unknown Source)
be.fedict.eid.applet.service.impl.handler.AuthenticationDataMessageHandler.ha
ndleMessage(AuthenticationDataMessageHandler.java:180)
be.fedict.eid.applet.service.impl.handler.AuthenticationDataMessageHandler.ha
ndleMessage(AuthenticationDataMessageHandler.java:61)
be.fedict.eid.applet.service.AppletServiceServlet.doPost
(AppletServiceServlet.java:232)
javax.servlet.http.HttpServlet.service(HttpServlet.java:710)
javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter
(ReplyHeaderFilter.java:96)
</pre></p><p>cause mère <pre>java.lang.SecurityException
eid.authentication.AuthenticationServiceBean.validateCertificateChain
(AuthenticationServiceBean.java:46)
sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
sun.reflect.DelegatingMethodAccessorImpl.invoke
(DelegatingMethodAccessorImpl.java:25)
java.lang.reflect.Method.invoke(Method.java:585)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:112)
org.jboss.ejb3.interceptor.InvocationContextImpl.proceed
(InvocationContextImpl.java:166)
org.jboss.ejb3.interceptor.EJB3InterceptorsInterceptor.invoke
(EJB3InterceptorsInterceptor.java:63)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke
(TransactionScopedEntityManagerInterceptor.java:54)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.ejb3.AllowedOperationsInterceptor.invoke
(AllowedOperationsInterceptor.java:47)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)
org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:191)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.aspects.tx.TxPropagationInterceptor.invoke
(TxPropagationInterceptor.java:95)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke
(StatelessInstanceInterceptor.java:62)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.aspects.security.AuthenticationInterceptor.invoke
(AuthenticationInterceptor.java:77)
org.jboss.ejb3.security.Ejb3AuthenticationInterceptor.invoke
(Ejb3AuthenticationInterceptor.java:110)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.ejb3.ENCPropagationInterceptor.invoke
(ENCPropagationInterceptor.java:46)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.ejb3.asynchronous.AsynchronousInterceptor.invoke
(AsynchronousInterceptor.java:106)
org.jboss.aop.joinpoint.MethodInvocation.invokeNext
(MethodInvocation.java:101)
org.jboss.ejb3.stateless.StatelessContainer.localInvoke
(StatelessContainer.java:240)
org.jboss.ejb3.stateless.StatelessContainer.localInvoke
(StatelessContainer.java:210)
org.jboss.ejb3.stateless.StatelessLocalProxy.invoke
(StatelessLocalProxy.java:84)
$Proxy76.validateCertificateChain(Unknown Source)
be.fedict.eid.applet.service.impl.handler.AuthenticationDataMessageHandler.ha
ndleMessage(AuthenticationDataMessageHandler.java:180)
be.fedict.eid.applet.service.impl.handler.AuthenticationDataMessageHandler.ha
ndleMessage(AuthenticationDataMessageHandler.java:61)
be.fedict.eid.applet.service.AppletServiceServlet.doPost
(AppletServiceServlet.java:232)
javax.servlet.http.HttpServlet.service(HttpServlet.java:710)
javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter
(ReplyHeaderFilter.java:96)
</pre></p><p>note <u>La trace complète de la cause mère de cette erreur
est
disponible dans les fichiers journaux de JBossWeb/2.0.1.GA.</u></p><HR size="1"
noshade="noshade"><h3>JBossWeb/2.0.1.GA</h3></body></html>
error: error sending message to service. HTTP status code: 500
error type: java.io.IOException
at be.fedict.eid.applet.Controller.sendMessage:193
at be.fedict.eid.applet.Controller.performEidAuthnOperation:977
at be.fedict.eid.applet.Controller.run:342
at be.fedict.eid.applet.Applet$AppletThread$1.run:525
at java.security.AccessController.doPrivileged:-2
at be.fedict.eid.applet.Applet$AppletThread.run:520
at java.lang.Thread.run:-1
Algemene fout.
Original comment by [email protected]
on 20 Jan 2010 at 4:46
from eid-applet.
I'll have a look at improving the error reporting in case of expired or revoked
certificates.
Original comment by [email protected]
on 21 Jan 2010 at 9:02
from eid-applet.
Original comment by [email protected]
on 9 Apr 2010 at 2:01
- Changed state: Started
from eid-applet.
Will be part of 1.0.1.GA.
Original comment by [email protected]
on 21 Jun 2010 at 3:19
- Changed state: Done
from eid-applet.
Thank you very much
Original comment by [email protected]
on 13 Aug 2010 at 2:46
from eid-applet.
Related Issues (20)
- Java 7 appletplugin and OS X HOT 14
- revision 723 build on windows has errors HOT 6
- Compilation on java 1.7 HOT 1
- java.io.IOException HOT 2
- empty "Request Authentication" popup before signing document HOT 1
- Improvement: Skip technical confirm box HOT 1
- How to supply an in memory document for signing to the applet HOT 1
- Card error after upgrading to eid applet 1.0.5 HOT 2
- Card using SHA256withRSA: failure to validate signed identity HOT 1
- PIN cache not working for SignRequest HOT 3
- Building applet fails with JDK 1.7u45 HOT 1
- Security warning message : The certificate used to identify this application is expire HOT 1
- Support intranet domainnames HOT 2
- https checks on localhost HOT 1
- Nationality not available
- Applet not working on Jboss + apache HOT 1
- Yomani and Xenta terminals are not detected when connected to desktop for reading EID card details.
- compute digital signature error
- Error using the new Belfius cardreader HOT 2
- eid-applet-package-1.1.3.jar returning error
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from eid-applet.