Expand my Community achievements bar.

Join expert-led, customer-led sessions on Adobe Experience Manager Assets on August 20th at our Skill Exchange.
Register Now
SOLVED

OAuthAuthenticationHandler extractCredentials: fallback to we can't handle this

Avatar

Level 1
Level 1
10/27/20 6:14:11 AM

Hi,

 

I've implemented a custom OAuth Provider and API. 

So currently AEM redirects to OAuth form, and after successful login user is redirected back to AEM with

authorization_code as a parameter 
http://localhost:4503/content/site/en/welcome.html?code=W8kJTZV9syQJ8JOuPWMTCeP_x2C190y-9CmWehunGpM&state=s5vraqvk34thmc5koifac1kbla

The problem is that OAuthAuthenticationHandler doesn't see authorization_code as a request param:

com.adobe.granite.auth.oauth.impl.OAuthAuthenticationHandler extractCredentials: fallback to we can't handle this

 as a result, there is the following error in logs:

com.adobe.granite.auth.oauth.impl.helper.OauthTokenManager token not found in request attribute or cookie for:customOAuth

 

Why code param is not visible for OAuthAuthenticationHandler? How could it be debugged to understand the root cause of this issue?

 

Thank you in advance!

Views

2.9K

Replies

5
Sign in to like this content

Total Likes

Translate
Translate
1 Accepted Solution

Avatar

Correct answer by
Community Advisor
Community Advisor
10/28/20 1:43:54 PM

Are you using JsonTokenExtractor?

 

Login form should redirect to url that ends with "/callback/j_security_check"

that triggers AEM code to make an additional call to OAuth service to get Access Token

 

Refer to the below URL for more detail -

https://github.com/techforum-repo/bundles/blob/master/google-oauth-provider/src/main/java/com/core/o...

https://techforum.medium.com/social-login-with-google-oauth2-adobe-experience-manager-aem-ff33b5c4f3...

Regards

Albin I

www.albinsblog.com

 

View solution in original post

Views

2.9K

Replies

3
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply
5 Replies

Avatar

Correct answer by
Community Advisor
Community Advisor
10/28/20 1:43:54 PM

Are you using JsonTokenExtractor?

 

Login form should redirect to url that ends with "/callback/j_security_check"

that triggers AEM code to make an additional call to OAuth service to get Access Token

 

Refer to the below URL for more detail -

https://github.com/techforum-repo/bundles/blob/master/google-oauth-provider/src/main/java/com/core/o...

https://techforum.medium.com/social-login-with-google-oauth2-adobe-experience-manager-aem-ff33b5c4f3...

Regards

Albin I

www.albinsblog.com

 

Views

2.9K

Replies

3
Sign in to like this content

Total Likes

Translate
Translate
Jump to reply

Avatar

Level 1
Level 1
11/1/20 10:45:36 PM
In response to Albin_Issac

Hi Albin,

Thanks for response!

I am not using JsonTokenExtractor. I followed same link that you provided.

From the logs i see that AEM tries to find authorization_code in request before request comes back from OAuth login page.

so log looks like this:

com.adobe.granite.auth.oauth.impl.helper.OauthTokenManager token not found in request attribute or cookie for:custom_config
GET /content/redirect/path.html?code=CodeFromTheOAuth&state=some_state HTTP/1.1

 

Views

2.8K

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Employee
Employee
8/24/23 12:02:12 AM
In response to maksyms28136728

Hi @maksyms28136728 

I am facing exactly same error where the call to token endpoint is not made after redirect to callback url with auth code as parameter. Were you able to resolve this issue?

Any help is highly appreciated, thanks. 

Views

1.5K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 1
Level 1
8/10/22 4:31:17 AM
In response to Albin_Issac

Hello @Albin_Issac 

I followed your approaches in https://github.com/techforum-repo/aem-bundles

I already configured the callback url  http://localhost:4502//callback/j_security_check

I do the login in form of provider, the callback works and when came back the function in OauthServiceImpl-> getAccessToken it's called

And i do a request to get the access token, so far so good, i get the access token and return the token.

The next step is call getProtectedDataRequest in implementation of custom provider.

But in this function above i need to send the access token in authorization header, how to do this? because in this moment i can't access the access token that was catches in previous step.

 

I check the logs and i see this info:

*INFO* [qtp204841818-1386] com.adobe.granite.auth.oauth.impl.helper.OauthTokenManager token not found in request attribute or cookie for:

 

Thanks

Views

2.2K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 1
Level 1
11/3/20 6:26:26 AM

I found the issue.

Login form should redirect to url that ends with "/callback/j_security_check"

that triggers AEM code to make an additional call to OAuth service to get Access Token

 

Views

2.8K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
On Asset deletion, how to get its properties/details before its deleted. Solved

Views

108

Likes

0

Replies

4
PrePopulate Adaptive Forms using query parameters - not able to download and install template package Solved

Views

87

Likes

0

Replies

2
Link is not changing to Live copy pages Solved

Views

77

Like

1

Replies

1
How to Migrate Custom SPA Component with Variations to Universal Editor Component in AEM?

Views

83

Likes

0

Replies

0
Is there a way to bind dropdown to dynamic list in universal editor other than writing an extension for it?

Views

54

Likes

0

Replies

1