Expand my Community achievements bar.

Dive into Adobe Summit 2024! Explore curated list of AEM sessions & labs, register, connect with experts, ask questions, engage, and share insights. Don't miss the excitement.

Weblogic: Exception while Validating SSOToken

Avatar

Level 2

Hi

we are installing LC 9.0.0 on Weblogic 10.3 and Oracle 10g (both on Solaris). The ConfigurationManager runs like expected until the point it imports the LC components (DSC) into the databaase. We get the same result if we configure Weblogic manually (according to the installation guide) or let ConfigurationManager do it automatically. The following components can be deployed but not started:

- adobe-tasknotification-dsc.jar

- adobe-tasksharing-dsc.jar

- adobe-queuesharing-dsc.jar

- adobe-guides-dsc.jar

Furthermore if we login to the adminui (with administrator user account) we are able to see the home screen and one level below but if we try to go any deeper (e.g. user management) we get redirected to the home screen.

In both cases we get the following log output:

com.adobe.idp.um.api.UMException| [com.adobe.idp.um.api.impl.AuthenticationManagerImpl] errorCode:16386 errorCodeHEX:0x4002 message:nullcom.adobe.idp.common.errors.exception.IDPException| [com.adobe.idp.um.businesslogic.authentication.AuthenticationManagerBean] errorCode:16386 errorCodeHEX:0x4002 message:nullcom.adobe.idp.common.errors.exception.IDPLoggedException| [com.adobe.idp.um.businesslogic.authentication.AuthenticationManagerBean] errorCode:12803 errorCodeHEX:0x3203 message:Exception while Validating SSOToken chainedException:org.opensaml.InvalidCryptoException: SAMLSignedObject.verify() can't verify unsigned objectchainedExceptionMessage:SAMLSignedObject.verify() can't verify unsigned object chainedException trace:org.opensaml.InvalidCryptoException: SAMLSignedObject.verify() can't verify unsigned object
        at org.opensaml.SAMLSignedObject.verify(Unknown Source)
        at com.adobe.idp.um.util.SAMLHelper.verifySignature(SAMLHelper.java:330)
        at com.adobe.idp.um.util.SAMLHelper.verifySAMLResponse(SAMLHelper.java:292)
        at com.adobe.idp.um.businesslogic.authentication.AuthenticationManagerBean.validateSSOToken(AuthenticationManagerBean.java:969)
        at com.adobe.idp.um.businesslogic.authentication.AuthenticationManagerBean.authenticate(AuthenticationManagerBean.java:261)
        at com.adobe.idp.um.businesslogic.authentication.AuthenticationManagerBean.authenticate(AuthenticationManagerBean.java:232)
        at com.adobe.idp.um.businesslogic.authentication.AuthenticationManagerBean.authenticate(AuthenticationManagerBean.java:954)
        at com.adobe.idp.um.businesslogic.authentication.AuthenticationManagerBean_sjvdcw_ELOImpl.authenticate(AuthenticationManagerBean_sjvdcw_ELOImpl.java:635)
        at com.adobe.idp.um.api.impl.AuthenticationManagerImpl.authenticate(AuthenticationManagerImpl.java:120)
        at com.adobe.idp.um.auth.sso.SSOServlet.doPost(SSOServlet.java:214)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
        at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
        at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
        at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
        at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:175)
        at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3495)
        at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
        at weblogic.security.service.SecurityManager.runAs(Unknown Source)
        at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2180)
        at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2086)
        at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1406)
        at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
        at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
 
        at com.adobe.idp.um.api.impl.ManagerImpl.handleException(ManagerImpl.java:251)
        at com.adobe.idp.um.api.impl.ManagerImpl.handleException(ManagerImpl.java:194)
        at com.adobe.idp.um.api.impl.AuthenticationManagerImpl.authenticate(AuthenticationManagerImpl.java:122)
        at com.adobe.idp.um.auth.sso.SSOServlet.doPost(SSOServlet.java:214)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
        at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
        at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
        at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
        at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:175)
        at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3495)
        at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
        at weblogic.security.service.SecurityManager.runAs(Unknown Source)
        at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2180)
        at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2086)
        at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1406)
        at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
        at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)

Many thanks for your help!

Regards,

Daniel

2 Replies

Avatar

Level 4

Hi Daniel,

This happens when the XML Parser pciked is the one which is shipped with the JDK instead of Xerces. The issue has been typically seen with Jboss and not Weblogic as there the xerces jar is packaged with the ear itself. So check if you have any explicit setting which is changing the xml parser

If it is still not resolved the would sugget you to contact Adobe Support

Avatar

Level 2

Hi Chetan

Many thanks for your hint. In fact the XML parser was the problem. We added the additional JVM argument to the startup script and now LiveCycle is working on the Solaris/Weblogic platform:

-Djavax.xml.parsers.DocumentBuilderFactory=org.apache.xerces.jaxp.DocumentBuilderFactoryImpl

Regards,

Daniel