[midPoint] Error using httpHeader

Wang, Xiaoshu xiaoshuw at email.unc.edu
Wed Sep 8 15:39:05 CEST 2021 

Hi,

I am playing with flexible authentication. I have a blank midpoint 4.3.1 setup on my local machine and put the the security policy (in the attached file) in the post-initial-objects directory. Then I can mimic the user by setting up the uid Request Header on my browser. It works but it generated the following exceptions on the server log. I do not see the error prevents the app from functioning but still it generates a lot of noise.

My intension was to see how to front midpoint with a SP provider, hence the httpHeader module. This leads to my next question.

What are the paths that I need to set to let shibboleth SP to require active session?

I don’t think all paths would work as it will block the emergency login. In addition, I guess it would prevent the server from using HTTP Basic that is required by a rest client.

Xiaoshu Wang

2021-09-08 08:59:23,340 [MODEL] [http-nio-8080-exec-3] ERROR (com.evolveum.midpoint.web.util.MidPointProfilingServletFilter): Encountered exception: java.lang.IllegalStateException: Cannot call sendRedirect() after the response has been committed
java.lang.IllegalStateException: Cannot call sendRedirect() after the response has been committed
            at org.apache.catalina.connector.ResponseFacade.sendRedirect(ResponseFacade.java:488)
            at javax.servlet.http.HttpServletResponseWrapper.sendRedirect(HttpServletResponseWrapper.java:138)
            at org.springframework.security.web.firewall.FirewalledResponse.sendRedirect(FirewalledResponse.java:48)
            at javax.servlet.http.HttpServletResponseWrapper.sendRedirect(HttpServletResponseWrapper.java:138)
            at org.springframework.security.web.util.OnCommittedResponseWrapper.sendRedirect(OnCommittedResponseWrapper.java:136)
            at javax.servlet.http.HttpServletResponseWrapper.sendRedirect(HttpServletResponseWrapper.java:138)
            at org.springframework.security.web.util.OnCommittedResponseWrapper.sendRedirect(OnCommittedResponseWrapper.java:136)
            at org.apache.wicket.protocol.http.servlet.ServletWebResponse.sendRedirect(ServletWebResponse.java:288)
            at org.apache.wicket.protocol.http.BufferedWebResponse$SendRedirectAction.invoke(BufferedWebResponse.java:409)
            at org.apache.wicket.protocol.http.BufferedWebResponse.writeTo(BufferedWebResponse.java:602)
            at org.apache.wicket.protocol.http.HeaderBufferingWebResponse.stopBuffering(HeaderBufferingWebResponse.java:60)
            at org.apache.wicket.protocol.http.HeaderBufferingWebResponse.flush(HeaderBufferingWebResponse.java:97)
            at org.apache.wicket.protocol.http.WicketFilter.processRequestCycle(WicketFilter.java:277)
            at org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:206)
            at org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:299)
            at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
            at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
            at com.evolveum.midpoint.web.util.MidPointProfilingServletFilter.doFilter(MidPointProfilingServletFilter.java:79)
            at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:189)
            at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:162)
            at com.evolveum.midpoint.web.security.filter.MidpointAuthFilter$VirtualFilterChain.doFilter(MidpointAuthFilter.java:406)
            at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:115)
            at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:81)
            at com.evolveum.midpoint.web.security.filter.MidpointAuthFilter$VirtualFilterChain.doFilter(MidpointAuthFilter.java:418)
            at org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:119)

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20210908/9c7aaa61/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: SecurityPolicy.xml
Type: text/xml
Size: 3984 bytes
Desc: SecurityPolicy.xml
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20210908/9c7aaa61/attachment.xml>

More information about the midPoint mailing list