[jira] [Commented] (SOLR-16090) JWTAuthPlugin logs in to admin portal but can't make requests

Jira Wed, 09 Mar 2022 15:23:07 -0800


    [ 
https://issues.apache.org/jira/browse/SOLR-16090?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17503906#comment-17503906
 ]


Jan Høydahl commented on SOLR-16090:
------------------------------------

Signature validation failed, and then during further error processing you hit a 
line:
https://github.com/apache/solr/blob/main/solr/modules/jwt-auth/src/java/org/apache/solr/security/jwt/JWTAuthPlugin.java#L408
This line is buggy as it passes the entire http header to 
{{jwtConsumer.processToClaims(}}, whle it should have passed the jwt only.

> JWTAuthPlugin logs in to admin portal but can't make requests
> -------------------------------------------------------------
>
>                 Key: SOLR-16090
>                 URL: https://issues.apache.org/jira/browse/SOLR-16090
>             Project: Solr
>          Issue Type: Bug
>      Security Level: Public(Default Security Level. Issues are Public) 
>          Components: Authentication
>    Affects Versions: 8.11.1
>            Reporter: Edward Cooke
>            Priority: Major
>
> I am trying to use Azure AD as the backend for the JWTAuthPlugin. I got it to 
> sign-in and let me use the admin portal, however, we are getting the 
> following error message in the logs on every api request back to solr through 
> the portal:
>  
> {code:java}
> 2022-03-09 20:26:27.411 INFO  (qtp1515403487-23) [   ] 
> o.a.s.s.SolrDispatchFilter Error authenticating => 
> org.jose4j.jwt.consumer.InvalidJwtException: JWT processing failed. 
> Additional details: [[17] Unable to process JOSE object (cause: 
> org.jose4j.lang.JoseException: Parsing error: 
> org.jose4j.json.internal.json_simple.parser.ParseException: Unexpected 
> character () at position 0.): Bearer 
> eyJ0eXAiOiJKV1QiLCJub25jZSI6IjNMdTkzNmFsLTZkUG1udkIxalp2Skd2WDN5Y1FpSU1NTkx0c0dIUG9USXciLCJhbGciOiJSUzI1NiIsIng1dCI6ImpTMVhvMU9XRGpfNTJ2YndHTmd2UU8yVnpNYyIsImtpZCI6ImpTMVhvMU9XRGpfNTJ2YndHTmd2UU8yVnpNYyJ9.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.Y5V_AJphcqqZ_fTEyrDUCT8Uqok4K6_XmueLvfvKk_lTNLl-ALC9lpssSGwAnMOS5F2ZFUnAXtGjq0nW6rHF-9yfEoFFRf-16wyqBqnt7HfFQHO8MWxF7eghipQv-2xXY3P4icrtun90NesvtNQWeupT_SfY79h-HiZkXqxXlcShqzTTD2IJWd5fgk8YPY-6BgbafIqokwsB4Xr14e4F3kXeD-T4SHXKyquSt5ekAg_Tq0hQ3ODgIcJOmZyeOlExuz8mbGf5KWjQ7Zr8O2BHjp3HaE3FrK9rPqsx1yxRnPZPVA78LIh1WI_5d-ltoZ9oGJibp2ulfqEhiBU1XP3zrA]
>         at org.jose4j.jwt.consumer.JwtConsumer.process(JwtConsumer.java:413)
> org.jose4j.jwt.consumer.InvalidJwtException: JWT processing failed. 
> Additional details: [[17] Unable to process JOSE object (cause: 
> org.jose4j.lang.JoseException: Parsing error: 
> org.jose4j.json.internal.json_simple.parser.ParseException: Unexpected 
> character () at position 0.): Bearer 
> eyJ0eXAiOiJKV1QiLCJub25jZSI6IjNMdTkzNmFsLTZkUG1udkIxalp2Skd2WDN5Y1FpSU1NTkx0c0dIUG9USXciLCJhbGciOiJSUzI1NiIsIng1dCI6ImpTMVhvMU9XRGpfNTJ2YndHTmd2UU8yVnpNYyIsImtpZCI6ImpTMVhvMU9XRGpfNTJ2YndHTmd2UU8yVnpNYyJ9.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.Y5V_AJphcqqZ_fTEyrDUCT8Uqok4K6_XmueLvfvKk_lTNLl-ALC9lpssSGwAnMOS5F2ZFUnAXtGjq0nW6rHF-9yfEoFFRf-16wyqBqnt7HfFQHO8MWxF7eghipQv-2xXY3P4icrtun90NesvtNQWeupT_SfY79h-HiZkXqxXlcShqzTTD2IJWd5fgk8YPY-6BgbafIqokwsB4Xr14e4F3kXeD-T4SHXKyquSt5ekAg_Tq0hQ3ODgIcJOmZyeOlExuz8mbGf5KWjQ7Zr8O2BHjp3HaE3FrK9rPqsx1yxRnPZPVA78LIh1WI_5d-ltoZ9oGJibp2ulfqEhiBU1XP3zrA]
>         at org.jose4j.jwt.consumer.JwtConsumer.process(JwtConsumer.java:413) 
> ~[?:?]
>         at 
> org.jose4j.jwt.consumer.JwtConsumer.processToClaims(JwtConsumer.java:171) 
> ~[?:?]
>         at 
> org.apache.solr.security.JWTAuthPlugin.doAuthenticate(JWTAuthPlugin.java:304) 
> ~[?:?]
>         at 
> org.apache.solr.security.AuthenticationPlugin.authenticate(AuthenticationPlugin.java:88)
>  ~[?:?]
>         at 
> org.apache.solr.servlet.SolrDispatchFilter.authenticateRequest(SolrDispatchFilter.java:518)
>  ~[?:?]
>         at 
> org.apache.solr.servlet.SolrDispatchFilter.doFilter(SolrDispatchFilter.java:411)
>  ~[?:?]
>         at 
> org.apache.solr.servlet.SolrDispatchFilter.doFilter(SolrDispatchFilter.java:357)
>  ~[?:?]
>         at 
> org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:201) 
> ~[jetty-servlet-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601)
>  ~[jetty-servlet-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:548) 
> ~[jetty-servlet-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:600) 
> ~[jetty-security-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1624)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1434)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:501) 
> ~[jetty-servlet-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1594)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1349)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:191)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.InetAccessHandler.handle(InetAccessHandler.java:177)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.rewrite.handler.RewriteHandler.handle(RewriteHandler.java:322)
>  ~[jetty-rewrite-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.gzip.GzipHandler.handle(GzipHandler.java:763)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at org.eclipse.jetty.server.Server.handle(Server.java:516) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:400) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:645) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:392) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:277) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311)
>  ~[jetty-io-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:105) 
> ~[jetty-io-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.io.ChannelEndPoint$1.run(ChannelEndPoint.java:104) 
> ~[jetty-io-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:338)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:315)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:173)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:131)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:409)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:883)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:1034)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at java.lang.Thread.run(Unknown Source) [?:?]
> Caused by: org.jose4j.lang.JoseException: Parsing error: 
> org.jose4j.json.internal.json_simple.parser.ParseException: Unexpected 
> character () at position 0.
>         at org.jose4j.json.JsonUtil.parseJson(JsonUtil.java:66) ~[?:?]
>         at org.jose4j.jwx.Headers.setEncodedHeader(Headers.java:117) ~[?:?]
>         at 
> org.jose4j.jwx.JsonWebStructure.setEncodedHeader(JsonWebStructure.java:127) 
> ~[?:?]
>         at 
> org.jose4j.jws.JsonWebSignature.setCompactSerializationParts(JsonWebSignature.java:110)
>  ~[?:?]
>         at 
> org.jose4j.jwx.JsonWebStructure.fromCompactSerialization(JsonWebStructure.java:94)
>  ~[?:?]
>         at org.jose4j.jwt.consumer.JwtConsumer.process(JwtConsumer.java:327) 
> ~[?:?]
>         ... 45 more
> Caused by: org.jose4j.json.internal.json_simple.parser.ParseException: 
> Unexpected character () at position 0.
>         at 
> org.jose4j.json.internal.json_simple.parser.Yylex.yylex(Yylex.java:612) ~[?:?]
>         at 
> org.jose4j.json.internal.json_simple.parser.JSONParser.nextToken(JSONParser.java:269)
>  ~[?:?]
>         at 
> org.jose4j.json.internal.json_simple.parser.JSONParser.parse(JSONParser.java:118)
>  ~[?:?]
>         at 
> org.jose4j.json.internal.json_simple.parser.JSONParser.parse(JSONParser.java:81)
>  ~[?:?]
>         at org.jose4j.json.JsonUtil.parseJson(JsonUtil.java:62) ~[?:?]
>         at org.jose4j.jwx.Headers.setEncodedHeader(Headers.java:117) ~[?:?]
>         at 
> org.jose4j.jwx.JsonWebStructure.setEncodedHeader(JsonWebStructure.java:127) 
> ~[?:?]
>         at 
> org.jose4j.jws.JsonWebSignature.setCompactSerializationParts(JsonWebSignature.java:110)
>  ~[?:?]
>         at 
> org.jose4j.jwx.JsonWebStructure.fromCompactSerialization(JsonWebStructure.java:94)
>  ~[?:?]
>         at org.jose4j.jwt.consumer.JwtConsumer.process(JwtConsumer.java:327) 
> ~[?:?]
>         ... 45 more
> 2022-03-09 20:26:27.411 WARN  (qtp1515403487-23) [   ] o.e.j.s.HttpChannel 
> /solr/admin/info/system => org.apache.solr.common.SolrException: Error during 
> request authentication,
>         at 
> org.apache.solr.servlet.SolrDispatchFilter.authenticateRequest(SolrDispatchFilter.java:524)
> org.apache.solr.common.SolrException: Error during request authentication,
>         at 
> org.apache.solr.servlet.SolrDispatchFilter.authenticateRequest(SolrDispatchFilter.java:524)
>  ~[?:?]
>         at 
> org.apache.solr.servlet.SolrDispatchFilter.doFilter(SolrDispatchFilter.java:411)
>  ~[?:?]
>         at 
> org.apache.solr.servlet.SolrDispatchFilter.doFilter(SolrDispatchFilter.java:357)
>  ~[?:?]
>         at 
> org.eclipse.jetty.servlet.FilterHolder.doFilter(FilterHolder.java:201) 
> ~[jetty-servlet-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1601)
>  ~[jetty-servlet-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:548) 
> ~[jetty-servlet-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:600) 
> ~[jetty-security-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1624)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1434)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:501) 
> ~[jetty-servlet-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1594)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1349)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:191)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.InetAccessHandler.handle(InetAccessHandler.java:177)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.rewrite.handler.RewriteHandler.handle(RewriteHandler.java:322)
>  ~[jetty-rewrite-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.gzip.GzipHandler.handle(GzipHandler.java:763)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127)
>  ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at org.eclipse.jetty.server.Server.handle(Server.java:516) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:400) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:645) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:392) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:277) 
> ~[jetty-server-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311)
>  ~[jetty-io-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:105) 
> ~[jetty-io-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.io.ChannelEndPoint$1.run(ChannelEndPoint.java:104) 
> ~[jetty-io-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:338)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:315)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:173)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:131)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:409)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:883)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at 
> org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:1034)
>  ~[jetty-util-9.4.44.v20210927.jar:9.4.44.v20210927]
>         at java.lang.Thread.run(Unknown Source) [?:?]
> Caused by: org.jose4j.jwt.consumer.InvalidJwtException: JWT processing 
> failed. Additional details: [[17] Unable to process JOSE object (cause: 
> org.jose4j.lang.JoseException: Parsing error: 
> org.jose4j.json.internal.json_simple.parser.ParseException: Unexpected 
> character () at position 0.): Bearer 
> eyJ0eXAiOiJKV1QiLCJub25jZSI6IjNMdTkzNmFsLTZkUG1udkIxalp2Skd2WDN5Y1FpSU1NTkx0c0dIUG9USXciLCJhbGciOiJSUzI1NiIsIng1dCI6ImpTMVhvMU9XRGpfNTJ2YndHTmd2UU8yVnpNYyIsImtpZCI6ImpTMVhvMU9XRGpfNTJ2YndHTmd2UU8yVnpNYyJ9.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.Y5V_AJphcqqZ_fTEyrDUCT8Uqok4K6_XmueLvfvKk_lTNLl-ALC9lpssSGwAnMOS5F2ZFUnAXtGjq0nW6rHF-9yfEoFFRf-16wyqBqnt7HfFQHO8MWxF7eghipQv-2xXY3P4icrtun90NesvtNQWeupT_SfY79h-HiZkXqxXlcShqzTTD2IJWd5fgk8YPY-6BgbafIqokwsB4Xr14e4F3kXeD-T4SHXKyquSt5ekAg_Tq0hQ3ODgIcJOmZyeOlExuz8mbGf5KWjQ7Zr8O2BHjp3HaE3FrK9rPqsx1yxRnPZPVA78LIh1WI_5d-ltoZ9oGJibp2ulfqEhiBU1XP3zrA]
>         at org.jose4j.jwt.consumer.JwtConsumer.process(JwtConsumer.java:413) 
> ~[?:?]
>         at 
> org.jose4j.jwt.consumer.JwtConsumer.processToClaims(JwtConsumer.java:171) 
> ~[?:?]
>         at 
> org.apache.solr.security.JWTAuthPlugin.doAuthenticate(JWTAuthPlugin.java:304) 
> ~[?:?]
>         at 
> org.apache.solr.security.AuthenticationPlugin.authenticate(AuthenticationPlugin.java:88)
>  ~[?:?]
>         at 
> org.apache.solr.servlet.SolrDispatchFilter.authenticateRequest(SolrDispatchFilter.java:518)
>  ~[?:?]
>         ... 41 more
> Caused by: org.jose4j.lang.JoseException: Parsing error: 
> org.jose4j.json.internal.json_simple.parser.ParseException: Unexpected 
> character () at position 0.
>         at org.jose4j.json.JsonUtil.parseJson(JsonUtil.java:66) ~[?:?]
>         at org.jose4j.jwx.Headers.setEncodedHeader(Headers.java:117) ~[?:?]
>         at 
> org.jose4j.jwx.JsonWebStructure.setEncodedHeader(JsonWebStructure.java:127) 
> ~[?:?]
>         at 
> org.jose4j.jws.JsonWebSignature.setCompactSerializationParts(JsonWebSignature.java:110)
>  ~[?:?]
>         at 
> org.jose4j.jwx.JsonWebStructure.fromCompactSerialization(JsonWebStructure.java:94)
>  ~[?:?]
>         at org.jose4j.jwt.consumer.JwtConsumer.process(JwtConsumer.java:327) 
> ~[?:?]
>         at 
> org.jose4j.jwt.consumer.JwtConsumer.processToClaims(JwtConsumer.java:171) 
> ~[?:?]
>         at 
> org.apache.solr.security.JWTAuthPlugin.doAuthenticate(JWTAuthPlugin.java:304) 
> ~[?:?]
>         at 
> org.apache.solr.security.AuthenticationPlugin.authenticate(AuthenticationPlugin.java:88)
>  ~[?:?]
>         at 
> org.apache.solr.servlet.SolrDispatchFilter.authenticateRequest(SolrDispatchFilter.java:518)
>  ~[?:?]
>         ... 41 more
> Caused by: org.jose4j.json.internal.json_simple.parser.ParseException: 
> Unexpected character () at position 0.
>         at 
> org.jose4j.json.internal.json_simple.parser.Yylex.yylex(Yylex.java:612) ~[?:?]
>         at 
> org.jose4j.json.internal.json_simple.parser.JSONParser.nextToken(JSONParser.java:269)
>  ~[?:?]
>         at 
> org.jose4j.json.internal.json_simple.parser.JSONParser.parse(JSONParser.java:118)
>  ~[?:?]
>         at 
> org.jose4j.json.internal.json_simple.parser.JSONParser.parse(JSONParser.java:81)
>  ~[?:?]
>         at org.jose4j.json.JsonUtil.parseJson(JsonUtil.java:62) ~[?:?]
>         at org.jose4j.jwx.Headers.setEncodedHeader(Headers.java:117) ~[?:?]
>         at 
> org.jose4j.jwx.JsonWebStructure.setEncodedHeader(JsonWebStructure.java:127) 
> ~[?:?]
>         at 
> org.jose4j.jws.JsonWebSignature.setCompactSerializationParts(JsonWebSignature.java:110)
>  ~[?:?]
>         at 
> org.jose4j.jwx.JsonWebStructure.fromCompactSerialization(JsonWebStructure.java:94)
>  ~[?:?]
>         at org.jose4j.jwt.consumer.JwtConsumer.process(JwtConsumer.java:327) 
> ~[?:?]
>         at 
> org.jose4j.jwt.consumer.JwtConsumer.processToClaims(JwtConsumer.java:171) 
> ~[?:?]
>         at 
> org.apache.solr.security.JWTAuthPlugin.doAuthenticate(JWTAuthPlugin.java:304) 
> ~[?:?]
>         at 
> org.apache.solr.security.AuthenticationPlugin.authenticate(AuthenticationPlugin.java:88)
>  ~[?:?]
>         at 
> org.apache.solr.servlet.SolrDispatchFilter.authenticateRequest(SolrDispatchFilter.java:518)
>  ~[?:?]
>         ... 41 more{code}



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Commented] (SOLR-16090) JWTAuthPlugin logs in to admin portal but can't make requests

Reply via email to