User mapping [cid:b2e4e509-04e3-4717-a5a1-5f59eb7bb339]
________________________________ De : Maxim Solodovnik <solomax...@gmail.com> Envoyé : lundi 30 mars 2020 11:20 À : Openmeetings user-list <user@openmeetings.apache.org> Objet : Re: google oauth2 error Can you see the attribute mapping in Admin->LDAP, are you? I would appreciate if you can test latest release or latest SNAPSHOT due to M2 is already too old :( On Mon, 30 Mar 2020 at 18:09, Ruben ALLITTEH <krallit...@outlook.fr<mailto:krallit...@outlook.fr>> wrote: I am using MariaDB server. Maybe it was the same issue here : https://issues.apache.org/jira/browse/OPENMEETINGS-2057 I can try to install OM 5.0.0-M3 on a test server and I will check. ________________________________ De : Maxim Solodovnik <solomax...@gmail.com<mailto:solomax...@gmail.com>> Envoyé : lundi 30 mars 2020 10:54 À : Openmeetings user-list <user@openmeetings.apache.org<mailto:user@openmeetings.apache.org>> Objet : Re: google oauth2 error The OAuth part was successful Then there was problem during saving GUser into DB What DB are you using? Can you check if you have this issue with 5.0.0-M3 (or upcoming M4-SNAPSHOT) if it will be not too complicated ... ? On Mon, 30 Mar 2020 at 17:47, Ruben ALLITTEH <krallit...@outlook.fr<mailto:krallit...@outlook.fr>> wrote: "Internal error" DEBUG 03-30 10:31:23.769 o.a.o.w.p.a.SignInPage:174 [io-5443-exec-10] - redirectUrl=https://accounts.google.com/o/oauth2/auth?redirect_uri=https%3A%2F%2Fmedia.trstech.net%3A5443%2Fopenmeetings%2Foauth%2F2&response_type=code&client_id=ooooooooo.apps.googleusercontent.com&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.profile DEBUG 03-30 10:31:25.704 o.a.o.w.p.a.SignInPage:96 [nio-5443-exec-3] - OAuthServer=OAuthServer [id=2, name=Google, iconUrl=https://www.google.com/images/google_favicon_128.png, enabled=true, clientId=oooooooooooo.apps.googleusercontent.com<http://oooooooooooo.apps.googleusercontent.com>, clientSecret=****************, requestKeyUrl=https://accounts.google.com/o/oauth2/auth?redirect_uri={$redirect_uri}&response_type=code&client_id={$client_id}&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.profile<https://accounts.google.com/o/oauth2/auth?redirect_uri=%7B$redirect_uri%7D&response_type=code&client_id=%7B$client_id%7D&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.profile>, requestTokenUrl=https://accounts.google.com/o/oauth2/token, requestTokenAttributes=code={$code}&client_id={$client_id}&client_secret={$client_secret}&redirect_uri={$redirect_uri}&grant_type=authorization_code, requestTokenMethod=POST, requestInfoUrl=https://www.googleapis.com/oauth2/v1/userinfo?access_token={$access_token}<https://www.googleapis.com/oauth2/v1/userinfo?access_token=%7B$access_token%7D>, mapping={address.email=email, login=email, firstname=given_name, lastname=family_name}, isDeleted()=false] DEBUG 03-30 10:31:25.704 o.a.o.w.p.a.SignInPage:104 [nio-5443-exec-3] - OAuth response code=4/yAEuMyfCamKLsPOr5ybXfs5n2C-LV48Mrj-o1kvUardbYSBxC5-ZhUWYBMFPWZYC9cErTv5a0o-eVxBG-B04nv8 DEBUG 03-30 10:31:25.731 o.a.o.w.c.OmWebSocketPanel:63 [io-5443-exec-16] - Sending WebSocket PING DEBUG 03-30 10:31:25.837 o.a.o.w.p.a.SignInPage:315 [nio-5443-exec-3] - AuthInfo={ "access_token": "ya29.a0Adw1xeWPe7guL0YQNBr_Zl4IGKrwIQUwxA2SN99aHrdi7Oyb_RpjJ9J5_UpRiqmjRXVSytc4wSlUyysJ-wwdfLfdU1nMMBcTHzdy-_uP2V_ov9wrRrsHMxdXygDr5gRIlg6gthTYypNCYvAG2xdpU_QD4TBL8M", "expires_in": 3599, "scope": "openid https://www.googleapis.com/auth/userinfo.email https://www.googleapis.com/auth/userinfo.profile";, "token_type": "Bearer", "id_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6IjUzYzY2YWFiNTBjZmRkOTFhMTQzNTBhNjY0ODM4MDBjODNjNjMiLCJ0eXAiOiJKV1QifQ.eyJpc3MiOiJhY2NvdW50cy5nb29nbGUuY29tIiwiYXpwIjoiNDgwMTc2NTU3NTI1LXUwczE2b3FiMGo0cm51NGt0YzJnMmQ3ZGo2NjR1ajdkLmFwcHMuZ29vZ2xldXNlcmNvbnRlbnQuY29tIiwiYXVkIjoiNDgwMTc2NTU3NTI1LXUwczE2b3FiMGo0cm51NGt0YzJnMmQ3ZGo2NjR1ajdkLmFwcHMuZ29vZ2xldXNlcmNvbnRlbnQuY29tIiwic3ViIjoiMTA0NzgwNTkwODI2NjczMzQ5MTY5IiwiZW1haWwiOiJra3Rhc3BAZ21haWwuY29tIiwiZW1haWxfdmVyaWZpZWQiOnRydWUsImF0X2hhc2giOiJ5M3Z6eEVHRkRzNU51LVJ6QndWM0VRIiwiaWF0IjoxNTg1NTY0Mjg1LCJleHAiOjE1ODU1Njc4ODV9.ca2P0TW32L22_Nkv8Ri3uXMlXKxrxuz2QSReqkBGgcpiohYzWH1ctpHZradKCoZ-9_-eoaE_q2YdCyKNoezgSoTfRBY8lJpuToDvyiTrkMbGq5H0si2fxvsehbEMxuLaqlB8xzFyLH_Wo4-vMfI81tDhClQMlq6YYt_-nnX-ohJJIS4lGqJQP2PTpwP2BqhsNBZz25uas4wgx3Hl13Veyvqf_7BnpWBKG72cx6Z1TMG1KgWOsG8P1_jW548uXaAC0C7Q6K8iR8EuN9hMpk-DwJ6zBqJgVDPcuEGQ8FYvLxJ6wCOaIY-8F24UKOTh_HT_-mGE5BNs8Ay9NAgd_syQnA" } DEBUG 03-30 10:31:25.838 o.a.o.w.p.a.SignInPage:109 [nio-5443-exec-3] - OAuthInfo=AuthInfo [accessToken=ya29.a0Adw1xeWPe7guL0YQNBr_Zl4IGKrwIQUwxA2SN99aHrdi7Oyb_RpjJ9J5_UpRiqmjRXVSytc4wSlUyysJ-wwdfLfdU1nMMBcTHzdy-_uP2V_ov9wrRrsHMxdXygDr5gRIlg6gthTYypNCYvAG2xdpU_QD4TBL8MVodlcv, refreshToken=, tokenType=Bearer, userId=, expiresIn=3599] DEBUG 03-30 10:31:25.922 o.a.o.w.p.a.SignInPage:292 [nio-5443-exec-3] - User info={ "id": "104780590826673347", "email": "kkt...@gmail.com<mailto:kkt...@gmail.com>", "verified_email": true, "name": "Tas Kp", "given_name": "Tas", "family_name": "Kp", "picture": "https://lh3.googleusercontent.com/a-/AOh14GiGTMYp5pcr1SPRe8Fei-bK5N7fI3m8i8ePEIJA";, "locale": "fr" } DEBUG 03-30 10:31:25.924 o.a.o.d.d.u.UserDao:395 [nio-5443-exec-3] - checkEmail: email = kkt...@gmail.com<mailto:kkt...@gmail.com>, id = null ERROR 03-30 10:31:25.928 o.a.w.DefaultExceptionMapper:170 [nio-5443-exec-3] - Unexpected error occurred org.apache.wicket.WicketRuntimeException: Can't instantiate page using constructor 'public org.apache.openmeetings.web.pages.auth.SignInPage(org.apache.wicket.request.mapper.parameter.PageParameters)' and argument 'code=[4/yAEuMyfCamKLsPOr5ybXfs5n2C-LV48Mrj-o1kvUardbYSBxC5-ZhUWYBMFPWZYC9cErTv5a0o-eVxBG-B04nv8], scope=[email profile openid https://www.googleapis.com/auth/userinfo.profile https://www.googleapis.com/auth/userinfo.email], authuser=[0], prompt=[none], oauthid=[2]'. An exception has been thrown during construction! at org.apache.wicket.session.DefaultPageFactory.newPage(DefaultPageFactory.java:194) at org.apache.wicket.session.DefaultPageFactory.newPage(DefaultPageFactory.java:99) at org.apache.wicket.DefaultMapperContext.newPageInstance(DefaultMapperContext.java:94) at org.apache.wicket.core.request.handler.PageProvider$Provision.getPage(PageProvider.java:369) at org.apache.wicket.core.request.handler.PageProvider.getPageInstance(PageProvider.java:170) at org.apache.wicket.request.handler.render.PageRenderer.getPage(PageRenderer.java:78) at org.apache.wicket.request.handler.render.WebPageRenderer.respond(WebPageRenderer.java:231) at org.apache.wicket.core.request.handler.RenderPageRequestHandler.respond(RenderPageRequestHandler.java:202) at org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:917) at org.apache.wicket.request.RequestHandlerExecutor.execute(RequestHandlerExecutor.java:63) at org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:283) at org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:254) at org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:222) at org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:71) at org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:207) at org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:300) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:202) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:607) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:139) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:92) at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:678) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:74) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343) at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:408) at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66) at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:853) at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1587) at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) at java.base/java.lang.Thread.run(Thread.java:834) Caused by: java.lang.reflect.InvocationTargetException: null at jdk.internal.reflect.GeneratedConstructorAccessor632.newInstance(Unknown Source) at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) at java.base/java.lang.reflect.Constructor.newInstance(Constructor.java:490) at org.apache.wicket.session.DefaultPageFactory.newPage(DefaultPageFactory.java:171) ... 34 common frames omitted Caused by: org.apache.openjpa.persistence.InvalidStateException: Detected reentrant flush. Make sure your flush-time instance callback methods or event listeners do not invoke any operations that require the in-progress flush to complete. at org.apache.openjpa.kernel.BrokerImpl.flushSafe(BrokerImpl.java:2195) at org.apache.openjpa.kernel.BrokerImpl.flush(BrokerImpl.java:1962) at org.apache.openjpa.kernel.StateManagerImpl.assignObjectId(StateManagerImpl.java:618) at org.apache.openjpa.kernel.StateManagerImpl.assignField(StateManagerImpl.java:705) at org.apache.openjpa.kernel.StateManagerImpl.beforeAccessField(StateManagerImpl.java:1750) at org.apache.openjpa.kernel.StateManagerImpl.accessingField(StateManagerImpl.java:1679) at org.apache.openmeetings.db.entity.user.GroupUser.pcGetid(GroupUser.java) at org.apache.openmeetings.db.entity.user.GroupUser.toString(GroupUser.java:112) at java.base/java.text.MessageFormat.subformat(MessageFormat.java:1302) at java.base/java.text.MessageFormat.format(MessageFormat.java:885) at java.base/java.text.Format.format(Format.java:158) at java.base/java.text.MessageFormat.format(MessageFormat.java:860) at org.apache.openjpa.lib.util.Localizer$Message.getMessage(Localizer.java:281) at org.apache.openjpa.util.OpenJPAException.<init>(OpenJPAException.java:64) at org.apache.openjpa.util.UserException.<init>(UserException.java:49) at org.apache.openjpa.util.InvalidStateException.<init>(InvalidStateException.java:37) at org.apache.openjpa.kernel.SingleFieldManager.preFlush(SingleFieldManager.java:570) at org.apache.openjpa.kernel.SingleFieldManager.preFlush(SingleFieldManager.java:513) at org.apache.openjpa.kernel.StateManagerImpl.preFlush(StateManagerImpl.java:3189) at org.apache.openjpa.kernel.SingleFieldManager.preFlushPC(SingleFieldManager.java:811) at org.apache.openjpa.kernel.SingleFieldManager.preFlushPCs(SingleFieldManager.java:765) at org.apache.openjpa.kernel.SingleFieldManager.preFlush(SingleFieldManager.java:667) at org.apache.openjpa.kernel.SingleFieldManager.preFlush(SingleFieldManager.java:592) at org.apache.openjpa.kernel.SingleFieldManager.preFlush(SingleFieldManager.java:513) at org.apache.openjpa.kernel.StateManagerImpl.preFlush(StateManagerImpl.java:3189) at org.apache.openjpa.kernel.PNewState.beforeFlush(PNewState.java:44) at org.apache.openjpa.kernel.StateManagerImpl.beforeFlush(StateManagerImpl.java:1111) at org.apache.openjpa.kernel.BrokerImpl.flush(BrokerImpl.java:2239) at org.apache.openjpa.kernel.BrokerImpl.flushSafe(BrokerImpl.java:2199) at org.apache.openjpa.kernel.BrokerImpl.flush(BrokerImpl.java:1962) at org.apache.openjpa.kernel.StateManagerImpl.assignObjectId(StateManagerImpl.java:618) at org.apache.openjpa.kernel.StateManagerImpl.assignField(StateManagerImpl.java:705) at org.apache.openjpa.kernel.StateManagerImpl.beforeAccessField(StateManagerImpl.java:1750) at org.apache.openjpa.kernel.StateManagerImpl.accessingField(StateManagerImpl.java:1679) at org.apache.openmeetings.db.entity.user.User.pcGetid(User.java) at org.apache.openmeetings.db.entity.user.User.getId(User.java:333) at org.apache.openmeetings.db.dao.user.UserDao.update(UserDao.java:268) at org.apache.openmeetings.db.dao.user.UserDao$$FastClassBySpringCGLIB$$1492ba5a.invoke(<generated>) at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:218) at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:749) at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163) at org.springframework.transaction.interceptor.TransactionAspectSupport.invokeWithinTransaction(TransactionAspectSupport.java:295) at org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:98) at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186) at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:688) at org.apache.openmeetings.db.dao.user.UserDao$$EnhancerBySpringCGLIB$$ffdd416.update(<generated>) at org.apache.openmeetings.web.app.UserManager.loginOAuth(UserManager.java:260) at jdk.internal.reflect.GeneratedMethodAccessor3230.invoke(Unknown Source) at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.base/java.lang.reflect.Method.invoke(Method.java:566) at org.apache.wicket.proxy.LazyInitProxyFactory$JdkHandler.invoke(LazyInitProxyFactory.java:521) at com.sun.proxy.$Proxy135.loginOAuth(Unknown Source) at org.apache.openmeetings.web.pages.auth.SignInPage.loginViaOAuth2(SignInPage.java:298) at org.apache.openmeetings.web.pages.auth.SignInPage.<init>(SignInPage.java:111) ________________________________ De : Maxim Solodovnik <solomax...@gmail.com<mailto:solomax...@gmail.com>> Envoyé : lundi 30 mars 2020 10:21 À : Openmeetings user-list <user@openmeetings.apache.org<mailto:user@openmeetings.apache.org>> Objet : Re: google oauth2 error Every "internal error" producing stacktrace on the log that could help Could you share it? On Mon, Mar 30, 2020, 17:17 Ruben ALLITTEH <krallit...@outlook.fr<mailto:krallit...@outlook.fr>> wrote: Yes. When I tried with the original 'request token URL', OM redirect to an ''internal error page''. 🙁 I have take the another URL on ''google identity platform'' page. ________________________________ De : Maxim Solodovnik <solomax...@gmail.com<mailto:solomax...@gmail.com>> Envoyé : lundi 30 mars 2020 09:54 À : Openmeetings user-list <user@openmeetings.apache.org<mailto:user@openmeetings.apache.org>> Objet : Re: google oauth2 error Well It seems you have changed "Request token URL" to inaccessible URL https://www.googleapis.com/oauth2/token originally was https://accounts.google.com/o/oauth2/token On Mon, 30 Mar 2020 at 16:41, Ruben ALLITTEH <krallit...@outlook.fr<mailto:krallit...@outlook.fr>> wrote: catalina.out file DEBUG 03-30 08:31:53.284 o.a.o.w.c.OmWebSocketPanel:63 [io-5443-exec-16] - Sending WebSocket PING DEBUG 03-30 08:32:21.174 o.a.o.w.p.a.SignInPage:174 [io-5443-exec-14] - redirectUrl=https://accounts.google.com/o/oauth2/auth?redirect_uri=https%3A%2F%2Fmedia.trstech.net%3A5443%2Fopenmeetings%2Foauth%2F2&response_type=code&client_id=oooooooo.apps.googleusercontent.com&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.profile DEBUG 03-30 08:32:21.771 o.a.o.w.p.a.SignInPage:96 [io-5443-exec-12] - OAuthServer=OAuthServer [id=2, name=Google, iconUrl=https://www.google.com/images/google_favicon_128.png, enabled=true, clientId=oooooooo.apps.googleusercontent.com<http://oooooooo.apps.googleusercontent.com>, clientSecret=**************, requestKeyUrl=https://accounts.google.com/o/oauth2/auth?redirect_uri={$redirect_uri}&response_type=code&client_id={$client_id}&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.profile<https://accounts.google.com/o/oauth2/auth?redirect_uri=%7B$redirect_uri%7D&response_type=code&client_id=%7B$client_id%7D&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.profile>, requestTokenUrl=https://www.googleapis.com/oauth2/token, requestTokenAttributes=code={$code}&client_id={$client_id}&client_secret={$client_secret}&redirect_uri={$redirect_uri}&grant_type=authorization_code, requestTokenMethod=POST, requestInfoUrl=https://www.googleapis.com/oauth2/v1/userinfo?access_token={$access_token}<https://www.googleapis.com/oauth2/v1/userinfo?access_token=%7B$access_token%7D>, mapping={firstname=given_name, address.email=email, login=email, lastname=family_name}, isDeleted()=false] DEBUG 03-30 08:32:21.771 o.a.o.w.p.a.SignInPage:104 [io-5443-exec-12] - OAuth response code=4/yAHRB1V3MhQcAL-_SQNz8P84Txo7Qq8bWZit0YQbDljbqGLohW8xO_VFK9JZ8_IhuceRYy3JOqxlKKO0Kx0HEtM ERROR 03-30 08:32:21.835 o.a.o.w.p.a.SignInPage:116 [io-5443-exec-12] - OAuth2 login error java.io.FileNotFoundException: https://www.googleapis.com/oauth2/token at java.base/sun.net.www.protocol.http.HttpURLConnection.getInputStream0(HttpURLConnection.java:1915) at java.base/sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:1515) at java.base/sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(HttpsURLConnectionImpl.java:250) at org.apache.openmeetings.web.pages.auth.SignInPage.getToken(SignInPage.java:268) at org.apache.openmeetings.web.pages.auth.SignInPage.<init>(SignInPage.java:105) at jdk.internal.reflect.GeneratedConstructorAccessor632.newInstance(Unknown Source) at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) at java.base/java.lang.reflect.Constructor.newInstance(Constructor.java:490) at org.apache.wicket.session.DefaultPageFactory.newPage(DefaultPageFactory.java:171) at org.apache.wicket.session.DefaultPageFactory.newPage(DefaultPageFactory.java:99) at org.apache.wicket.DefaultMapperContext.newPageInstance(DefaultMapperContext.java:94) at org.apache.wicket.core.request.handler.PageProvider$Provision.getPage(PageProvider.java:369) at org.apache.wicket.core.request.handler.PageProvider.getPageInstance(PageProvider.java:170) at org.apache.wicket.request.handler.render.PageRenderer.getPage(PageRenderer.java:78) at org.apache.wicket.request.handler.render.WebPageRenderer.respond(WebPageRenderer.java:231) at org.apache.wicket.core.request.handler.RenderPageRequestHandler.respond(RenderPageRequestHandler.java:202) at org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:917) at org.apache.wicket.request.RequestHandlerExecutor.execute(RequestHandlerExecutor.java:63) at org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:283) at org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:254) at org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:222) at org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:71) at org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:207) at org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:300) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:202) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:607) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:139) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:92) at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:678) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:74) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343) at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:408) at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66) at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:853) at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1587) at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) at java.base/java.lang.Thread.run(Thread.java:834) ________________________________ De : Maxim Solodovnik <solomax...@gmail.com<mailto:solomax...@gmail.com>> Envoyé : lundi 30 mars 2020 09:23 À : Openmeetings user-list <user@openmeetings.apache.org<mailto:user@openmeetings.apache.org>> Objet : Re: google oauth2 error This usually mean there are FS permissions issue Please check catalina.out (if it is up-to-date) :) On Mon, 30 Mar 2020 at 16:22, Ruben ALLITTEH <krallit...@outlook.fr<mailto:krallit...@outlook.fr>> wrote: I don't have 'openmeetings.log' on my server. I just have 'catalina.log', 'manager.log', 'access.log' ________________________________ De : Maxim Solodovnik <solomax...@gmail.com<mailto:solomax...@gmail.com>> Envoyé : lundi 30 mars 2020 08:55 À : Openmeetings user-list <user@openmeetings.apache.org<mailto:user@openmeetings.apache.org>> Objet : Re: google oauth2 error I believe you need to check `openmeetings.log` instead of `access log` (share with care, might contain sensitive info) On Mon, 30 Mar 2020 at 15:51, Ruben ALLITTEH <krallit...@outlook.fr<mailto:krallit...@outlook.fr>> wrote: openmeetings access log when I tried to connect with google [30/Mar/2020:08:31:53 +0000] "GET /openmeetings/?2-1.0-main~container-main-ws~panel&_=1585556656659 HTTP/1.1" 200 254 [30/Mar/2020:08:32:21 +0000] "POST /openmeetings/wicket/bookmarkable/org.apache.openmeetings.web.pages.auth.SignInPage?5-1.-signin-signin&code=4/yAHgY9d6rq0pQglpTuTnolJVRiwPL7k2WVsASikk3omcolBKbQqS4lH2U6HmRGGOsrMLs1YsBYUR1d4GakgBMXk&scope=email+profile+https://www.googleapis.com/auth/userinfo.email+https://www.googleapis.com/auth/userinfo.profile+openid&authuser=0&prompt=none&oauthid=2 HTTP/1.1" 302 - [30/Mar/2020:08:32:21 +0000] "GET /openmeetings/oauth/2?code=4/yAHRB1V3MhQcAL-_SQNz8P84Txo7Qq8bWZit0YQbDljbqGLohW8xO_VFK9JZ8_IhuceRYy3JOqxlKKO0Kx0HEtM&scope=email+profile+https://www.googleapis.com/auth/userinfo.email+https://www.googleapis.com/auth/userinfo.profile+openid&authuser=0&prompt=none HTTP/1.1" 200 18243 [30/Mar/2020:08:32:22 +0000] "GET /openmeetings/css/custom.css HTTP/1.1" 304 - [30/Mar/2020:08:32:22 +0000] "GET /openmeetings/css/theme_om/jquery-ui.min.css HTTP/1.1" 200 31071 [30/Mar/2020:08:32:22 +0000] "GET /openmeetings/css/theme.min.css HTTP/1.1" 200 45367 [30/Mar/2020:08:32:22 +0000] "GET /openmeetings/wicket/resource/com.googlecode.wicket.kendo.ui.resource.KendoUIJavaScriptResourceReference/kendo.ui.core.min.js.map HTTP/1.1" 304 - [30/Mar/2020:08:32:22 +0000] "GET /openmeetings/wicket/bookmarkable/org.apache.openmeetings.web.pages.auth.SignInPage?6--forget-form-captcha-captcha&code=4/yAHRB1V3MhQcAL-_SQNz8P84Txo7Qq8bWZit0YQbDljbqGLohW8xO_VFK9JZ8_IhuceRYy3JOqxlKKO0Kx0HEtM&scope=email+profile+https://www.googleapis.com/auth/userinfo.email+https://www.googleapis.com/auth/userinfo.profile+openid&authuser=0&prompt=none&oauthid=2 HTTP/1.1" 200 28265 [30/Mar/2020:08:32:22 +0000] "GET /openmeetings/css/images/logo.png HTTP/1.1" 304 - [30/Mar/2020:08:32:22 +0000] "GET /openmeetings/css/theme_om/images/ui-icons_3d80b3_256x240.png HTTP/1.1" 304 - [30/Mar/2020:08:32:23 +0000] "GET /openmeetings/wicket/resource/com.googlecode.wicket.kendo.ui.theme.Initializer/kendo.default.mobile.min.css.map HTTP/1.1" 304 - [30/Mar/2020:08:32:23 +0000] "GET /openmeetings/wicket/bookmarkable/org.apache.openmeetings.web.pages.auth.SignInPage?6-1.0-&code=4/yAHRB1V3MhQcAL-_SQNz8P84Txo7Qq8bWZit0YQbDljbqGLohW8xO_VFK9JZ8_IhuceRYy3JOqxlKKO0Kx0HEtM&scope=email+profile+https://www.googleapis.com/auth/userinfo.email+https://www.googleapis.com/auth/userinfo.profile+openid&authuser=0&prompt=none&oauthid=2&code%3D4=yAHRB1V3MhQcAL-_SQNz8P84Txo7Qq8bWZit0YQbDljbqGLohW8xO_VFK9JZ8_IhuceRYy3JOqxlKKO0Kx0HEtM&scope%3Demail%2Bprofile%2Bhttps%3A=%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email%2Bhttps%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.profile%2Bopenid&authuser%3D0=&prompt%3Dnone=&_=1585557141478 HTTP/1.1" 200 80 [30/Mar/2020:08:32:23 +0000] "GET /openmeetings/wicket/bookmarkable/org.apache.openmeetings.web.pages.auth.SignInPage?6-1.0-signin&code=4/yAHRB1V3MhQcAL-_SQNz8P84Txo7Qq8bWZit0YQbDljbqGLohW8xO_VFK9JZ8_IhuceRYy3JOqxlKKO0Kx0HEtM&scope=email+profile+https://www.googleapis.com/auth/userinfo.email+https://www.googleapis.com/auth/userinfo.profile+openid&authuser=0&prompt=none&oauthid=2&navigatorAppName=Netscape&navigatorAppVersion=5.0%20(Windows)&navigatorAppCodeName=Mozilla&navigatorCookieEnabled=true&navigatorJavaEnabled=false&navigatorLanguage=fr&navigatorPlatform=Win32&navigatorUserAgent=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A74.0)%20Gecko%2F20100101%20Firefox%2F74.0&screenWidth=1536&screenHeight=864&screenColorDepth=24&utcOffset=0&utcDSTOffset=0&browserWidth=1536&browserHeight=539&hostname=media.trstech.net&codebase=https%3A%2F%2Fmedia.trstech.net%3A5443%2Fopenmeetings%2Foauth%2F2&settings=%5Bobject%20Object%5D&_=1585557141479 HTTP/1.1" 200 80 [30/Mar/2020:08:32:23 +0000] "GET /openmeetings/?2-1.0-main~container-main-ws~panel&_=1585556656660 HTTP/1.1" 200 254 Cordialement, Ruben ALLITTEH ________________________________ De : Maxim Solodovnik <solomax...@gmail.com<mailto:solomax...@gmail.com>> Envoyé : dimanche 29 mars 2020 00:18 À : Openmeetings user-list <user@openmeetings.apache.org<mailto:user@openmeetings.apache.org>> Objet : Re: google oauth2 error Hello, Google OAuth works on demo https://om.alteametasoft.com:8443/next/ Can you check openmeetings.log? On Sat, 28 Mar 2020 at 21:57, Ruben ALLITTEH <krallit...@outlook.fr<mailto:krallit...@outlook.fr>> wrote: Hello ! I’m trying to configure oauth2 google for openmeetings 5.0.0-M2 I have activated ID client oauth2 with client ID and secret. However authentication don’t working, once you are authenticated with google oauth2, openmeetings redirect to the sign-in page My current configuration Name : Google Client_id : ooooooooooooooooooooooooooo Client_secret : **************** Redirect_URI : https://media.trstech.net:5443/openmeetings/oauth/2 Request Key URL : https://accounts.google.com/o/oauth2/auth?redirect_uri={$redirect_uri}&response_type=code&client_id={$client_id}&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.profile<https://accounts.google.com/o/oauth2/auth?redirect_uri=%7b$redirect_uri%7d&response_type=code&client_id=%7b$client_id%7d&scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email+https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.profile> Request token URL : https://oauth2.googleapis.com/tokeninfo?id_token={$code}&client_id={$client_id}&client_secret={$client_secret}&redirect_uri={$redirect_uri}&grant_type=authorization_code<https://oauth2.googleapis.com/tokeninfo?id_token=%7b$code%7d&client_id=%7b$client_id%7d&client_secret=%7b$client_secret%7d&redirect_uri=%7b$redirect_uri%7d&grant_type=authorization_code> Request token attributes : code={$code}&client_id={$client_id}&client_secret={$client_secret}&redirect_uri={$redirect_uri}&grant_type=authorization_code Request info URL : https://www.googleapis.com/auth/userinfo?access_token={$access_token}<https://www.googleapis.com/auth/userinfo?access_token=%7b$access_token%7d> Have anyone running google oauth2 with OM 5.0.0-M2 ? -- WBR Maxim aka solomax -- WBR Maxim aka solomax -- WBR Maxim aka solomax -- WBR Maxim aka solomax -- WBR Maxim aka solomax -- WBR Maxim aka solomax
