01-03-2007 9:14 AM
Hello,
I use NW2004s in combination with Apache SSL and GetAccess authorization. After successful login, I get the standard SAP user/password login box whenever calling user administration (based on webdynpro). I configured a login module stack consisting of
EvaluateTicketLoginModule
HeaderVariableLoginModule
BasicPasswordLoginModule
CreateTicketLoginModule
Here is the HTTP trace:
Here is my authscheme.xml:
<authscheme name="header">
<authentication-template>
header
</authentication-template>
<priority>5</priority>
<frontendtype>2</frontendtype>
<frontendtarget>com.sap.portal.runtime.logon.header</frontendtarget>
</authscheme>
<!-- Reserved 'anonymous' authscheme added for being in the list of authschemes -->
<authscheme name="anonymous">
<priority>-1</priority>
</authscheme>
<authscheme-ref name="default">
<authscheme>header</authscheme>
</authscheme-ref>
<authscheme-ref name="UserAdminScheme">
<authscheme>header</authscheme>
</authscheme-ref>
Thanks for your help,
Elmar
01-04-2007 3:20 PM
Here is some trace output possibly helpful for analysis:
#1.5#003005CC3CD700750000005300005ED000042638598351E5#1167923368670#com.sap.security.core.server.jaas#sap.com/tcwddispwda#com.sap.security.core.server.jaas.abort()#Guest#2####929cca019c0511dba9c6003005cc3cd7#SAPEngine_Application_Thread[impl:3]_13##0#0#Path##Plain###Entering method#
#1.5#003005CC3CD700750000005400005ED00004263859835219#1167923368670#com.sap.security.core.server.jaas#sap.com/tcwddispwda#com.sap.security.core.server.jaas#Guest#2####929cca019c0511dba9c6003005cc3cd7#SAPEngine_Application_Thread[impl:3]_13##0#0#Debug##Plain###Internal Login Module data has been reset.#
#1.5#003005CC3CD700750000005500005ED0000426385983524D#1167923368670#com.sap.security.core.server.jaas#sap.com/tcwddispwda#com.sap.security.core.server.jaas#Guest#2####929cca019c0511dba9c6003005cc3cd7#SAPEngine_Application_Thread[impl:3]_13##0#0#Path##Java###Exiting method with #1#true# #1.5#003005CC3CD700750000005600005ED00004263859835295#1167923368670#com.sap.security.core.server.jaas#sap.com/tcwddispwda#com.sap.security.core.server.jaas.abort()#Guest#2####929cca019c0511dba9c6003005cc3cd7#SAPEngine_Application_Thread[impl:3]_13##0#0#Path##Plain###Entering method# #1.5#003005CC3CD700750000005700005ED000042638598352C9#1167923368670#com.sap.security.core.server.jaas#sap.com/tcwddispwda#com.sap.security.core.server.jaas#Guest#2####929cca019c0511dba9c6003005cc3cd7#SAPEngine_Application_Thread[impl:3]_13##0#0#Path##Java###Exiting method with #1#true#
#1.5#003005CC3CD700750000005900005ED00004263859835353#1167923368670#com.sap.engine.services.security.authentication.logincontext#sap.com/tcwddispwda#com.sap.engine.services.security.authentication.logincontext#Guest#2####929cca019c0511dba9c6003005cc3cd7#SAPEngine_Application_Thread[impl:3]_13##0#0#Info#1#/System/Security/Authentication#Plain###LOGIN.FAILED
Cannot authenticate the user.#
#1.5#003005CC3CD7005F0000002700005ED00004263859887AB0#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas.initialize()#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Entering method with ()#1#Betreff: , javax.security.auth.login.LoginContext$SecureCallbackHandler@13f8cfc# #1.5#003005CC3CD7005F0000002800005ED00004263859887B2D#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Java###The options of EvaluateTicketLoginModule in [] authentication stack are: [].#2#ticket#{ume.configuration.active=true}# #1.5#003005CC3CD7005F0000002900005ED00004263859887BB7#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas.constructor(Map, Properties, boolean)#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Entering method with ()#1#{System-ID=J2S, sap.security.auth.configuration.name=ticket, sap.security.auth.context.object=Security Context : session (2) for Guest created at Thu Jan 04 15:52:06 CET 2007}, <null># #1.5#003005CC3CD7005F0000002A00005ED00004263859887BFD#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Info##Java###got []: []#2#ume.configuration.active#true#
#1.5#003005CC3CD7005F0000002B00005ED00004263859887C4E#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Exiting method with #1#[Ljava.lang.Object;@1412d73# #1.5#003005CC3CD7005F0000002C00005ED00004263859887C90#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas.getMergedOptions()#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Plain###Entering method# #1.5#003005CC3CD7005F0000002D00005ED00004263859887CC8#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Exiting method with #1#[Ljava.lang.Object;@ef455#
#1.5#003005CC3CD7005F0000002E00005ED00004263859887D10#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Java###The options of EvaluateTicketLoginModule in [] authentication stack after merge with UME properties are: [].#2#ticket#{ume.configuration.active=true, system=J2S, client=000, j_authscheme=basicauthentication, inclcert=0, ume.logon.httponlycookie=TRUE, alias=SAPLogonTicketKeypair, ume.logon.security.enforce_secure_cookie=FALSE, validity=8, keystore=TicketKeystore, password=}# #1.5#003005CC3CD7005F0000002F00005ED00004263859887D6B#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Java###The options of EvaluateTicketLoginModule in [] authentication stack after adding the default values are: [].#2#ticket#{ume.configuration.active=true, system=J2S, client=000, j_authscheme=basicauthentication, inclcert=0, ume.logon.httponlycookie=TRUE, alias=SAPLogonTicketKeypair, sap.security.auth.configuration.name=ticket, ume.logon.security.enforce_secure_cookie=FALSE, validity=8, keystore=TicketKeystore, password=}# #1.5#003005CC3CD7005F0000003000005ED00004263859887DB7#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Plain###Exiting method# #1.5#003005CC3CD7005F0000003100005ED00004263859887E39#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas.initialize()#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Entering method with ()#1#Betreff: , javax.security.auth.login.LoginContext$SecureCallbackHandler@13f8cfc, {System-ID=J2S, sap.security.auth.configuration.name=ticket, sap.security.auth.context.object=Security Context : session (2) for Guest created at Thu Jan 04 15:52:06 CET 2007}, {ume.configuration.active=true}# #1.5#003005CC3CD7005F0000003200005ED00004263859887E87#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Java###The options of CreateTicketLoginModule in [] authentication stack are: [].#2#ticket#{ume.configuration.active=true}#
#1.5#003005CC3CD7005F0000003300005ED00004263859887EE7#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas.constructor(Map, Properties, boolean)#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Entering method with ()#1#{System-ID=J2S, sap.security.auth.configuration.name=ticket, sap.security.auth.context.object=Security Context : session (2) for Guest created at Thu Jan 04 15:52:06 CET 2007}, <null># #1.5#003005CC3CD7005F0000003400005ED00004263859887F2B#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Info##Java###got []: []#2#ume.configuration.active#true# #1.5#003005CC3CD7005F0000003500005ED00004263859887F74#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Exiting method with #1#[Ljava.lang.Object;@1cb1e6f# #1.5#003005CC3CD7005F0000003600005ED00004263859887FAC#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas.getMergedOptions()#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Plain###Entering method# #1.5#003005CC3CD7005F0000003700005ED00004263859887FE3#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Exiting method with #1#[Ljava.lang.Object;@3b17aa# #1.5#003005CC3CD7005F0000003800005ED0000426385988802A#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Java###The options of CreateTicketLoginModule in [] authentication stack after merge with UME properties are: [].#2#ticket#{ume.configuration.active=true, system=J2S, client=000, j_authscheme=basicauthentication, inclcert=0, ume.logon.httponlycookie=TRUE, alias=SAPLogonTicketKeypair, ume.logon.security.enforce_secure_cookie=FALSE, validity=8, keystore=TicketKeystore, password=}#
#1.5#003005CC3CD7005F0000003900005ED00004263859888085#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Java###The options of CreateTicketLoginModule in [] authentication stack after adding the default values are: [].#2#ticket#{ume.configuration.active=true, system=J2S, client=000, j_authscheme=basicauthentication, inclcert=0, ume.logon.httponlycookie=TRUE, alias=SAPLogonTicketKeypair, sap.security.auth.configuration.name=ticket, ume.logon.security.enforce_secure_cookie=FALSE, validity=8, keystore=TicketKeystore, password=}# #1.5#003005CC3CD7005F0000003A00005ED000042638598880D0#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Plain###Exiting method# #1.5#003005CC3CD7005F0000003B00005ED0000426385988822C#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas.login()#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Plain###Entering method# #1.5#003005CC3CD7005F0000003C00005ED0000426385988838C#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Info##Java###SAP Logon Ticket received. Authentication stack: [].#1#ticket#
#1.5#003005CC3CD7005F0000003D00005ED0000426385988840D#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Java###Ticket:
[]. Authentication stack: [].#2#Ticket [initialized] Ticket Version = 2 Ticket Codepage = 1100 (Encoding=ISO8859_1) User = 09739198 Issuing System ID = J2S Issuing System Client = 000 Creation Time = 200701041506 Valid Time = 8 h 0 min Valid from Thu Jan 04 16:06:00 CET 2007 until Fri Jan 05 00:06:00 CET 2007 Signature (length=244 bytes) InfoUnit 32, length=15 InfoUnit 136, length=6 InfoUnit 1, length=8 InfoUnit 2, length=3 InfoUnit 3, length=3 InfoUnit 4, length=12 InfoUnit 5, length=4 InfoUnit 10, length=8 InfoUnit 255, length=244 #ticket# #1.5#003005CC3CD7005F0000003E00005ED00004263859888492#1167923368998#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Plain###Authentication succeeded.# #1.5#003005CC3CD7005F0000003F00005ED000042638598884CC#1167923369014#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Java###User [] found in cache. Authentication stack: [].#2#09739198#ticket# #1.5#003005CC3CD7005F0000004000005ED0000426385988CC57#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Info##Java###Ticket contains authscheme []. Authentication stack: [].#2#header#ticket#
#1.5#003005CC3CD7005F0000004100005ED0000426385988CCC7#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Info##Java###authscheme not sufficient: [] < []. Authntication stack: []. Authenticated user: []#4#header#basicauthentication#ticket#09739198# #1.5#003005CC3CD7005F0000004200005ED0000426385988D061#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Warning##Java###Authentication stack: [].
[EXCEPTION]
#2#ticket#com.sap.security.core.server.jaas.DetailedLoginException: authscheme not sufficient: header<basicauthentication at com.sap.security.core.server.jaas.EvaluateTicketLoginModule.verifyAuthschemesOk(EvaluateTicketLoginModule.java:447) at com.sap.security.core.server.jaas.EvaluateTicketLoginModule.login(EvaluateTicketLoginModule.java:312) at com.sap.engine.services.security.login.ModulesProcessAction.run(ModulesProcessAction.java:69) at java.security.AccessController.doPrivileged(Native Method) at com.sap.engine.services.security.login.FastLoginContext.login(FastLoginContext.java:166) at com.sap.engine.system.SystemLoginModule.login(SystemLoginModule.java:90) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:324) at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675) at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129) at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610) at java.security.AccessController.doPrivileged(Native Method) at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607) at javax.security.auth.login.LoginContext.login(LoginContext.java:534) at com.sap.security.core.logon.imp.SAPJ2EEAuthenticator.getLoggedInUser(SAPJ2EEAuthenticator.java:131) at com.sap.security.core.sapmimp.logon.SAPMLogonLogic.executeRequest(SAPMLogonLogic.java:278) at com.sap.security.core.sapmimp.logon.SAPMLogonServlet.doPost(SAPMLogonServlet.java:59) at com.sap.security.core.sapmimp.logon.SAPMLogonServlet.doGet(SAPMLogonServlet.java:77) at javax.servlet.http.HttpServlet.service(HttpServlet.java:740) at javax.servlet.http.HttpServlet.service(HttpServlet.java:853) at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390) at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264) at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347) at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325) at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887) at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241) at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92) at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148) at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33) at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41) at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37) at java.security.AccessController.doPrivileged(Native Method) at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100) at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170) # #1.5#003005CC3CD7005F0000004300005ED0000426385988D16B#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Exiting method with #1#<null># #1.5#003005CC3CD7005F0000004400005ED0000426385988D1AE#1167923369029#com.sap.engine.services.security#sap.com/com.sap.security.core.admin#com.sap.engine.services.security#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Java###Login module from authentication stack does not authenticate the caller.#2#com.sap.security.core.server.jaas.EvaluateTicketLoginModule#ticket#
#1.5#003005CC3CD7005F0000004500005ED0000426385988D217#1167923369029#com.sap.engine.services.security#sap.com/com.sap.security.core.admin#com.sap.engine.services.security#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Plain###No user name provided.#
#1.5#003005CC3CD7005F0000004600005ED0000426385988D259#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas.login()#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Plain###Entering method#
#1.5#003005CC3CD7005F0000004700005ED0000426385988D28E#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Info##Plain###No authenticated user found.#
#1.5#003005CC3CD7005F0000004800005ED0000426385988D2C3#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Exiting method with #1#false# #1.5#003005CC3CD7005F0000004900005ED0000426385988D6CA#1167923369029#com.sap.engine.services.security#sap.com/com.sap.security.core.admin#com.sap.engine.services.security#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Exception #1#: Cannot authenticate the user.
java.lang.Exception
at com.sap.exception.BaseExceptionInfo.traceAutomatically(BaseExceptionInfo.java:1141)
at com.sap.exception.BaseExceptionInfo.<init>(BaseExceptionInfo.java:253)
at com.sap.engine.services.security.exceptions.BaseLoginException.<init>(BaseLoginException.java:156)
at com.sap.engine.services.security.login.ModulesProcessAction.run(ModulesProcessAction.java:180)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.services.security.login.FastLoginContext.login(FastLoginContext.java:166)
at com.sap.engine.system.SystemLoginModule.login(SystemLoginModule.java:90)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
at com.sap.security.core.logon.imp.SAPJ2EEAuthenticator.getLoggedInUser(SAPJ2EEAuthenticator.java:131)
at com.sap.security.core.sapmimp.logon.SAPMLogonLogic.executeRequest(SAPMLogonLogic.java:278)
at com.sap.security.core.sapmimp.logon.SAPMLogonServlet.doPost(SAPMLogonServlet.java:59)
at com.sap.security.core.sapmimp.logon.SAPMLogonServlet.doGet(SAPMLogonServlet.java:77)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
Caused by: com.sap.security.core.server.jaas.DetailedLoginException: authscheme not sufficient: header<basicauthentication
at com.sap.engine.services.security.login.ModulesProcessAction.run(ModulesProcessAction.java:177)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.services.security.login.FastLoginContext.login(FastLoginContext.java:166)
at com.sap.engine.system.SystemLoginModule.login(SystemLoginModule.java:90)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
at com.sap.security.core.logon.imp.SAPJ2EEAuthenticator.getLoggedInUser(SAPJ2EEAuthenticator.java:131)
at com.sap.security.core.sapmimp.logon.SAPMLogonLogic.executeRequest(SAPMLogonLogic.java:278)
at com.sap.security.core.sapmimp.logon.SAPMLogonServlet.doPost(SAPMLogonServlet.java:59)
at com.sap.security.core.sapmimp.logon.SAPMLogonServlet.doGet(SAPMLogonServlet.java:77)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
#
#1.5#003005CC3CD7005F0000004A00005ED0000426385988D882#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas.abort()#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Plain###Entering method#
#1.5#003005CC3CD7005F0000004B00005ED0000426385988D8B7#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Debug##Plain###Internal Login Module data has been reset.#
#1.5#003005CC3CD7005F0000004C00005ED0000426385988D8EC#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Exiting method with #1#true# #1.5#003005CC3CD7005F0000004D00005ED0000426385988D934#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas.abort()#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Plain###Entering method# #1.5#003005CC3CD7005F0000004E00005ED0000426385988D969#1167923369029#com.sap.security.core.server.jaas#sap.com/com.sap.security.core.admin#com.sap.security.core.server.jaas#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Path##Java###Exiting method with #1#true#
#1.5#003005CC3CD7005F0000005000005ED0000426385988DA0B#1167923369029#com.sap.engine.services.security.authentication.logincontext#sap.com/com.sap.security.core.admin#com.sap.engine.services.security.authentication.logincontext#Guest#2####92d84c609c0511dbc897003005cc3cd7#SAPEngine_Application_Thread[impl:3]_29##0#0#Info#1#/System/Security/Authentication#Plain###LOGIN.FAILED
Cannot authenticate the user.#
01-05-2007 9:01 AM
Hello,
could solve the problem for my own. I had to insert HeaderVariableLoginModule for component 'ticket".