Help

Questions & Answers

SOLVED
Jump to solution
mcheungspeedo
I'm new here
‎07-20-2011 03:32 AM

Unable to login onto FS v4.1

Jump to solution

Hi developers,

One of our markets in Spain are trying to use FS but they keep on encountering login error messages.

We have got the admin to use Java 1.6.0 after we received feedback saying:

 

"The java webstart application of the java version 1.6.0_14 to 1.6.0_17

do have a bug, which makes it incompatible with FirstSpirit. This bug

has been fixed within the java JRE version 1.6.0_18.

The exception you get with these java webstart versions begins with:

de.espirit.firstspirit.access.AccessIOException: Connection

problem:Authorisation error - java.lang.SecurityException:Not trusted

generally FirstSpirit 4 should be used with a java JRE version 1.6.0"

After downgrading to 1.6.0 they still can not log in.

We have been going round in circles lately trying to figure out why they can not access the server.

Attached are some screen shots of the problem.

Before downgrading to Java 1.6.0, they were are working with Java 6 update 26 and trying to access with Firefox 5.0 and Internet Explorer 7.0.5730.13 and 8.7600.

I have logged into their account using their login details here in the UK and we can login fine but for some reason they cannot.

Can anyone help?

Labels
Preview file
322 KB
0 Kudos
1 Solution

Accepted Solutions
andre
I'm new here
‎07-20-2011 05:34 AM

Jump to solution

if you are able to login this seems to be (spain)-local java installation problem (e.g. old javaws libs). you should be able to login with 1.6.0_23.

The fix will be available in 1.6.0_27

for reference see: https://community.e-spirit.com/message/4656#4656

"Your report has been assigned an internal review ID of 2005123, which is NOT visible on the Sun Developer Network (SDN)."

further Information:

http://www.oracle.com/technetwork/topics/security/javacpufeb2011-304611.html

http://www.zerodayinitiative.com/advisories/ZDI-11-084/

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4452

-- snipp --

status:      Waiting

Category:    javawebstart

Subcategory: jnlp_api

Company:     e-spirit AG

release:     6u24

hardware:    x86

OSversion:   windows_7, Linux, Mac Os X

priority:    4

Synopsis:    javax.jnlp.BasicService.showDocument() throws SecurityException for trusted app

Description:

  FULL PRODUCT VERSION :

>java -version

java version "1.6.0_24"

Java(TM) SE Runtime Environment (build 1.6.0_24-b07)

Java HotSpot(TM) Client VM (build 19.1-b02, mixed mode, sharing)

-- snipp --

View solution in original post

0 Kudos
10 Replies
andre
I'm new here
‎07-20-2011 05:34 AM

Jump to solution

if you are able to login this seems to be (spain)-local java installation problem (e.g. old javaws libs). you should be able to login with 1.6.0_23.

The fix will be available in 1.6.0_27

for reference see: https://community.e-spirit.com/message/4656#4656

"Your report has been assigned an internal review ID of 2005123, which is NOT visible on the Sun Developer Network (SDN)."

further Information:

http://www.oracle.com/technetwork/topics/security/javacpufeb2011-304611.html

http://www.zerodayinitiative.com/advisories/ZDI-11-084/

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4452

-- snipp --

status:      Waiting

Category:    javawebstart

Subcategory: jnlp_api

Company:     e-spirit AG

release:     6u24

hardware:    x86

OSversion:   windows_7, Linux, Mac Os X

priority:    4

Synopsis:    javax.jnlp.BasicService.showDocument() throws SecurityException for trusted app

Description:

  FULL PRODUCT VERSION :

>java -version

java version "1.6.0_24"

Java(TM) SE Runtime Environment (build 1.6.0_24-b07)

Java HotSpot(TM) Client VM (build 19.1-b02, mixed mode, sharing)

-- snipp --

0 Kudos
Peter_Jodeleit
Crownpeak employee
Crownpeak employee
‎07-20-2011 07:48 AM

Jump to solution

The full version number of Java 6u26 is 1.6.0_26, so i don't understand to which version you "downgraded"? And 6u26 is newer than 6u17 which is mentioned in your quoted text.

Could you provide the complete trace (as text)? It should appear on the console.

Peter
0 Kudos
mcheungspeedo
I'm new here
In response to Peter_Jodeleit
‎07-20-2011 08:37 AM

Jump to solution

Hi Peter,


Thanks for the email.

The original Java version was 1.6.0_26 but we were told to downgrade them to 1.6.0 to help with diagnosis and as a resolution to solving the problem, which it obviously has not.

Based on the above response, I have told Spain to install version 1.6.0_23 and we'll see if this works.

Thanks Peter.

0 Kudos
Peter_Jodeleit
Crownpeak employee
Crownpeak employee
In response to mcheungspeedo
‎07-20-2011 08:53 AM

Jump to solution

If not please include a complete stack trace of the error message. It could be a simple network configuration problem or a firewall is blocking binary communication-over-http.

I think the downgade to 1.6.0 was a misunderstanding - a human communication error Smiley Wink

Peter
0 Kudos
mcheungspeedo
I'm new here
In response to Peter_Jodeleit
‎07-20-2011 10:22 AM

Jump to solution

Hi Peter,

Thank you for the reply.

How do you go about tracing in Java for FirstSpirit?

I know how to trace in MS-DOS Smiley Happy

0 Kudos
Peter_Jodeleit
Crownpeak employee
Crownpeak employee
In response to mcheungspeedo
‎07-21-2011 12:19 AM

Jump to solution

WebStart allows you to run with a console window for logging output. How to find the WebStart settings is dependent on your OS. You could google for it or ask our helpdesk which will guide you.

In case of an error a so called "stack trace" is logged into this console.

Peter
0 Kudos
mcheungspeedo
I'm new here
In response to Peter_Jodeleit
‎08-05-2011 05:59 AM

Jump to solution

Hi Peter,

Spain have updated their Java version to 1.6.0_23 and this is still not working.


Spain have said:

"I've uninstalled the Java version I had before and installed this one you gave me, but it still doesn't work.

The same error as always.

May be is the user and password?"

It definitely is not the username and password as I can log in from the UK.

Can you suggest anything else why Spain can not load the FirstSpirit Admin?

It's driving them mad and us.

0 Kudos
andre
I'm new here
In response to mcheungspeedo
‎08-05-2011 06:06 AM

Jump to solution

please include the full error stacktrace.

> WebStart allows you to run with a console window for logging output. How to find the WebStart settings is dependent on your > OS. You could google for it or ask our helpdesk which will guide you.

> In case of an error a so called "stack trace" is logged into this console.

1. exec jcontrol

2. select the advanced tab

3. java console

4. [X] Show console

take a look at the fs-server.log (any error, did you see any connection attempts?) and/or include this log, too

0 Kudos
mcheungspeedo
I'm new here
In response to andre
‎08-05-2011 08:13 AM

Jump to solution

Hi Andre,

Here is the stack trace:

Java Web Start 1.6.0_23

Usar versión JRE 1.6.0_23-b05 Java HotSpot(TM) 64-Bit Server VM

Directorio local del usuario = C:\Users\raquel

----------------------------------------------------

c:   borrar ventana de consola

f:   finalizar objetos en la cola de finalización

g:   liberación de recursos

h:   presentar este mensaje de ayuda

m:   imprimir sintaxis de memoria

o:   activar registro

p:   recargar configuración de proxy

q:   ocultar consola

r:   recargar configuración de norma

s:   volcar propiedades del sistema y de despliegue

t:   volcar lista de subprocesos

v:   volcar pila de subprocesos

0-5: establecer nivel de rastreo en <n>

----------------------------------------------------

Could not launch from cache. Will try online mode. [Some of required resources are not cached.]

log4j:WARN No appenders could be found for logger (de.espirit.firstspirit.client.common.locale.CMSResourceBundle).

log4j:WARN Please initialize the log4j system properly.

Java version 1.6.0_23

VM Sun Microsystems Inc. 19.0-b09

INFO  05.08.2011 14:36:36.998 (de.espirit.firstspirit.client.CMSExplorer): CMSExplorer (Version 4.1.38) is running...

INFO  05.08.2011 14:36:36.998 (de.espirit.firstspirit.client.CMSExplorer):

ERROR 05.08.2011 14:36:41.782 (de.espirit.firstspirit.access.ConnectionManager): ConnectionImpl closed -  de.espirit.firstspirit.common.IOError: Could not read remote objects! Method EventManager#addEventQueue, [9, -1416581851, [Ljava.lang.Object;@53371566] - java.io.IOException: Unexpected HTTP state: (501) Not Implemented, Method 4POST is not defined in RFC 2068 and is not supported by the Servlet API - http://firstspirit.mywebsite.com:8000/do.ClientIOServlet

ERROR 05.08.2011 14:36:41.783 (de.espirit.firstspirit.common.login.Login): cannot connect to firstspirit.mywebsite.com:8000, mode=HTTP, servletZone/

de.espirit.firstspirit.common.IOError: Could not read remote objects! Method EventManager#addEventQueue, [9, -1416581851, [Ljava.lang.Object;@53371566] - java.io.IOException: Unexpected HTTP state: (501) Not Implemented, Method 4POST is not defined in RFC 2068 and is not supported by the Servlet API - http://firstspirit.mywebsite.com:8000/do.ClientIOServlet

            at de.espirit.firstspirit.client.io.HttpServerCaller.call(HttpServerCaller.java:318)

            at de.espirit.firstspirit.client.io.HttpServerCaller.call(HttpServerCaller.java:30)

            at de.espirit.firstspirit.client.io.ServerCaller.call(ServerCaller.java:183)

            at de.espirit.firstspirit.client.io.ServerCaller.doManagerCall(ServerCaller.java:329)mywebsite.com:8000

            at de.espirit.firstspirit.client.io.ServerCaller.callManager(ServerCaller.java:309)

            at de.espirit.firstspirit.io.DefaultClientHandler.callManager(DefaultClientHandler.java:49)

            at de.espirit.firstspirit.client.io.RemoteManagerCaller.invoke(RemoteManagerCaller.java:52)

            at $Proxy6.addEventQueue(Unknown Source)

            at de.espirit.firstspirit.server.event.EventManagerProxy.addEventListener(EventManagerProxy.java:98)

            at de.espirit.firstspirit.server.event.EventManagerProxy.addCollectableEventListener(EventManagerProxy.java:115)

            at de.espirit.firstspirit.client.io.ConnectionImpl.connect(ConnectionImpl.java:211)

            at de.espirit.firstspirit.common.login.Login.login(Login.java:132)

            at de.espirit.firstspirit.common.login.Login.login(Login.java:101)

            at de.espirit.firstspirit.client.CMSExplorer.login(CMSExplorer.java:2669)

            at de.espirit.firstspirit.client.CMSExplorer.main(CMSExplorer.java:3532)

            at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

            at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)

            at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)

            at java.lang.reflect.Method.invoke(Unknown Source)

            at com.sun.javaws.Launcher.executeApplication(Unknown Source)

            at com.sun.javaws.Launcher.executeMainClass(Unknown Source)

            at com.sun.javaws.Launcher.doLaunchApp(Unknown Source)

            at com.sun.javaws.Launcher.run(Unknown Source)

            at java.lang.Thread.run(Unknown Source)

Caused by: java.io.IOException: Unexpected HTTP state: (501) Not Implemented, Method 4POST is not defined in RFC 2068 and is not supported by the Servlet API - http://firstspirit.mywebsite.com:8000/do.ClientIOServlet

            at de.espirit.firstspirit.client.io.HttpClient.checkHttpState(HttpClient.java:211)

            at de.espirit.firstspirit.client.io.HttpClient.executeMethod(HttpClient.java:168)

            at de.espirit.firstspirit.client.io.HttpServerChannel.callServer(HttpServerChannel.java:77)

            at de.espirit.firstspirit.client.io.HttpServerChannel.writeAndRead(HttpServerChannel.java:57)

            at de.espirit.firstspirit.client.io.HttpServerCaller.call(HttpServerCaller.java:255)

            ... 23 more

END.

Thanks.

0 Kudos