IBM Verify

IBM Verify

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

  • 1.  ISAM AAC OIDC errors in message.log

    Posted Mon January 13, 2020 05:41 AM
    Hello,

    our ISAM 907 AAC message.log is full of the following errors.

    Does anybody have an idea what could be the root cause? Is it coming from a custom java script (e.g. we use some Infomaps) or is it coming from OIDC token processing?

    [1/13/20 10:09:26:166 CET] 0046396c com.tivoli.am.fim.fedmgr2.page.PageImpl E org.mozilla.javascript.EvaluatorException: illegal character: � (unnamed script#2)
    at org.mozilla.javascript.DefaultErrorReporter.runtimeError(DefaultErrorReporter.java:77)
    at org.mozilla.javascript.DefaultErrorReporter.error(DefaultErrorReporter.java:64)
    at org.mozilla.javascript.Parser.addError(Parser.java:260)
    at org.mozilla.javascript.Parser.addError(Parser.java:242)
    at org.mozilla.javascript.TokenStream.getToken(TokenStream.java:1038)
    at org.mozilla.javascript.Parser.peekToken(Parser.java:418)
    at org.mozilla.javascript.Parser.parse(Parser.java:632)
    at org.mozilla.javascript.Parser.parse(Parser.java:583)
    at org.mozilla.javascript.Context.compileImpl(Context.java:2530)
    at org.mozilla.javascript.Context.compileString(Context.java:1515)
    at org.mozilla.javascript.Context.compileString(Context.java:1504)
    at com.ibm.security.access.javascript.JSCode.<init>(JSCode.java:83)
    at com.ibm.security.access.javascript.SandboxedJSCode.<init>(SandboxedJSCode.java:38)
    at com.ibm.security.access.javascript.SandboxedJSCode.<init>(SandboxedJSCode.java:34)
    at com.tivoli.am.fim.fedmgr2.page.TemplateJSExpand$TemplateJSExpandSandboxedJSCode.<init>(TemplateJSExpand.java:211)
    at com.tivoli.am.fim.fedmgr2.page.TemplateJSExpand.<init>(TemplateJSExpand.java:95)
    at com.tivoli.am.fim.fedmgr2.page.TemplateJSExpand.<init>(TemplateJSExpand.java:85)
    at com.tivoli.am.fim.fedmgr2.page.PageImpl.ejsEngine(PageImpl.java:413)
    at com.tivoli.am.fim.fedmgr2.page.PageImpl.writeTo(PageImpl.java:464)
    at com.tivoli.am.fim.pages.handlers.StaticPageHandler.actionGet(StaticPageHandler.java:76)
    at com.tivoli.am.fim.pages.StaticPageDelegateProtocol.processRequest(StaticPageDelegateProtocol.java:101)
    at com.tivoli.am.fim.fedmgr2.proper.FederationManager.doInitialRequestOnDelegate(FederationManager.java:471)
    at com.tivoli.am.fim.fedmgr2.proper.FederationManager.finishProcessingWithDelegateId(FederationManager.java:311)
    at com.tivoli.am.fim.fedmgr2.proper.FederationManager.processRequest(FederationManager.java:164)
    at com.tivoli.am.fim.fedmgr2.servlet.SSOPSServletBase.doRequest(SSOPSServletBase.java:129)
    at com.tivoli.am.fim.fedmgr2.servlet.SPSCommandDispatcher.invoke(SPSCommandDispatcher.java:390)
    at com.tivoli.am.fim.war.runtime.liberty.LibertyRuntimeServlet.doGet(LibertyRuntimeServlet.java:56)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:686)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:791)
    at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1255)
    at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:743)
    at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:440)
    at com.ibm.ws.webcontainer.filter.WebAppFilterChain.invokeTarget(WebAppFilterChain.java:182)
    at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:78)
    at com.ibm.ws.webcontainer.filter.WebAppFilterManager.doFilter(WebAppFilterManager.java:996)
    at com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters(WebAppFilterManager.java:1134)
    at com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters(WebAppFilterManager.java:1005)
    at com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:75)
    at com.ibm.ws.webcontainer40.servlet.CacheServletWrapper40.handleRequest(CacheServletWrapper40.java:83)
    at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:927)
    at com.ibm.ws.webcontainer.osgi.DynamicVirtualHost$2.run(DynamicVirtualHost.java:279)
    at com.ibm.ws.http.dispatcher.internal.channel.HttpDispatcherLink$TaskWrapper.run(HttpDispatcherLink.java:1011)
    at com.ibm.ws.http.dispatcher.internal.channel.HttpDispatcherLink.wrapHandlerAndExecute(HttpDispatcherLink.java:414)
    at com.ibm.ws.http.dispatcher.internal.channel.HttpDispatcherLink.ready(HttpDispatcherLink.java:373)
    at com.ibm.ws.http.channel.internal.inbound.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:532)
    at com.ibm.ws.http.channel.internal.inbound.HttpInboundLink.handleNewRequest(HttpInboundLink.java:466)
    at com.ibm.ws.http.channel.internal.inbound.HttpInboundLink.processRequest(HttpInboundLink.java:331)
    at com.ibm.ws.http.channel.internal.inbound.HttpInboundLink.ready(HttpInboundLink.java:302)
    at com.ibm.ws.channel.ssl.internal.SSLConnectionLink.determineNextChannel(SSLConnectionLink.java:1034)
    at com.ibm.ws.channel.ssl.internal.SSLConnectionLink$MyReadCompletedCallback.complete(SSLConnectionLink.java:624)
    at com.ibm.ws.channel.ssl.internal.SSLReadServiceContext$SSLReadCompletedCallback.complete(SSLReadServiceContext.java:1803)
    at com.ibm.ws.tcpchannel.internal.WorkQueueManager.requestComplete(WorkQueueManager.java:501)
    at com.ibm.ws.tcpchannel.internal.WorkQueueManager.attemptIO(WorkQueueManager.java:571)
    at com.ibm.ws.tcpchannel.internal.WorkQueueManager.workerRun(WorkQueueManager.java:926)
    at com.ibm.ws.tcpchannel.internal.WorkQueueManager$Worker.run(WorkQueueManager.java:1015)
    at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1160)
    at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:635)
    at java.lang.Thread.run(Thread.java:812)

    We cannot find another log entry to this reference  (0046396c)

    ------------------------------
    Jürgen Hitt
    ------------------------------


  • 2.  RE: ISAM AAC OIDC errors in message.log

    Posted Wed January 15, 2020 01:56 AM
    Jürgen,

    I've seen similar messages ( com.tivoli.am.fim.fedmgr2.page.PageImpl E org.mozilla.javascript.EvaluatorException: illegal character: � (unnamed script#2)) in combination with .woff files not interpreted by AAC.
    Based on the error stack, I suspect you might have some customized template files, with template scripting? (https://www.ibm.com/support/knowledgecenter/en/SSPREK_9.0.6/com.ibm.isam.doc/config/reference/template_file_scripting_aac.html)

    Are these pages loading fine?  (do you get any errors for loading font files - possibly browser plugin / developer tools can help identify this)


    ------------------------------
    HANS VANDEWEGHE
    ------------------------------

    Original Message


  • 3.  RE: ISAM AAC OIDC errors in message.log

    Posted Tue January 28, 2020 05:11 AM
    Hello Hans,

    this was a very good hint!

    In fact we have a long running Ticket that is about WOFF Files on AAC (no solution so far). I was not aware that the error messages relates to the issues in this Ticket.

    We now solved this by removing the WOFF files from AAC and putting them on Reverse Proxy using a local junction.

    Regards,
    Juergen

    ------------------------------
    Jürgen Hitt
    ------------------------------

    Original Message


Related Content