From jlease at hmc.psu.edu Fri Aug 1 09:49:50 2014 From: jlease at hmc.psu.edu (Lease, Joshua) Date: Fri, 1 Aug 2014 13:49:50 +0000 Subject: [Eagle-i-admins] Request this Resource Feature In-Reply-To: Message-ID: Sophia, I replaced my eagle-i-app.properties and eagle-i-apps-credentials.properties files with the ones you linked (I made some changes to the email config and commented out the data tools centrally curated resources credentials). The request this resource feature still appears. Looking at the code (EIAppsPropertyKeys.java), it looks like the Tributary configuration defaults to https://search.eagle-i.net/tributary. Is there a specific configuration value that I can set to turn the feature off? -Joshua Lease *****E-Mail Confidentiality Notice***** This message (including any attachments) contains information intended for a specific individual(s) and purpose that may be privileged, confidential or otherwise protected from disclosure pursuant to applicable law. Any inappropriate use, distribution or copying of the message is strictly prohibited and may subject you to criminal or civil penalty. If you have received this transmission in error, please reply to the sender indicating this error and delete the transmission from your system immediately. From: , Sophia > Date: Thursday, July 31, 2014 at 6:27 PM To: Josh Lease >, "eagle-i-admins at open.med.harvard.edu" > Subject: Re: [Eagle-i-admins] Request this Resource Feature Hi Joshua, I suspect that you may have the wrong configurations. You shouldn?t be seeing ?Request this Resource? button at all in the institutional search application. I have just audited and updated our sample configurations that should be used for a simple node installation: https://open.med.harvard.edu/svn/eagle-i-dev/apps/trunk/configuration/src/main/resources/examples/node-simple/ These should (95% sure) be all that you need to get up and running for the most common use case. Please let me know if this doesn?t help or if you have further issues. Kind Regards, Sophia ---- Sophia K. Cheng Technical Lead Harvard Catalyst | eagle-i email: sophia?_cheng at hms.harvard.edu skype: sophia.k.cheng web: www. eagle-I.net Harvard Medical School Harvard Catalyst | The Harvard Clinical and Translational Science Center Landmark Center, Suite 504 West 401 Park Drive Boston, MA 02215 From: , Joshua > Date: Monday, July 28, 2014 at 12:22 PM To: eagle-i-admins > Subject: [Eagle-i-admins] Request this Resource Feature Admins, I am attempting to use the "request this resource feature" in our local institutional search. Upon populating the form with valid information and clicking send request, a popup states ?An error occurred while trying to send a message to a contact.? I can successfully send messages to the same person using the ?Send message to resource contact? feature. I was unable to find anything in the server logs related to the issue. Is there some sort of configuration option needed to use this feature? Do we need to be connected to the eagle-i Network, before we can use this feature? Is there documentation describing the functionality of this feature? Any other ideas? Thanks Again, Joshua Lease *****E-Mail Confidentiality Notice***** This message (including any attachments) contains information intended for a specific individual(s) and purpose that may be privileged, confidential or otherwise protected from disclosure pursuant to applicable law. Any inappropriate use, distribution or copying of the message is strictly prohibited and may subject you to criminal or civil penalty. If you have received this transmission in error, please reply to the sender indicating this error and delete the transmission from your system immediately. -------------- next part -------------- An HTML attachment was scrubbed... URL: From Sophia_Cheng at hms.harvard.edu Fri Aug 1 10:08:54 2014 From: Sophia_Cheng at hms.harvard.edu (Cheng, Sophia) Date: Fri, 1 Aug 2014 10:08:54 -0400 Subject: [Eagle-i-admins] Request this Resource Feature In-Reply-To: References: Message-ID: Hi Joshua, That?s odd. Can you verify that you?ve downloaded institution.war and not central.war? The tributary defaults should not be kicking in. If you have indeed downloaded institution.war, could you email me (off line from this mailing list) your configuration files? Thanks, Sophia From: , Joshua > Date: Friday, August 1, 2014 at 9:49 AM To: SKC >, eagle-i-admins > Subject: Re: [Eagle-i-admins] Request this Resource Feature Sophia, I replaced my eagle-i-app.properties and eagle-i-apps-credentials.properties files with the ones you linked (I made some changes to the email config and commented out the data tools centrally curated resources credentials). The request this resource feature still appears. Looking at the code (EIAppsPropertyKeys.java), it looks like the Tributary configuration defaults to https://search.eagle-i.net/tributary. Is there a specific configuration value that I can set to turn the feature off? -Joshua Lease *****E-Mail Confidentiality Notice***** This message (including any attachments) contains information intended for a specific individual(s) and purpose that may be privileged, confidential or otherwise protected from disclosure pursuant to applicable law. Any inappropriate use, distribution or copying of the message is strictly prohibited and may subject you to criminal or civil penalty. If you have received this transmission in error, please reply to the sender indicating this error and delete the transmission from your system immediately. From: , Sophia > Date: Thursday, July 31, 2014 at 6:27 PM To: Josh Lease >, "eagle-i-admins at open.med.harvard.edu" > Subject: Re: [Eagle-i-admins] Request this Resource Feature Hi Joshua, I suspect that you may have the wrong configurations. You shouldn?t be seeing ?Request this Resource? button at all in the institutional search application. I have just audited and updated our sample configurations that should be used for a simple node installation: https://open.med.harvard.edu/svn/eagle-i-dev/apps/trunk/configuration/src/main/resources/examples/node-simple/ These should (95% sure) be all that you need to get up and running for the most common use case. Please let me know if this doesn?t help or if you have further issues. Kind Regards, Sophia ---- Sophia K. Cheng Technical Lead Harvard Catalyst | eagle-i email: sophia?_cheng at hms.harvard.edu skype: sophia.k.cheng web: www. eagle-I.net Harvard Medical School Harvard Catalyst | The Harvard Clinical and Translational Science Center Landmark Center, Suite 504 West 401 Park Drive Boston, MA 02215 From: , Joshua > Date: Monday, July 28, 2014 at 12:22 PM To: eagle-i-admins > Subject: [Eagle-i-admins] Request this Resource Feature Admins, I am attempting to use the "request this resource feature" in our local institutional search. Upon populating the form with valid information and clicking send request, a popup states ?An error occurred while trying to send a message to a contact.? I can successfully send messages to the same person using the ?Send message to resource contact? feature. I was unable to find anything in the server logs related to the issue. Is there some sort of configuration option needed to use this feature? Do we need to be connected to the eagle-i Network, before we can use this feature? Is there documentation describing the functionality of this feature? Any other ideas? Thanks Again, Joshua Lease *****E-Mail Confidentiality Notice***** This message (including any attachments) contains information intended for a specific individual(s) and purpose that may be privileged, confidential or otherwise protected from disclosure pursuant to applicable law. Any inappropriate use, distribution or copying of the message is strictly prohibited and may subject you to criminal or civil penalty. If you have received this transmission in error, please reply to the sender indicating this error and delete the transmission from your system immediately. -------------- next part -------------- An HTML attachment was scrubbed... URL: From jlease at hmc.psu.edu Tue Aug 12 12:32:29 2014 From: jlease at hmc.psu.edu (Lease, Joshua) Date: Tue, 12 Aug 2014 16:32:29 +0000 Subject: [Eagle-i-admins] Local Publishing Message-ID: Admins, In the General SWEET Training Handbook a Locally Published state is mentioned. Is there any documentation on how to implement this feature? Thanks, Joshua Lease *****E-Mail Confidentiality Notice***** This message (including any attachments) contains information intended for a specific individual(s) and purpose that may be privileged, confidential or otherwise protected from disclosure pursuant to applicable law. Any inappropriate use, distribution or copying of the message is strictly prohibited and may subject you to criminal or civil penalty. If you have received this transmission in error, please reply to the sender indicating this error and delete the transmission from your system immediately. -------------- next part -------------- An HTML attachment was scrubbed... URL: From Sukdith.Punjasthitkul at dartmouth.edu Wed Aug 13 10:11:09 2014 From: Sukdith.Punjasthitkul at dartmouth.edu (Sukdith Punjasthitkul) Date: Wed, 13 Aug 2014 14:11:09 +0000 Subject: [Eagle-i-admins] RE: deprecated email properties Message-ID: <2B71257E-8EBF-424B-A1F7-1A725870DF1F@dartmouth.edu> Hi y'all, During the process of updating our eagle-i node to 3.0.4, two email properties were not mentioned in the 3.0.4 release notes:(https://open.med.harvard.edu/wiki/display/eaglei/3.0.4+Release+Notes#id-304ReleaseNotes-DeprecatedProperties) eaglei.repository.mail.port eaglei.repository.mail.ssl = false These properties appear to be replaced with eaglei.email.mta.port eaglei.email.mta.ssl So, is it safe to assume that I can remove eaglei.repository.mail.port and eaglei.repository.mail.ssl? Thanks! --sukie-- From Sophia_Cheng at hms.harvard.edu Wed Aug 13 10:51:14 2014 From: Sophia_Cheng at hms.harvard.edu (Cheng, Sophia) Date: Wed, 13 Aug 2014 10:51:14 -0400 Subject: [Eagle-i-admins] Local Publishing Message-ID: Hi Joshua, The Locally Published is a custom feature that was requested and developed last year in conjunction with NYU. Unfortunately, there is currently no formal documentation available describing the feature. There are some advanced configurations and customizations that need to be considered and understood before enabling this feature. If you are interested, please contact me directly and we can discuss further. Cheerios, Sophia ---- Sophia K. Cheng Technical Lead Harvard Catalyst | eagle-i email: sophia?_cheng at hms.harvard.edu skype: sophia.k.cheng web: www. eagle-I.net Harvard Medical School Harvard Catalyst | The Harvard Clinical and Translational Science Center Landmark Center, Suite 504 West 401 Park Drive Boston, MA 02215 From: , Joshua > Date: Tuesday, August 12, 2014 at 12:32 PM To: eagle-i-admins > Subject: [Eagle-i-admins] Local Publishing Admins, In the General SWEET Training Handbook a Locally Published state is mentioned. Is there any documentation on how to implement this feature? Thanks, Joshua Lease *****E-Mail Confidentiality Notice***** This message (including any attachments) contains information intended for a specific individual(s) and purpose that may be privileged, confidential or otherwise protected from disclosure pursuant to applicable law. Any inappropriate use, distribution or copying of the message is strictly prohibited and may subject you to criminal or civil penalty. If you have received this transmission in error, please reply to the sender indicating this error and delete the transmission from your system immediately. -------------- next part -------------- An HTML attachment was scrubbed... URL: From neil.norman at vanderbilt.edu Wed Aug 13 15:25:14 2014 From: neil.norman at vanderbilt.edu (Norman, Neil) Date: Wed, 13 Aug 2014 19:25:14 +0000 Subject: [Eagle-i-admins] Upgrade problems 2.0MS2.17 to 2.0MS3.0.8 Message-ID: <94BCCA0AAC6FA744B6D7ADFF809184B06CD07F@ITS-HCWNEM105.ds.vanderbilt.edu> I'm trying to upgrade our test environment and running into problems with the sweet.war when I start the tomcat6 service. After the upgrade the site will not load, and jstack shows the following. 2014-08-13 14:15:54 Full thread dump OpenJDK 64-Bit Server VM (23.25-b01 mixed mode): "Attach Listener" daemon prio=10 tid=0x00007f7710001000 nid=0x5bfd runnable [0x0000000000000000] java.lang.Thread.State: RUNNABLE "http-8443-4" daemon prio=10 tid=0x00007f76f8006800 nid=0x3dba in Object.wait() [0x00007f77142c0000] java.lang.Thread.State: WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000fe51acc8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) at java.lang.Object.wait(Object.java:502) at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) - locked <0x00000000fe51acc8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) at java.lang.Thread.run(Thread.java:701) "http-8443-3" daemon prio=10 tid=0x00007f76f8004800 nid=0x3db9 in Object.wait() [0x00007f77143c1000] java.lang.Thread.State: WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000fe51cb78> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) at java.lang.Object.wait(Object.java:502) at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) - locked <0x00000000fe51cb78> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) at java.lang.Thread.run(Thread.java:701) "http-8443-2" daemon prio=10 tid=0x00007f76f8003000 nid=0x3db8 in Object.wait() [0x00007f77144c2000] java.lang.Thread.State: WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000fe532eb8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) at java.lang.Object.wait(Object.java:502) at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) - locked <0x00000000fe532eb8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) at java.lang.Thread.run(Thread.java:701) "http-8443-1" daemon prio=10 tid=0x00007f76f8001800 nid=0x3db7 in Object.wait() [0x00007f77145c3000] java.lang.Thread.State: WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000fe533aa8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) at java.lang.Object.wait(Object.java:502) at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) - locked <0x00000000fe533aa8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) at java.lang.Thread.run(Thread.java:701) "http-8443-Acceptor-0" daemon prio=10 tid=0x00007f7738c5a800 nid=0x3db6 runnable [0x00007f77146c4000] java.lang.Thread.State: RUNNABLE at java.net.PlainSocketImpl.socketAccept(Native Method) at java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) at java.net.ServerSocket.implAccept(ServerSocket.java:478) at sun.security.ssl.SSLServerSocketImpl.accept(SSLServerSocketImpl.java:278) at org.apache.tomcat.util.net.jsse.JSSESocketFactory.acceptSocket(JSSESocketFactory.java:152) at org.apache.tomcat.util.net.JIoEndpoint$Acceptor.run(JIoEndpoint.java:352) at java.lang.Thread.run(Thread.java:701) "http-8080-Acceptor-0" daemon prio=10 tid=0x00007f77388a6000 nid=0x3db5 runnable [0x00007f7715987000] java.lang.Thread.State: RUNNABLE at java.net.PlainSocketImpl.socketAccept(Native Method) at java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) at java.net.ServerSocket.implAccept(ServerSocket.java:478) at java.net.ServerSocket.accept(ServerSocket.java:446) at org.apache.tomcat.util.net.DefaultServerSocketFactory.acceptSocket(DefaultServerSocketFactory.java:61) at org.apache.tomcat.util.net.JIoEndpoint$Acceptor.run(JIoEndpoint.java:352) at java.lang.Thread.run(Thread.java:701) "ContainerBackgroundProcessor[StandardEngine[Catalina]]" daemon prio=10 tid=0x00007f77383f2800 nid=0x3db4 waiting on condition [0x00007f7715a88000] java.lang.Thread.State: TIMED_WAITING (sleeping) at java.lang.Thread.sleep(Native Method) at org.apache.catalina.core.ContainerBase$ContainerBackgroundProcessor.run(ContainerBase.java:1579) at java.lang.Thread.run(Thread.java:701) "SessionReaper" daemon prio=10 tid=0x00007f7738d6f800 nid=0x3db3 in Object.wait() [0x00007f77147c5000] java.lang.Thread.State: TIMED_WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000c61e6c48> (a java.util.TaskQueue) at java.util.TimerThread.mainLoop(Timer.java:531) - locked <0x00000000c61e6c48> (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:484) "pool-1-thread-1" prio=10 tid=0x00007f7738d1f800 nid=0x3db2 waiting on condition [0x00007f77157c0000] java.lang.Thread.State: WAITING (parking) at sun.misc.Unsafe.park(Native Method) - parking to wait for <0x00000000c613c0a0> (a java.util.concurrent.locks.AbstractQueuedSynchronizer$ConditionObject) at java.util.concurrent.locks.LockSupport.park(LockSupport.java:186) at java.util.concurrent.locks.AbstractQueuedSynchronizer$ConditionObject.await(AbstractQueuedSynchronizer.java:2043) at java.util.concurrent.LinkedBlockingQueue.take(LinkedBlockingQueue.java:386) at java.util.concurrent.ThreadPoolExecutor.getTask(ThreadPoolExecutor.java:1069) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1131) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) at java.lang.Thread.run(Thread.java:701) "derby.rawStoreDaemon" daemon prio=10 tid=0x00007f773882b800 nid=0x3d7e in Object.wait() [0x00007f7715d91000] java.lang.Thread.State: TIMED_WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000c0b79370> (a org.apache.derby.impl.services.daemon.BasicDaemon) at org.apache.derby.impl.services.daemon.BasicDaemon.rest(Unknown Source) - locked <0x00000000c0b79370> (a org.apache.derby.impl.services.daemon.BasicDaemon) at org.apache.derby.impl.services.daemon.BasicDaemon.run(Unknown Source) at java.lang.Thread.run(Thread.java:701) "Timer-0" daemon prio=10 tid=0x00007f7738849000 nid=0x3d7d in Object.wait() [0x00007f7715e92000] java.lang.Thread.State: WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000c0b601c0> (a java.util.TaskQueue) at java.lang.Object.wait(Object.java:502) at java.util.TimerThread.mainLoop(Timer.java:505) - locked <0x00000000c0b601c0> (a java.util.TaskQueue) at java.util.TimerThread.run(Timer.java:484) "derby.antiGC" daemon prio=10 tid=0x00007f7738749800 nid=0x3d7c in Object.wait() [0x00007f7715f93000] java.lang.Thread.State: WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000c01c5600> (a org.apache.derby.impl.services.monitor.AntiGC) at java.lang.Object.wait(Object.java:502) at org.apache.derby.impl.services.monitor.AntiGC.run(Unknown Source) - locked <0x00000000c01c5600> (a org.apache.derby.impl.services.monitor.AntiGC) at java.lang.Thread.run(Thread.java:701) "GC Daemon" daemon prio=10 tid=0x00007f77385ab800 nid=0x3d75 in Object.wait() [0x00007f77303bd000] java.lang.Thread.State: TIMED_WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000c0010798> (a sun.misc.GC$LatencyLock) at sun.misc.GC$Daemon.run(GC.java:117) - locked <0x00000000c0010798> (a sun.misc.GC$LatencyLock) "Low Memory Detector" daemon prio=10 tid=0x00007f77380f6800 nid=0x3d73 runnable [0x0000000000000000] java.lang.Thread.State: RUNNABLE "C2 CompilerThread1" daemon prio=10 tid=0x00007f77380f4000 nid=0x3d72 waiting on condition [0x0000000000000000] java.lang.Thread.State: RUNNABLE "C2 CompilerThread0" daemon prio=10 tid=0x00007f77380f1000 nid=0x3d71 waiting on condition [0x0000000000000000] java.lang.Thread.State: RUNNABLE "Signal Dispatcher" daemon prio=10 tid=0x00007f77380ef000 nid=0x3d70 runnable [0x0000000000000000] java.lang.Thread.State: RUNNABLE "Finalizer" daemon prio=10 tid=0x00007f77380a0000 nid=0x3d6f in Object.wait() [0x00007f77310e9000] java.lang.Thread.State: WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000c00109e0> (a java.lang.ref.ReferenceQueue$Lock) at java.lang.ref.ReferenceQueue.remove(ReferenceQueue.java:133) - locked <0x00000000c00109e0> (a java.lang.ref.ReferenceQueue$Lock) at java.lang.ref.ReferenceQueue.remove(ReferenceQueue.java:149) at java.lang.ref.Finalizer$FinalizerThread.run(Finalizer.java:189) "Reference Handler" daemon prio=10 tid=0x00007f773809d800 nid=0x3d6e in Object.wait() [0x00007f77311ea000] java.lang.Thread.State: WAITING (on object monitor) at java.lang.Object.wait(Native Method) - waiting on <0x00000000c0010778> (a java.lang.ref.Reference$Lock) at java.lang.Object.wait(Object.java:502) at java.lang.ref.Reference$ReferenceHandler.run(Reference.java:133) - locked <0x00000000c0010778> (a java.lang.ref.Reference$Lock) "main" prio=10 tid=0x00007f7738009000 nid=0x3d69 runnable [0x00007f773f59e000] java.lang.Thread.State: RUNNABLE at java.net.PlainSocketImpl.socketAccept(Native Method) at java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) at java.net.ServerSocket.implAccept(ServerSocket.java:478) at java.net.ServerSocket.accept(ServerSocket.java:446) at org.apache.catalina.core.StandardServer.await(StandardServer.java:389) at org.apache.catalina.startup.Catalina.await(Catalina.java:657) at org.apache.catalina.startup.Catalina.start(Catalina.java:617) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:622) at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289) at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414) "VM Thread" prio=10 tid=0x00007f773808f000 nid=0x3d6d runnable "GC task thread#0 (ParallelGC)" prio=10 tid=0x00007f7738016800 nid=0x3d6a runnable "GC task thread#1 (ParallelGC)" prio=10 tid=0x00007f7738018800 nid=0x3d6b runnable "VM Periodic Task Thread" prio=10 tid=0x00007f7738101000 nid=0x3d74 waiting on condition JNI global references: 461 Further the catalina log is complaining about version compatibility with sweet. I have tried a couple of different versions with no luck. Aug 13, 2014 1:20:51 PM org.apache.catalina.startup.HostConfig deployWAR SEVERE: Error deploying web application archive ROOT.war java.lang.UnsupportedClassVersionError: org/eaglei/repository/servlet/RepositoryContextListener : Unsupported major.minor version 51.0 (unable to load class org.eaglei.repository.servlet.RepositoryContextListener) at org.apache.catalina.loader.WebappClassLoader.findClassInternal(WebappClassLoader.java:2334) at org.apache.catalina.loader.WebappClassLoader.findClass(WebappClassLoader.java:976) at org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1450) at org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1329) at org.apache.catalina.startup.WebAnnotationSet.loadClassAnnotation(WebAnnotationSet.java:145) at org.apache.catalina.startup.WebAnnotationSet.loadApplicationListenerAnnotations(WebAnnotationSet.java:73) at org.apache.catalina.startup.WebAnnotationSet.loadApplicationAnnotations(WebAnnotationSet.java:56) at org.apache.catalina.startup.ContextConfig.applicationAnnotationsConfig(ContextConfig.java:297) at org.apache.catalina.startup.ContextConfig.start(ContextConfig.java:1074) at org.apache.catalina.startup.ContextConfig.lifecycleEvent(ContextConfig.java:261) at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) at org.apache.catalina.core.StandardContext.start(StandardContext.java:4377) at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:791) at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:771) at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:526) at org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:905) at org.apache.catalina.startup.HostConfig.deployWARs(HostConfig.java:740) at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:500) at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1277) at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:321) at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1053) at org.apache.catalina.core.StandardHost.start(StandardHost.java:722) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1045) at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:443) at org.apache.catalina.core.StandardService.start(StandardService.java:516) at org.apache.catalina.core.StandardServer.start(StandardServer.java:710) at org.apache.catalina.startup.Catalina.start(Catalina.java:593) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:622) at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289) at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414) Aug 13, 2014 1:20:51 PM org.apache.catalina.startup.HostConfig deployWAR INFO: Deploying web application archive sweet.war Aug 13, 2014 1:20:51 PM org.apache.catalina.loader.WebappClassLoader validateJarFile INFO: validateJarFile(/app001/tomcat6/webapps/sweet/WEB-INF/lib/servlet-api-2.5.jar) - jar not loaded. See Servlet Spec 2.3, section 9.7.2. Offending class: javax/servlet/Servlet.class 2014-08-13 13:21:16,830 WARN org.apache.solr.handler.component.SpellCheckComponent - No queryConverter defined, using default converter Aug 13, 2014 1:21:17 PM org.apache.coyote.http11.Http11Protocol start INFO: Starting Coyote HTTP/1.1 on http-8080 Aug 13, 2014 1:21:17 PM org.apache.coyote.http11.Http11Protocol start INFO: Starting Coyote HTTP/1.1 on http-8443 Aug 13, 2014 1:21:17 PM org.apache.catalina.startup.Catalina start INFO: Server startup in 27378 ms -------------- next part -------------- An HTML attachment was scrubbed... URL: From Daniela_Bourges at hms.harvard.edu Wed Aug 13 15:51:53 2014 From: Daniela_Bourges at hms.harvard.edu (Bourges, Daniela) Date: Wed, 13 Aug 2014 15:51:53 -0400 Subject: [Eagle-i-admins] Upgrade problems 2.0MS2.17 to 2.0MS3.0.8 In-Reply-To: <94BCCA0AAC6FA744B6D7ADFF809184B06CD07F@ITS-HCWNEM105.ds.vanderbilt.edu> References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD07F@ITS-HCWNEM105.ds.vanderbilt.edu> Message-ID: Hi Neil, the error in catalina.out is due to a JRE version mismatch (and not a sweet version mismatch). Make sure your Tomcat is running under Java 1.7 and not 1.6 - sweet.war has a dependency on Java 1.7 Try to fix that first, and see if the other errors disappear. Cheers Daniela Dr. Daniela Bourges-Waldegg Lead Architect, Harvard Catalyst Harvard Medical School Daniela_Bourges at hms.harvard.edu skype: dbourgesw phone: 617-432-3126 On Aug 13, 2014, at 15:25, Norman, Neil wrote: > I?m trying to upgrade our test environment and running into problems with the sweet.war when I start the tomcat6 service. After the upgrade the site will not load, and jstack shows the following. > 2014-08-13 14:15:54 > Full thread dump OpenJDK 64-Bit Server VM (23.25-b01 mixed mode): > > "Attach Listener" daemon prio=10 tid=0x00007f7710001000 nid=0x5bfd runnable [0x0000000000000000] > java.lang.Thread.State: RUNNABLE > > "http-8443-4" daemon prio=10 tid=0x00007f76f8006800 nid=0x3dba in Object.wait() [0x00007f77142c0000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000fe51acc8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at java.lang.Object.wait(Object.java:502) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > - locked <0x00000000fe51acc8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > at java.lang.Thread.run(Thread.java:701) > > "http-8443-3" daemon prio=10 tid=0x00007f76f8004800 nid=0x3db9 in Object.wait() [0x00007f77143c1000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000fe51cb78> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at java.lang.Object.wait(Object.java:502) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > - locked <0x00000000fe51cb78> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > at java.lang.Thread.run(Thread.java:701) > > "http-8443-2" daemon prio=10 tid=0x00007f76f8003000 nid=0x3db8 in Object.wait() [0x00007f77144c2000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000fe532eb8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at java.lang.Object.wait(Object.java:502) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > - locked <0x00000000fe532eb8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > at java.lang.Thread.run(Thread.java:701) > > "http-8443-1" daemon prio=10 tid=0x00007f76f8001800 nid=0x3db7 in Object.wait() [0x00007f77145c3000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000fe533aa8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at java.lang.Object.wait(Object.java:502) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > - locked <0x00000000fe533aa8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > at java.lang.Thread.run(Thread.java:701) > > "http-8443-Acceptor-0" daemon prio=10 tid=0x00007f7738c5a800 nid=0x3db6 runnable [0x00007f77146c4000] > java.lang.Thread.State: RUNNABLE > at java.net.PlainSocketImpl.socketAccept(Native Method) > at java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) > at java.net.ServerSocket.implAccept(ServerSocket.java:478) > at sun.security.ssl.SSLServerSocketImpl.accept(SSLServerSocketImpl.java:278) > at org.apache.tomcat.util.net.jsse.JSSESocketFactory.acceptSocket(JSSESocketFactory.java:152) > at org.apache.tomcat.util.net.JIoEndpoint$Acceptor.run(JIoEndpoint.java:352) > at java.lang.Thread.run(Thread.java:701) > > "http-8080-Acceptor-0" daemon prio=10 tid=0x00007f77388a6000 nid=0x3db5 runnable [0x00007f7715987000] > java.lang.Thread.State: RUNNABLE > at java.net.PlainSocketImpl.socketAccept(Native Method) > at java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) > at java.net.ServerSocket.implAccept(ServerSocket.java:478) > at java.net.ServerSocket.accept(ServerSocket.java:446) > at org.apache.tomcat.util.net.DefaultServerSocketFactory.acceptSocket(DefaultServerSocketFactory.java:61) > at org.apache.tomcat.util.net.JIoEndpoint$Acceptor.run(JIoEndpoint.java:352) > at java.lang.Thread.run(Thread.java:701) > > "ContainerBackgroundProcessor[StandardEngine[Catalina]]" daemon prio=10 tid=0x00007f77383f2800 nid=0x3db4 waiting on condition [0x00007f7715a88000] > java.lang.Thread.State: TIMED_WAITING (sleeping) > at java.lang.Thread.sleep(Native Method) > at org.apache.catalina.core.ContainerBase$ContainerBackgroundProcessor.run(ContainerBase.java:1579) > at java.lang.Thread.run(Thread.java:701) > > "SessionReaper" daemon prio=10 tid=0x00007f7738d6f800 nid=0x3db3 in Object.wait() [0x00007f77147c5000] > java.lang.Thread.State: TIMED_WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c61e6c48> (a java.util.TaskQueue) > at java.util.TimerThread.mainLoop(Timer.java:531) > - locked <0x00000000c61e6c48> (a java.util.TaskQueue) > at java.util.TimerThread.run(Timer.java:484) > > "pool-1-thread-1" prio=10 tid=0x00007f7738d1f800 nid=0x3db2 waiting on condition [0x00007f77157c0000] > java.lang.Thread.State: WAITING (parking) > at sun.misc.Unsafe.park(Native Method) > - parking to wait for <0x00000000c613c0a0> (a java.util.concurrent.locks.AbstractQueuedSynchronizer$ConditionObject) > at java.util.concurrent.locks.LockSupport.park(LockSupport.java:186) > at java.util.concurrent.locks.AbstractQueuedSynchronizer$ConditionObject.await(AbstractQueuedSynchronizer.java:2043) > at java.util.concurrent.LinkedBlockingQueue.take(LinkedBlockingQueue.java:386) > at java.util.concurrent.ThreadPoolExecutor.getTask(ThreadPoolExecutor.java:1069) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1131) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) > at java.lang.Thread.run(Thread.java:701) > > "derby.rawStoreDaemon" daemon prio=10 tid=0x00007f773882b800 nid=0x3d7e in Object.wait() [0x00007f7715d91000] > java.lang.Thread.State: TIMED_WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c0b79370> (a org.apache.derby.impl.services.daemon.BasicDaemon) > at org.apache.derby.impl.services.daemon.BasicDaemon.rest(Unknown Source) > - locked <0x00000000c0b79370> (a org.apache.derby.impl.services.daemon.BasicDaemon) > at org.apache.derby.impl.services.daemon.BasicDaemon.run(Unknown Source) > at java.lang.Thread.run(Thread.java:701) > > "Timer-0" daemon prio=10 tid=0x00007f7738849000 nid=0x3d7d in Object.wait() [0x00007f7715e92000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c0b601c0> (a java.util.TaskQueue) > at java.lang.Object.wait(Object.java:502) > at java.util.TimerThread.mainLoop(Timer.java:505) > - locked <0x00000000c0b601c0> (a java.util.TaskQueue) > at java.util.TimerThread.run(Timer.java:484) > > "derby.antiGC" daemon prio=10 tid=0x00007f7738749800 nid=0x3d7c in Object.wait() [0x00007f7715f93000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c01c5600> (a org.apache.derby.impl.services.monitor.AntiGC) > at java.lang.Object.wait(Object.java:502) > at org.apache.derby.impl.services.monitor.AntiGC.run(Unknown Source) > - locked <0x00000000c01c5600> (a org.apache.derby.impl.services.monitor.AntiGC) > at java.lang.Thread.run(Thread.java:701) > > "GC Daemon" daemon prio=10 tid=0x00007f77385ab800 nid=0x3d75 in Object.wait() [0x00007f77303bd000] > java.lang.Thread.State: TIMED_WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c0010798> (a sun.misc.GC$LatencyLock) > at sun.misc.GC$Daemon.run(GC.java:117) > - locked <0x00000000c0010798> (a sun.misc.GC$LatencyLock) > > "Low Memory Detector" daemon prio=10 tid=0x00007f77380f6800 nid=0x3d73 runnable [0x0000000000000000] > java.lang.Thread.State: RUNNABLE > > "C2 CompilerThread1" daemon prio=10 tid=0x00007f77380f4000 nid=0x3d72 waiting on condition [0x0000000000000000] > java.lang.Thread.State: RUNNABLE > > "C2 CompilerThread0" daemon prio=10 tid=0x00007f77380f1000 nid=0x3d71 waiting on condition [0x0000000000000000] > java.lang.Thread.State: RUNNABLE > > "Signal Dispatcher" daemon prio=10 tid=0x00007f77380ef000 nid=0x3d70 runnable [0x0000000000000000] > java.lang.Thread.State: RUNNABLE > > "Finalizer" daemon prio=10 tid=0x00007f77380a0000 nid=0x3d6f in Object.wait() [0x00007f77310e9000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c00109e0> (a java.lang.ref.ReferenceQueue$Lock) > at java.lang.ref.ReferenceQueue.remove(ReferenceQueue.java:133) > - locked <0x00000000c00109e0> (a java.lang.ref.ReferenceQueue$Lock) > at java.lang.ref.ReferenceQueue.remove(ReferenceQueue.java:149) > at java.lang.ref.Finalizer$FinalizerThread.run(Finalizer.java:189) > > "Reference Handler" daemon prio=10 tid=0x00007f773809d800 nid=0x3d6e in Object.wait() [0x00007f77311ea000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c0010778> (a java.lang.ref.Reference$Lock) > at java.lang.Object.wait(Object.java:502) > at java.lang.ref.Reference$ReferenceHandler.run(Reference.java:133) > - locked <0x00000000c0010778> (a java.lang.ref.Reference$Lock) > > "main" prio=10 tid=0x00007f7738009000 nid=0x3d69 runnable [0x00007f773f59e000] > java.lang.Thread.State: RUNNABLE > at java.net.PlainSocketImpl.socketAccept(Native Method) > at java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) > at java.net.ServerSocket.implAccept(ServerSocket.java:478) > at java.net.ServerSocket.accept(ServerSocket.java:446) > at org.apache.catalina.core.StandardServer.await(StandardServer.java:389) > at org.apache.catalina.startup.Catalina.await(Catalina.java:657) > at org.apache.catalina.startup.Catalina.start(Catalina.java:617) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:622) > at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289) > at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414) > > "VM Thread" prio=10 tid=0x00007f773808f000 nid=0x3d6d runnable > > "GC task thread#0 (ParallelGC)" prio=10 tid=0x00007f7738016800 nid=0x3d6a runnable > > "GC task thread#1 (ParallelGC)" prio=10 tid=0x00007f7738018800 nid=0x3d6b runnable > > "VM Periodic Task Thread" prio=10 tid=0x00007f7738101000 nid=0x3d74 waiting on condition > > JNI global references: 461 > > > Further the catalina log is complaining about version compatibility with sweet. I have tried a couple of different versions with no luck. > > Aug 13, 2014 1:20:51 PM org.apache.catalina.startup.HostConfig deployWAR > SEVERE: Error deploying web application archive ROOT.war > java.lang.UnsupportedClassVersionError: org/eaglei/repository/servlet/RepositoryContextListener : Unsupported major.minor version 51.0 (unable to load class org.eaglei.repository.servlet.RepositoryContextListener) > at org.apache.catalina.loader.WebappClassLoader.findClassInternal(WebappClassLoader.java:2334) > at org.apache.catalina.loader.WebappClassLoader.findClass(WebappClassLoader.java:976) > at org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1450) > at org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1329) > at org.apache.catalina.startup.WebAnnotationSet.loadClassAnnotation(WebAnnotationSet.java:145) > at org.apache.catalina.startup.WebAnnotationSet.loadApplicationListenerAnnotations(WebAnnotationSet.java:73) > at org.apache.catalina.startup.WebAnnotationSet.loadApplicationAnnotations(WebAnnotationSet.java:56) > at org.apache.catalina.startup.ContextConfig.applicationAnnotationsConfig(ContextConfig.java:297) > at org.apache.catalina.startup.ContextConfig.start(ContextConfig.java:1074) > at org.apache.catalina.startup.ContextConfig.lifecycleEvent(ContextConfig.java:261) > at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) > at org.apache.catalina.core.StandardContext.start(StandardContext.java:4377) > at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:791) > at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:771) > at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:526) > at org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:905) > at org.apache.catalina.startup.HostConfig.deployWARs(HostConfig.java:740) > at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:500) > at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1277) > at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:321) > at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) > at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1053) > at org.apache.catalina.core.StandardHost.start(StandardHost.java:722) > at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1045) > at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:443) > at org.apache.catalina.core.StandardService.start(StandardService.java:516) > at org.apache.catalina.core.StandardServer.start(StandardServer.java:710) > at org.apache.catalina.startup.Catalina.start(Catalina.java:593) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:622) > at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289) > at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414) > Aug 13, 2014 1:20:51 PM org.apache.catalina.startup.HostConfig deployWAR > INFO: Deploying web application archive sweet.war > Aug 13, 2014 1:20:51 PM org.apache.catalina.loader.WebappClassLoader validateJarFile > INFO: validateJarFile(/app001/tomcat6/webapps/sweet/WEB-INF/lib/servlet-api-2.5.jar) - jar not loaded. See Servlet Spec 2.3, section 9.7.2. Offending class: javax/servlet/Servlet.class > 2014-08-13 13:21:16,830 WARN org.apache.solr.handler.component.SpellCheckComponent - No queryConverter defined, using default converter > Aug 13, 2014 1:21:17 PM org.apache.coyote.http11.Http11Protocol start > INFO: Starting Coyote HTTP/1.1 on http-8080 > Aug 13, 2014 1:21:17 PM org.apache.coyote.http11.Http11Protocol start > INFO: Starting Coyote HTTP/1.1 on http-8443 > Aug 13, 2014 1:21:17 PM org.apache.catalina.startup.Catalina start > INFO: Server startup in 27378 ms > _______________________________________________ > Eagle-i-admins mailing list > Eagle-i-admins at open.med.harvard.edu > https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins From neil.norman at vanderbilt.edu Wed Aug 13 15:53:57 2014 From: neil.norman at vanderbilt.edu (Norman, Neil) Date: Wed, 13 Aug 2014 19:53:57 +0000 Subject: [Eagle-i-admins] Upgrade problems 2.0MS2.17 to 2.0MS3.0.8 In-Reply-To: References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD07F@ITS-HCWNEM105.ds.vanderbilt.edu> Message-ID: <94BCCA0AAC6FA744B6D7ADFF809184B06CD1A9@ITS-HCWNEM105.ds.vanderbilt.edu> Yes, that fixed it. Thanks all. -----Original Message----- From: Bourges, Daniela [mailto:Daniela_Bourges at hms.harvard.edu] Sent: Wednesday, August 13, 2014 14:52 To: Norman, Neil Cc: eagle-i-admins at open.med.harvard.edu Subject: Re: [Eagle-i-admins] Upgrade problems 2.0MS2.17 to 2.0MS3.0.8 Hi Neil, the error in catalina.out is due to a JRE version mismatch (and not a sweet version mismatch). Make sure your Tomcat is running under Java 1.7 and not 1.6 - sweet.war has a dependency on Java 1.7 Try to fix that first, and see if the other errors disappear. Cheers Daniela Dr. Daniela Bourges-Waldegg Lead Architect, Harvard Catalyst Harvard Medical School Daniela_Bourges at hms.harvard.edu skype: dbourgesw phone: 617-432-3126 On Aug 13, 2014, at 15:25, Norman, Neil wrote: > I'm trying to upgrade our test environment and running into problems with the sweet.war when I start the tomcat6 service. After the upgrade the site will not load, and jstack shows the following. > 2014-08-13 14:15:54 > Full thread dump OpenJDK 64-Bit Server VM (23.25-b01 mixed mode): > > "Attach Listener" daemon prio=10 tid=0x00007f7710001000 nid=0x5bfd runnable [0x0000000000000000] > java.lang.Thread.State: RUNNABLE > > "http-8443-4" daemon prio=10 tid=0x00007f76f8006800 nid=0x3dba in Object.wait() [0x00007f77142c0000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000fe51acc8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at java.lang.Object.wait(Object.java:502) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > - locked <0x00000000fe51acc8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > at java.lang.Thread.run(Thread.java:701) > > "http-8443-3" daemon prio=10 tid=0x00007f76f8004800 nid=0x3db9 in Object.wait() [0x00007f77143c1000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000fe51cb78> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at java.lang.Object.wait(Object.java:502) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > - locked <0x00000000fe51cb78> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > at java.lang.Thread.run(Thread.java:701) > > "http-8443-2" daemon prio=10 tid=0x00007f76f8003000 nid=0x3db8 in Object.wait() [0x00007f77144c2000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000fe532eb8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at java.lang.Object.wait(Object.java:502) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > - locked <0x00000000fe532eb8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > at java.lang.Thread.run(Thread.java:701) > > "http-8443-1" daemon prio=10 tid=0x00007f76f8001800 nid=0x3db7 in Object.wait() [0x00007f77145c3000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000fe533aa8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at java.lang.Object.wait(Object.java:502) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > - locked <0x00000000fe533aa8> (a org.apache.tomcat.util.net.JIoEndpoint$Worker) > at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > at java.lang.Thread.run(Thread.java:701) > > "http-8443-Acceptor-0" daemon prio=10 tid=0x00007f7738c5a800 nid=0x3db6 runnable [0x00007f77146c4000] > java.lang.Thread.State: RUNNABLE > at java.net.PlainSocketImpl.socketAccept(Native Method) > at java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) > at java.net.ServerSocket.implAccept(ServerSocket.java:478) > at sun.security.ssl.SSLServerSocketImpl.accept(SSLServerSocketImpl.java:278) > at org.apache.tomcat.util.net.jsse.JSSESocketFactory.acceptSocket(JSSESocketFactory.java:152) > at org.apache.tomcat.util.net.JIoEndpoint$Acceptor.run(JIoEndpoint.java:352) > at java.lang.Thread.run(Thread.java:701) > > "http-8080-Acceptor-0" daemon prio=10 tid=0x00007f77388a6000 nid=0x3db5 runnable [0x00007f7715987000] > java.lang.Thread.State: RUNNABLE > at java.net.PlainSocketImpl.socketAccept(Native Method) > at java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) > at java.net.ServerSocket.implAccept(ServerSocket.java:478) > at java.net.ServerSocket.accept(ServerSocket.java:446) > at org.apache.tomcat.util.net.DefaultServerSocketFactory.acceptSocket(DefaultServerSocketFactory.java:61) > at org.apache.tomcat.util.net.JIoEndpoint$Acceptor.run(JIoEndpoint.java:352) > at java.lang.Thread.run(Thread.java:701) > > "ContainerBackgroundProcessor[StandardEngine[Catalina]]" daemon prio=10 tid=0x00007f77383f2800 nid=0x3db4 waiting on condition [0x00007f7715a88000] > java.lang.Thread.State: TIMED_WAITING (sleeping) > at java.lang.Thread.sleep(Native Method) > at org.apache.catalina.core.ContainerBase$ContainerBackgroundProcessor.run(ContainerBase.java:1579) > at java.lang.Thread.run(Thread.java:701) > > "SessionReaper" daemon prio=10 tid=0x00007f7738d6f800 nid=0x3db3 in Object.wait() [0x00007f77147c5000] > java.lang.Thread.State: TIMED_WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c61e6c48> (a java.util.TaskQueue) > at java.util.TimerThread.mainLoop(Timer.java:531) > - locked <0x00000000c61e6c48> (a java.util.TaskQueue) > at java.util.TimerThread.run(Timer.java:484) > > "pool-1-thread-1" prio=10 tid=0x00007f7738d1f800 nid=0x3db2 waiting on condition [0x00007f77157c0000] > java.lang.Thread.State: WAITING (parking) > at sun.misc.Unsafe.park(Native Method) > - parking to wait for <0x00000000c613c0a0> (a java.util.concurrent.locks.AbstractQueuedSynchronizer$ConditionObject) > at java.util.concurrent.locks.LockSupport.park(LockSupport.java:186) > at java.util.concurrent.locks.AbstractQueuedSynchronizer$ConditionObject.await(AbstractQueuedSynchronizer.java:2043) > at java.util.concurrent.LinkedBlockingQueue.take(LinkedBlockingQueue.java:386) > at java.util.concurrent.ThreadPoolExecutor.getTask(ThreadPoolExecutor.java:1069) > at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1131) > at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) > at java.lang.Thread.run(Thread.java:701) > > "derby.rawStoreDaemon" daemon prio=10 tid=0x00007f773882b800 nid=0x3d7e in Object.wait() [0x00007f7715d91000] > java.lang.Thread.State: TIMED_WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c0b79370> (a org.apache.derby.impl.services.daemon.BasicDaemon) > at org.apache.derby.impl.services.daemon.BasicDaemon.rest(Unknown Source) > - locked <0x00000000c0b79370> (a org.apache.derby.impl.services.daemon.BasicDaemon) > at org.apache.derby.impl.services.daemon.BasicDaemon.run(Unknown Source) > at java.lang.Thread.run(Thread.java:701) > > "Timer-0" daemon prio=10 tid=0x00007f7738849000 nid=0x3d7d in Object.wait() [0x00007f7715e92000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c0b601c0> (a java.util.TaskQueue) > at java.lang.Object.wait(Object.java:502) > at java.util.TimerThread.mainLoop(Timer.java:505) > - locked <0x00000000c0b601c0> (a java.util.TaskQueue) > at java.util.TimerThread.run(Timer.java:484) > > "derby.antiGC" daemon prio=10 tid=0x00007f7738749800 nid=0x3d7c in Object.wait() [0x00007f7715f93000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c01c5600> (a org.apache.derby.impl.services.monitor.AntiGC) > at java.lang.Object.wait(Object.java:502) > at org.apache.derby.impl.services.monitor.AntiGC.run(Unknown Source) > - locked <0x00000000c01c5600> (a org.apache.derby.impl.services.monitor.AntiGC) > at java.lang.Thread.run(Thread.java:701) > > "GC Daemon" daemon prio=10 tid=0x00007f77385ab800 nid=0x3d75 in Object.wait() [0x00007f77303bd000] > java.lang.Thread.State: TIMED_WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c0010798> (a sun.misc.GC$LatencyLock) > at sun.misc.GC$Daemon.run(GC.java:117) > - locked <0x00000000c0010798> (a sun.misc.GC$LatencyLock) > > "Low Memory Detector" daemon prio=10 tid=0x00007f77380f6800 nid=0x3d73 runnable [0x0000000000000000] > java.lang.Thread.State: RUNNABLE > > "C2 CompilerThread1" daemon prio=10 tid=0x00007f77380f4000 nid=0x3d72 waiting on condition [0x0000000000000000] > java.lang.Thread.State: RUNNABLE > > "C2 CompilerThread0" daemon prio=10 tid=0x00007f77380f1000 nid=0x3d71 waiting on condition [0x0000000000000000] > java.lang.Thread.State: RUNNABLE > > "Signal Dispatcher" daemon prio=10 tid=0x00007f77380ef000 nid=0x3d70 runnable [0x0000000000000000] > java.lang.Thread.State: RUNNABLE > > "Finalizer" daemon prio=10 tid=0x00007f77380a0000 nid=0x3d6f in Object.wait() [0x00007f77310e9000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c00109e0> (a java.lang.ref.ReferenceQueue$Lock) > at java.lang.ref.ReferenceQueue.remove(ReferenceQueue.java:133) > - locked <0x00000000c00109e0> (a java.lang.ref.ReferenceQueue$Lock) > at java.lang.ref.ReferenceQueue.remove(ReferenceQueue.java:149) > at > java.lang.ref.Finalizer$FinalizerThread.run(Finalizer.java:189) > > "Reference Handler" daemon prio=10 tid=0x00007f773809d800 nid=0x3d6e in Object.wait() [0x00007f77311ea000] > java.lang.Thread.State: WAITING (on object monitor) > at java.lang.Object.wait(Native Method) > - waiting on <0x00000000c0010778> (a java.lang.ref.Reference$Lock) > at java.lang.Object.wait(Object.java:502) > at java.lang.ref.Reference$ReferenceHandler.run(Reference.java:133) > - locked <0x00000000c0010778> (a java.lang.ref.Reference$Lock) > > "main" prio=10 tid=0x00007f7738009000 nid=0x3d69 runnable [0x00007f773f59e000] > java.lang.Thread.State: RUNNABLE > at java.net.PlainSocketImpl.socketAccept(Native Method) > at java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) > at java.net.ServerSocket.implAccept(ServerSocket.java:478) > at java.net.ServerSocket.accept(ServerSocket.java:446) > at org.apache.catalina.core.StandardServer.await(StandardServer.java:389) > at org.apache.catalina.startup.Catalina.await(Catalina.java:657) > at org.apache.catalina.startup.Catalina.start(Catalina.java:617) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:622) > at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289) > at > org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414) > > "VM Thread" prio=10 tid=0x00007f773808f000 nid=0x3d6d runnable > > "GC task thread#0 (ParallelGC)" prio=10 tid=0x00007f7738016800 > nid=0x3d6a runnable > > "GC task thread#1 (ParallelGC)" prio=10 tid=0x00007f7738018800 > nid=0x3d6b runnable > > "VM Periodic Task Thread" prio=10 tid=0x00007f7738101000 nid=0x3d74 > waiting on condition > > JNI global references: 461 > > > Further the catalina log is complaining about version compatibility with sweet. I have tried a couple of different versions with no luck. > > Aug 13, 2014 1:20:51 PM org.apache.catalina.startup.HostConfig > deployWAR > SEVERE: Error deploying web application archive ROOT.war > java.lang.UnsupportedClassVersionError: org/eaglei/repository/servlet/RepositoryContextListener : Unsupported major.minor version 51.0 (unable to load class org.eaglei.repository.servlet.RepositoryContextListener) > at org.apache.catalina.loader.WebappClassLoader.findClassInternal(WebappClassLoader.java:2334) > at org.apache.catalina.loader.WebappClassLoader.findClass(WebappClassLoader.java:976) > at org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1450) > at org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1329) > at org.apache.catalina.startup.WebAnnotationSet.loadClassAnnotation(WebAnnotationSet.java:145) > at org.apache.catalina.startup.WebAnnotationSet.loadApplicationListenerAnnotations(WebAnnotationSet.java:73) > at org.apache.catalina.startup.WebAnnotationSet.loadApplicationAnnotations(WebAnnotationSet.java:56) > at org.apache.catalina.startup.ContextConfig.applicationAnnotationsConfig(ContextConfig.java:297) > at org.apache.catalina.startup.ContextConfig.start(ContextConfig.java:1074) > at org.apache.catalina.startup.ContextConfig.lifecycleEvent(ContextConfig.java:261) > at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) > at org.apache.catalina.core.StandardContext.start(StandardContext.java:4377) > at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:791) > at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:771) > at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:526) > at org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:905) > at org.apache.catalina.startup.HostConfig.deployWARs(HostConfig.java:740) > at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:500) > at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1277) > at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:321) > at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) > at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1053) > at org.apache.catalina.core.StandardHost.start(StandardHost.java:722) > at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1045) > at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:443) > at org.apache.catalina.core.StandardService.start(StandardService.java:516) > at org.apache.catalina.core.StandardServer.start(StandardServer.java:710) > at org.apache.catalina.startup.Catalina.start(Catalina.java:593) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) > at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:622) > at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289) > at > org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414) > Aug 13, 2014 1:20:51 PM org.apache.catalina.startup.HostConfig > deployWAR > INFO: Deploying web application archive sweet.war Aug 13, 2014 1:20:51 > PM org.apache.catalina.loader.WebappClassLoader validateJarFile > INFO: > validateJarFile(/app001/tomcat6/webapps/sweet/WEB-INF/lib/servlet-api- > 2.5.jar) - jar not loaded. See Servlet Spec 2.3, section 9.7.2. > Offending class: javax/servlet/Servlet.class > 2014-08-13 13:21:16,830 WARN > org.apache.solr.handler.component.SpellCheckComponent - No > queryConverter defined, using default converter Aug 13, 2014 1:21:17 > PM org.apache.coyote.http11.Http11Protocol start > INFO: Starting Coyote HTTP/1.1 on http-8080 Aug 13, 2014 1:21:17 PM > org.apache.coyote.http11.Http11Protocol start > INFO: Starting Coyote HTTP/1.1 on http-8443 Aug 13, 2014 1:21:17 PM > org.apache.catalina.startup.Catalina start > INFO: Server startup in 27378 ms > _______________________________________________ > Eagle-i-admins mailing list > Eagle-i-admins at open.med.harvard.edu > https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins From fcoldren at mail.med.upenn.edu Wed Aug 13 15:35:39 2014 From: fcoldren at mail.med.upenn.edu (Faith Coldren) Date: Wed, 13 Aug 2014 15:35:39 -0400 Subject: [Eagle-i-admins] Upgrade problems 2.0MS2.17 to 2.0MS3.0.8 In-Reply-To: <94BCCA0AAC6FA744B6D7ADFF809184B06CD07F@ITS-HCWNEM105.ds.vanderbilt.edu> References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD07F@ITS-HCWNEM105.ds.vanderbilt.edu> Message-ID: Hi, We had a problem with version compatibility too. After installing java-1.7.0-openjdk-devel.x86_64 with yum it went away. I followed a stackoverflow post: http://stackoverflow.com/questions/10382929/unsupported-major-minor-version-51-0 Best, Faith On Wed, Aug 13, 2014 at 3:25 PM, Norman, Neil wrote: > I?m trying to upgrade our test environment and running into problems > with the sweet.war when I start the tomcat6 service. After the upgrade the > site will not load, and jstack shows the following. > > 2014-08-13 14:15:54 > > Full thread dump OpenJDK 64-Bit Server VM (23.25-b01 mixed mode): > > > > "Attach Listener" daemon prio=10 tid=0x00007f7710001000 nid=0x5bfd > runnable [0x0000000000000000] > > java.lang.Thread.State: RUNNABLE > > > > "http-8443-4" daemon prio=10 tid=0x00007f76f8006800 nid=0x3dba in > Object.wait() [0x00007f77142c0000] > > java.lang.Thread.State: WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000fe51acc8> (a > org.apache.tomcat.util.net.JIoEndpoint$Worker) > > at java.lang.Object.wait(Object.java:502) > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > > - locked <0x00000000fe51acc8> (a > org.apache.tomcat.util.net.JIoEndpoint$Worker) > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > > at java.lang.Thread.run(Thread.java:701) > > > > "http-8443-3" daemon prio=10 tid=0x00007f76f8004800 nid=0x3db9 in > Object.wait() [0x00007f77143c1000] > > java.lang.Thread.State: WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000fe51cb78> (a > org.apache.tomcat.util.net.JIoEndpoint$Worker) > > at java.lang.Object.wait(Object.java:502) > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > > - locked <0x00000000fe51cb78> (a > org.apache.tomcat.util.net.JIoEndpoint$Worker) > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > > at java.lang.Thread.run(Thread.java:701) > > > > "http-8443-2" daemon prio=10 tid=0x00007f76f8003000 nid=0x3db8 in > Object.wait() [0x00007f77144c2000] > > java.lang.Thread.State: WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000fe532eb8> (a > org.apache.tomcat.util.net.JIoEndpoint$Worker) > > at java.lang.Object.wait(Object.java:502) > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > > - locked <0x00000000fe532eb8> (a > org.apache.tomcat.util.net.JIoEndpoint$Worker) > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > > at java.lang.Thread.run(Thread.java:701) > > > > "http-8443-1" daemon prio=10 tid=0x00007f76f8001800 nid=0x3db7 in > Object.wait() [0x00007f77145c3000] > > java.lang.Thread.State: WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000fe533aa8> (a > org.apache.tomcat.util.net.JIoEndpoint$Worker) > > at java.lang.Object.wait(Object.java:502) > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.await(JIoEndpoint.java:458) > > - locked <0x00000000fe533aa8> (a > org.apache.tomcat.util.net.JIoEndpoint$Worker) > > at > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:484) > > at java.lang.Thread.run(Thread.java:701) > > > > "http-8443-Acceptor-0" daemon prio=10 tid=0x00007f7738c5a800 nid=0x3db6 > runnable [0x00007f77146c4000] > > java.lang.Thread.State: RUNNABLE > > at java.net.PlainSocketImpl.socketAccept(Native Method) > > at > java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) > > at java.net.ServerSocket.implAccept(ServerSocket.java:478) > > at > sun.security.ssl.SSLServerSocketImpl.accept(SSLServerSocketImpl.java:278) > > at > org.apache.tomcat.util.net.jsse.JSSESocketFactory.acceptSocket(JSSESocketFactory.java:152) > > at > org.apache.tomcat.util.net.JIoEndpoint$Acceptor.run(JIoEndpoint.java:352) > > at java.lang.Thread.run(Thread.java:701) > > > > "http-8080-Acceptor-0" daemon prio=10 tid=0x00007f77388a6000 nid=0x3db5 > runnable [0x00007f7715987000] > > java.lang.Thread.State: RUNNABLE > > at java.net.PlainSocketImpl.socketAccept(Native Method) > > at > java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) > > at java.net.ServerSocket.implAccept(ServerSocket.java:478) > > at java.net.ServerSocket.accept(ServerSocket.java:446) > > at > org.apache.tomcat.util.net.DefaultServerSocketFactory.acceptSocket(DefaultServerSocketFactory.java:61) > > at > org.apache.tomcat.util.net.JIoEndpoint$Acceptor.run(JIoEndpoint.java:352) > > at java.lang.Thread.run(Thread.java:701) > > > > "ContainerBackgroundProcessor[StandardEngine[Catalina]]" daemon prio=10 > tid=0x00007f77383f2800 nid=0x3db4 waiting on condition [0x00007f7715a88000] > > java.lang.Thread.State: TIMED_WAITING (sleeping) > > at java.lang.Thread.sleep(Native Method) > > at > org.apache.catalina.core.ContainerBase$ContainerBackgroundProcessor.run(ContainerBase.java:1579) > > at java.lang.Thread.run(Thread.java:701) > > > > "SessionReaper" daemon prio=10 tid=0x00007f7738d6f800 nid=0x3db3 in > Object.wait() [0x00007f77147c5000] > > java.lang.Thread.State: TIMED_WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000c61e6c48> (a java.util.TaskQueue) > > at java.util.TimerThread.mainLoop(Timer.java:531) > > - locked <0x00000000c61e6c48> (a java.util.TaskQueue) > > at java.util.TimerThread.run(Timer.java:484) > > > > "pool-1-thread-1" prio=10 tid=0x00007f7738d1f800 nid=0x3db2 waiting on > condition [0x00007f77157c0000] > > java.lang.Thread.State: WAITING (parking) > > at sun.misc.Unsafe.park(Native Method) > > - parking to wait for <0x00000000c613c0a0> (a > java.util.concurrent.locks.AbstractQueuedSynchronizer$ConditionObject) > > at > java.util.concurrent.locks.LockSupport.park(LockSupport.java:186) > > at > java.util.concurrent.locks.AbstractQueuedSynchronizer$ConditionObject.await(AbstractQueuedSynchronizer.java:2043) > > at > java.util.concurrent.LinkedBlockingQueue.take(LinkedBlockingQueue.java:386) > > at > java.util.concurrent.ThreadPoolExecutor.getTask(ThreadPoolExecutor.java:1069) > > at > java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1131) > > at > java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) > > at java.lang.Thread.run(Thread.java:701) > > > > "derby.rawStoreDaemon" daemon prio=10 tid=0x00007f773882b800 nid=0x3d7e in > Object.wait() [0x00007f7715d91000] > > java.lang.Thread.State: TIMED_WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000c0b79370> (a > org.apache.derby.impl.services.daemon.BasicDaemon) > > at org.apache.derby.impl.services.daemon.BasicDaemon.rest(Unknown > Source) > > - locked <0x00000000c0b79370> (a > org.apache.derby.impl.services.daemon.BasicDaemon) > > at org.apache.derby.impl.services.daemon.BasicDaemon.run(Unknown > Source) > > at java.lang.Thread.run(Thread.java:701) > > > > "Timer-0" daemon prio=10 tid=0x00007f7738849000 nid=0x3d7d in > Object.wait() [0x00007f7715e92000] > > java.lang.Thread.State: WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000c0b601c0> (a java.util.TaskQueue) > > at java.lang.Object.wait(Object.java:502) > > at java.util.TimerThread.mainLoop(Timer.java:505) > > - locked <0x00000000c0b601c0> (a java.util.TaskQueue) > > at java.util.TimerThread.run(Timer.java:484) > > > > "derby.antiGC" daemon prio=10 tid=0x00007f7738749800 nid=0x3d7c in > Object.wait() [0x00007f7715f93000] > > java.lang.Thread.State: WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000c01c5600> (a > org.apache.derby.impl.services.monitor.AntiGC) > > at java.lang.Object.wait(Object.java:502) > > at org.apache.derby.impl.services.monitor.AntiGC.run(Unknown > Source) > > - locked <0x00000000c01c5600> (a > org.apache.derby.impl.services.monitor.AntiGC) > > at java.lang.Thread.run(Thread.java:701) > > > > "GC Daemon" daemon prio=10 tid=0x00007f77385ab800 nid=0x3d75 in > Object.wait() [0x00007f77303bd000] > > java.lang.Thread.State: TIMED_WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000c0010798> (a sun.misc.GC$LatencyLock) > > at sun.misc.GC$Daemon.run(GC.java:117) > > - locked <0x00000000c0010798> (a sun.misc.GC$LatencyLock) > > > > "Low Memory Detector" daemon prio=10 tid=0x00007f77380f6800 nid=0x3d73 > runnable [0x0000000000000000] > > java.lang.Thread.State: RUNNABLE > > > > "C2 CompilerThread1" daemon prio=10 tid=0x00007f77380f4000 nid=0x3d72 > waiting on condition [0x0000000000000000] > > java.lang.Thread.State: RUNNABLE > > > > "C2 CompilerThread0" daemon prio=10 tid=0x00007f77380f1000 nid=0x3d71 > waiting on condition [0x0000000000000000] > > java.lang.Thread.State: RUNNABLE > > > > "Signal Dispatcher" daemon prio=10 tid=0x00007f77380ef000 nid=0x3d70 > runnable [0x0000000000000000] > > java.lang.Thread.State: RUNNABLE > > > > "Finalizer" daemon prio=10 tid=0x00007f77380a0000 nid=0x3d6f in > Object.wait() [0x00007f77310e9000] > > java.lang.Thread.State: WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000c00109e0> (a > java.lang.ref.ReferenceQueue$Lock) > > at java.lang.ref.ReferenceQueue.remove(ReferenceQueue.java:133) > > - locked <0x00000000c00109e0> (a java.lang.ref.ReferenceQueue$Lock) > > at java.lang.ref.ReferenceQueue.remove(ReferenceQueue.java:149) > > at java.lang.ref.Finalizer$FinalizerThread.run(Finalizer.java:189) > > > > "Reference Handler" daemon prio=10 tid=0x00007f773809d800 nid=0x3d6e in > Object.wait() [0x00007f77311ea000] > > java.lang.Thread.State: WAITING (on object monitor) > > at java.lang.Object.wait(Native Method) > > - waiting on <0x00000000c0010778> (a java.lang.ref.Reference$Lock) > > at java.lang.Object.wait(Object.java:502) > > at java.lang.ref.Reference$ReferenceHandler.run(Reference.java:133) > > - locked <0x00000000c0010778> (a java.lang.ref.Reference$Lock) > > > > "main" prio=10 tid=0x00007f7738009000 nid=0x3d69 runnable > [0x00007f773f59e000] > > java.lang.Thread.State: RUNNABLE > > at java.net.PlainSocketImpl.socketAccept(Native Method) > > at > java.net.AbstractPlainSocketImpl.accept(AbstractPlainSocketImpl.java:375) > > at java.net.ServerSocket.implAccept(ServerSocket.java:478) > > at java.net.ServerSocket.accept(ServerSocket.java:446) > > at > org.apache.catalina.core.StandardServer.await(StandardServer.java:389) > > at org.apache.catalina.startup.Catalina.await(Catalina.java:657) > > at org.apache.catalina.startup.Catalina.start(Catalina.java:617) > > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > > at > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) > > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > > at java.lang.reflect.Method.invoke(Method.java:622) > > at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289) > > at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414) > > > > "VM Thread" prio=10 tid=0x00007f773808f000 nid=0x3d6d runnable > > > > "GC task thread#0 (ParallelGC)" prio=10 tid=0x00007f7738016800 nid=0x3d6a > runnable > > > > "GC task thread#1 (ParallelGC)" prio=10 tid=0x00007f7738018800 nid=0x3d6b > runnable > > > > "VM Periodic Task Thread" prio=10 tid=0x00007f7738101000 nid=0x3d74 > waiting on condition > > > > JNI global references: 461 > > > > > > Further the catalina log is complaining about version compatibility with > sweet. I have tried a couple of different versions with no luck. > > > > Aug 13, 2014 1:20:51 PM org.apache.catalina.startup.HostConfig deployWAR > > SEVERE: Error deploying web application archive ROOT.war > > java.lang.UnsupportedClassVersionError: > org/eaglei/repository/servlet/RepositoryContextListener : Unsupported > major.minor version 51.0 (unable to load class > org.eaglei.repository.servlet.RepositoryContextListener) > > at > org.apache.catalina.loader.WebappClassLoader.findClassInternal(WebappClassLoader.java:2334) > > at > org.apache.catalina.loader.WebappClassLoader.findClass(WebappClassLoader.java:976) > > at > org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1450) > > at > org.apache.catalina.loader.WebappClassLoader.loadClass(WebappClassLoader.java:1329) > > at > org.apache.catalina.startup.WebAnnotationSet.loadClassAnnotation(WebAnnotationSet.java:145) > > at > org.apache.catalina.startup.WebAnnotationSet.loadApplicationListenerAnnotations(WebAnnotationSet.java:73) > > at > org.apache.catalina.startup.WebAnnotationSet.loadApplicationAnnotations(WebAnnotationSet.java:56) > > at > org.apache.catalina.startup.ContextConfig.applicationAnnotationsConfig(ContextConfig.java:297) > > at > org.apache.catalina.startup.ContextConfig.start(ContextConfig.java:1074) > > at > org.apache.catalina.startup.ContextConfig.lifecycleEvent(ContextConfig.java:261) > > at > org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) > > at > org.apache.catalina.core.StandardContext.start(StandardContext.java:4377) > > at > org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:791) > > at > org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:771) > > at > org.apache.catalina.core.StandardHost.addChild(StandardHost.java:526) > > at > org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:905) > > at > org.apache.catalina.startup.HostConfig.deployWARs(HostConfig.java:740) > > at > org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:500) > > at > org.apache.catalina.startup.HostConfig.start(HostConfig.java:1277) > > at > org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:321) > > at > org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) > > at > org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1053) > > at > org.apache.catalina.core.StandardHost.start(StandardHost.java:722) > > at > org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1045) > > at > org.apache.catalina.core.StandardEngine.start(StandardEngine.java:443) > > at > org.apache.catalina.core.StandardService.start(StandardService.java:516) > > at > org.apache.catalina.core.StandardServer.start(StandardServer.java:710) > > at org.apache.catalina.startup.Catalina.start(Catalina.java:593) > > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > > at > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) > > at > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > > at java.lang.reflect.Method.invoke(Method.java:622) > > at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289) > > at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414) > > Aug 13, 2014 1:20:51 PM org.apache.catalina.startup.HostConfig deployWAR > > INFO: Deploying web application archive sweet.war > > Aug 13, 2014 1:20:51 PM org.apache.catalina.loader.WebappClassLoader > validateJarFile > > INFO: > validateJarFile(/app001/tomcat6/webapps/sweet/WEB-INF/lib/servlet-api-2.5.jar) > - jar not loaded. See Servlet Spec 2.3, section 9.7.2. Offending class: > javax/servlet/Servlet.class > > 2014-08-13 13:21:16,830 WARN > org.apache.solr.handler.component.SpellCheckComponent - No queryConverter > defined, using default converter > > Aug 13, 2014 1:21:17 PM org.apache.coyote.http11.Http11Protocol start > > INFO: Starting Coyote HTTP/1.1 on http-8080 > > Aug 13, 2014 1:21:17 PM org.apache.coyote.http11.Http11Protocol start > > INFO: Starting Coyote HTTP/1.1 on http-8443 > > Aug 13, 2014 1:21:17 PM org.apache.catalina.startup.Catalina start > > INFO: Server startup in 27378 ms > > _______________________________________________ > Eagle-i-admins mailing list > Eagle-i-admins at open.med.harvard.edu > https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From David_Neiman at hms.harvard.edu Wed Aug 13 16:10:50 2014 From: David_Neiman at hms.harvard.edu (Neiman, David) Date: Wed, 13 Aug 2014 16:10:50 -0400 Subject: [Eagle-i-admins] deprecated email properties In-Reply-To: <2B71257E-8EBF-424B-A1F7-1A725870DF1F@dartmouth.edu> References: <2B71257E-8EBF-424B-A1F7-1A725870DF1F@dartmouth.edu> Message-ID: Hi Sukie, All the properties referenced on the release notes page are for the eagle-i-apps.properties file. Any property that begins with 'eaglei.repository' is for the repository's configuration.properties file. So all eaglei.email.* properties go in eagle-i-apps.properties and they replace many of the ones listed in the "deprecated" section of the release notes. I hope this helps. Regards, Dave Neiman eagle-i team On Aug 13, 2014, at 10:11 AM, Sukdith Punjasthitkul wrote: > Hi y'all, > > During the process of updating our eagle-i node to 3.0.4, two email properties were not mentioned in the 3.0.4 release notes:(https://open.med.harvard.edu/wiki/display/eaglei/3.0.4+Release+Notes#id-304ReleaseNotes-DeprecatedProperties) > > eaglei.repository.mail.port > eaglei.repository.mail.ssl = false > > These properties appear to be replaced with > > eaglei.email.mta.port > eaglei.email.mta.ssl > > So, is it safe to assume that I can remove eaglei.repository.mail.port and > eaglei.repository.mail.ssl? > > > Thanks! > > --sukie-- > > > _______________________________________________ > Eagle-i-admins mailing list > Eagle-i-admins at open.med.harvard.edu > https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins From neil.norman at vanderbilt.edu Wed Aug 13 16:41:54 2014 From: neil.norman at vanderbilt.edu (Norman, Neil) Date: Wed, 13 Aug 2014 20:41:54 +0000 Subject: [Eagle-i-admins] self signed certificate and data-migration script Message-ID: <94BCCA0AAC6FA744B6D7ADFF809184B06CD2EF@ITS-HCWNEM105.ds.vanderbilt.edu> When trying to run `data-migration.sh` I get SSL errors occurs. I'm assuming that it doesn't like my certificate. org.eaglei.services.repository.RepositoryProviderException: An SSL exception has occurred. at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:601) at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGetConnection(Apache4xHttpConnectionProvider.java:351) at org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(ConnectionManager.java:214) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:75) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1341) at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:153) at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) at sun.security.ssl.Handshaker.process_record(Handshaker.java:804) at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312) at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:275) at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:254) at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:117) at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314) at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363) at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219) at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195) at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108) at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186) at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:586) ... 12 more Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) at sun.security.validator.Validator.validate(Validator.java:260) at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326) at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231) at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126) at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1323) ... 31 more Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196) at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) ... 37 more -------------- next part -------------- An HTML attachment was scrubbed... URL: From neil.norman at vanderbilt.edu Fri Aug 15 17:10:33 2014 From: neil.norman at vanderbilt.edu (Norman, Neil) Date: Fri, 15 Aug 2014 21:10:33 +0000 Subject: [Eagle-i-admins] FW: self signed certificate and data-migration script In-Reply-To: <88286FF8-6D90-49F4-9D6C-6FFB994A53B0@hmc.psu.edu> References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD2EF@ITS-HCWNEM105.ds.vanderbilt.edu> <64093948-FEE6-4FDC-9DE0-57FF8035CA03@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CDB47@ITS-HCWNEM105.ds.vanderbilt.edu> <29335D6F-C99E-413C-A43C-86C7C8AC1368@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE619@ITS-HCWNEM105.ds.vanderbilt.edu> <88286FF8-6D90-49F4-9D6C-6FFB994A53B0@hmc.psu.edu> Message-ID: <94BCCA0AAC6FA744B6D7ADFF809184B06CE7EB@ITS-HCWNEM105.ds.vanderbilt.edu> Okay, thanks to Mike I've finally been able to resolve my certificate issues. But now I get a *new* error. Anyone run into this before? bash /app001/eaglei/repo/etc/data-migration.sh -u xxxx -p xxxxxx -r http://localhost:8443 Java info: /usr/bin/java java version "1.7.0_51" OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) using classpath : /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-datamanagement.jar:/app001/eaglei/conf ***** There are no special procedures for this release. ***** Standard data migration procedures 2014-08-15 16:06:15,824 ERROR org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command did not proceed. org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) ===== Command did not complete. Root cause: Could not authenticate user. Re-enter username and/or password. Stack trace for diagnosis: org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] Sent: Friday, August 15, 2014 14:12 To: Norman, Neil Cc: Davis, Ross Subject: Re: [Eagle-i-admins] self signed certificate and data-migration script Hi Neil, Is the password you are typing in the same as available in the derby db? # vim /opt/apache/db-derby-10.10.1.1-bin/bin/setEmbeddedCP Add the following line AFTER the comments but BEFORE the actual script. Change the location accordingly > DERBY_HOME=/opt/Apache/db-derby-10.10.1.1-bin # source !$ # sudo -u tomcat /usr/share/tomcat7/bin/catalina.sh stop # java org.apache.derby.tools.ij ij> connect 'jdbc:derby:/opt/eaglei/repo/db/eagle-i-users.derby'; ij> select * from users; Ctrl-D to exit the database before starting Tomcat again That will let you confirm you are typing the correct username / password combination. Another institute was misspelling the username a couple of times. Once I pointed out they probably had it misspelled they got right in. -Mike On Aug 15, 2014, at 2:45 PM, "Norman, Neil" > wrote: Okay, making progress. You were correct it was choking on the cert. I had to create one for tomcat with the hostname "localhost" and added that to my keystore. Now I get the following error. I know this password works for that "victri" user that we have. Java info: /usr/bin/java java version "1.7.0_51" OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) using classpath : /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-datamanagement.jar:/app001/eaglei/conf ***** There are no special procedures for this release. ***** Standard data migration procedures 2014-08-15 13:39:23,632 ERROR org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command did not proceed. org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) ===== Command did not complete. Root cause: Could not authenticate user. Re-enter username and/or password. Stack trace for diagnosis: org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] Sent: Thursday, August 14, 2014 11:23 To: Norman, Neil Subject: Re: [Eagle-i-admins] self signed certificate and data-migration script The INFO warning looks like it can't find your credentials file. Does your tomcat/conf/catalina.properties file have the following line? common.loader=/app001/eaglei/conf,${catalina.base}/lib,${catalina.base}/lib/*.jar,${catalina.home}/lib,${catalina.home}/lib/*.jar Does the credentials file exist in that location? Your ERROR still looks like you need to add the intermediate cert to java. Sadly, missing either the server cert or the intermediate cert causes the same error "PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target" -Mike On Aug 14, 2014, at 12:02 PM, "Norman, Neil" > wrote: Okay, that seems to have cleared up the SSL problem, but now it is complaining about class path. Java info: /usr/bin/java java version "1.7.0_51" OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) using classpath : /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-datamanagement.jar ***** There are no special procedures for this release. ***** Standard data migration procedures 2014-08-14 10:59:18,739 INFO org.eaglei.utilities.EIAppsConfiguration - org.eaglei.utilities.EIFileException: Could not locate relative file eagle-i-apps-credentials.properties in classpath. ; proceeding without it. 2014-08-14 10:59:19,702 WARN org.eaglei.services.connection.Apache4xHttpConnectionProvider - An ssl exception occurred performing a request to [https://localhost:8443/repository/whoami] 2014-08-14 10:59:19,707 ERROR org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command did not proceed. org.eaglei.services.repository.RepositoryProviderException: An SSL exception has occurred. at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:601) at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGetConnection(Apache4xHttpConnectionProvider.java:351) at org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(ConnectionManager.java:214) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:75) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1341) at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:153) at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) at sun.security.ssl.Handshaker.process_record(Handshaker.java:804) at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312) at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:275) at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:254) at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:117) at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314) at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363) at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219) at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195) at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108) at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186) at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:586) ... 12 more Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) at sun.security.validator.Validator.validate(Validator.java:260) at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326) at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231) at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126) at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1323) ... 31 more Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196) at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) ... 37 more ===== Command did not complete. Root cause: An SSL exception has occurred. Stack trace for diagnosis: org.eaglei.services.repository.RepositoryProviderException: An SSL exception has occurred. at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:601) at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGetConnection(Apache4xHttpConnectionProvider.java:351) at org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(ConnectionManager.java:214) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:75) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1341) at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:153) at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) at sun.security.ssl.Handshaker.process_record(Handshaker.java:804) at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312) at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:275) at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:254) at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:117) at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314) at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363) at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219) at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195) at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108) at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186) at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:586) ... 12 more Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) at sun.security.validator.Validator.validate(Validator.java:260) at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326) at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231) at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126) at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1323) ... 31 more Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196) at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) ... 37 more From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] Sent: Thursday, August 14, 2014 06:14 To: Norman, Neil Subject: Re: [Eagle-i-admins] self signed certificate and data-migration script Hi Neil, It looks like you need to add your server certificate to Java. That can be accomplished with the below command keytool -importcert -alias eaglei -file eagle-i.crt -keystore /usr/java/jdk1.7.0_67/jre/lib/security/cacerts -storepass changeit eagle-i.crt is the server certificate your CA gave you. Also the -keystore is the default location for that version of Java but should be similar for your version. Do a search for a file called cacerts just in case. "changeit" is also the default keystore password. If that doesn't fix it you may need to import your intermediate cert into java keytool -import -trustcacerts -alias caint -file intermediateca.cer -keystore /usr/java/jdk1.7.0_67/jre/lib/security/cacerts I can't remember if you need to pass the -storepass argument when doing the intermediate certificate or not. -Mike Carnegie On Aug 13, 2014, at 4:41 PM, "Norman, Neil" > wrote: When trying to run `data-migration.sh` I get SSL errors occurs. I'm assuming that it doesn't like my certificate. org.eaglei.services.repository.RepositoryProviderException: An SSL exception has occurred. at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:601) at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGetConnection(Apache4xHttpConnectionProvider.java:351) at org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(ConnectionManager.java:214) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:75) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1341) at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:153) at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) at sun.security.ssl.Handshaker.process_record(Handshaker.java:804) at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312) at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:275) at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:254) at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:117) at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314) at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363) at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219) at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195) at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108) at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186) at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:586) ... 12 more Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) at sun.security.validator.Validator.validate(Validator.java:260) at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326) at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231) at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126) at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1323) ... 31 more Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196) at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) ... 37 more _______________________________________________ Eagle-i-admins mailing list Eagle-i-admins at open.med.harvard.edu https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins -------------- next part -------------- An HTML attachment was scrubbed... URL: From Daniela_Bourges at hms.harvard.edu Mon Aug 18 15:24:39 2014 From: Daniela_Bourges at hms.harvard.edu (Bourges, Daniela) Date: Mon, 18 Aug 2014 15:24:39 -0400 Subject: [Eagle-i-admins] self signed certificate and data-migration script In-Reply-To: <94BCCA0AAC6FA744B6D7ADFF809184B06CE7EB@ITS-HCWNEM105.ds.vanderbilt.edu> References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD2EF@ITS-HCWNEM105.ds.vanderbilt.edu> <64093948-FEE6-4FDC-9DE0-57FF8035CA03@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CDB47@ITS-HCWNEM105.ds.vanderbilt.edu> <29335D6F-C99E-413C-A43C-86C7C8AC1368@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE619@ITS-HCWNEM105.ds.vanderbilt.edu> <88286FF8-6D90-49F4-9D6C-6FFB994A53B0@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE7EB@ITS-HCWNEM105.ds.vanderbilt.edu> Message-ID: <7E2A4C3F-B052-4546-954C-E98D0675D608@hms.harvard.edu> Can you try using the hostname in the command? I?m not sure that localhost is supported. Dr. Daniela Bourges-Waldegg Lead Architect, Harvard Catalyst Harvard Medical School Daniela_Bourges at hms.harvard.edu skype: dbourgesw phone: 617-384-8898 (NEW) On Aug 15, 2014, at 17:10, Norman, Neil wrote: > Okay, thanks to Mike I?ve finally been able to resolve my certificate issues. But now I get a *new* error. Anyone run into this before? > bash /app001/eaglei/repo/etc/data-migration.sh -u xxxx -p xxxxxx -r http://localhost:8443 > Java info: > /usr/bin/java > java version "1.7.0_51" > OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) > OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) > > using classpath : /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-datamanagement.jar:/app001/eaglei/conf > > > ***** There are no special procedures for this release. > > ***** Standard data migration procedures > > 2014-08-15 16:06:15,824 ERROR org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command did not proceed. > org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) > > > ===== Command did not complete. Root cause: Could not authenticate user. Re-enter username and/or password. > Stack trace for diagnosis: > > org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) > > From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] > Sent: Friday, August 15, 2014 14:12 > To: Norman, Neil > Cc: Davis, Ross > Subject: Re: [Eagle-i-admins] self signed certificate and data-migration script > > Hi Neil, > > Is the password you are typing in the same as available in the derby db? > > # vim /opt/apache/db-derby-10.10.1.1-bin/bin/setEmbeddedCP > Add the following line AFTER the comments but BEFORE the actual script. Change the location accordingly > > DERBY_HOME=/opt/Apache/db-derby-10.10.1.1-bin > # source !$ > # sudo -u tomcat /usr/share/tomcat7/bin/catalina.sh stop > # java org.apache.derby.tools.ij > ij> connect 'jdbc:derby:/opt/eaglei/repo/db/eagle-i-users.derby'; > ij> select * from users; > > Ctrl-D to exit the database before starting Tomcat again > > That will let you confirm you are typing the correct username / password combination. Another institute was misspelling the username a couple of times. Once I pointed out they probably had it misspelled they got right in. > > -Mike > > > On Aug 15, 2014, at 2:45 PM, "Norman, Neil" > wrote: > > > Okay, making progress. You were correct it was choking on the cert. I had to create one for tomcat with the hostname ?localhost? and added that to my keystore. Now I get the following error. I know this password works for that ?victri? user that we have. > Java info: > /usr/bin/java > java version "1.7.0_51" > OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) > OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) > > using classpath : /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-datamanagement.jar:/app001/eaglei/conf > > > ***** There are no special procedures for this release. > > ***** Standard data migration procedures > > 2014-08-15 13:39:23,632 ERROR org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command did not proceed. > org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) > > > ===== Command did not complete. Root cause: Could not authenticate user. Re-enter username and/or password. > Stack trace for diagnosis: > > org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) > > From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] > Sent: Thursday, August 14, 2014 11:23 > To: Norman, Neil > Subject: Re: [Eagle-i-admins] self signed certificate and data-migration script > > The INFO warning looks like it can't find your credentials file. > Does your tomcat/conf/catalina.properties file have the following line? > common.loader=/app001/eaglei/conf,${catalina.base}/lib,${catalina.base}/lib/*.jar,${catalina.home}/lib,${catalina.home}/lib/*.jar > Does the credentials file exist in that location? > > Your ERROR still looks like you need to add the intermediate cert to java. Sadly, missing either the server cert or the intermediate cert causes the same error "PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target" > > -Mike > > On Aug 14, 2014, at 12:02 PM, "Norman, Neil" wrote: > > > > Okay, that seems to have cleared up the SSL problem, but now it is complaining about class path. > Java info: > /usr/bin/java > java version "1.7.0_51" > OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) > OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) > > using classpath : /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-datamanagement.jar > > > ***** There are no special procedures for this release. > > ***** Standard data migration procedures > > 2014-08-14 10:59:18,739 INFO org.eaglei.utilities.EIAppsConfiguration - org.eaglei.utilities.EIFileException: Could not locate relative file eagle-i-apps-credentials.properties in classpath. ; proceeding without it. > 2014-08-14 10:59:19,702 WARN org.eaglei.services.connection.Apache4xHttpConnectionProvider - An ssl exception occurred performing a request to [https://localhost:8443/repository/whoami] > 2014-08-14 10:59:19,707 ERROR org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command did not proceed. > org.eaglei.services.repository.RepositoryProviderException: An SSL exception has occurred. > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:601) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGetConnection(Apache4xHttpConnectionProvider.java:351) > at org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(ConnectionManager.java:214) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:75) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) > Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) > at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1341) > at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:153) > at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) > at sun.security.ssl.Handshaker.process_record(Handshaker.java:804) > at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) > at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:275) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:254) > at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:117) > at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314) > at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363) > at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219) > at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195) > at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) > at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108) > at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186) > at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:586) > ... 12 more > Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) > at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) > at sun.security.validator.Validator.validate(Validator.java:260) > at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326) > at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231) > at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1323) > ... 31 more > Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196) > at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) > ... 37 more > > > ===== Command did not complete. Root cause: An SSL exception has occurred. > Stack trace for diagnosis: > > org.eaglei.services.repository.RepositoryProviderException: An SSL exception has occurred. > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:601) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGetConnection(Apache4xHttpConnectionProvider.java:351) > at org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(ConnectionManager.java:214) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:75) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) > Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) > at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1341) > at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:153) > at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) > at sun.security.ssl.Handshaker.process_record(Handshaker.java:804) > at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) > at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:275) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:254) > at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:117) > at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314) > at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363) > at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219) > at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195) > at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) > at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108) > at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186) > at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:586) > ... 12 more > Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) > at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) > at sun.security.validator.Validator.validate(Validator.java:260) > at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326) > at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231) > at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1323) > ... 31 more > Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196) > at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) > ... 37 more > > From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] > Sent: Thursday, August 14, 2014 06:14 > To: Norman, Neil > Subject: Re: [Eagle-i-admins] self signed certificate and data-migration script > > Hi Neil, > > It looks like you need to add your server certificate to Java. That can be accomplished with the below command > > keytool -importcert -alias eaglei -file eagle-i.crt -keystore /usr/java/jdk1.7.0_67/jre/lib/security/cacerts -storepass changeit > > eagle-i.crt is the server certificate your CA gave you. Also the -keystore is the default location for that version of Java but should be similar for your version. Do a search for a file called cacerts just in case. "changeit" is also the default keystore password. > > If that doesn't fix it you may need to import your intermediate cert into java > keytool -import -trustcacerts -alias caint -file intermediateca.cer -keystore /usr/java/jdk1.7.0_67/jre/lib/security/cacerts > > I can't remember if you need to pass the -storepass argument when doing the intermediate certificate or not. > > -Mike Carnegie > On Aug 13, 2014, at 4:41 PM, "Norman, Neil" > wrote: > > > > > When trying to run `data-migration.sh` I get SSL errors occurs. I?m assuming that it doesn?t like my certificate. > org.eaglei.services.repository.RepositoryProviderException: An SSL exception has occurred. > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:601) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGetConnection(Apache4xHttpConnectionProvider.java:351) > at org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(ConnectionManager.java:214) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:75) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) > Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) > at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1341) > at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:153) > at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) > at sun.security.ssl.Handshaker.process_record(Handshaker.java:804) > at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) > at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:275) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:254) > at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:117) > at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314) > at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363) > at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219) > at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195) > at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) > at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108) > at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186) > at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:586) > ... 12 more > Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) > at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) > at sun.security.validator.Validator.validate(Validator.java:260) > at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326) > at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231) > at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1323) > ... 31 more > Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196) > at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) > ... 37 more > _______________________________________________ > Eagle-i-admins mailing list > Eagle-i-admins at open.med.harvard.edu > https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins > > _______________________________________________ > Eagle-i-admins mailing list > Eagle-i-admins at open.med.harvard.edu > https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins From Michael_Cherry at hms.harvard.edu Mon Aug 18 15:31:46 2014 From: Michael_Cherry at hms.harvard.edu (Cherry, Michael) Date: Mon, 18 Aug 2014 15:31:46 -0400 Subject: [Eagle-i-admins] self signed certificate and data-migration script In-Reply-To: <7E2A4C3F-B052-4546-954C-E98D0675D608@hms.harvard.edu> References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD2EF@ITS-HCWNEM105.ds.vanderbilt.edu> <64093948-FEE6-4FDC-9DE0-57FF8035CA03@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CDB47@ITS-HCWNEM105.ds.vanderbilt.edu> <29335D6F-C99E-413C-A43C-86C7C8AC1368@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE619@ITS-HCWNEM105.ds.vanderbilt.edu> <88286FF8-6D90-49F4-9D6C-6FFB994A53B0@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE7EB@ITS-HCWNEM105.ds.vanderbilt.edu> <7E2A4C3F-B052-4546-954C-E98D0675D608@hms.harvard.edu> Message-ID: <2D9A56628D03E943A293017B10EFD25CFED695BA51@ITCCRMAIL01.MED.HARVARD.EDU> > Can you try using the hostname in the command? > I'm not sure that localhost is supported. I have a similar recollection. I believe localhost worked at some time in the (now distant) past, but we've switched to using the hostname in the URL. - Mike C From neil.norman at vanderbilt.edu Mon Aug 18 15:44:10 2014 From: neil.norman at vanderbilt.edu (Norman, Neil) Date: Mon, 18 Aug 2014 19:44:10 +0000 Subject: [Eagle-i-admins] self signed certificate and data-migration script In-Reply-To: <7E2A4C3F-B052-4546-954C-E98D0675D608@hms.harvard.edu> References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD2EF@ITS-HCWNEM105.ds.vanderbilt.edu> <64093948-FEE6-4FDC-9DE0-57FF8035CA03@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CDB47@ITS-HCWNEM105.ds.vanderbilt.edu> <29335D6F-C99E-413C-A43C-86C7C8AC1368@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE619@ITS-HCWNEM105.ds.vanderbilt.edu> <88286FF8-6D90-49F4-9D6C-6FFB994A53B0@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE7EB@ITS-HCWNEM105.ds.vanderbilt.edu> <7E2A4C3F-B052-4546-954C-E98D0675D608@hms.harvard.edu> Message-ID: <94BCCA0AAC6FA744B6D7ADFF809184B06CF798@ITS-HCWNEM105.ds.vanderbilt.edu> That doesn't seem to affect the outcome. I have checked that the password is correct as I can login to the web site with it, and that user is listed as an admin. [nrrapp at ori02lt ~]$ bash /app001/eaglei/repo/etc/data-migration.sh -u XXXXXXXXX -p XXXXXX -r https://ori02lt.ea.vanderbilt.edu:8443 Java info: /usr/bin/java java version "1.7.0_51" OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) using classpath : /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-datamanagement.jar:/app001/eaglei/conf ***** There are no special procedures for this release. ***** Standard data migration procedures 2014-08-18 14:39:39,694 ERROR org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command did not proceed. org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) ===== Command did not complete. Root cause: Could not authenticate user. Re-enter username and/or password. Stack trace for diagnosis: org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) at org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePredicate.java:205) [nrrapp at ori02lt ~]$ -----Original Message----- From: Bourges, Daniela [mailto:Daniela_Bourges at hms.harvard.edu] Sent: Monday, August 18, 2014 14:25 To: Norman, Neil Cc: eagle-i-admins at open.med.harvard.edu Subject: Re: [Eagle-i-admins] self signed certificate and data-migration script Can you try using the hostname in the command? I'm not sure that localhost is supported. Dr. Daniela Bourges-Waldegg Lead Architect, Harvard Catalyst Harvard Medical School Daniela_Bourges at hms.harvard.edu skype: dbourgesw phone: 617-384-8898 (NEW) On Aug 15, 2014, at 17:10, Norman, Neil wrote: > Okay, thanks to Mike I've finally been able to resolve my certificate issues. But now I get a *new* error. Anyone run into this before? > bash /app001/eaglei/repo/etc/data-migration.sh -u xxxx -p xxxxxx -r > http://localhost:8443 Java info: > /usr/bin/java > java version "1.7.0_51" > OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) > OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) > > using classpath : > /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-data > management.jar:/app001/eaglei/conf > > > ***** There are no special procedures for this release. > > ***** Standard data migration procedures > > 2014-08-15 16:06:15,824 ERROR org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command did not proceed. > org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at > org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang > ePredicate.java:205) > > > ===== Command did not complete. Root cause: Could not authenticate user. Re-enter username and/or password. > Stack trace for diagnosis: > > org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at > org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang > ePredicate.java:205) > > From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] > Sent: Friday, August 15, 2014 14:12 > To: Norman, Neil > Cc: Davis, Ross > Subject: Re: [Eagle-i-admins] self signed certificate and > data-migration script > > Hi Neil, > > Is the password you are typing in the same as available in the derby db? > > # vim /opt/apache/db-derby-10.10.1.1-bin/bin/setEmbeddedCP > Add the following line AFTER the comments but BEFORE the actual > script. Change the location accordingly > > DERBY_HOME=/opt/Apache/db-derby-10.10.1.1-bin > # source !$ > # sudo -u tomcat /usr/share/tomcat7/bin/catalina.sh stop # java > org.apache.derby.tools.ij > ij> connect 'jdbc:derby:/opt/eaglei/repo/db/eagle-i-users.derby'; > ij> select * from users; > > Ctrl-D to exit the database before starting Tomcat again > > That will let you confirm you are typing the correct username / password combination. Another institute was misspelling the username a couple of times. Once I pointed out they probably had it misspelled they got right in. > > -Mike > > > On Aug 15, 2014, at 2:45 PM, "Norman, Neil" > > wrote: > > > Okay, making progress. You were correct it was choking on the cert. I had to create one for tomcat with the hostname "localhost" and added that to my keystore. Now I get the following error. I know this password works for that "victri" user that we have. > Java info: > /usr/bin/java > java version "1.7.0_51" > OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) > OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) > > using classpath : > /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-data > management.jar:/app001/eaglei/conf > > > ***** There are no special procedures for this release. > > ***** Standard data migration procedures > > 2014-08-15 13:39:23,632 ERROR org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command did not proceed. > org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at > org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang > ePredicate.java:205) > > > ===== Command did not complete. Root cause: Could not authenticate user. Re-enter username and/or password. > Stack trace for diagnosis: > > org.eaglei.services.repository.RepositoryProviderException: Could not authenticate user. Re-enter username and/or password. > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:90) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at > org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang > ePredicate.java:205) > > From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] > Sent: Thursday, August 14, 2014 11:23 > To: Norman, Neil > Subject: Re: [Eagle-i-admins] self signed certificate and > data-migration script > > The INFO warning looks like it can't find your credentials file. > Does your tomcat/conf/catalina.properties file have the following line? > common.loader=/app001/eaglei/conf,${catalina.base}/lib,${catalina.base > }/lib/*.jar,${catalina.home}/lib,${catalina.home}/lib/*.jar > Does the credentials file exist in that location? > > Your ERROR still looks like you need to add the intermediate cert to java. Sadly, missing either the server cert or the intermediate cert causes the same error "PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target" > > -Mike > > On Aug 14, 2014, at 12:02 PM, "Norman, Neil" wrote: > > > > Okay, that seems to have cleared up the SSL problem, but now it is complaining about class path. > Java info: > /usr/bin/java > java version "1.7.0_51" > OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) > OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) > > using classpath : > /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-data > management.jar > > > ***** There are no special procedures for this release. > > ***** Standard data migration procedures > > 2014-08-14 10:59:18,739 INFO org.eaglei.utilities.EIAppsConfiguration - org.eaglei.utilities.EIFileException: Could not locate relative file eagle-i-apps-credentials.properties in classpath. ; proceeding without it. > 2014-08-14 10:59:19,702 WARN > org.eaglei.services.connection.Apache4xHttpConnectionProvider - An ssl > exception occurred performing a request to > [https://localhost:8443/repository/whoami] > 2014-08-14 10:59:19,707 ERROR org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command did not proceed. > org.eaglei.services.repository.RepositoryProviderException: An SSL exception has occurred. > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:601) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGetConnection(Apache4xHttpConnectionProvider.java:351) > at org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(ConnectionManager.java:214) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:75) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at > org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang > ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: > sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) > at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1341) > at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:153) > at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) > at sun.security.ssl.Handshaker.process_record(Handshaker.java:804) > at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) > at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:275) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:254) > at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:117) > at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314) > at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363) > at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219) > at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195) > at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) > at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108) > at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186) > at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:586) > ... 12 more > Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) > at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) > at sun.security.validator.Validator.validate(Validator.java:260) > at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326) > at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231) > at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1323) > ... 31 more > Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196) > at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) > ... 37 more > > > ===== Command did not complete. Root cause: An SSL exception has occurred. > Stack trace for diagnosis: > > org.eaglei.services.repository.RepositoryProviderException: An SSL exception has occurred. > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:601) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGetConnection(Apache4xHttpConnectionProvider.java:351) > at org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(ConnectionManager.java:214) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:75) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at > org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang > ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: > sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) > at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1341) > at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:153) > at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) > at sun.security.ssl.Handshaker.process_record(Handshaker.java:804) > at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) > at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:275) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:254) > at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:117) > at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314) > at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363) > at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219) > at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195) > at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) > at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108) > at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186) > at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:586) > ... 12 more > Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) > at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) > at sun.security.validator.Validator.validate(Validator.java:260) > at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326) > at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231) > at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1323) > ... 31 more > Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196) > at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) > ... 37 more > > From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] > Sent: Thursday, August 14, 2014 06:14 > To: Norman, Neil > Subject: Re: [Eagle-i-admins] self signed certificate and > data-migration script > > Hi Neil, > > It looks like you need to add your server certificate to Java. That > can be accomplished with the below command > > keytool -importcert -alias eaglei -file eagle-i.crt -keystore > /usr/java/jdk1.7.0_67/jre/lib/security/cacerts -storepass changeit > > eagle-i.crt is the server certificate your CA gave you. Also the -keystore is the default location for that version of Java but should be similar for your version. Do a search for a file called cacerts just in case. "changeit" is also the default keystore password. > > If that doesn't fix it you may need to import your intermediate cert > into java keytool -import -trustcacerts -alias caint -file > intermediateca.cer -keystore > /usr/java/jdk1.7.0_67/jre/lib/security/cacerts > > I can't remember if you need to pass the -storepass argument when doing the intermediate certificate or not. > > -Mike Carnegie > On Aug 13, 2014, at 4:41 PM, "Norman, Neil" > > wrote: > > > > > When trying to run `data-migration.sh` I get SSL errors occurs. I'm assuming that it doesn't like my certificate. > org.eaglei.services.repository.RepositoryProviderException: An SSL exception has occurred. > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:601) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGetConnection(Apache4xHttpConnectionProvider.java:351) > at org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(ConnectionManager.java:214) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:75) > at org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(StandardAuthenticationProvider.java:100) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:253) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:223) > at org.eaglei.services.authentication.AuthenticationManager.logIn(AuthenticationManager.java:175) > at org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsSecurityProvider.java:88) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize(AbstractBulkCommand.java:84) > at org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndExecuteCommand(AbstractBulkCommand.java:178) > at org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUtils.java:107) > at > org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang > ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: > sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) > at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) > at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1341) > at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:153) > at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) > at sun.security.ssl.Handshaker.process_record(Handshaker.java:804) > at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) > at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1312) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) > at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:275) > at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:254) > at org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClientConnectionOperator.java:117) > at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:314) > at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:363) > at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:219) > at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195) > at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) > at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108) > at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:186) > at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82) > at org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnection(Apache4xHttpConnectionProvider.java:586) > ... 12 more > Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) > at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292) > at sun.security.validator.Validator.validate(Validator.java:260) > at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:326) > at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:231) > at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:126) > at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1323) > ... 31 more > Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target > at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:196) > at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) > at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) > ... 37 more > _______________________________________________ > Eagle-i-admins mailing list > Eagle-i-admins at open.med.harvard.edu > https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins > > _______________________________________________ > Eagle-i-admins mailing list > Eagle-i-admins at open.med.harvard.edu > https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins From Sophia_Cheng at hms.harvard.edu Tue Aug 19 10:00:14 2014 From: Sophia_Cheng at hms.harvard.edu (Cheng, Sophia) Date: Tue, 19 Aug 2014 10:00:14 -0400 Subject: [Eagle-i-admins] self signed certificate and data-migration script In-Reply-To: <94BCCA0AAC6FA744B6D7ADFF809184B06CF798@ITS-HCWNEM105.ds.vanderbilt.edu> References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD2EF@ITS-HCWNEM105.ds.vanderbilt.edu> <64093948-FEE6-4FDC-9DE0-57FF8035CA03@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CDB47@ITS-HCWNEM105.ds.vanderbilt.edu> <29335D6F-C99E-413C-A43C-86C7C8AC1368@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE619@ITS-HCWNEM105.ds.vanderbilt.edu> <88286FF8-6D90-49F4-9D6C-6FFB994A53B0@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE7EB@ITS-HCWNEM105.ds.vanderbilt.edu> <7E2A4C3F-B052-4546-954C-E98D0675D608@hms.harvard.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CF798@ITS-HCWNEM105.ds.vanderbilt.edu> Message-ID: Hi Neil, I have some sanity checking questions, apologies if they are a bit basic: 1) Verify user login attempt in the repository: +--> In the terminal, open the repository log file located ${REPO_HOME}/logs/repository.log +--> Search the file from the bottom for: whoami (case sensitive) +--> You should see something like ?Ending Request /repository/whoami? +--> In the line above that, verify the parameters for username and roles. The roles should be ?http://eagle-i.org/ont/repo/1.0/Role_Anonymous, http://eagle-i.org/ont/repo/1.0/Role_Authenti cated, http://eagle-i.org/ont/repo/1.0/Role_Superuser' 2) Is the website that you are logging into: https://ori02lt.ea.vanderbilt.edu:8443/repository/admin 3 Can you login to the repository via the website and respond with the information under ?Status and Configuration? Thanks, Sophia On 8/18/14, 3:44 PM, "Norman, Neil" wrote: >That doesn't seem to affect the outcome. I have checked that the >password is correct as I can login to the web site with it, and that user >is listed as an admin. > >[nrrapp at ori02lt ~]$ bash /app001/eaglei/repo/etc/data-migration.sh -u >XXXXXXXXX -p XXXXXX -r https://ori02lt.ea.vanderbilt.edu:8443 >Java info: >/usr/bin/java >java version "1.7.0_51" >OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) > >using classpath : >/app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-datamana >gement.jar:/app001/eaglei/conf > > >***** There are no special procedures for this release. > >***** Standard data migration procedures > >2014-08-18 14:39:39,694 ERROR >org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command >did not proceed. >org.eaglei.services.repository.RepositoryProviderException: Could not >authenticate user. Re-enter username and/or password. > at >org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(St >andardAuthenticationProvider.java:90) > at >org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(St >andardAuthenticationProvider.java:100) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenticat >ionManager.java:253) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenticat >ionManager.java:223) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenticat >ionManager.java:175) > at >org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsS >ecurityProvider.java:88) > at >org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize >(AbstractBulkCommand.java:84) > at >org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndEx >ecuteCommand(AbstractBulkCommand.java:178) > at >org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUt >ils.java:107) > at >org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePre >dicate.java:205) > > >===== Command did not complete. Root cause: Could not authenticate user. >Re-enter username and/or password. >Stack trace for diagnosis: > >org.eaglei.services.repository.RepositoryProviderException: Could not >authenticate user. Re-enter username and/or password. > at >org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(St >andardAuthenticationProvider.java:90) > at >org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(St >andardAuthenticationProvider.java:100) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenticat >ionManager.java:253) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenticat >ionManager.java:223) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenticat >ionManager.java:175) > at >org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(DatatoolsS >ecurityProvider.java:88) > at >org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initialize >(AbstractBulkCommand.java:84) > at >org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndEx >ecuteCommand(AbstractBulkCommand.java:178) > at >org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandUt >ils.java:107) > at >org.eaglei.datatools.datamanagement.command.ChangePredicate.main(ChangePre >dicate.java:205) >[nrrapp at ori02lt ~]$ > >-----Original Message----- >From: Bourges, Daniela [mailto:Daniela_Bourges at hms.harvard.edu] >Sent: Monday, August 18, 2014 14:25 >To: Norman, Neil >Cc: eagle-i-admins at open.med.harvard.edu >Subject: Re: [Eagle-i-admins] self signed certificate and data-migration >script > >Can you try using the hostname in the command? I'm not sure that >localhost is supported. > > > >Dr. Daniela Bourges-Waldegg >Lead Architect, Harvard Catalyst >Harvard Medical School > >Daniela_Bourges at hms.harvard.edu >skype: dbourgesw >phone: 617-384-8898 (NEW) > > > >On Aug 15, 2014, at 17:10, Norman, Neil >wrote: > >> Okay, thanks to Mike I've finally been able to resolve my certificate >>issues. But now I get a *new* error. Anyone run into this before? >> bash /app001/eaglei/repo/etc/data-migration.sh -u xxxx -p xxxxxx -r >> http://localhost:8443 Java info: >> /usr/bin/java >> java version "1.7.0_51" >> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >> OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >> >> using classpath : >> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-data >> management.jar:/app001/eaglei/conf >> >> >> ***** There are no special procedures for this release. >> >> ***** Standard data migration procedures >> >> 2014-08-15 16:06:15,824 ERROR >>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command >>did not proceed. >> org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatools >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initializ >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandU >>tils.java:107) >> at >> org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) >> >> >> ===== Command did not complete. Root cause: Could not authenticate >>user. Re-enter username and/or password. >> Stack trace for diagnosis: >> >> org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatools >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initializ >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandU >>tils.java:107) >> at >> org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) >> >> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >> Sent: Friday, August 15, 2014 14:12 >> To: Norman, Neil >> Cc: Davis, Ross >> Subject: Re: [Eagle-i-admins] self signed certificate and >> data-migration script >> >> Hi Neil, >> >> Is the password you are typing in the same as available in the derby db? >> >> # vim /opt/apache/db-derby-10.10.1.1-bin/bin/setEmbeddedCP >> Add the following line AFTER the comments but BEFORE the actual >> script. Change the location accordingly >> > DERBY_HOME=/opt/Apache/db-derby-10.10.1.1-bin >> # source !$ >> # sudo -u tomcat /usr/share/tomcat7/bin/catalina.sh stop # java >> org.apache.derby.tools.ij >> ij> connect 'jdbc:derby:/opt/eaglei/repo/db/eagle-i-users.derby'; >> ij> select * from users; >> >> Ctrl-D to exit the database before starting Tomcat again >> >> That will let you confirm you are typing the correct username / >>password combination. Another institute was misspelling the username a >>couple of times. Once I pointed out they probably had it misspelled they >>got right in. >> >> -Mike >> >> >> On Aug 15, 2014, at 2:45 PM, "Norman, Neil" >> >> wrote: >> >> >> Okay, making progress. You were correct it was choking on the cert. I >>had to create one for tomcat with the hostname "localhost" and added >>that to my keystore. Now I get the following error. I know this >>password works for that "victri" user that we have. >> Java info: >> /usr/bin/java >> java version "1.7.0_51" >> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >> OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >> >> using classpath : >> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-data >> management.jar:/app001/eaglei/conf >> >> >> ***** There are no special procedures for this release. >> >> ***** Standard data migration procedures >> >> 2014-08-15 13:39:23,632 ERROR >>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command >>did not proceed. >> org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatools >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initializ >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandU >>tils.java:107) >> at >> org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) >> >> >> ===== Command did not complete. Root cause: Could not authenticate >>user. Re-enter username and/or password. >> Stack trace for diagnosis: >> >> org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatools >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initializ >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandU >>tils.java:107) >> at >> org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) >> >> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >> Sent: Thursday, August 14, 2014 11:23 >> To: Norman, Neil >> Subject: Re: [Eagle-i-admins] self signed certificate and >> data-migration script >> >> The INFO warning looks like it can't find your credentials file. >> Does your tomcat/conf/catalina.properties file have the following line? >> common.loader=/app001/eaglei/conf,${catalina.base}/lib,${catalina.base >> }/lib/*.jar,${catalina.home}/lib,${catalina.home}/lib/*.jar >> Does the credentials file exist in that location? >> >> Your ERROR still looks like you need to add the intermediate cert to >>java. Sadly, missing either the server cert or the intermediate cert >>causes the same error "PKIX path building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target" >> >> -Mike >> >> On Aug 14, 2014, at 12:02 PM, "Norman, Neil" >> wrote: >> >> >> >> Okay, that seems to have cleared up the SSL problem, but now it is >>complaining about class path. >> Java info: >> /usr/bin/java >> java version "1.7.0_51" >> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >> OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >> >> using classpath : >> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-data >> management.jar >> >> >> ***** There are no special procedures for this release. >> >> ***** Standard data migration procedures >> >> 2014-08-14 10:59:18,739 INFO org.eaglei.utilities.EIAppsConfiguration - >>org.eaglei.utilities.EIFileException: Could not locate relative file >>eagle-i-apps-credentials.properties in classpath. ; proceeding without >>it. >> 2014-08-14 10:59:19,702 WARN >> org.eaglei.services.connection.Apache4xHttpConnectionProvider - An ssl >> exception occurred performing a request to >> [https://localhost:8443/repository/whoami] >> 2014-08-14 10:59:19,707 ERROR >>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command >>did not proceed. >> org.eaglei.services.repository.RepositoryProviderException: An SSL >>exception has occurred. >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnect >>ion(Apache4xHttpConnectionProvider.java:601) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGet >>Connection(Apache4xHttpConnectionProvider.java:351) >> at >>org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(Co >>nnectionManager.java:214) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:75) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatools >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initializ >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandU >>tils.java:107) >> at >> org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >> sun.security.validator.ValidatorException: PKIX path building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >> at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java >>:1341) >> at >>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:15 >>3) >> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >> at >>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >> at >>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >> at >>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java >>:1312) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(S >>SLConnectionSocketFactory.java:275) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConn >>ectionSocketFactory.java:254) >> at >>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClient >>ConnectionOperator.java:117) >> at >>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(Pool >>ingHttpClientConnectionManager.java:314) >> at >>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientEx >>ec.java:363) >> at >>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java >>:219) >> at >>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195 >>) >> at >>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >> at >>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108 >>) >> at >>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClie >>nt.java:186) >> at >>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClie >>nt.java:82) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnect >>ion(Apache4xHttpConnectionProvider.java:586) >> ... 12 more >> Caused by: sun.security.validator.ValidatorException: PKIX path >>building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >> at >>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:29 >>2) >> at sun.security.validator.Validator.validate(Validator.java:260) >> at >>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java: >>326) >> at >>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.j >>ava:231) >> at >>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManager >>Impl.java:126) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java >>:1323) >> ... 31 more >> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>unable to find valid certification path to requested target >> at >>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPath >>Builder.java:196) >> at >>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >> ... 37 more >> >> >> ===== Command did not complete. Root cause: An SSL exception has >>occurred. >> Stack trace for diagnosis: >> >> org.eaglei.services.repository.RepositoryProviderException: An SSL >>exception has occurred. >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnect >>ion(Apache4xHttpConnectionProvider.java:601) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGet >>Connection(Apache4xHttpConnectionProvider.java:351) >> at >>org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(Co >>nnectionManager.java:214) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:75) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatools >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initializ >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandU >>tils.java:107) >> at >> org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >> sun.security.validator.ValidatorException: PKIX path building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >> at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java >>:1341) >> at >>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:15 >>3) >> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >> at >>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >> at >>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >> at >>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java >>:1312) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(S >>SLConnectionSocketFactory.java:275) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConn >>ectionSocketFactory.java:254) >> at >>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClient >>ConnectionOperator.java:117) >> at >>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(Pool >>ingHttpClientConnectionManager.java:314) >> at >>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientEx >>ec.java:363) >> at >>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java >>:219) >> at >>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195 >>) >> at >>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >> at >>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108 >>) >> at >>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClie >>nt.java:186) >> at >>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClie >>nt.java:82) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnect >>ion(Apache4xHttpConnectionProvider.java:586) >> ... 12 more >> Caused by: sun.security.validator.ValidatorException: PKIX path >>building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >> at >>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:29 >>2) >> at sun.security.validator.Validator.validate(Validator.java:260) >> at >>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java: >>326) >> at >>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.j >>ava:231) >> at >>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManager >>Impl.java:126) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java >>:1323) >> ... 31 more >> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>unable to find valid certification path to requested target >> at >>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPath >>Builder.java:196) >> at >>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >> ... 37 more >> >> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >> Sent: Thursday, August 14, 2014 06:14 >> To: Norman, Neil >> Subject: Re: [Eagle-i-admins] self signed certificate and >> data-migration script >> >> Hi Neil, >> >> It looks like you need to add your server certificate to Java. That >> can be accomplished with the below command >> >> keytool -importcert -alias eaglei -file eagle-i.crt -keystore >> /usr/java/jdk1.7.0_67/jre/lib/security/cacerts -storepass changeit >> >> eagle-i.crt is the server certificate your CA gave you. Also the >>-keystore is the default location for that version of Java but should be >>similar for your version. Do a search for a file called cacerts just in >>case. "changeit" is also the default keystore password. >> >> If that doesn't fix it you may need to import your intermediate cert >> into java keytool -import -trustcacerts -alias caint -file >> intermediateca.cer -keystore >> /usr/java/jdk1.7.0_67/jre/lib/security/cacerts >> >> I can't remember if you need to pass the -storepass argument when doing >>the intermediate certificate or not. >> >> -Mike Carnegie >> On Aug 13, 2014, at 4:41 PM, "Norman, Neil" >> >> wrote: >> >> >> >> >> When trying to run `data-migration.sh` I get SSL errors occurs. I'm >>assuming that it doesn't like my certificate. >> org.eaglei.services.repository.RepositoryProviderException: An SSL >>exception has occurred. >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnect >>ion(Apache4xHttpConnectionProvider.java:601) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttpGet >>Connection(Apache4xHttpConnectionProvider.java:351) >> at >>org.eaglei.services.connection.ConnectionManager.openHttpGetConnection(Co >>nnectionManager.java:214) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:75) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authentica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatools >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initializ >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(CommandU >>tils.java:107) >> at >> org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >> sun.security.validator.ValidatorException: PKIX path building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >> at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java >>:1341) >> at >>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:15 >>3) >> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >> at >>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >> at >>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >> at >>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java >>:1312) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(S >>SLConnectionSocketFactory.java:275) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConn >>ectionSocketFactory.java:254) >> at >>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpClient >>ConnectionOperator.java:117) >> at >>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(Pool >>ingHttpClientConnectionManager.java:314) >> at >>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientEx >>ec.java:363) >> at >>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java >>:219) >> at >>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:195 >>) >> at >>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >> at >>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:108 >>) >> at >>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClie >>nt.java:186) >> at >>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClie >>nt.java:82) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConnect >>ion(Apache4xHttpConnectionProvider.java:586) >> ... 12 more >> Caused by: sun.security.validator.ValidatorException: PKIX path >>building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >> at >>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:29 >>2) >> at sun.security.validator.Validator.validate(Validator.java:260) >> at >>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java: >>326) >> at >>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.j >>ava:231) >> at >>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManager >>Impl.java:126) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java >>:1323) >> ... 31 more >> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>unable to find valid certification path to requested target >> at >>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPath >>Builder.java:196) >> at >>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >> ... 37 more >> _______________________________________________ >> Eagle-i-admins mailing list >> Eagle-i-admins at open.med.harvard.edu >> https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins >> >> _______________________________________________ >> Eagle-i-admins mailing list >> Eagle-i-admins at open.med.harvard.edu >> https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins > >_______________________________________________ >Eagle-i-admins mailing list >Eagle-i-admins at open.med.harvard.edu >https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins From neil.norman at vanderbilt.edu Tue Aug 19 10:53:47 2014 From: neil.norman at vanderbilt.edu (Norman, Neil) Date: Tue, 19 Aug 2014 14:53:47 +0000 Subject: [Eagle-i-admins] self signed certificate and data-migration script In-Reply-To: References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD2EF@ITS-HCWNEM105.ds.vanderbilt.edu> <64093948-FEE6-4FDC-9DE0-57FF8035CA03@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CDB47@ITS-HCWNEM105.ds.vanderbilt.edu> <29335D6F-C99E-413C-A43C-86C7C8AC1368@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE619@ITS-HCWNEM105.ds.vanderbilt.edu> <88286FF8-6D90-49F4-9D6C-6FFB994A53B0@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE7EB@ITS-HCWNEM105.ds.vanderbilt.edu> <7E2A4C3F-B052-4546-954C-E98D0675D608@hms.harvard.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CF798@ITS-HCWNEM105.ds.vanderbilt.edu> Message-ID: <94BCCA0AAC6FA744B6D7ADFF809184B06CFC9F@ITS-HCWNEM105.ds.vanderbilt.edu> The repository.log doesn't have any "whoami" entries in it. I can log into the site and see the info from whoami with my admin user uri username firstname lastname mbox isSuperuser "victri" "true"^^ Accesing that page doesn't add anything to the repository log either. -----Original Message----- From: Cheng, Sophia [mailto:Sophia_Cheng at hms.harvard.edu] Sent: Tuesday, August 19, 2014 09:00 To: Norman, Neil; Bourges, Daniela Cc: eagle-i-admins at open.med.harvard.edu Subject: Re: [Eagle-i-admins] self signed certificate and data-migration script Hi Neil, I have some sanity checking questions, apologies if they are a bit basic: 1) Verify user login attempt in the repository: +--> In the terminal, open the repository log file located ${REPO_HOME}/logs/repository.log +--> Search the file from the bottom for: whoami (case sensitive) You +--> should see something like ?Ending Request /repository/whoami? In +--> the line above that, verify the parameters for username and roles. The roles should be ?http://eagle-i.org/ont/repo/1.0/Role_Anonymous, http://eagle-i.org/ont/repo/1.0/Role_Authenti cated, http://eagle-i.org/ont/repo/1.0/Role_Superuser' 2) Is the website that you are logging into: https://ori02lt.ea.vanderbilt.edu:8443/repository/admin 3 Can you login to the repository via the website and respond with the information under ?Status and Configuration? Thanks, Sophia On 8/18/14, 3:44 PM, "Norman, Neil" wrote: >That doesn't seem to affect the outcome. I have checked that the >password is correct as I can login to the web site with it, and that >user is listed as an admin. > >[nrrapp at ori02lt ~]$ bash /app001/eaglei/repo/etc/data-migration.sh -u >XXXXXXXXX -p XXXXXX -r https://ori02lt.ea.vanderbilt.edu:8443 >Java info: >/usr/bin/java >java version "1.7.0_51" >OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) OpenJDK >64-Bit Server VM (build 24.45-b08, mixed mode) > >using classpath : >/app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-datam >ana >gement.jar:/app001/eaglei/conf > > >***** There are no special procedures for this release. > >***** Standard data migration procedures > >2014-08-18 14:39:39,694 ERROR >org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command >did not proceed. >org.eaglei.services.repository.RepositoryProviderException: Could not >authenticate user. Re-enter username and/or password. > at >org.eaglei.services.authentication.StandardAuthenticationProvider.logIn >(St >andardAuthenticationProvider.java:90) > at >org.eaglei.services.authentication.StandardAuthenticationProvider.logIn >(St >andardAuthenticationProvider.java:100) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >cat >ionManager.java:253) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >cat >ionManager.java:223) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >cat >ionManager.java:175) > at >org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatoo >lsS >ecurityProvider.java:88) > at >org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initial >ize >(AbstractBulkCommand.java:84) > at >org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAn >dEx >ecuteCommand(AbstractBulkCommand.java:178) > at >org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comman >dUt >ils.java:107) > at >org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Change >Pre >dicate.java:205) > > >===== Command did not complete. Root cause: Could not authenticate user. >Re-enter username and/or password. >Stack trace for diagnosis: > >org.eaglei.services.repository.RepositoryProviderException: Could not >authenticate user. Re-enter username and/or password. > at >org.eaglei.services.authentication.StandardAuthenticationProvider.logIn >(St >andardAuthenticationProvider.java:90) > at >org.eaglei.services.authentication.StandardAuthenticationProvider.logIn >(St >andardAuthenticationProvider.java:100) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >cat >ionManager.java:253) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >cat >ionManager.java:223) > at >org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >cat >ionManager.java:175) > at >org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatoo >lsS >ecurityProvider.java:88) > at >org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initial >ize >(AbstractBulkCommand.java:84) > at >org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAn >dEx >ecuteCommand(AbstractBulkCommand.java:178) > at >org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comman >dUt >ils.java:107) > at >org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Change >Pre >dicate.java:205) >[nrrapp at ori02lt ~]$ > >-----Original Message----- >From: Bourges, Daniela [mailto:Daniela_Bourges at hms.harvard.edu] >Sent: Monday, August 18, 2014 14:25 >To: Norman, Neil >Cc: eagle-i-admins at open.med.harvard.edu >Subject: Re: [Eagle-i-admins] self signed certificate and >data-migration script > >Can you try using the hostname in the command? I'm not sure that >localhost is supported. > > > >Dr. Daniela Bourges-Waldegg >Lead Architect, Harvard Catalyst >Harvard Medical School > >Daniela_Bourges at hms.harvard.edu >skype: dbourgesw >phone: 617-384-8898 (NEW) > > > >On Aug 15, 2014, at 17:10, Norman, Neil >wrote: > >> Okay, thanks to Mike I've finally been able to resolve my certificate >>issues. But now I get a *new* error. Anyone run into this before? >> bash /app001/eaglei/repo/etc/data-migration.sh -u xxxx -p xxxxxx -r >> http://localhost:8443 Java info: >> /usr/bin/java >> java version "1.7.0_51" >> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >>OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >> >> using classpath : >> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-dat >> a >> management.jar:/app001/eaglei/conf >> >> >> ***** There are no special procedures for this release. >> >> ***** Standard data migration procedures >> >> 2014-08-15 16:06:15,824 ERROR >>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk >>command did not proceed. >> org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>ols >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>liz >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>ndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>ndU >>tils.java:107) >> at >> >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) >> >> >> ===== Command did not complete. Root cause: Could not authenticate >>user. Re-enter username and/or password. >> Stack trace for diagnosis: >> >> org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>ols >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>liz >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>ndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>ndU >>tils.java:107) >> at >> >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) >> >> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >> Sent: Friday, August 15, 2014 14:12 >> To: Norman, Neil >> Cc: Davis, Ross >> Subject: Re: [Eagle-i-admins] self signed certificate and >> data-migration script >> >> Hi Neil, >> >> Is the password you are typing in the same as available in the derby db? >> >> # vim /opt/apache/db-derby-10.10.1.1-bin/bin/setEmbeddedCP >> Add the following line AFTER the comments but BEFORE the actual >> script. Change the location accordingly >> > DERBY_HOME=/opt/Apache/db-derby-10.10.1.1-bin >> # source !$ >> # sudo -u tomcat /usr/share/tomcat7/bin/catalina.sh stop # java >> org.apache.derby.tools.ij >> ij> connect 'jdbc:derby:/opt/eaglei/repo/db/eagle-i-users.derby'; >> ij> select * from users; >> >> Ctrl-D to exit the database before starting Tomcat again >> >> That will let you confirm you are typing the correct username / >>password combination. Another institute was misspelling the username a >>couple of times. Once I pointed out they probably had it misspelled >>they got right in. >> >> -Mike >> >> >> On Aug 15, 2014, at 2:45 PM, "Norman, Neil" >> >> wrote: >> >> >> Okay, making progress. You were correct it was choking on the cert. >>I had to create one for tomcat with the hostname "localhost" and added >>that to my keystore. Now I get the following error. I know this >>password works for that "victri" user that we have. >> Java info: >> /usr/bin/java >> java version "1.7.0_51" >> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >>OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >> >> using classpath : >> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-dat >> a >> management.jar:/app001/eaglei/conf >> >> >> ***** There are no special procedures for this release. >> >> ***** Standard data migration procedures >> >> 2014-08-15 13:39:23,632 ERROR >>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk >>command did not proceed. >> org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>ols >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>liz >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>ndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>ndU >>tils.java:107) >> at >> >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) >> >> >> ===== Command did not complete. Root cause: Could not authenticate >>user. Re-enter username and/or password. >> Stack trace for diagnosis: >> >> org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>ols >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>liz >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>ndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>ndU >>tils.java:107) >> at >> >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) >> >> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >> Sent: Thursday, August 14, 2014 11:23 >> To: Norman, Neil >> Subject: Re: [Eagle-i-admins] self signed certificate and >> data-migration script >> >> The INFO warning looks like it can't find your credentials file. >> Does your tomcat/conf/catalina.properties file have the following line? >> common.loader=/app001/eaglei/conf,${catalina.base}/lib,${catalina.bas >> e }/lib/*.jar,${catalina.home}/lib,${catalina.home}/lib/*.jar >> Does the credentials file exist in that location? >> >> Your ERROR still looks like you need to add the intermediate cert to >>java. Sadly, missing either the server cert or the intermediate cert >>causes the same error "PKIX path building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target" >> >> -Mike >> >> On Aug 14, 2014, at 12:02 PM, "Norman, Neil" >> wrote: >> >> >> >> Okay, that seems to have cleared up the SSL problem, but now it is >>complaining about class path. >> Java info: >> /usr/bin/java >> java version "1.7.0_51" >> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >>OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >> >> using classpath : >> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-dat >> a >> management.jar >> >> >> ***** There are no special procedures for this release. >> >> ***** Standard data migration procedures >> >> 2014-08-14 10:59:18,739 INFO org.eaglei.utilities.EIAppsConfiguration >>- >>org.eaglei.utilities.EIFileException: Could not locate relative file >>eagle-i-apps-credentials.properties in classpath. ; proceeding without >>it. >> 2014-08-14 10:59:19,702 WARN >> org.eaglei.services.connection.Apache4xHttpConnectionProvider - An >>ssl exception occurred performing a request to >>[https://localhost:8443/repository/whoami] >> 2014-08-14 10:59:19,707 ERROR >>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk >>command did not proceed. >> org.eaglei.services.repository.RepositoryProviderException: An SSL >>exception has occurred. >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>ect >>ion(Apache4xHttpConnectionProvider.java:601) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttp >>Get >>Connection(Apache4xHttpConnectionProvider.java:351) >> at >>org.eaglei.services.connection.ConnectionManager.openHttpGetConnection >>(Co >>nnectionManager.java:214) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:75) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>ols >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>liz >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>ndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>ndU >>tils.java:107) >> at >> >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >> sun.security.validator.ValidatorException: PKIX path building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >> at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>ava >>:1341) >> at >>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java >>:15 >>3) >> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >> at >>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >> at >>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >> at >>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.j >>ava >>:1312) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocke >>t(S >>SLConnectionSocketFactory.java:275) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLC >>onn >>ectionSocketFactory.java:254) >> at >>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpCli >>ent >>ConnectionOperator.java:117) >> at >>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(P >>ool >>ingHttpClientConnectionManager.java:314) >> at >>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClien >>tEx >>ec.java:363) >> at >>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.j >>ava >>:219) >> at >>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java: >>195 >>) >> at >>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >> at >>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java: >>108 >>) >> at >>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpC >>lie >>nt.java:186) >> at >>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpC >>lie >>nt.java:82) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>ect >>ion(Apache4xHttpConnectionProvider.java:586) >> ... 12 more >> Caused by: sun.security.validator.ValidatorException: PKIX path >>building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >> at >>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java >>:29 >>2) >> at sun.security.validator.Validator.validate(Validator.java:260) >> at >>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java: >>326) >> at >>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImp >>l.j >>ava:231) >> at >>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustMana >>ger >>Impl.java:126) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>ava >>:1323) >> ... 31 more >> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>unable to find valid certification path to requested target >> at >>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertP >>ath >>Builder.java:196) >> at >>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >> ... 37 more >> >> >> ===== Command did not complete. Root cause: An SSL exception has >>occurred. >> Stack trace for diagnosis: >> >> org.eaglei.services.repository.RepositoryProviderException: An SSL >>exception has occurred. >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>ect >>ion(Apache4xHttpConnectionProvider.java:601) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttp >>Get >>Connection(Apache4xHttpConnectionProvider.java:351) >> at >>org.eaglei.services.connection.ConnectionManager.openHttpGetConnection >>(Co >>nnectionManager.java:214) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:75) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>ols >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>liz >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>ndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>ndU >>tils.java:107) >> at >> >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >> sun.security.validator.ValidatorException: PKIX path building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >> at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>ava >>:1341) >> at >>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java >>:15 >>3) >> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >> at >>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >> at >>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >> at >>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.j >>ava >>:1312) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocke >>t(S >>SLConnectionSocketFactory.java:275) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLC >>onn >>ectionSocketFactory.java:254) >> at >>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpCli >>ent >>ConnectionOperator.java:117) >> at >>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(P >>ool >>ingHttpClientConnectionManager.java:314) >> at >>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClien >>tEx >>ec.java:363) >> at >>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.j >>ava >>:219) >> at >>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java: >>195 >>) >> at >>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >> at >>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java: >>108 >>) >> at >>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpC >>lie >>nt.java:186) >> at >>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpC >>lie >>nt.java:82) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>ect >>ion(Apache4xHttpConnectionProvider.java:586) >> ... 12 more >> Caused by: sun.security.validator.ValidatorException: PKIX path >>building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >> at >>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java >>:29 >>2) >> at sun.security.validator.Validator.validate(Validator.java:260) >> at >>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java: >>326) >> at >>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImp >>l.j >>ava:231) >> at >>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustMana >>ger >>Impl.java:126) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>ava >>:1323) >> ... 31 more >> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>unable to find valid certification path to requested target >> at >>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertP >>ath >>Builder.java:196) >> at >>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >> ... 37 more >> >> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >> Sent: Thursday, August 14, 2014 06:14 >> To: Norman, Neil >> Subject: Re: [Eagle-i-admins] self signed certificate and >> data-migration script >> >> Hi Neil, >> >> It looks like you need to add your server certificate to Java. That >> can be accomplished with the below command >> >> keytool -importcert -alias eaglei -file eagle-i.crt -keystore >> /usr/java/jdk1.7.0_67/jre/lib/security/cacerts -storepass changeit >> >> eagle-i.crt is the server certificate your CA gave you. Also the >>-keystore is the default location for that version of Java but should >>be similar for your version. Do a search for a file called cacerts >>just in case. "changeit" is also the default keystore password. >> >> If that doesn't fix it you may need to import your intermediate cert >> into java keytool -import -trustcacerts -alias caint -file >> intermediateca.cer -keystore >> /usr/java/jdk1.7.0_67/jre/lib/security/cacerts >> >> I can't remember if you need to pass the -storepass argument when >>doing the intermediate certificate or not. >> >> -Mike Carnegie >> On Aug 13, 2014, at 4:41 PM, "Norman, Neil" >> >> wrote: >> >> >> >> >> When trying to run `data-migration.sh` I get SSL errors occurs. I'm >>assuming that it doesn't like my certificate. >> org.eaglei.services.repository.RepositoryProviderException: An SSL >>exception has occurred. >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>ect >>ion(Apache4xHttpConnectionProvider.java:601) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttp >>Get >>Connection(Apache4xHttpConnectionProvider.java:351) >> at >>org.eaglei.services.connection.ConnectionManager.openHttpGetConnection >>(Co >>nnectionManager.java:214) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:75) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n(S >>tandardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>ica >>tionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>ols >>SecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>liz >>e(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>ndE >>xecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>ndU >>tils.java:107) >> at >> >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >> sun.security.validator.ValidatorException: PKIX path building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >> at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>ava >>:1341) >> at >>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java >>:15 >>3) >> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >> at >>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >> at >>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >> at >>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.j >>ava >>:1312) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >> at >>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocke >>t(S >>SLConnectionSocketFactory.java:275) >> at >>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLC >>onn >>ectionSocketFactory.java:254) >> at >>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpCli >>ent >>ConnectionOperator.java:117) >> at >>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(P >>ool >>ingHttpClientConnectionManager.java:314) >> at >>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClien >>tEx >>ec.java:363) >> at >>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.j >>ava >>:219) >> at >>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java: >>195 >>) >> at >>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >> at >>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java: >>108 >>) >> at >>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpC >>lie >>nt.java:186) >> at >>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpC >>lie >>nt.java:82) >> at >>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>ect >>ion(Apache4xHttpConnectionProvider.java:586) >> ... 12 more >> Caused by: sun.security.validator.ValidatorException: PKIX path >>building failed: >>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>find valid certification path to requested target >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >> at >>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java >>:29 >>2) >> at sun.security.validator.Validator.validate(Validator.java:260) >> at >>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java: >>326) >> at >>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImp >>l.j >>ava:231) >> at >>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustMana >>ger >>Impl.java:126) >> at >>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>ava >>:1323) >> ... 31 more >> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>unable to find valid certification path to requested target >> at >>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertP >>ath >>Builder.java:196) >> at >>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >> at >>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >> ... 37 more >> _______________________________________________ >> Eagle-i-admins mailing list >> Eagle-i-admins at open.med.harvard.edu >> https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins >> >> _______________________________________________ >> Eagle-i-admins mailing list >> Eagle-i-admins at open.med.harvard.edu >> https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins > >_______________________________________________ >Eagle-i-admins mailing list >Eagle-i-admins at open.med.harvard.edu >https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins From Sophia_Cheng at hms.harvard.edu Tue Aug 19 10:57:48 2014 From: Sophia_Cheng at hms.harvard.edu (Cheng, Sophia) Date: Tue, 19 Aug 2014 10:57:48 -0400 Subject: [Eagle-i-admins] self signed certificate and data-migration script In-Reply-To: <94BCCA0AAC6FA744B6D7ADFF809184B06CFC9F@ITS-HCWNEM105.ds.vanderbilt.edu> References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD2EF@ITS-HCWNEM105.ds.vanderbilt.edu> <64093948-FEE6-4FDC-9DE0-57FF8035CA03@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CDB47@ITS-HCWNEM105.ds.vanderbilt.edu> <29335D6F-C99E-413C-A43C-86C7C8AC1368@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE619@ITS-HCWNEM105.ds.vanderbilt.edu> <88286FF8-6D90-49F4-9D6C-6FFB994A53B0@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE7EB@ITS-HCWNEM105.ds.vanderbilt.edu> <7E2A4C3F-B052-4546-954C-E98D0675D608@hms.harvard.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CF798@ITS-HCWNEM105.ds.vanderbilt.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CFC9F@ITS-HCWNEM105.ds.vanderbilt.edu> Message-ID: Hi Norman, 2) Is the website that you are logging into: https://ori02lt.ea.vanderbilt.edu:8443/repository/admin? 3 Can you login to the repository via the website and respond with the information under Status & Configuration. This is on the landing page of the repository admin website after you login. Thanks, Sophia On 8/19/14, 10:53 AM, "Norman, Neil" wrote: >The repository.log doesn't have any "whoami" entries in it. > >I can log into the site and see the info from whoami with my admin user >uri username firstname lastname mbox isSuperuser > "victri" "true"^^ > >Accesing that page doesn't add anything to the repository log either. > >-----Original Message----- >From: Cheng, Sophia [mailto:Sophia_Cheng at hms.harvard.edu] >Sent: Tuesday, August 19, 2014 09:00 >To: Norman, Neil; Bourges, Daniela >Cc: eagle-i-admins at open.med.harvard.edu >Subject: Re: [Eagle-i-admins] self signed certificate and data-migration >script > >Hi Neil, > >I have some sanity checking questions, apologies if they are a bit basic: > >1) Verify user login attempt in the repository: >+--> In the terminal, open the repository log file located >${REPO_HOME}/logs/repository.log >+--> Search the file from the bottom for: whoami (case sensitive) You >+--> should see something like ?Ending Request /repository/whoami? In >+--> the line above that, verify the parameters for username and roles. > The roles should be ?http://eagle-i.org/ont/repo/1.0/Role_Anonymous, >http://eagle-i.org/ont/repo/1.0/Role_Authenti >cated, http://eagle-i.org/ont/repo/1.0/Role_Superuser' >2) Is the website that you are logging into: >https://ori02lt.ea.vanderbilt.edu:8443/repository/admin >3 Can you login to the repository via the website and respond with the >information under ?Status and Configuration? > >Thanks, >Sophia > > >On 8/18/14, 3:44 PM, "Norman, Neil" wrote: > >>That doesn't seem to affect the outcome. I have checked that the >>password is correct as I can login to the web site with it, and that >>user is listed as an admin. >> >>[nrrapp at ori02lt ~]$ bash /app001/eaglei/repo/etc/data-migration.sh -u >>XXXXXXXXX -p XXXXXX -r https://ori02lt.ea.vanderbilt.edu:8443 >>Java info: >>/usr/bin/java >>java version "1.7.0_51" >>OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) OpenJDK >>64-Bit Server VM (build 24.45-b08, mixed mode) >> >>using classpath : >>/app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-datam >>ana >>gement.jar:/app001/eaglei/conf >> >> >>***** There are no special procedures for this release. >> >>***** Standard data migration procedures >> >>2014-08-18 14:39:39,694 ERROR >>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk command >>did not proceed. >>org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn >>(St >>andardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn >>(St >>andardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >>cat >>ionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >>cat >>ionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >>cat >>ionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatoo >>lsS >>ecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initial >>ize >>(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAn >>dEx >>ecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comman >>dUt >>ils.java:107) >> at >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Change >>Pre >>dicate.java:205) >> >> >>===== Command did not complete. Root cause: Could not authenticate user. >>Re-enter username and/or password. >>Stack trace for diagnosis: >> >>org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn >>(St >>andardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logIn >>(St >>andardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >>cat >>ionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >>cat >>ionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authenti >>cat >>ionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datatoo >>lsS >>ecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initial >>ize >>(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupAn >>dEx >>ecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comman >>dUt >>ils.java:107) >> at >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Change >>Pre >>dicate.java:205) >>[nrrapp at ori02lt ~]$ >> >>-----Original Message----- >>From: Bourges, Daniela [mailto:Daniela_Bourges at hms.harvard.edu] >>Sent: Monday, August 18, 2014 14:25 >>To: Norman, Neil >>Cc: eagle-i-admins at open.med.harvard.edu >>Subject: Re: [Eagle-i-admins] self signed certificate and >>data-migration script >> >>Can you try using the hostname in the command? I'm not sure that >>localhost is supported. >> >> >> >>Dr. Daniela Bourges-Waldegg >>Lead Architect, Harvard Catalyst >>Harvard Medical School >> >>Daniela_Bourges at hms.harvard.edu >>skype: dbourgesw >>phone: 617-384-8898 (NEW) >> >> >> >>On Aug 15, 2014, at 17:10, Norman, Neil >>wrote: >> >>> Okay, thanks to Mike I've finally been able to resolve my certificate >>>issues. But now I get a *new* error. Anyone run into this before? >>> bash /app001/eaglei/repo/etc/data-migration.sh -u xxxx -p xxxxxx -r >>> http://localhost:8443 Java info: >>> /usr/bin/java >>> java version "1.7.0_51" >>> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >>>OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >>> >>> using classpath : >>> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-dat >>> a >>> management.jar:/app001/eaglei/conf >>> >>> >>> ***** There are no special procedures for this release. >>> >>> ***** Standard data migration procedures >>> >>> 2014-08-15 16:06:15,824 ERROR >>>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk >>>command did not proceed. >>> org.eaglei.services.repository.RepositoryProviderException: Could not >>>authenticate user. Re-enter username and/or password. >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:90) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >>> ePredicate.java:205) >>> >>> >>> ===== Command did not complete. Root cause: Could not authenticate >>>user. Re-enter username and/or password. >>> Stack trace for diagnosis: >>> >>> org.eaglei.services.repository.RepositoryProviderException: Could not >>>authenticate user. Re-enter username and/or password. >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:90) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >>> ePredicate.java:205) >>> >>> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >>> Sent: Friday, August 15, 2014 14:12 >>> To: Norman, Neil >>> Cc: Davis, Ross >>> Subject: Re: [Eagle-i-admins] self signed certificate and >>> data-migration script >>> >>> Hi Neil, >>> >>> Is the password you are typing in the same as available in the derby >>>db? >>> >>> # vim /opt/apache/db-derby-10.10.1.1-bin/bin/setEmbeddedCP >>> Add the following line AFTER the comments but BEFORE the actual >>> script. Change the location accordingly >>> > DERBY_HOME=/opt/Apache/db-derby-10.10.1.1-bin >>> # source !$ >>> # sudo -u tomcat /usr/share/tomcat7/bin/catalina.sh stop # java >>> org.apache.derby.tools.ij >>> ij> connect 'jdbc:derby:/opt/eaglei/repo/db/eagle-i-users.derby'; >>> ij> select * from users; >>> >>> Ctrl-D to exit the database before starting Tomcat again >>> >>> That will let you confirm you are typing the correct username / >>>password combination. Another institute was misspelling the username a >>>couple of times. Once I pointed out they probably had it misspelled >>>they got right in. >>> >>> -Mike >>> >>> >>> On Aug 15, 2014, at 2:45 PM, "Norman, Neil" >>> >>> wrote: >>> >>> >>> Okay, making progress. You were correct it was choking on the cert. >>>I had to create one for tomcat with the hostname "localhost" and added >>>that to my keystore. Now I get the following error. I know this >>>password works for that "victri" user that we have. >>> Java info: >>> /usr/bin/java >>> java version "1.7.0_51" >>> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >>>OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >>> >>> using classpath : >>> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-dat >>> a >>> management.jar:/app001/eaglei/conf >>> >>> >>> ***** There are no special procedures for this release. >>> >>> ***** Standard data migration procedures >>> >>> 2014-08-15 13:39:23,632 ERROR >>>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk >>>command did not proceed. >>> org.eaglei.services.repository.RepositoryProviderException: Could not >>>authenticate user. Re-enter username and/or password. >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:90) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >>> ePredicate.java:205) >>> >>> >>> ===== Command did not complete. Root cause: Could not authenticate >>>user. Re-enter username and/or password. >>> Stack trace for diagnosis: >>> >>> org.eaglei.services.repository.RepositoryProviderException: Could not >>>authenticate user. Re-enter username and/or password. >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:90) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >>> ePredicate.java:205) >>> >>> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >>> Sent: Thursday, August 14, 2014 11:23 >>> To: Norman, Neil >>> Subject: Re: [Eagle-i-admins] self signed certificate and >>> data-migration script >>> >>> The INFO warning looks like it can't find your credentials file. >>> Does your tomcat/conf/catalina.properties file have the following line? >>> common.loader=/app001/eaglei/conf,${catalina.base}/lib,${catalina.bas >>> e }/lib/*.jar,${catalina.home}/lib,${catalina.home}/lib/*.jar >>> Does the credentials file exist in that location? >>> >>> Your ERROR still looks like you need to add the intermediate cert to >>>java. Sadly, missing either the server cert or the intermediate cert >>>causes the same error "PKIX path building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target" >>> >>> -Mike >>> >>> On Aug 14, 2014, at 12:02 PM, "Norman, Neil" >>> wrote: >>> >>> >>> >>> Okay, that seems to have cleared up the SSL problem, but now it is >>>complaining about class path. >>> Java info: >>> /usr/bin/java >>> java version "1.7.0_51" >>> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >>>OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >>> >>> using classpath : >>> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-dat >>> a >>> management.jar >>> >>> >>> ***** There are no special procedures for this release. >>> >>> ***** Standard data migration procedures >>> >>> 2014-08-14 10:59:18,739 INFO org.eaglei.utilities.EIAppsConfiguration >>>- >>>org.eaglei.utilities.EIFileException: Could not locate relative file >>>eagle-i-apps-credentials.properties in classpath. ; proceeding without >>>it. >>> 2014-08-14 10:59:19,702 WARN >>> org.eaglei.services.connection.Apache4xHttpConnectionProvider - An >>>ssl exception occurred performing a request to >>>[https://localhost:8443/repository/whoami] >>> 2014-08-14 10:59:19,707 ERROR >>>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk >>>command did not proceed. >>> org.eaglei.services.repository.RepositoryProviderException: An SSL >>>exception has occurred. >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>>ect >>>ion(Apache4xHttpConnectionProvider.java:601) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttp >>>Get >>>Connection(Apache4xHttpConnectionProvider.java:351) >>> at >>>org.eaglei.services.connection.ConnectionManager.openHttpGetConnection >>>(Co >>>nnectionManager.java:214) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:75) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >>> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >>> sun.security.validator.ValidatorException: PKIX path building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >>> at >>>sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>>ava >>>:1341) >>> at >>>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java >>>:15 >>>3) >>> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >>> at >>>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >>> at >>>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >>> at >>>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.j >>>ava >>>:1312) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocke >>>t(S >>>SLConnectionSocketFactory.java:275) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLC >>>onn >>>ectionSocketFactory.java:254) >>> at >>>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpCli >>>ent >>>ConnectionOperator.java:117) >>> at >>>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(P >>>ool >>>ingHttpClientConnectionManager.java:314) >>> at >>>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClien >>>tEx >>>ec.java:363) >>> at >>>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.j >>>ava >>>:219) >>> at >>>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java: >>>195 >>>) >>> at >>>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >>> at >>>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java: >>>108 >>>) >>> at >>>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpC >>>lie >>>nt.java:186) >>> at >>>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpC >>>lie >>>nt.java:82) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>>ect >>>ion(Apache4xHttpConnectionProvider.java:586) >>> ... 12 more >>> Caused by: sun.security.validator.ValidatorException: PKIX path >>>building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >>> at >>>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java >>>:29 >>>2) >>> at >>>sun.security.validator.Validator.validate(Validator.java:260) >>> at >>>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java >>>: >>>326) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImp >>>l.j >>>ava:231) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustMana >>>ger >>>Impl.java:126) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>>ava >>>:1323) >>> ... 31 more >>> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>>unable to find valid certification path to requested target >>> at >>>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertP >>>ath >>>Builder.java:196) >>> at >>>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >>> ... 37 more >>> >>> >>> ===== Command did not complete. Root cause: An SSL exception has >>>occurred. >>> Stack trace for diagnosis: >>> >>> org.eaglei.services.repository.RepositoryProviderException: An SSL >>>exception has occurred. >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>>ect >>>ion(Apache4xHttpConnectionProvider.java:601) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttp >>>Get >>>Connection(Apache4xHttpConnectionProvider.java:351) >>> at >>>org.eaglei.services.connection.ConnectionManager.openHttpGetConnection >>>(Co >>>nnectionManager.java:214) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:75) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >>> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >>> sun.security.validator.ValidatorException: PKIX path building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >>> at >>>sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>>ava >>>:1341) >>> at >>>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java >>>:15 >>>3) >>> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >>> at >>>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >>> at >>>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >>> at >>>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.j >>>ava >>>:1312) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocke >>>t(S >>>SLConnectionSocketFactory.java:275) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLC >>>onn >>>ectionSocketFactory.java:254) >>> at >>>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpCli >>>ent >>>ConnectionOperator.java:117) >>> at >>>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(P >>>ool >>>ingHttpClientConnectionManager.java:314) >>> at >>>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClien >>>tEx >>>ec.java:363) >>> at >>>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.j >>>ava >>>:219) >>> at >>>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java: >>>195 >>>) >>> at >>>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >>> at >>>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java: >>>108 >>>) >>> at >>>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpC >>>lie >>>nt.java:186) >>> at >>>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpC >>>lie >>>nt.java:82) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>>ect >>>ion(Apache4xHttpConnectionProvider.java:586) >>> ... 12 more >>> Caused by: sun.security.validator.ValidatorException: PKIX path >>>building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >>> at >>>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java >>>:29 >>>2) >>> at >>>sun.security.validator.Validator.validate(Validator.java:260) >>> at >>>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java >>>: >>>326) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImp >>>l.j >>>ava:231) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustMana >>>ger >>>Impl.java:126) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>>ava >>>:1323) >>> ... 31 more >>> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>>unable to find valid certification path to requested target >>> at >>>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertP >>>ath >>>Builder.java:196) >>> at >>>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >>> ... 37 more >>> >>> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >>> Sent: Thursday, August 14, 2014 06:14 >>> To: Norman, Neil >>> Subject: Re: [Eagle-i-admins] self signed certificate and >>> data-migration script >>> >>> Hi Neil, >>> >>> It looks like you need to add your server certificate to Java. That >>> can be accomplished with the below command >>> >>> keytool -importcert -alias eaglei -file eagle-i.crt -keystore >>> /usr/java/jdk1.7.0_67/jre/lib/security/cacerts -storepass changeit >>> >>> eagle-i.crt is the server certificate your CA gave you. Also the >>>-keystore is the default location for that version of Java but should >>>be similar for your version. Do a search for a file called cacerts >>>just in case. "changeit" is also the default keystore password. >>> >>> If that doesn't fix it you may need to import your intermediate cert >>> into java keytool -import -trustcacerts -alias caint -file >>> intermediateca.cer -keystore >>> /usr/java/jdk1.7.0_67/jre/lib/security/cacerts >>> >>> I can't remember if you need to pass the -storepass argument when >>>doing the intermediate certificate or not. >>> >>> -Mike Carnegie >>> On Aug 13, 2014, at 4:41 PM, "Norman, Neil" >>> >>> wrote: >>> >>> >>> >>> >>> When trying to run `data-migration.sh` I get SSL errors occurs. I'm >>>assuming that it doesn't like my certificate. >>> org.eaglei.services.repository.RepositoryProviderException: An SSL >>>exception has occurred. >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>>ect >>>ion(Apache4xHttpConnectionProvider.java:601) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHttp >>>Get >>>Connection(Apache4xHttpConnectionProvider.java:351) >>> at >>>org.eaglei.services.connection.ConnectionManager.openHttpGetConnection >>>(Co >>>nnectionManager.java:214) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:75) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >>> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >>> sun.security.validator.ValidatorException: PKIX path building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >>> at >>>sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>>ava >>>:1341) >>> at >>>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java >>>:15 >>>3) >>> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >>> at >>>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >>> at >>>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >>> at >>>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.j >>>ava >>>:1312) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocke >>>t(S >>>SLConnectionSocketFactory.java:275) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLC >>>onn >>>ectionSocketFactory.java:254) >>> at >>>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpCli >>>ent >>>ConnectionOperator.java:117) >>> at >>>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(P >>>ool >>>ingHttpClientConnectionManager.java:314) >>> at >>>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClien >>>tEx >>>ec.java:363) >>> at >>>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.j >>>ava >>>:219) >>> at >>>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java: >>>195 >>>) >>> at >>>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >>> at >>>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java: >>>108 >>>) >>> at >>>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpC >>>lie >>>nt.java:186) >>> at >>>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpC >>>lie >>>nt.java:82) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openConn >>>ect >>>ion(Apache4xHttpConnectionProvider.java:586) >>> ... 12 more >>> Caused by: sun.security.validator.ValidatorException: PKIX path >>>building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >>> at >>>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java >>>:29 >>>2) >>> at >>>sun.security.validator.Validator.validate(Validator.java:260) >>> at >>>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java >>>: >>>326) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImp >>>l.j >>>ava:231) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustMana >>>ger >>>Impl.java:126) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.j >>>ava >>>:1323) >>> ... 31 more >>> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>>unable to find valid certification path to requested target >>> at >>>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertP >>>ath >>>Builder.java:196) >>> at >>>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >>> ... 37 more >>> _______________________________________________ >>> Eagle-i-admins mailing list >>> Eagle-i-admins at open.med.harvard.edu >>> https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins >>> >>> _______________________________________________ >>> Eagle-i-admins mailing list >>> Eagle-i-admins at open.med.harvard.edu >>> https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins >> >>_______________________________________________ >>Eagle-i-admins mailing list >>Eagle-i-admins at open.med.harvard.edu >>https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins > From neil.norman at vanderbilt.edu Tue Aug 19 11:00:52 2014 From: neil.norman at vanderbilt.edu (Norman, Neil) Date: Tue, 19 Aug 2014 15:00:52 +0000 Subject: [Eagle-i-admins] self signed certificate and data-migration script In-Reply-To: References: <94BCCA0AAC6FA744B6D7ADFF809184B06CD2EF@ITS-HCWNEM105.ds.vanderbilt.edu> <64093948-FEE6-4FDC-9DE0-57FF8035CA03@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CDB47@ITS-HCWNEM105.ds.vanderbilt.edu> <29335D6F-C99E-413C-A43C-86C7C8AC1368@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE619@ITS-HCWNEM105.ds.vanderbilt.edu> <88286FF8-6D90-49F4-9D6C-6FFB994A53B0@hmc.psu.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CE7EB@ITS-HCWNEM105.ds.vanderbilt.edu> <7E2A4C3F-B052-4546-954C-E98D0675D608@hms.harvard.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CF798@ITS-HCWNEM105.ds.vanderbilt.edu> <94BCCA0AAC6FA744B6D7ADFF809184B06CFC9F@ITS-HCWNEM105.ds.vanderbilt.edu> Message-ID: <94BCCA0AAC6FA744B6D7ADFF809184B06CFD24@ITS-HCWNEM105.ds.vanderbilt.edu> Status and Configuration Repository webapp version: 3.0.4, built 2014-07-09 20:46:20, SCM revision 17340 (on trunk) OpenRDF Sesame Version: 2.6.10 Java info: Oracle Corporation version 1.7.0_51 JVM info: Oracle Corporation version 24.45-b08, named OpenJDK 64-Bit Server VM, installed in /usr/lib/jvm/java-1.7.0-openjdk-1.7.0.51.x86_64/jre JVM Memory: 204,472,320 bytes allocated, 118,144,992 bytes free, 954,728,448 bytes maximum available. More Details... Default RDF Namespace: https://testeagle-i.mc.vanderbilt.edu/i/ Home Directory: /app001/eaglei/repo Log Directory: /app001/eaglei/repo/logs Dissemination XSLT stylesheet: repository/styles/example.xsl Uptime: 19:21:22 hrs, started 2014-08-18 14:39:09 CDT -----Original Message----- From: Cheng, Sophia [mailto:Sophia_Cheng at hms.harvard.edu] Sent: Tuesday, August 19, 2014 09:58 To: Norman, Neil; Bourges, Daniela Cc: eagle-i-admins at open.med.harvard.edu Subject: Re: [Eagle-i-admins] self signed certificate and data-migration script Hi Norman, 2) Is the website that you are logging into: https://ori02lt.ea.vanderbilt.edu:8443/repository/admin? 3 Can you login to the repository via the website and respond with the information under Status & Configuration. This is on the landing page of the repository admin website after you login. Thanks, Sophia On 8/19/14, 10:53 AM, "Norman, Neil" wrote: >The repository.log doesn't have any "whoami" entries in it. > >I can log into the site and see the info from whoami with my admin user >uri username firstname lastname mbox isSuperuser > "victri" "true"^^ > >Accesing that page doesn't add anything to the repository log either. > >-----Original Message----- >From: Cheng, Sophia [mailto:Sophia_Cheng at hms.harvard.edu] >Sent: Tuesday, August 19, 2014 09:00 >To: Norman, Neil; Bourges, Daniela >Cc: eagle-i-admins at open.med.harvard.edu >Subject: Re: [Eagle-i-admins] self signed certificate and >data-migration script > >Hi Neil, > >I have some sanity checking questions, apologies if they are a bit basic: > >1) Verify user login attempt in the repository: >+--> In the terminal, open the repository log file located >${REPO_HOME}/logs/repository.log >+--> Search the file from the bottom for: whoami (case sensitive) You >+--> should see something like ?Ending Request /repository/whoami? In >+--> the line above that, verify the parameters for username and roles. > The roles should be ?http://eagle-i.org/ont/repo/1.0/Role_Anonymous, >http://eagle-i.org/ont/repo/1.0/Role_Authenti >cated, http://eagle-i.org/ont/repo/1.0/Role_Superuser' >2) Is the website that you are logging into: >https://ori02lt.ea.vanderbilt.edu:8443/repository/admin >3 Can you login to the repository via the website and respond with the >information under ?Status and Configuration? > >Thanks, >Sophia > > >On 8/18/14, 3:44 PM, "Norman, Neil" wrote: > >>That doesn't seem to affect the outcome. I have checked that the >>password is correct as I can login to the web site with it, and that >>user is listed as an admin. >> >>[nrrapp at ori02lt ~]$ bash /app001/eaglei/repo/etc/data-migration.sh -u >>XXXXXXXXX -p XXXXXX -r https://ori02lt.ea.vanderbilt.edu:8443 >>Java info: >>/usr/bin/java >>java version "1.7.0_51" >>OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >>OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >> >>using classpath : >>/app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-data >>m >>ana >>gement.jar:/app001/eaglei/conf >> >> >>***** There are no special procedures for this release. >> >>***** Standard data migration procedures >> >>2014-08-18 14:39:39,694 ERROR >>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk >>command did not proceed. >>org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n >>(St >>andardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n >>(St >>andardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>i >>cat >>ionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>i >>cat >>ionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>i >>cat >>ionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>o >>lsS >>ecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>l >>ize >>(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>n >>dEx >>ecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>n >>dUt >>ils.java:107) >> at >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >>e >>Pre >>dicate.java:205) >> >> >>===== Command did not complete. Root cause: Could not authenticate user. >>Re-enter username and/or password. >>Stack trace for diagnosis: >> >>org.eaglei.services.repository.RepositoryProviderException: Could not >>authenticate user. Re-enter username and/or password. >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n >>(St >>andardAuthenticationProvider.java:90) >> at >>org.eaglei.services.authentication.StandardAuthenticationProvider.logI >>n >>(St >>andardAuthenticationProvider.java:100) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>i >>cat >>ionManager.java:253) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>i >>cat >>ionManager.java:223) >> at >>org.eaglei.services.authentication.AuthenticationManager.logIn(Authent >>i >>cat >>ionManager.java:175) >> at >>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datato >>o >>lsS >>ecurityProvider.java:88) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initia >>l >>ize >>(AbstractBulkCommand.java:84) >> at >>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setupA >>n >>dEx >>ecuteCommand(AbstractBulkCommand.java:178) >> at >>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comma >>n >>dUt >>ils.java:107) >> at >>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chang >>e >>Pre >>dicate.java:205) >>[nrrapp at ori02lt ~]$ >> >>-----Original Message----- >>From: Bourges, Daniela [mailto:Daniela_Bourges at hms.harvard.edu] >>Sent: Monday, August 18, 2014 14:25 >>To: Norman, Neil >>Cc: eagle-i-admins at open.med.harvard.edu >>Subject: Re: [Eagle-i-admins] self signed certificate and >>data-migration script >> >>Can you try using the hostname in the command? I'm not sure that >>localhost is supported. >> >> >> >>Dr. Daniela Bourges-Waldegg >>Lead Architect, Harvard Catalyst >>Harvard Medical School >> >>Daniela_Bourges at hms.harvard.edu >>skype: dbourgesw >>phone: 617-384-8898 (NEW) >> >> >> >>On Aug 15, 2014, at 17:10, Norman, Neil >>wrote: >> >>> Okay, thanks to Mike I've finally been able to resolve my >>>certificate issues. But now I get a *new* error. Anyone run into this before? >>> bash /app001/eaglei/repo/etc/data-migration.sh -u xxxx -p xxxxxx -r >>> http://localhost:8443 Java info: >>> /usr/bin/java >>> java version "1.7.0_51" >>> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >>>OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >>> >>> using classpath : >>> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-da >>> t >>> a >>> management.jar:/app001/eaglei/conf >>> >>> >>> ***** There are no special procedures for this release. >>> >>> ***** Standard data migration procedures >>> >>> 2014-08-15 16:06:15,824 ERROR >>>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk >>>command did not proceed. >>> org.eaglei.services.repository.RepositoryProviderException: Could >>>not authenticate user. Re-enter username and/or password. >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:90) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datat >>>o >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initi >>>a >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setup >>>A >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comm >>>a >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chan >>>g >>> ePredicate.java:205) >>> >>> >>> ===== Command did not complete. Root cause: Could not authenticate >>>user. Re-enter username and/or password. >>> Stack trace for diagnosis: >>> >>> org.eaglei.services.repository.RepositoryProviderException: Could >>>not authenticate user. Re-enter username and/or password. >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:90) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datat >>>o >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initi >>>a >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setup >>>A >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comm >>>a >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chan >>>g >>> ePredicate.java:205) >>> >>> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >>> Sent: Friday, August 15, 2014 14:12 >>> To: Norman, Neil >>> Cc: Davis, Ross >>> Subject: Re: [Eagle-i-admins] self signed certificate and >>> data-migration script >>> >>> Hi Neil, >>> >>> Is the password you are typing in the same as available in the derby >>>db? >>> >>> # vim /opt/apache/db-derby-10.10.1.1-bin/bin/setEmbeddedCP >>> Add the following line AFTER the comments but BEFORE the actual >>> script. Change the location accordingly >>> > DERBY_HOME=/opt/Apache/db-derby-10.10.1.1-bin >>> # source !$ >>> # sudo -u tomcat /usr/share/tomcat7/bin/catalina.sh stop # java >>> org.apache.derby.tools.ij >>> ij> connect 'jdbc:derby:/opt/eaglei/repo/db/eagle-i-users.derby'; >>> ij> select * from users; >>> >>> Ctrl-D to exit the database before starting Tomcat again >>> >>> That will let you confirm you are typing the correct username / >>>password combination. Another institute was misspelling the username >>>a couple of times. Once I pointed out they probably had it misspelled >>>they got right in. >>> >>> -Mike >>> >>> >>> On Aug 15, 2014, at 2:45 PM, "Norman, Neil" >>> >>> wrote: >>> >>> >>> Okay, making progress. You were correct it was choking on the cert. >>>I had to create one for tomcat with the hostname "localhost" and >>>added that to my keystore. Now I get the following error. I know >>>this password works for that "victri" user that we have. >>> Java info: >>> /usr/bin/java >>> java version "1.7.0_51" >>> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >>>OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >>> >>> using classpath : >>> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-da >>> t >>> a >>> management.jar:/app001/eaglei/conf >>> >>> >>> ***** There are no special procedures for this release. >>> >>> ***** Standard data migration procedures >>> >>> 2014-08-15 13:39:23,632 ERROR >>>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk >>>command did not proceed. >>> org.eaglei.services.repository.RepositoryProviderException: Could >>>not authenticate user. Re-enter username and/or password. >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:90) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datat >>>o >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initi >>>a >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setup >>>A >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comm >>>a >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chan >>>g >>> ePredicate.java:205) >>> >>> >>> ===== Command did not complete. Root cause: Could not authenticate >>>user. Re-enter username and/or password. >>> Stack trace for diagnosis: >>> >>> org.eaglei.services.repository.RepositoryProviderException: Could >>>not authenticate user. Re-enter username and/or password. >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:90) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datat >>>o >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initi >>>a >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setup >>>A >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comm >>>a >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chan >>>g >>> ePredicate.java:205) >>> >>> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >>> Sent: Thursday, August 14, 2014 11:23 >>> To: Norman, Neil >>> Subject: Re: [Eagle-i-admins] self signed certificate and >>> data-migration script >>> >>> The INFO warning looks like it can't find your credentials file. >>> Does your tomcat/conf/catalina.properties file have the following line? >>> common.loader=/app001/eaglei/conf,${catalina.base}/lib,${catalina.ba >>> s e }/lib/*.jar,${catalina.home}/lib,${catalina.home}/lib/*.jar >>> Does the credentials file exist in that location? >>> >>> Your ERROR still looks like you need to add the intermediate cert to >>>java. Sadly, missing either the server cert or the intermediate cert >>>causes the same error "PKIX path building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target" >>> >>> -Mike >>> >>> On Aug 14, 2014, at 12:02 PM, "Norman, Neil" >>> wrote: >>> >>> >>> >>> Okay, that seems to have cleared up the SSL problem, but now it is >>>complaining about class path. >>> Java info: >>> /usr/bin/java >>> java version "1.7.0_51" >>> OpenJDK Runtime Environment (rhel-2.4.4.1.el6_5-x86_64 u51-b02) >>>OpenJDK 64-Bit Server VM (build 24.45-b08, mixed mode) >>> >>> using classpath : >>> /app001/eaglei/repo/etc:/app001/eaglei/repo/etc/eagle-i-datatools-da >>> t >>> a >>> management.jar >>> >>> >>> ***** There are no special procedures for this release. >>> >>> ***** Standard data migration procedures >>> >>> 2014-08-14 10:59:18,739 INFO >>>org.eaglei.utilities.EIAppsConfiguration >>>- >>>org.eaglei.utilities.EIFileException: Could not locate relative file >>>eagle-i-apps-credentials.properties in classpath. ; proceeding >>>without it. >>> 2014-08-14 10:59:19,702 WARN >>> org.eaglei.services.connection.Apache4xHttpConnectionProvider - An >>>ssl exception occurred performing a request to >>>[https://localhost:8443/repository/whoami] >>> 2014-08-14 10:59:19,707 ERROR >>>org.eaglei.datatools.datamanagement.command.CommandUtils - Bulk >>>command did not proceed. >>> org.eaglei.services.repository.RepositoryProviderException: An SSL >>>exception has occurred. >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openCon >>>n >>>ect >>>ion(Apache4xHttpConnectionProvider.java:601) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHtt >>>p >>>Get >>>Connection(Apache4xHttpConnectionProvider.java:351) >>> at >>>org.eaglei.services.connection.ConnectionManager.openHttpGetConnectio >>>n >>>(Co >>>nnectionManager.java:214) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:75) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datat >>>o >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initi >>>a >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setup >>>A >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comm >>>a >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chan >>>g >>> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >>> sun.security.validator.ValidatorException: PKIX path building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >>> at >>>sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker. >>>j >>>ava >>>:1341) >>> at >>>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.jav >>>a >>>:15 >>>3) >>> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >>> at >>>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >>> at >>>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >>> at >>>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl. >>>j >>>ava >>>:1312) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSock >>>e >>>t(S >>>SLConnectionSocketFactory.java:275) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSL >>>C >>>onn >>>ectionSocketFactory.java:254) >>> at >>>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpCl >>>i >>>ent >>>ConnectionOperator.java:117) >>> at >>>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect( >>>P >>>ool >>>ingHttpClientConnectionManager.java:314) >>> at >>>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClie >>>n >>>tEx >>>ec.java:363) >>> at >>>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec. >>>j >>>ava >>>:219) >>> at >>>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java: >>>195 >>>) >>> at >>>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >>> at >>>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java: >>>108 >>>) >>> at >>>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttp >>>C >>>lie >>>nt.java:186) >>> at >>>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttp >>>C >>>lie >>>nt.java:82) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openCon >>>n >>>ect >>>ion(Apache4xHttpConnectionProvider.java:586) >>> ... 12 more >>> Caused by: sun.security.validator.ValidatorException: PKIX path >>>building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >>> at >>>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.jav >>>a >>>:29 >>>2) >>> at >>>sun.security.validator.Validator.validate(Validator.java:260) >>> at >>>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.j >>>ava >>>: >>>326) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerIm >>>p >>>l.j >>>ava:231) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustMan >>>a >>>ger >>>Impl.java:126) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker. >>>j >>>ava >>>:1323) >>> ... 31 more >>> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>>unable to find valid certification path to requested target >>> at >>>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCert >>>P >>>ath >>>Builder.java:196) >>> at >>>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >>> ... 37 more >>> >>> >>> ===== Command did not complete. Root cause: An SSL exception has >>>occurred. >>> Stack trace for diagnosis: >>> >>> org.eaglei.services.repository.RepositoryProviderException: An SSL >>>exception has occurred. >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openCon >>>n >>>ect >>>ion(Apache4xHttpConnectionProvider.java:601) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHtt >>>p >>>Get >>>Connection(Apache4xHttpConnectionProvider.java:351) >>> at >>>org.eaglei.services.connection.ConnectionManager.openHttpGetConnectio >>>n >>>(Co >>>nnectionManager.java:214) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:75) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datat >>>o >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initi >>>a >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setup >>>A >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comm >>>a >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chan >>>g >>> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >>> sun.security.validator.ValidatorException: PKIX path building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >>> at >>>sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker. >>>j >>>ava >>>:1341) >>> at >>>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.jav >>>a >>>:15 >>>3) >>> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >>> at >>>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >>> at >>>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >>> at >>>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl. >>>j >>>ava >>>:1312) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSock >>>e >>>t(S >>>SLConnectionSocketFactory.java:275) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSL >>>C >>>onn >>>ectionSocketFactory.java:254) >>> at >>>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpCl >>>i >>>ent >>>ConnectionOperator.java:117) >>> at >>>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect( >>>P >>>ool >>>ingHttpClientConnectionManager.java:314) >>> at >>>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClie >>>n >>>tEx >>>ec.java:363) >>> at >>>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec. >>>j >>>ava >>>:219) >>> at >>>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java: >>>195 >>>) >>> at >>>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >>> at >>>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java: >>>108 >>>) >>> at >>>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttp >>>C >>>lie >>>nt.java:186) >>> at >>>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttp >>>C >>>lie >>>nt.java:82) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openCon >>>n >>>ect >>>ion(Apache4xHttpConnectionProvider.java:586) >>> ... 12 more >>> Caused by: sun.security.validator.ValidatorException: PKIX path >>>building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >>> at >>>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.jav >>>a >>>:29 >>>2) >>> at >>>sun.security.validator.Validator.validate(Validator.java:260) >>> at >>>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.j >>>ava >>>: >>>326) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerIm >>>p >>>l.j >>>ava:231) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustMan >>>a >>>ger >>>Impl.java:126) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker. >>>j >>>ava >>>:1323) >>> ... 31 more >>> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>>unable to find valid certification path to requested target >>> at >>>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCert >>>P >>>ath >>>Builder.java:196) >>> at >>>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >>> ... 37 more >>> >>> From: Mike Carnegie [mailto:mcarnegie at hmc.psu.edu] >>> Sent: Thursday, August 14, 2014 06:14 >>> To: Norman, Neil >>> Subject: Re: [Eagle-i-admins] self signed certificate and >>> data-migration script >>> >>> Hi Neil, >>> >>> It looks like you need to add your server certificate to Java. That >>> can be accomplished with the below command >>> >>> keytool -importcert -alias eaglei -file eagle-i.crt -keystore >>> /usr/java/jdk1.7.0_67/jre/lib/security/cacerts -storepass changeit >>> >>> eagle-i.crt is the server certificate your CA gave you. Also the >>>-keystore is the default location for that version of Java but should >>>be similar for your version. Do a search for a file called cacerts >>>just in case. "changeit" is also the default keystore password. >>> >>> If that doesn't fix it you may need to import your intermediate cert >>> into java keytool -import -trustcacerts -alias caint -file >>> intermediateca.cer -keystore >>> /usr/java/jdk1.7.0_67/jre/lib/security/cacerts >>> >>> I can't remember if you need to pass the -storepass argument when >>>doing the intermediate certificate or not. >>> >>> -Mike Carnegie >>> On Aug 13, 2014, at 4:41 PM, "Norman, Neil" >>> >>> wrote: >>> >>> >>> >>> >>> When trying to run `data-migration.sh` I get SSL errors occurs. I'm >>>assuming that it doesn't like my certificate. >>> org.eaglei.services.repository.RepositoryProviderException: An SSL >>>exception has occurred. >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openCon >>>n >>>ect >>>ion(Apache4xHttpConnectionProvider.java:601) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openHtt >>>p >>>Get >>>Connection(Apache4xHttpConnectionProvider.java:351) >>> at >>>org.eaglei.services.connection.ConnectionManager.openHttpGetConnectio >>>n >>>(Co >>>nnectionManager.java:214) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:75) >>> at >>>org.eaglei.services.authentication.StandardAuthenticationProvider.log >>>I >>>n(S >>>tandardAuthenticationProvider.java:100) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:253) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:223) >>> at >>>org.eaglei.services.authentication.AuthenticationManager.logIn(Authen >>>t >>>ica >>>tionManager.java:175) >>> at >>>org.eaglei.datatools.repository.DatatoolsSecurityProvider.login(Datat >>>o >>>ols >>>SecurityProvider.java:88) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.initi >>>a >>>liz >>>e(AbstractBulkCommand.java:84) >>> at >>>org.eaglei.datatools.datamanagement.command.AbstractBulkCommand.setup >>>A >>>ndE >>>xecuteCommand(AbstractBulkCommand.java:178) >>> at >>>org.eaglei.datatools.datamanagement.command.CommandUtils.execute(Comm >>>a >>>ndU >>>tils.java:107) >>> at >>> >>>org.eaglei.datatools.datamanagement.command.ChangePredicate.main(Chan >>>g >>> ePredicate.java:205) Caused by: javax.net.ssl.SSLHandshakeException: >>> sun.security.validator.ValidatorException: PKIX path building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at sun.security.ssl.Alerts.getSSLException(Alerts.java:192) >>> at >>>sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1884) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:276) >>> at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:270) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker. >>>j >>>ava >>>:1341) >>> at >>>sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.jav >>>a >>>:15 >>>3) >>> at sun.security.ssl.Handshaker.processLoop(Handshaker.java:868) >>> at >>>sun.security.ssl.Handshaker.process_record(Handshaker.java:804) >>> at >>>sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1016) >>> at >>>sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl. >>>j >>>ava >>>:1312) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1339) >>> at >>>sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1323) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSock >>>e >>>t(S >>>SLConnectionSocketFactory.java:275) >>> at >>>org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSL >>>C >>>onn >>>ectionSocketFactory.java:254) >>> at >>>org.apache.http.impl.conn.HttpClientConnectionOperator.connect(HttpCl >>>i >>>ent >>>ConnectionOperator.java:117) >>> at >>>org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect( >>>P >>>ool >>>ingHttpClientConnectionManager.java:314) >>> at >>>org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClie >>>n >>>tEx >>>ec.java:363) >>> at >>>org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec. >>>j >>>ava >>>:219) >>> at >>>org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java: >>>195 >>>) >>> at >>>org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:86) >>> at >>>org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java: >>>108 >>>) >>> at >>>org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttp >>>C >>>lie >>>nt.java:186) >>> at >>>org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttp >>>C >>>lie >>>nt.java:82) >>> at >>>org.eaglei.services.connection.Apache4xHttpConnectionProvider.openCon >>>n >>>ect >>>ion(Apache4xHttpConnectionProvider.java:586) >>> ... 12 more >>> Caused by: sun.security.validator.ValidatorException: PKIX path >>>building failed: >>>sun.security.provider.certpath.SunCertPathBuilderException: unable to >>>find valid certification path to requested target >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:385) >>> at >>>sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.jav >>>a >>>:29 >>>2) >>> at >>>sun.security.validator.Validator.validate(Validator.java:260) >>> at >>>sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.j >>>ava >>>: >>>326) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerIm >>>p >>>l.j >>>ava:231) >>> at >>>sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustMan >>>a >>>ger >>>Impl.java:126) >>> at >>>sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker. >>>j >>>ava >>>:1323) >>> ... 31 more >>> Caused by: sun.security.provider.certpath.SunCertPathBuilderException: >>>unable to find valid certification path to requested target >>> at >>>sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCert >>>P >>>ath >>>Builder.java:196) >>> at >>>java.security.cert.CertPathBuilder.build(CertPathBuilder.java:268) >>> at >>>sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:380) >>> ... 37 more >>> _______________________________________________ >>> Eagle-i-admins mailing list >>> Eagle-i-admins at open.med.harvard.edu >>> https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins >>> >>> _______________________________________________ >>> Eagle-i-admins mailing list >>> Eagle-i-admins at open.med.harvard.edu >>> https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins >> >>_______________________________________________ >>Eagle-i-admins mailing list >>Eagle-i-admins at open.med.harvard.edu >>https://open.med.harvard.edu/mailman/listinfo/eagle-i-admins > From jlease at hmc.psu.edu Wed Aug 20 13:57:40 2014 From: jlease at hmc.psu.edu (Lease, Joshua) Date: Wed, 20 Aug 2014 17:57:40 +0000 Subject: [Eagle-i-admins] SWEET Select a Resource Drop Down Message-ID: Admins, When logging into SWEET, the select a resource drop down displays "?Loading?? until it loads the organizations. Occasionally, it fails to load the organizations and just continues to display ??Loading??. Has anyone else experienced this behavior? Thanks, Joshua Lease *****E-Mail Confidentiality Notice***** This message (including any attachments) contains information intended for a specific individual(s) and purpose that may be privileged, confidential or otherwise protected from disclosure pursuant to applicable law. Any inappropriate use, distribution or copying of the message is strictly prohibited and may subject you to criminal or civil penalty. If you have received this transmission in error, please reply to the sender indicating this error and delete the transmission from your system immediately. -------------- next part -------------- An HTML attachment was scrubbed... URL: From Marc_Ciriello at hms.harvard.edu Wed Aug 20 14:25:26 2014 From: Marc_Ciriello at hms.harvard.edu (Ciriello, Marc) Date: Wed, 20 Aug 2014 14:25:26 -0400 Subject: [Eagle-i-admins] SWEET Select a Resource Drop Down In-Reply-To: Message-ID: Hi Joshua: Yes, that is a known bug. Refreshing the page forces that drop down to populate properly, however. Marc Marc Ciriello Project Manager Harvard Catalyst | The Harvard Clinical and Translational Science Center eagle-i @ Harvard University NEW: 617.384.8896 www.eagle-i.net Twitter: @eagleinetwork Like us on Facebook From: "Lease, Joshua" > Date: Wed, 20 Aug 2014 13:57:40 -0400 To: "eagle-i-admins at open.med.harvard.edu" > Subject: [Eagle-i-admins] SWEET Select a Resource Drop Down Admins, When logging into SWEET, the select a resource drop down displays "?Loading?? until it loads the organizations. Occasionally, it fails to load the organizations and just continues to display ??Loading??. Has anyone else experienced this behavior? Thanks, Joshua Lease *****E-Mail Confidentiality Notice***** This message (including any attachments) contains information intended for a specific individual(s) and purpose that may be privileged, confidential or otherwise protected from disclosure pursuant to applicable law. Any inappropriate use, distribution or copying of the message is strictly prohibited and may subject you to criminal or civil penalty. If you have received this transmission in error, please reply to the sender indicating this error and delete the transmission from your system immediately. -------------- next part -------------- An HTML attachment was scrubbed... URL: