PubMan 7 1 Problems
PubMan 7.1 Release Problems[edit]
Fedora[edit]
Core Infrastructure[edit]
- FIZ: AuthorizationException appears randomly
2012-09-10 11:42:53,490 ERROR [de.mpg.escidoc.pubman.ItemControllerSessionBean] Could not submit item.
de.mpg.escidoc.services.common.exceptions.TechnicalException:
<exception>
<title><h1>302 Authorization failed. </h1></title>
<message><p>Access denied [de.escidoc.core.om.service.interfaces.ItemHandlerInterface, submit, ESCIDOC-B3YnctYpWl1347270124227, escidoc:753606]</p></message>
<class><p>de.escidoc.core.common.exceptions.application.security.AuthorizationException</p></class>
</exception>
2012-09-10 11:42:53,490 ERROR [de.mpg.escidoc.pubman.ItemControllerSessionBean] Could not submit item.
de.mpg.escidoc.services.common.exceptions.TechnicalException:
<exception>
<title><h1>302 Authorization failed. </h1></title>
<message><p>Access denied [de.escidoc.core.om.service.interfaces.ItemHandlerInterface, submit, ESCIDOC-B3YnctYpWl1347270124227, escidoc:753606]</p></message>
<class><p>de.escidoc.core.common.exceptions.application.security.AuthorizationException</p></class>
</exception>
...
2012-09-10 11:42:53,716 INFO [javax.enterprise.resource.webcontainer.jsf.lifecycle] WARNING: FacesMessage(s) have been enqueued, but may not have been displayed.
sourceId=null[severity=(ERROR 2), summary=(The last operation did not complete for an unknown reason.), detail=(No Exception was set to display.)]
sourceId=null[severity=(ERROR 2), summary=(
<exception>
<title><h1>302 Authorization failed. </h1></title>
<message><p>Access denied [de.escidoc.core.om.service.interfaces.ItemHandlerInterface, submit, ESCIDOC-B3YnctYpWl1347270124227, escidoc:753606]</p></message>
<class><p>de.escidoc.core.common.exceptions.application.security.AuthorizationException</p></class>
</exception>), detail=( at de.mpg.escidoc.services.pubman.exceptions.ExceptionHandler (93)
at de.mpg.escidoc.services.pubman.depositing.PubItemDepositingBean (526)
at sun.reflect.NativeMethodAccessorImpl (-2)
at sun.reflect.NativeMethodAccessorImpl (39)
at sun.reflect.DelegatingMethodAccessorImpl (25)
at java.lang.reflect.Method (597)
at org.jboss.aop.joinpoint.MethodInvocation (112)
at org.jboss.ejb3.interceptor.InvocationContextImpl (166)
at de.mpg.escidoc.services.common.logging.LogMethodDurationInterceptor (67)
at sun.reflect.GeneratedMethodAccessor486 (-1)
at sun.reflect.DelegatingMethodAccessorImpl (25)
at java.lang.reflect.Method (597)
at org.jboss.ejb3.interceptor.InvocationContextImpl (118)
at de.mpg.escidoc.services.common.logging.LogStartEndInterceptor (68)
at sun.reflect.GeneratedMethodAccessor485 (-1)
at sun.reflect.DelegatingMethodAccessorImpl (25)
at java.lang.reflect.Method (597)
at org.jboss.ejb3.interceptor.InvocationContextImpl (118)
at org.jboss.ejb3.interceptor.EJB3InterceptorsInterceptor (63)
at org.jboss.aop.joinpoint.MethodInvocation (101)
at org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor (54)
at org.jboss.aop.joinpoint.MethodInvocation (101)
at org.jboss.ejb3.AllowedOperationsInterceptor (47)
at org.jboss.aop.joinpoint.MethodInvocation (101)
at org.jboss.aspects.tx.TxPolicy (66)
at org.jboss.aspects.tx.TxInterceptor$NotSupported (112)
at org.jboss.aop.joinpoint.MethodInvocation (101)
at org.jboss.aspects.tx.TxPropagationInterceptor (95)
at org.jboss.aop.joinpoint.MethodInvocation (101)
at org.jboss.ejb3.stateless.StatelessInstanceInterceptor (62)
at org.jboss.aop.joinpoint.MethodInvocation (101)
at org.jboss.aspects.security.AuthenticationInterceptor (77)
at org.jboss.ejb3.security.Ejb3AuthenticationInterceptor (110)
at org.jboss.aop.joinpoint.MethodInvocation (101)
at org.jboss.ejb3.ENCPropagationInterceptor (46)
at org.jboss.aop.joinpoint.MethodInvocation (101)
at org.jboss.ejb3.asynchronous.AsynchronousInterceptor (106)
at org.jboss.aop.joinpoint.MethodInvocation (101)
at org.jboss.ejb3.stateless.StatelessContainer (304)
at org.jboss.ejb3.remoting.IsLocalInterceptor (81)
at org.jboss.ejb3.remoting.IsLocalInterceptor (72)
at org.jboss.aop.joinpoint.MethodInvocation (101)
at org.jboss.ejb3.stateless.StatelessRemoteProxy (107)
at $Proxy136 (-1)
at de.mpg.escidoc.pubman.ItemControllerSessionBean (373)
at de.mpg.escidoc.pubman.editItem.EditItem (1367)
at sun.reflect.NativeMethodAccessorImpl (-2)
at sun.reflect.NativeMethodAccessorImpl (39)
at sun.reflect.DelegatingMethodAccessorImpl (25)
at java.lang.reflect.Method (597)
at org.apache.el.parser.AstValue (131)
at org.apache.el.MethodExpressionImpl (276)
at org.apache.jasper.el.JspMethodExpression (68)
at javax.faces.component.MethodBindingMethodExpressionAdapter (88)
at com.sun.faces.application.ActionListenerImpl (102)
at javax.faces.component.UICommand (387)
at org.ajax4jsf.component.AjaxViewRoot (329)
at org.ajax4jsf.component.AjaxViewRoot (304)
at org.ajax4jsf.component.AjaxViewRoot (261)
at org.ajax4jsf.component.AjaxViewRoot (474)
at com.sun.faces.lifecycle.InvokeApplicationPhase (82)
at com.sun.faces.lifecycle.Phase (100)
at com.sun.faces.lifecycle.LifecycleImpl (118)
at javax.faces.webapp.FacesServlet (265)
at org.apache.catalina.core.ApplicationFilterChain (290)
at org.apache.catalina.core.ApplicationFilterChain (206)
at de.mpg.escidoc.pubman.appbase.SessionTimeoutFilter (115)
at org.apache.catalina.core.ApplicationFilterChain (235)
at org.apache.catalina.core.ApplicationFilterChain (206)
at org.ajax4jsf.webapp.BaseXMLFilter (206)
at org.ajax4jsf.webapp.BaseFilter (290)
at org.ajax4jsf.webapp.BaseFilter (388)
at org.ajax4jsf.webapp.BaseFilter (515)
at org.apache.catalina.core.ApplicationFilterChain (235)
at org.apache.catalina.core.ApplicationFilterChain (206)
at org.jboss.web.tomcat.filters.ReplyHeaderFilter (96)
at org.apache.catalina.core.ApplicationFilterChain (235)
at org.apache.catalina.core.ApplicationFilterChain (206)
at org.apache.catalina.core.StandardWrapperValve (230)
at org.apache.catalina.core.StandardContextValve (175)
at org.jboss.web.tomcat.security.SecurityAssociationValve (182)
at org.jboss.web.tomcat.security.JaccContextValve (84)
at org.apache.catalina.core.StandardHostValve (127)
at org.apache.catalina.valves.ErrorReportValve (102)
at org.jboss.web.tomcat.service.jca.CachedConnectionValve (157)
at org.apache.catalina.core.StandardEngineValve (109)
at org.apache.catalina.connector.CoyoteAdapter (262)
at org.apache.coyote.http11.Http11Processor (844)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler (583)
at org.apache.tomcat.util.net.JIoEndpoint$Worker (446)
at java.lang.Thread (662)
)]
- FIZ: escidoc policies
- Are there any predefined rules for roles like moderator, or systeminspector besides the policies? We tried to allow the moderator role to receive user accounts and usergroups (with some limitations). But if we take the whole systeminspector (who is able to receive user accounts) policy, and insert it as moderator policy this has no effect to the visibility of user accounts at all. Here is an example of what we have tried (Condition left empty for testing purpose):
<Policy PolicyId="Moderator-policy" RuleCombiningAlgId="urn:oasis:names:tc:xacml:1.0:rule-combining-algorithm:ordered-permit-overrides">
<Target>
<Subjects>
<AnySubject/>
</Subjects>
<Resources>
<AnyResource/>
</Resources>
<Actions>
<Action>
<ActionMatch MatchId="info:escidoc/names:aa:1.0:function:string-contains">
<AttributeValue DataType="http://www.w3.org/2001/XMLSchema#string">info:escidoc/names:aa:1.0:action:retrieve-user-account</AttributeValue>
<ActionAttributeDesignator AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id" DataType="http://www.w3.org/2001/XMLSchema#string"/>
</ActionMatch>
</Action>
</Actions>
</Target>
...
<Rule RuleId="Moderator-policy-retrieveUserAccount" Effect="Permit">
<Target>
<Subjects>
<AnySubject/>
</Subjects>
<Resources>
<AnyResource/>
</Resources>
<Actions>
<Action>
<ActionMatch MatchId="info:escidoc/names:aa:1.0:function:string-contains">
<AttributeValue DataType="http://www.w3.org/2001/XMLSchema#string"> info:escidoc/names:aa:1.0:action:retrieve-user-account</AttributeValue>
<ActionAttributeDesignator AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id" DataType="http://www.w3.org/2001/XMLSchema#string"/>
</ActionMatch>
</Action>
</Actions>
</Target>
</Rule>
</Policy>
- (removed other rules, but as they are all permitting actions, this should not be of any interest)
- FIZ: What does the following error messaged in escidoc-core.log mean? - found very often:
2012-09-06 14:52:04,043 ERROR [org.apache.catalina.core.ContainerBase.[jboss.web].[localhost].[/].[ItemServlet]] Servlet.service() for servlet ItemServlet threw exception java.lang.IllegalStateException at org.apache.catalina.connector.ResponseFacade.reset(ResponseFacade.java:310) at de.escidoc.core.common.servlet.EscidocServlet.doDeclineHttpRequest(EscidocServlet.java:526) at de.escidoc.core.common.servlet.EscidocServlet.handleException(EscidocServlet.java:353) at de.escidoc.core.common.servlet.EscidocServlet.service_aroundBody0(EscidocServlet.java:254) at de.escidoc.core.common.servlet.EscidocServlet.service_aroundBody1$advice(EscidocServlet.java:57) at de.escidoc.core.common.servlet.EscidocServlet.service(EscidocServlet.java:1) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175) at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:182) at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:262) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583) at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:446) at java.lang.Thread.run(Thread.java:662)
2012-09-06 14:53:12,917 ERROR [STDERR] Sep 6, 2012 2:53:12 PM com.sun.xacml.finder.AttributeFinder findAttribute
INFO: Error while trying to resolve values: Resource not found [escidoc...1/.../434781JCatal267.pdf]
Core Lucene Index[edit]
- FIZ: it should be possible to run a reindex operation and an optimize Lucene index at the same time
- FIZ: sometimes the lock of the Lucene index remains (only item_container_admin index)
- FIZ: about 5800 items in the escidoc_all index can't be indexed. Calling the reindex method shows these items to be reindexed, but the index files are not updated after the index operation.
- FIZ: with standard Linux configuration more than 1000 items (item_container_admin) couldn't reindex. After set up ulimit -v unlimited the reindex was run.
- FIZ: new Coreservice needs more than 30 GB VIRT in "top" max. 850GB on reindex