Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Low
Fix Version/s: 3.2.1, 3.3.0
Affects Version/s: 3.2.0
Component/s: Security - CAPTCHA
Labels:
None
Environment:

Windows
Java 1.7.0_65

Bug Fix Policy:
View Atlassian Server bug fix policy

Description

After several failed login attempts, CAPTCHA will be will show.

After filling up the CAPTCHA, regardless whether it was correct or incorrect, the following message is shown: "The CAPTCHA service found itself in an awkward situation"

The logs shows this

2014-08-04 22:24:51,367 WARN  [http-bio-7990-exec-3] @12FBVTTx1344x84x0 1fjqwkn 0:0:0:0:0:0:0:1 "POST /j_stash_security_check HTTP/1.1" c.a.s.i.s.s.PluginAuthenticationProvider Could not authenticate admin; authentication by com.atlassian.stash.stash-auth-crowd-sso:crowdSsoAuthHandler failed
com.atlassian.stash.user.AuthenticationSystemException: The CAPTCHA service found itself in an awkward situation
	at com.atlassian.stash.internal.auth.DefaultCaptchaService.isCaptchaValid(DefaultCaptchaService.java:219) ~[stash-service-impl-3.2.0.jar:na]
	at com.atlassian.stash.internal.auth.DefaultCaptchaService.checkCaptcha(DefaultCaptchaService.java:97) ~[stash-service-impl-3.2.0.jar:na]
	at com.atlassian.stash.internal.spring.security.PluginAuthenticationProvider.attemptAuthentication(PluginAuthenticationProvider.java:109) [PluginAuthenticationProvider.class:na]
	at com.atlassian.stash.internal.spring.security.PluginAuthenticationProvider.authenticate(PluginAuthenticationProvider.java:59) [PluginAuthenticationProvider.class:na]
	at com.atlassian.stash.internal.spring.security.StashAuthenticationFilter.doFilter(StashAuthenticationFilter.java:100) [StashAuthenticationFilter.class:na]
	at com.atlassian.stash.internal.web.auth.BeforeLoginPluginAuthenticationFilter.doInsideSpringSecurityChain(BeforeLoginPluginAuthenticationFilter.java:111) [BeforeLoginPluginAuthenticationFilter.class:na]
	at com.atlassian.stash.internal.web.auth.BeforeLoginPluginAuthenticationFilter.doFilter(BeforeLoginPluginAuthenticationFilter.java:77) [BeforeLoginPluginAuthenticationFilter.class:na]
	at com.atlassian.security.auth.trustedapps.filter.TrustedApplicationsFilter.doFilter(TrustedApplicationsFilter.java:100) [atlassian-trusted-apps-core-3.0.6.jar:na]
	at com.atlassian.oauth.serviceprovider.internal.servlet.OAuthFilter.doFilter(OAuthFilter.java:69) [atlassian-oauth-service-provider-plugin-1.9.2_1406589600000.jar:na]
	at com.atlassian.analytics.client.filter.DefaultAnalyticsFilter.doFilter(DefaultAnalyticsFilter.java:33) [analytics-client-3.35_1406589604000.jar:na]
	at com.atlassian.core.filters.AbstractHttpFilter.doFilter(AbstractHttpFilter.java:31) [atlassian-core-4.6.15.jar:na]
	at com.atlassian.stash.internal.web.auth.BeforeLoginPluginAuthenticationFilter.doBeforeBeforeLoginFilters(BeforeLoginPluginAuthenticationFilter.java:89) [BeforeLoginPluginAuthenticationFilter.class:na]
	at com.atlassian.stash.internal.web.auth.BeforeLoginPluginAuthenticationFilter.doFilter(BeforeLoginPluginAuthenticationFilter.java:75) [BeforeLoginPluginAuthenticationFilter.class:na]
	at com.atlassian.stash.internal.request.DefaultRequestManager.doAsRequest(DefaultRequestManager.java:84) [stash-service-impl-3.2.0.jar:na]
	at com.hazelcast.web.WebFilter.doFilter(WebFilter.java:446) [hazelcast-wm-3.3-RC2.jar:3.3-RC2]
	at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) [na:1.7.0_65]
	at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
	... 143 frames trimmed

Attachments

Issue Links

is duplicated by

BSERV-5105 Captcha verification is broken in 3.2

Closed

causes: ADM-58529 Loading...

Activity

People

Assignee:: Michael Heemskerk (Inactive)

Reporter:: Deric Lee (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 8 Start watching this issue

Dates

Created:: 04/Aug/2014 2:30 PM

Updated:: 05/Feb/2015 2:54 PM

Resolved:: 13/Aug/2014 5:50 AM