Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-2814

Unable to login to JIRA/Confluence with a Crowd login which is aliased

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Medium Medium
    • 2.6.2
    • 2.6
    • None

      This might better belong in JIRA but as it affects both JIRA and Confluence I suspect it may be related to Crowd implementation in these products.

      If you create the following user setup:

      • Crowd - brendan.haire@atlassian.com
      • JIRA - bhaire2

      Then you enable SSO and hook up Crowd and JIRA and alias brendan.haire@atlassian to be bhaire2 in JIRA you are able to login to Crowd and then have SSO across to JIRA.

      However, if you attempt to login to JIRA with brendan.haire@atlassian.com (rather than the actual user name bhaire2) you are presented with the following error (see attached "Screen Shot 2012-04-13 at 4.06.14 PM.png"):

      2012-04-13 14:14:29,408 http-8080-5 ERROR [500ErrorPage.jsp] Exception caught in 500 page user should not be null!
      com.atlassian.jira.util.dbc.Assertions$NullArgumentException: user should not be null!
      at com.atlassian.jira.util.dbc.Assertions.notNull(Assertions.java:28)
      at com.atlassian.jira.security.login.LoginManagerImpl.authorise(LoginManagerImpl.java:140)
      at com.atlassian.jira.security.JiraRoleMapper.canLogin(JiraRoleMapper.java:46)
      at com.atlassian.seraph.auth.DefaultAuthenticator.isAuthorised(DefaultAuthenticator.java:229)
      at com.atlassian.seraph.auth.DefaultAuthenticator.authoriseUserAndEstablishSession(DefaultAuthenticator.java:197)
      at com.atlassian.seraph.auth.DefaultAuthenticator.login(DefaultAuthenticator.java:102)
      at com.atlassian.crowd.integration.seraph.v25.CrowdAuthenticator.login(CrowdAuthenticator.java:135)
      at com.atlassian.seraph.filter.PasswordBasedLoginFilter.runAuthentication(PasswordBasedLoginFilter.java:127)
      at com.atlassian.seraph.filter.PasswordBasedLoginFilter.login(PasswordBasedLoginFilter.java:72)
      at com.atlassian.seraph.filter.BaseLoginFilter.doFilter(BaseLoginFilter.java:130)
      at com.atlassian.jira.web.filters.JiraLoginFilter.doFilter(JiraLoginFilter.java:70)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46)
      at com.atlassian.plugin.servlet.filter.DelegatingPluginFilter$1.doFilter(DelegatingPluginFilter.java:66)
      at com.atlassian.oauth.serviceprovider.internal.servlet.OAuthFilter.doFilter(OAuthFilter.java:71)
      at com.atlassian.plugin.servlet.filter.DelegatingPluginFilter.doFilter(DelegatingPluginFilter.java:74)
      at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:42)
      at com.atlassian.plugin.servlet.filter.DelegatingPluginFilter$1.doFilter(DelegatingPluginFilter.java:66)
      at com.atlassian.plugins.rest.module.servlet.RestSeraphFilter.doFilter(RestSeraphFilter.java:40)
      at com.atlassian.plugin.servlet.filter.DelegatingPluginFilter.doFilter(DelegatingPluginFilter.java:74)
      at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:42)
      at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77)
      at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.johnson.filters.AbstractJohnsonFilter.doFilter(AbstractJohnsonFilter.java:71)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at org.tuckey.web.filters.urlrewrite.UrlRewriteFilter.doFilter(UrlRewriteFilter.java:350)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.gzipfilter.GzipFilter.doFilterInternal(GzipFilter.java:81)
      at com.atlassian.gzipfilter.GzipFilter.doFilter(GzipFilter.java:51)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46)
      at com.atlassian.plugin.servlet.filter.DelegatingPluginFilter$1.doFilter(DelegatingPluginFilter.java:66)
      at com.sysbliss.jira.plugins.workflow.servlet.JWDSendRedirectFilter.doFilter(JWDSendRedirectFilter.java:25)
      at com.atlassian.plugin.servlet.filter.DelegatingPluginFilter.doFilter(DelegatingPluginFilter.java:74)
      at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:42)
      at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77)
      at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.jira.web.filters.steps.ChainedFilterStepRunner.doFilter(ChainedFilterStepRunner.java:78)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.core.filters.cache.AbstractCachingFilter.doFilter(AbstractCachingFilter.java:33)
      at com.atlassian.core.filters.AbstractHttpFilter.doFilter(AbstractHttpFilter.java:31)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.core.filters.encoding.AbstractEncodingFilter.doFilter(AbstractEncodingFilter.java:41)
      at com.atlassian.core.filters.AbstractHttpFilter.doFilter(AbstractHttpFilter.java:31)
      at com.atlassian.jira.web.filters.PathMatchingEncodingFilter.doFilter(PathMatchingEncodingFilter.java:45)
      at com.atlassian.core.filters.AbstractHttpFilter.doFilter(AbstractHttpFilter.java:31)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.jira.web.monitor.ActiveRequestsFilter$PassToChainFilterFunc.doFilter(ActiveRequestsFilter.java:346)
      at com.atlassian.jira.web.monitor.ActiveRequestsFilter$DebugLogFilterFunc.doFilter(ActiveRequestsFilter.java:463)
      at com.atlassian.jira.web.monitor.ActiveRequestsFilter.doFilter(ActiveRequestsFilter.java:173)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.jira.startup.JiraStartupChecklistFilter.doFilter(JiraStartupChecklistFilter.java:75)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.multitenant.servlet.MultiTenantServletFilter.doFilter(MultiTenantServletFilter.java:91)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at com.atlassian.jira.web.filters.steps.ChainedFilterStepRunner.doFilter(ChainedFilterStepRunner.java:78)
      at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
      at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
      at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
      at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
      at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
      at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
      at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
      at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:554)
      at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:298)
      at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:859)
      at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:588)
      at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:489)
      at java.lang.Thread.run(Thread.java:680)

        1. Screen Shot 2012-04-13 at 4.06.14 PM.png
          63 kB
          B
        2. Screen Shot 2012-04-13 at 4.22.19 PM.png
          37 kB
          B

            [CWD-2814] Unable to login to JIRA/Confluence with a Crowd login which is aliased

            Monique Khairuliana (Inactive) made changes -
            Workflow Original: Simplified Crowd Development Workflow v2 - restricted [ 1508910 ] New: JAC Bug Workflow v3 [ 3364305 ]
            Status Original: Resolved [ 5 ] New: Closed [ 6 ]
            Owen made changes -
            Workflow Original: Simplified Crowd Development Workflow v2 [ 1390306 ] New: Simplified Crowd Development Workflow v2 - restricted [ 1508910 ]
            Owen made changes -
            Workflow Original: Crowd Development Workflow v2 [ 379623 ] New: Simplified Crowd Development Workflow v2 [ 1390306 ]

            Cuenta Smartsoft added a comment -

            We have this problem in crowd 2.7.0

            and Jira 6.1.5

            Cuenta Smartsoft added a comment - We have this problem in crowd 2.7.0 and Jira 6.1.5

            Alexander Wolden added a comment -

            Crowd 2.6.2 is actually available now.

            http://www.atlassian.com/software/crowd/download

            I had the same issue as this ticket and the upgrade fixed it.

            Alexander Wolden added a comment - Crowd 2.6.2 is actually available now. http://www.atlassian.com/software/crowd/download I had the same issue as this ticket and the upgrade fixed it.

            Philip Colmer added a comment -

            That's good to know.

            Does the fact that this is a release candidate mean that there might still be the opportunity to stop those error messages?

            I don't suppose there is any information as to when 2.6.2 might become generally available?

            Thanks.

            Philip

            Philip Colmer added a comment - That's good to know. Does the fact that this is a release candidate mean that there might still be the opportunity to stop those error messages? I don't suppose there is any information as to when 2.6.2 might become generally available? Thanks. Philip
            Diego Berrueta made changes -
            Fix Version/s New: 2.6.2 [ 31890 ]
            Resolution New: Fixed [ 1 ]
            Status Original: Technical Review [ 10028 ] New: Resolved [ 5 ]

            Diego Berrueta added a comment -

            I confirmed that 2.6.2-rc fixes the SSO authentication issue with aliased users with JIRA 5.2.8 and Confluence 5.1.1. Aliased users can now seamlessly log in into JIRA/Confluence. Attempts to log in with the original username may still cause some error messages, but the SSO session is actually created and the user can access the applications.

            Diego Berrueta added a comment - I confirmed that 2.6.2-rc fixes the SSO authentication issue with aliased users with JIRA 5.2.8 and Confluence 5.1.1. Aliased users can now seamlessly log in into JIRA/Confluence. Attempts to log in with the original username may still cause some error messages, but the SSO session is actually created and the user can access the applications.
            Diego Berrueta made changes -
            Link New: This issue is duplicated by CWD-3271 [ CWD-3271 ]

            Philip Colmer added a comment -

            I forgot to mention that I did have a support ticket open about this where I've got more detailed logs of what I had tested: https://support.atlassian.com/browse/CWDSUP-7625

            Philip Colmer added a comment - I forgot to mention that I did have a support ticket open about this where I've got more detailed logs of what I had tested: https://support.atlassian.com/browse/CWDSUP-7625

              dberrueta Diego Berrueta
              bhaire B
              Affected customers:
              4 This affects my team
              Watchers:
              8 Start watching this issue

                Created:
                Updated:
                Resolved: