Error : oidcAdminConfigBean.claimsPluginClass in AdminUI OIDC provider
search cancel

Error : oidcAdminConfigBean.claimsPluginClass in AdminUI OIDC provider

book

Article ID: 219316

calendar_today

Updated On:

Products

SITEMINDER CA Single Sign On Federation (SiteMinder)

Issue/Introduction

 


When running an AdminUI, when creating an OpenID Connect Authentication Provider, then the browser reports error :

    "An error occurred while displaying this page."

The AdminUI server.log reports error :

2021-06-23 11:32:24,173 ERROR [ims.ui] (default task-38)
    javax.faces.el.EvaluationException:
    Cannot get value for expression '#{oidcAdminConfigBean.claimsPluginClass}':
    org.apache.jasper.JasperException: javax.faces.el.EvaluationException:
    Cannot get value for expression '#{oidcAdminConfigBean.claimsPluginClass}'

      at
      org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:410)
      [jastow-1.0.0.Final.jar:1.0.0.Final]

      at
      org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:326)
      [jastow-1.0.0.Final.jar:1.0.0.Final]

      Caused by: javax.faces.el.EvaluationException: Cannot get value for expression '#{oidcAdminConfigBean.claimsPluginClass}'

      Caused by: javax.faces.el.EvaluationException:
      Exception getting value of property claimsPluginClass of base of type :
      com.ca.federation.adminui.backingbean.federation.oidc.CreateOIDCAdminConfigurationManagedBean

      Caused by: com.ca.siteminder.sdk.adminapi.XPSException:
      attribute CA.FED::OIDCAdminConfig ClaimsPluginClass

 

Environment

 

    Policy Server 12.8SP2 on RedHat 7;
    AdminUI 12.8SP2 on RedHat 7;
    Policy Store on CA Directory 14.0 (10.199.46.37:8389);

 

Cause

 


From out of the box Policy Store data, there should be that object definition :

<Object Class="CA.FED::OIDCAdminConfig"Xid="CA.FED::OIDCAdminConfig@000722b2-bd4d-100e-bd19-0165c0a80000" CreatedDateTime="2021-01-25T12:49:54" ModifiedDateTime="2021-03-05T12:13:28" UpdatedBy="siteminder"UpdateMethod="GUI" ExportType="Replace">

which absence is responsible for the error :

servevr.log :

2021-06-23 11:32:24,173 ERROR [ims.ui] (default task-38) javax.faces.el.EvaluationException: Cannot get value for expression'#oidcAdminConfigBean.claimsPluginClass}':org.apache.jasper.JasperException:javax.faces.el.EvaluationException: Cannot get value for expression '#{oidcAdminConfigBean.claimsPluginClass}'

 


When looking into the FedObjects.xdd, we indeed see the following object :


[Class] PARENT=CA.FED Name=OIDCAdminConfig Description=OpenID Connect Administrative Configuration ImportType=Add

 

 

Resolution

 


To solve the issue :

  - Ensure you have a working backup of the current Policy Store data, in case something unexpectedly wrong would happen, so you can roll back;

    If unsure, test your procedure in lower environment before;

  - Run the command on 1 Policy Server against the master Policy Store; Stop the other replicated Policy Store instances if there are more than one;
 
  - Run command :

    # XPSDDInstall FedObjects.xdd

- Fully restart :

  - Restart fully the Policy Store;
  - Restart fully the Policy Server;
  - Restart fully the AdminUI;

 

 

Powered by Wolken Software