Error : oidcAdminConfigBean.claimsPluginClass in AdminUI OIDC provider
search cancel

Error : oidcAdminConfigBean.claimsPluginClass in AdminUI OIDC provider

book

Article ID: 219316

calendar_today

Updated On:

Products

SITEMINDER CA Single Sign On Federation (SiteMinder)

Issue/Introduction

 

When running an AdminUI, when creating an OpenID Connect
Authentication Provider, then the browser reports error :

    "An error occurred while displaying this page."

The AdminUI server.log reports error :

    2021-06-23 11:32:24,173 ERROR [ims.ui] (default task-38)
    javax.faces.el.EvaluationException:
    Cannot get value for expression '#{oidcAdminConfigBean.claimsPluginClass}':
    org.apache.jasper.JasperException: javax.faces.el.EvaluationException:
    Cannot get value for expression '#{oidcAdminConfigBean.claimsPluginClass}'

      at
      org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:410)
      [jastow-1.0.0.Final.jar:1.0.0.Final]

      at
      org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:326)
      [jastow-1.0.0.Final.jar:1.0.0.Final]

      Caused by: javax.faces.el.EvaluationException: Cannot get value for expression '#{oidcAdminConfigBean.claimsPluginClass}'

      Caused by: javax.faces.el.EvaluationException:
      Exception getting value of property claimsPluginClass of base of type :
      com.ca.federation.adminui.backingbean.federation.oidc.CreateOIDCAdminConfigurationManagedBean

      Caused by: com.ca.siteminder.sdk.adminapi.XPSException:
      attribute CA.FED::OIDCAdminConfig ClaimsPluginClass

 

Environment

 

    Policy Server 12.8SP2 on RedHat 7;
    AdminUI 12.8SP2 on RedHat 7;
    Policy Store on CA Directory 14.0 (10.199.46.37:8389);

 

Cause

 

From out of the box Policy Store data, there should be that object
definition :

  <Object Class="CA.FED::OIDCAdminConfig"
  Xid="CA.FED::OIDCAdminConfig@000722b2-bd4d-100e-bd19-0165c0a80000"
  CreatedDateTime="2021-01-25T12:49:54"
  ModifiedDateTime="2021-03-05T12:13:28" UpdatedBy="siteminder"
  UpdateMethod="GUI" ExportType="Replace">

which absence is responsible for the error :

servevr.log :

  2021-06-23 11:32:24,173 ERROR [ims.ui] (default task-38)
  javax.faces.el.EvaluationException:
  Cannot get value for expression '#{oidcAdminConfigBean.claimsPluginClass}':
  org.apache.jasper.JasperException: javax.faces.el.EvaluationException:
  Cannot get value for expression '#{oidcAdminConfigBean.claimsPluginClass}'

When looking into the FedObjects.xdd, we indeed see the following
object :

  [Class]
  PARENT=CA.FED
  Name=OIDCAdminConfig
  Description=OpenID Connect Administrative Configuration
  ImportType=Add

 

Resolution

 

To solve the issue :

  - Insure you have a working backup of the current Policy Store data,
    in case something unexpectedly wrong would happen, so you can roll
    back;

    If unsure, test your procedure in lower environment before;

  - Run the command on 1 Policy Server against the master Policy
    Store; Stop the other replicated Policy Store instances if there
    are more than one;
 
  - Run command :

    # XPSDDInstall FedObjects.xdd

- Fully restart :

  - Restart fully the Policy Store;
  - Restart fully the Policy Server;
  - Restart fully the AdminUI;

Powered by Wolken Software