dev@glassfish.java.net

Re: 'WEB5003: Exception in handleAfterEvent' after roller deployment

From: Ken Paulsen <ken.paulsen_at_Sun.COM>
Date: Mon, 13 Feb 2006 13:38:26 -0800

Amy,

You mentioned seeing the exception:

[#|2006-02-06T16:12:36.390-0800|SEVERE|sun-appserver-pe9.0|org.apache.catalina.session.ManagerBase|_ThreadID=10;_ThreadName=main;_RequestID=c44ca3a1-bc4e-4736-82db-8d1cadfd3bc1;|Exception
loading sessions from persistent storage
java.lang.NullPointerException
   at
com.sun.web.ui.model.CCManageChildrenModel.readObject(CCManageChildrenModel.java:545)


This NPE (which happens during deserialization and I suspect causes the
NotSerializableException) happens in Lockhart code. See the following
bug for details: 6330859. I haven't seen this in a while... but that
may be because I haven't turned on "FINER" lately.

Anyway, this bug didn't used to show up because our server didn't use to
Serialize session data across restarts. Is there any way to turn off
this feature for a specific web app? If so, that would be the easiest
way to remove this error (which occurs in the admin GUI app).

Thanks,

Ken

Amy Roh wrote:

> Hi,
>
> I'm getting the same Runtime exception when I try to logon to roller
> app. Only warning log (after changing to log level to "FINE" is "null
> Subject used in SecurityContext construction". What can I do to get
> more info on this to debug further?
> Thanks,
> Amy
>
> [#|2006-02-13T11:02:03.921-0800|WARNING|sun-appserver-pe9.0|javax.enterprise.system.core.security|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|SEC5052:
> null Subject used in SecurityContext construction.|#]
>
>
>
> [#|2006-02-13T11:02:03.921-0800|FINE|sun-appserver-pe9.0|javax.enterprise.system.core.security|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;ClassName=com.sun.web.security.WebSecurityManager;MethodName=setPolicyContext;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|[Web-Security]
> Policy Context ID was: roller__roller|#]
>
>
>
> [#|2006-02-13T11:02:03.921-0800|FINE|sun-appserver-pe9.0|javax.enterprise.system.core.security|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;ClassName=com.sun.web.security.WebSecurityManager;MethodName=checkPermission;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|[Web-Security]
> Generating a protection domain for Permission check.|#]
>
>
>
> [#|2006-02-13T11:02:03.921-0800|FINE|sun-appserver-pe9.0|javax.enterprise.system.core.security|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;ClassName=com.sun.web.security.WebSecurityManager;MethodName=checkPermission;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|[Web-Security]
> Checking with Principal : nonlogin-principal|#]
>
>
>
> [#|2006-02-13T11:02:03.921-0800|FINE|sun-appserver-pe9.0|javax.enterprise.system.core.security|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;ClassName=com.sun.web.security.WebSecurityManager;MethodName=checkPermission;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|[Web-Security]
> Codesource with Web URL: file:/roller__roller|#]
>
>
>
> [#|2006-02-13T11:02:03.921-0800|FINE|sun-appserver-pe9.0|javax.enterprise.system.core.security|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;ClassName=com.sun.web.security.WebSecurityManager;MethodName=checkPermission;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|[Web-Security]
> Checking Web Permission with Principals : nonlogin-principal|#]
>
>
>
> [#|2006-02-13T11:02:03.921-0800|FINE|sun-appserver-pe9.0|javax.enterprise.system.core.security|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;ClassName=com.sun.web.security.WebSecurityManager;MethodName=checkPermission;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|[Web-Security]
> Web Permission = (javax.security.jacc.WebResourcePermission
> /j_security_check POST)|#]
>
>
>
> [#|2006-02-13T11:02:03.921-0800|FINE|sun-appserver-pe9.0|javax.enterprise.system.core.security|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;ClassName=com.sun.enterprise.security.SecurityContext;MethodName=setCurrent;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|permission
> check done to set SecurityContext|#]
>
>
>
> [#|2006-02-13T11:02:03.937-0800|FINE|sun-appserver-pe9.0|javax.enterprise.system.core.security|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;ClassName=com.sun.web.security.WebSecurityManager;MethodName=hasResourcePermission;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|[Web-Security]
> hasResource isGranted: true|#]
>
>
>
> [#|2006-02-13T11:02:03.937-0800|FINE|sun-appserver-pe9.0|javax.enterprise.system.core.security|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;ClassName=com.sun.web.security.WebSecurityManager;MethodName=hasResourcePermission;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|[Web-Security]
> hasResource perm: (javax.security.jacc.WebResourcePermission
> /j_security_check POST)|#]
>
>
>
> [#|2006-02-13T11:02:03.937-0800|SEVERE|sun-appserver-pe9.0|javax.enterprise.system.container.web|_ThreadID=15;_ThreadName=httpWorkerThread-7777-0;_RequestID=e4c9c389-cb4b-482d-b714-fe788648296d;|StandardWrapperValve[default]:
> Servlet.service() for servlet default threw exception
>
> java.lang.RuntimeException: WEB5003: Exception in handleAfterEvent.
>
>
>
> Amy Roh wrote:
>
>> Thanks. Changing to FINE logging, I'm finding the problem boils down
>> to o.a.c.realm.GenericPrincipal NotSerializableException. I've seen
>> similar postings on tomcat mailing lists. I'll look into this more
>> and let you know my findings.
>>
>> [#|2006-02-06T16:12:36.390-0800|SEVERE|sun-appserver-pe9.0|org.apache.catalina.session.ManagerBase|_ThreadID=10;_ThreadName=main;_RequestID=c44ca3a1-bc4e-4736-82db-8d1cadfd3bc1;|Exception
>> loading sessions from persistent storage
>> java.lang.NullPointerException
>> at
>> com.sun.web.ui.model.CCManageChildrenModel.readObject(CCManageChildrenModel.java:545)
>>
>>
>> [#|2006-02-06T16:12:43.515-0800|SEVERE|sun-appserver-pe9.0|org.apache.catalina.session.ManagerBase|_ThreadID=10;_ThreadName=main;_RequestID=c44ca3a1-bc4e-4736-82db-8d1cadfd3bc1;|IOException
>> while loading persisted sessions: java.io.WriteAbortedException:
>> writing aborted; java.io.NotSerializableException:
>> org.apache.catalina.realm.GenericPrincipal
>> java.io.WriteAbortedException: writing aborted;
>> java.io.NotSerializableException:
>> org.apache.catalina.realm.GenericPrincipal
>>
>> Vince.Kraemer_at_Sun.COM wrote:
>>
>>> you may want to follow the advice Jan gave me this morning... see
>>>
>>> https://glassfish.dev.java.net/servlets/ReadMsg?list=users&msgNo=122
>>>
>>> It seemed to help me find out more about what is 'going wrong' with
>>> my app which uses acecgi for security...
>>>
>>> vbk
>>>
>>>
>>> ---------------------------------------------------------------------
>>> To unsubscribe, e-mail: dev-unsubscribe_at_glassfish.dev.java.net
>>> For additional commands, e-mail: dev-help_at_glassfish.dev.java.net
>>>
>>>
>>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: dev-unsubscribe_at_glassfish.dev.java.net
>> For additional commands, e-mail: dev-help_at_glassfish.dev.java.net
>>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: dev-unsubscribe_at_glassfish.dev.java.net
> For additional commands, e-mail: dev-help_at_glassfish.dev.java.net
>
© Oracle | By contributing to this project, you are agreeing to the terms of use described here.