[MID-2640] Editing user with no permission to read its parent org shows error - Evolveum Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Critical
Resolution: Fixed
Affects Version/s: 3.3 (Lincoln)
Fix Version/s: 3.3 (Lincoln)
Component/s: GUI
Labels:
None

Git Revision:
v3.3devel-612-g6ef81c2

Description

The authz permit reading and editing users of some type, and reading of organizations of some types, but this user is in organization, that I cannot read.

As summary panel is fetching also organization when editing user (and possibly also the new Organization container), attempt to edit user in unreadable organization leads to 500 internal server error.

Log:

2015-10-22 10:21:28,867 [] [http-bio-8080-exec-10] WARN (com.evolveum.midpoint.web.page.admin.PageAdminFocus): Cannot load parent org b66d8df1-e21b-40aa-a025-032cf2a6df7c: Access denied
com.evolveum.midpoint.util.exception.AuthorizationException: Access denied
        at com.evolveum.midpoint.model.impl.controller.SchemaTransformer.applySchemasAndSecurityPhase(SchemaTransformer.java:170) ~[model-impl-3.3-SNAPSHOT.jar:na]
        at com.evolveum.midpoint.model.impl.controller.SchemaTransformer.applySchemasAndSecurity(SchemaTransformer.java:136) ~[model-impl-3.3-SNAPSHOT.jar:na]
        at com.evolveum.midpoint.model.impl.controller.ModelController.getObject_aroundBody0(ModelController.java:271) ~[model-impl-3.3-SNAPSHOT.jar:na]
        at com.evolveum.midpoint.model.impl.controller.ModelController$AjcClosure1.run(ModelController.java:1) ~[model-impl-3.3-SNAPSHOT.jar:na]
        at org.aspectj.runtime.reflect.JoinPointImpl.proceed(JoinPointImpl.java:149) ~[aspectjrt-1.7.3.jar:na]
        at com.evolveum.midpoint.util.aspect.MidpointAspect.wrapSubsystem(MidpointAspect.java:178) ~[util-3.3-SNAPSHOT.jar:na]
        at com.evolveum.midpoint.util.aspect.MidpointAspect.ajc$inlineAccessMethod$com_evolveum_midpoint_util_aspect_MidpointAspect$com_evolveum_midpoint_util_aspect_MidpointAspect$wrapSubsystem(MidpointAspect.java:1) ~[util-3.3-SNAPSHOT.jar:na]
        at com.evolveum.midpoint.util.aspect.MidpointAspect.processModelNdc(MidpointAspect.java:63) ~[util-3.3-SNAPSHOT.jar:na]
        at com.evolveum.midpoint.model.impl.controller.ModelController.getObject(ModelController.java:244) ~[model-impl-3.3-SNAPSHOT.jar:na]
        at sun.reflect.GeneratedMethodAccessor569.invoke(Unknown Source) ~[na:na]
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[na:1.7.0_80]
        at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_80]
        at org.apache.wicket.proxy.LazyInitProxyFactory$JdkHandler.invoke(LazyInitProxyFactory.java:480) ~[wicket-ioc-6.20.0.jar:6.20.0]
        at com.sun.proxy.$Proxy264.getObject(Unknown Source) ~[na:na]
        at com.evolveum.midpoint.web.page.admin.PageAdminFocus.loadParentOrgs(PageAdminFocus.java:528) [PageAdminFocus.class:na]
        at com.evolveum.midpoint.web.page.admin.PageAdminFocus.loadFocusWrapper(PageAdminFocus.java:505) [PageAdminFocus.class:na]
        at com.evolveum.midpoint.web.page.admin.PageAdminFocus$4.load(PageAdminFocus.java:214) [PageAdminFocus$4.class:na]
        at com.evolveum.midpoint.web.page.admin.PageAdminFocus$4.load(PageAdminFocus.java:1) [PageAdminFocus$4.class:na]
        at com.evolveum.midpoint.web.component.util.LoadableModel.getObject(LoadableModel.java:49) [LoadableModel.class:na]
        at com.evolveum.midpoint.web.component.util.BaseSimplePanel.getModelObject(BaseSimplePanel.java:54) [BaseSimplePanel.class:na]
        at com.evolveum.midpoint.web.component.prism.H3Header$4.isVisible(H3Header.java:101) [H3Header$4.class:na]
        at com.evolveum.midpoint.web.component.util.VisibleEnableBehaviour.onConfigure(VisibleEnableBehaviour.java:39) [VisibleEnableBehaviour.class:na]
        at org.apache.wicket.Component.configure(Component.java:1060) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.internalBeforeRender(Component.java:940) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.beforeRender(Component.java:1017) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.onBeforeRenderChildren(MarkupContainer.java:1684) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.onBeforeRender(Component.java:3833) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.internalBeforeRender(Component.java:949) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.beforeRender(Component.java:1017) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.onBeforeRenderChildren(MarkupContainer.java:1684) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.onBeforeRender(Component.java:3833) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.internalBeforeRender(Component.java:949) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.beforeRender(Component.java:1017) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.onBeforeRenderChildren(MarkupContainer.java:1684) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.onBeforeRender(Component.java:3833) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.internalBeforeRender(Component.java:949) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.beforeRender(Component.java:1017) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.onBeforeRenderChildren(MarkupContainer.java:1684) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.onBeforeRender(Component.java:3833) [wicket-core-6.20.0.jar:6.20.0]
        at com.evolveum.midpoint.web.component.TabbedPanel.onBeforeRender(TabbedPanel.java:205) [TabbedPanel.class:na]
        at org.apache.wicket.Component.internalBeforeRender(Component.java:949) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.beforeRender(Component.java:1017) [wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.onBeforeRenderChildren(MarkupContainer.java:1684) [wicket-core-6.20.0.jar:6.20.0]
...
2015-10-22 10:21:29,316 [] [http-bio-8080-exec-10] ERROR (com.evolveum.midpoint.web.util.WebModelUtils): Couldn't load object, reason: Access denied (class com.evolveum.midpoint.util.exception.AuthorizationException)
2015-10-22 10:21:29,316 [] [http-bio-8080-exec-10] ERROR (com.evolveum.midpoint.web.page.admin.PageAdminFocus): Couldn't load account, reason: null (class java.lang.NullPointerException)
2015-10-22 10:21:29,357 [] [http-bio-8080-exec-10] WARN (RequestCycleExtra): ********************************
2015-10-22 10:21:29,359 [] [http-bio-8080-exec-10] WARN (RequestCycleExtra): Handling the following exception
org.apache.wicket.WicketRuntimeException: Exception in rendering component: [Component id = summaryOrganization]
        at org.apache.wicket.Component.internalRenderComponent(Component.java:2560) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.markup.html.WebComponent.onRender(WebComponent.java:56) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.internalRender(Component.java:2366) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.render(Component.java:2294) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.renderNext(MarkupContainer.java:1392) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.renderAll(MarkupContainer.java:1557) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.renderComponentTagBody(MarkupContainer.java:1532) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.onComponentTagBody(MarkupContainer.java:1487) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.markup.html.panel.DefaultMarkupSourcingStrategy.onComponentTagBody(DefaultMarkupSourcingStrategy.java:71) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.internalRenderComponent(Component.java:2536) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.onRender(MarkupContainer.java:1496) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.internalRender(Component.java:2366) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.render(Component.java:2294) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.renderNext(MarkupContainer.java:1392) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.renderAll(MarkupContainer.java:1557) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.renderComponentTagBody(MarkupContainer.java:1532) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.renderAssociatedMarkup(MarkupContainer.java:689) ~[wicket-core-6.20.0.jar:6.20.0]
...
Caused by: java.lang.RuntimeException: An error occurred while getting the model object for Component: [Component id = summaryOrganization, page = com.evolveum.midpoint.web.page.admin.users.PageUser, path = 5:mainForm:summaryPanel:summaryBox:summaryOrganization.Label, isVisible = true, isVersioned = true, markup = [markup = file:/usr/local/apache-tomcat-example-xxx-master/webapps/midpoint/WEB-INF/classes/com/evolveum/midpoint/web/page/admin/users/component/UserSummaryPanel.html
<span wicket:id="summaryOrganization" class="summary-panel-organization">
                                </span>, index = 0, current =  '<span wicket:id="summaryOrganization" class="summary-panel-organization">' (line 0, column 0)]]
        at org.apache.wicket.Component.getDefaultModelObject(Component.java:1617) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.getDefaultModelObjectAsString(Component.java:1640) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.markup.html.basic.Label.onComponentTagBody(Label.java:131) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.markup.html.panel.DefaultMarkupSourcingStrategy.onComponentTagBody(DefaultMarkupSourcingStrategy.java:71) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.internalRenderComponent(Component.java:2536) ~[wicket-core-6.20.0.jar:6.20.0]
        ... 122 common frames omitted
Caused by: java.lang.NullPointerException: null
        at com.evolveum.midpoint.web.component.FocusSummaryPanel$1.getObject(FocusSummaryPanel.java:94) ~[FocusSummaryPanel$1.class:na]
        at org.apache.wicket.Component.getDefaultModelObject(Component.java:1612) ~[wicket-core-6.20.0.jar:6.20.0]
        ... 126 common frames omitted
2015-10-22 10:21:29,359 [] [http-bio-8080-exec-10] WARN (RequestCycleExtra): ********************************
2015-10-22 10:21:29,361 [] [http-bio-8080-exec-10] ERROR (com.evolveum.midpoint.web.security.MidPointApplication): Error occurred during page rendering.
org.apache.wicket.WicketRuntimeException: Exception in rendering component: [Component id = summaryOrganization]
        at org.apache.wicket.Component.internalRenderComponent(Component.java:2560) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.markup.html.WebComponent.onRender(WebComponent.java:56) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.internalRender(Component.java:2366) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.render(Component.java:2294) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.MarkupContainer.renderNext(MarkupContainer.java:1392) ~[wicket-core-6.20.0.jar:6.20.0]
...
Caused by: java.lang.RuntimeException: An error occurred while getting the model object for Component: [Component id = summaryOrganization, page = com.evolveum.midpoint.web.page.admin.users.PageUser, path = 5:mainForm:summaryPanel:summaryBox:summaryOrganization.Label, isVisible = true, isVersioned = true, markup = [markup = file:/usr/local/apache-tomcat-example-xxx-master/webapps/midpoint/WEB-INF/classes/com/evolveum/midpoint/web/page/admin/users/component/UserSummaryPanel.html
<span wicket:id="summaryOrganization" class="summary-panel-organization">
                                </span>, index = 0, current =  '<span wicket:id="summaryOrganization" class="summary-panel-organization">' (line 0, column 0)]]
        at org.apache.wicket.Component.getDefaultModelObject(Component.java:1617) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.getDefaultModelObjectAsString(Component.java:1640) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.markup.html.basic.Label.onComponentTagBody(Label.java:131) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.markup.html.panel.DefaultMarkupSourcingStrategy.onComponentTagBody(DefaultMarkupSourcingStrategy.java:71) ~[wicket-core-6.20.0.jar:6.20.0]
        at org.apache.wicket.Component.internalRenderComponent(Component.java:2536) ~[wicket-core-6.20.0.jar:6.20.0]
        ... 122 common frames omitted
Caused by: java.lang.NullPointerException: null
        at com.evolveum.midpoint.web.component.FocusSummaryPanel$1.getObject(FocusSummaryPanel.java:94) ~[FocusSummaryPanel$1.class:na]
        at org.apache.wicket.Component.getDefaultModelObject(Component.java:1612) ~[wicket-core-6.20.0.jar:6.20.0]
        ... 126 common frames omitted

Attachments

Activity

People

Assignee:: Ivan Noris

Reporter:: Ivan Noris

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 22/Oct/15 12:34 PM

Updated:: 27/Oct/15 10:39 AM

Resolved:: 26/Oct/15 4:03 PM