自定义缓存键未通过身份验证缓存。 需要重新挑战用户以再次登录
[英]Custom cache key missed authentication cache. Need to re-challenge the user to login again
问题描述
Using liberty 18.0.0.1 set up in a collective. 
使用自由18.0.0.1集体建立。 I have a custom TAI that creates a subject with a custom cache key. 我有一个自定义的TAI,可使用自定义的缓存键创建主题。 This works out of the box with WAS Classic Cell, but in my collective, when authenticated on one server, and then acessing another server ( in the same collective) a new authentication is forced. 这对于WAS Classic Cell来说是开箱即用的,但是在我的集体中,当在一台服务器上进行身份验证,然后访问另一台服务器(在同一集体中)时,将强制执行新的身份验证。
Did some tracing and reason seems to be quite clear: 进行了一些追踪和原因似乎很清楚:
[4/2/18 18:02:08:659 CEST] 00000803 id=93e3914a com.ibm.ws.security.authentication.AuthenticationException < <init> Exit
com.ibm.ws.security.authentication.AuthenticationException: Custom cache key missed authentication cache. Need to re-challenge the user to login again.
Earlier in the trace is shows clearly that the ltpa token is processes ok, the custom key is retrieved, but 跟踪的较早部分清楚地表明ltpa令牌已正常运行,已检索了自定义键,但是
[4/2/18 18:02:08:659 CEST] 00000803 id=aea8ae88 com.ibm.ws.security.token.ltpa.internal.LTPATokenService < recreateTokenFromBytes Exit
/VRnC blabla <the rest removed by me ..>
[4/2/18 18:02:08:659 CEST] 00000803 id= com.ibm.ws.security.token.internal.TokenManagerImpl 3 Successfully recreated token using token service com.ibm.ws.security.token.ltpa.internal.LTPATokenService@aea8ae88.
So why is the authentication cache from server1 not visible for server2 ? 那么,为什么server2看不到server1的身份验证缓存?
/bwa / bwa
1 个解决方案
解决方案1
0 2018-04-18 20:08:46
When you use the custom cache key, this mean there are some custom stuffs in the subject that we can not re-create this subject with the ltpa token. 使用自定义缓存键时,这意味着主题中存在一些自定义内容,因此我们无法使用ltpa令牌重新创建此主题。 Liberty authentication cache does not share with other servers. Liberty身份验证缓存不与其他服务器共享。
Regards, Ut Le 问候,Ut Le
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.