Bug 1337847

Summary: [SET] (6.4.z) Misleading error message in the log about expired assertion in case of clock skew
Product: [JBoss] JBoss Enterprise Application Platform 6 Reporter: Ivo Studensky <istudens>
Component: PicketLinkAssignee: Ivo Studensky <istudens>
Status: CLOSED CURRENTRELEASE QA Contact: Josef Cacek <jcacek>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 6.4.8CC: anmiller, bdawidow, bmaxwell, ihradek, jtruhlar, psilva, pskopek, rnetuka
Target Milestone: CR1   
Target Release: EAP 6.4.15   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-05-19 08:07:17 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1323281    
Bug Blocks: 1343635, 1419353    

Description Ivo Studensky 2016-05-20 08:47:19 UTC 
bz1323281 has introduced a new configuration option clockSkew to the SAML2STSLoginModule for the case when the STS service and the STS client do not have synchronized clocks. Now it is possible to log in in such environment. 

However, SAML2Handler which precedes the SAML2STSLoginModule in the handler chain logs an error about expired assertion. That happens before SAML2STSLoginModule takes place and note that SAML2Handler knows nothing about SAML2STSLoginModule configuration.

So even if nothing wrong happened there is an error message in the log.
Comment 2 JBoss JIRA Server 2016-05-24 13:43:52 UTC 
Carlo de Wolf <cdewolf> updated the status of jira JBEAP-4045 to Resolved
Comment 3 JBoss JIRA Server 2016-06-02 08:48:00 UTC 
Ondrej Lukas <olukas> updated the status of jira JBEAP-4045 to Reopened
Comment 4 Ivo Hradek 2017-05-03 07:01:47 UTC 
Error message is not shown in logs anymore, hence verified with EAP-6.4.15.CP.CR{2,3};
Comment 5 Petr Penicka 2017-05-19 08:07:17 UTC 
Released on May 18 as part of EAP 6.4.15.