Some Eclipse Foundation services are deprecated, or will be soon. Please ensure you've read this important communication.

Bug 346185

Summary: Could not discover: http://myopenid.com
Product: [ECD] Orion Reporter: John J. Barton <johnjbarton>
Component: ClientAssignee: Aidan Redpath <aidanr>
Status: RESOLVED WONTFIX QA Contact:
Severity: normal    
Priority: P3 CC: ahunter.eclipse, jarthana, Szymon.Brandys, tomasz.zarna
Version: 0.2   
Target Milestone: ---   
Hardware: PC   
OS: Windows 7   
Whiteboard:

Description John J. Barton CLA 2011-05-17 23:38:40 EDT 
1.http://localhost:8080/navigate-table.html
2. Click on the open id icon

Summary error message appears

eclipse-orion-I20110512-0950-win32.win32.x86


!ENTRY org.eclipse.orion.server.core.authentication.openid.core 4 0 2011-05-17 2
0:34:14.699
!MESSAGE An error occured when authenticing request
!STACK 1
org.eclipse.core.runtime.CoreException: Could not discover: http://myopenid.com
        at org.eclipse.orion.server.openid.core.OpenidConsumer.authRequest(Openi
dConsumer.java:80)
        at org.eclipse.orion.server.openid.core.OpenIdHelper.redirectToOpenIdPro
vider(OpenIdHelper.java:85)
        at org.eclipse.orion.server.authentication.formopenid.servlets.FormOpenI
dLoginServlet.doPost(FormOpenIdLoginServlet.java:102)
        at org.eclipse.orion.server.authentication.formopenid.servlets.FormOpenI
dLoginServlet.doGet(FormOpenIdLoginServlet.java:143)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
        at org.eclipse.equinox.http.servlet.internal.ServletRegistration.service
(ServletRegistration.java:61)
        at org.eclipse.equinox.http.servlet.internal.FilterChainImpl.doFilter(Fi
lterChainImpl.java:38)
        at org.eclipse.orion.internal.server.hosting.HostedSiteRequestFilter.doF
ilter(HostedSiteRequestFilter.java:48)
        at org.eclipse.equinox.http.registry.internal.FilterManager$FilterWrappe
r.doFilter(FilterManager.java:173)
        at org.eclipse.equinox.http.servlet.internal.FilterRegistration.doFilter
(FilterRegistration.java:81)
        at org.eclipse.equinox.http.servlet.internal.FilterChainImpl.doFilter(Fi
lterChainImpl.java:35)
        at org.eclipse.orion.internal.server.servlets.file.EditSupportFilter.doF
ilter(EditSupportFilter.java:46)
        at org.eclipse.equinox.http.registry.internal.FilterManager$FilterWrappe
r.doFilter(FilterManager.java:173)
        at org.eclipse.equinox.http.servlet.internal.FilterRegistration.doFilter
(FilterRegistration.java:81)
        at org.eclipse.equinox.http.servlet.internal.FilterChainImpl.doFilter(Fi
lterChainImpl.java:35)
        at org.eclipse.orion.server.configurator.servlet.WelcomeFileFilter.doFil
ter(WelcomeFileFilter.java:39)
        at org.eclipse.equinox.http.registry.internal.FilterManager$FilterWrappe
r.doFilter(FilterManager.java:173)
        at org.eclipse.equinox.http.servlet.internal.FilterRegistration.doFilter
(FilterRegistration.java:81)
        at org.eclipse.equinox.http.servlet.internal.FilterChainImpl.doFilter(Fi
lterChainImpl.java:35)
        at org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias(P
roxyServlet.java:130)
        at org.eclipse.equinox.http.servlet.internal.ProxyServlet.service(ProxyS
ervlet.java:68)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
        at org.eclipse.equinox.http.jetty.internal.HttpServerManager$InternalHtt
pServiceServlet.service(HttpServerManager.java:317)
        at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:511
)
        at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:3
90)
        at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:1
82)
        at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:7
65)
        at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:1
52)
        at org.mortbay.jetty.Server.handle(Server.java:326)
        at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:54
2)
        at org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpCo
nnection.java:924)
        at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:549)
        at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:212)
        at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:404)
        at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.ja
va:409)
        at org.mortbay.thread.QueuedThreadPool$PoolThread.run(QueuedThreadPool.j
ava:582)
Caused by: org.openid4java.discovery.yadis.YadisException: 0x704: I/O transport
error:
        at org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(Ya
disResolver.java:432)
        at org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.
java:229)
        at org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.
java:221)
        at org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.
java:179)
        at org.openid4java.discovery.Discovery.discover(Discovery.java:134)
        at org.openid4java.discovery.Discovery.discover(Discovery.java:114)
        at org.openid4java.consumer.ConsumerManager.discover(ConsumerManager.jav
a:527)
        at org.eclipse.orion.server.openid.core.OpenidConsumer.authRequest(Openi
dConsumer.java:78)
        ... 36 more
Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.Validator
Exception: PKIX path building failed: sun.security.provider.certpath.SunCertPath
BuilderException: unable to find valid certification path to requested target
        at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Unknown Source)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(Unknown Source)
        at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source)
        at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source)
        at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(Unkno
wn Source)
        at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(Unknown
Source)
        at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Unknown Source)
        at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Unknown Source
)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)

        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(Un
known Source)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(Unknown Source
)
        at com.sun.net.ssl.internal.ssl.AppOutputStream.write(Unknown Source)
        at java.io.BufferedOutputStream.flushBuffer(Unknown Source)
        at java.io.BufferedOutputStream.flush(Unknown Source)
        at org.apache.commons.httpclient.HttpConnection.flushRequestOutputStream
(HttpConnection.java:828)
        at org.apache.commons.httpclient.MultiThreadedHttpConnectionManager$Http
ConnectionAdapter.flushRequestOutputStream(MultiThreadedHttpConnectionManager.ja
va:1565)
        at org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodB
ase.java:2116)
        at org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.j
ava:1096)
        at org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry(Htt
pMethodDirector.java:398)
        at org.apache.commons.httpclient.HttpMethodDirector.executeMethod(HttpMe
thodDirector.java:171)
        at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.jav
a:397)
        at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.jav
a:323)
        at org.openid4java.util.HttpCache.head(HttpCache.java:296)
        at org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(Ya
disResolver.java:360)
        ... 43 more
Caused by: sun.security.validator.ValidatorException: PKIX path building failed:
 sun.security.provider.certpath.SunCertPathBuilderException: unable to find vali
d certification path to requested target
        at sun.security.validator.PKIXValidator.doBuild(Unknown Source)
        at sun.security.validator.PKIXValidator.engineValidate(Unknown Source)
        at sun.security.validator.Validator.validate(Unknown Source)
        at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.validate(Unknown So
urce)
        at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(
Unknown Source)
        at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(
Unknown Source)
        ... 63 more
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to
 find valid certification path to requested target
        at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(Unknown
 Source)
        at java.security.cert.CertPathBuilder.build(Unknown Source)
        ... 69 more
!SUBENTRY 1 org.eclipse.orion.server.core.authentication.openid.core 4 1 2011-05
-17 20:34:15.078
!MESSAGE Could not discover: http://myopenid.com
!STACK 0
org.openid4java.discovery.yadis.YadisException: 0x704: I/O transport error:
        at org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(Ya
disResolver.java:432)
        at org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.
java:229)
        at org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.
java:221)
        at org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.
java:179)
        at org.openid4java.discovery.Discovery.discover(Discovery.java:134)
        at org.openid4java.discovery.Discovery.discover(Discovery.java:114)
        at org.openid4java.consumer.ConsumerManager.discover(ConsumerManager.jav
a:527)
        at org.eclipse.orion.server.openid.core.OpenidConsumer.authRequest(Openi
dConsumer.java:78)
        at org.eclipse.orion.server.openid.core.OpenIdHelper.redirectToOpenIdPro
vider(OpenIdHelper.java:85)
        at org.eclipse.orion.server.authentication.formopenid.servlets.FormOpenI
dLoginServlet.doPost(FormOpenIdLoginServlet.java:102)
        at org.eclipse.orion.server.authentication.formopenid.servlets.FormOpenI
dLoginServlet.doGet(FormOpenIdLoginServlet.java:143)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
        at org.eclipse.equinox.http.servlet.internal.ServletRegistration.service
(ServletRegistration.java:61)
        at org.eclipse.equinox.http.servlet.internal.FilterChainImpl.doFilter(Fi
lterChainImpl.java:38)
        at org.eclipse.orion.internal.server.hosting.HostedSiteRequestFilter.doF
ilter(HostedSiteRequestFilter.java:48)
        at org.eclipse.equinox.http.registry.internal.FilterManager$FilterWrappe
r.doFilter(FilterManager.java:173)
        at org.eclipse.equinox.http.servlet.internal.FilterRegistration.doFilter
(FilterRegistration.java:81)
        at org.eclipse.equinox.http.servlet.internal.FilterChainImpl.doFilter(Fi
lterChainImpl.java:35)
        at org.eclipse.orion.internal.server.servlets.file.EditSupportFilter.doF
ilter(EditSupportFilter.java:46)
        at org.eclipse.equinox.http.registry.internal.FilterManager$FilterWrappe
r.doFilter(FilterManager.java:173)
        at org.eclipse.equinox.http.servlet.internal.FilterRegistration.doFilter
(FilterRegistration.java:81)
        at org.eclipse.equinox.http.servlet.internal.FilterChainImpl.doFilter(Fi
lterChainImpl.java:35)
        at org.eclipse.orion.server.configurator.servlet.WelcomeFileFilter.doFil
ter(WelcomeFileFilter.java:39)
        at org.eclipse.equinox.http.registry.internal.FilterManager$FilterWrappe
r.doFilter(FilterManager.java:173)
        at org.eclipse.equinox.http.servlet.internal.FilterRegistration.doFilter
(FilterRegistration.java:81)
        at org.eclipse.equinox.http.servlet.internal.FilterChainImpl.doFilter(Fi
lterChainImpl.java:35)
        at org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias(P
roxyServlet.java:130)
        at org.eclipse.equinox.http.servlet.internal.ProxyServlet.service(ProxyS
ervlet.java:68)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
        at org.eclipse.equinox.http.jetty.internal.HttpServerManager$InternalHtt
pServiceServlet.service(HttpServerManager.java:317)
        at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:511
)
        at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:3
90)
        at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:1
82)
        at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:7
65)
        at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:1
52)
        at org.mortbay.jetty.Server.handle(Server.java:326)
        at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:54
2)
        at org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpCo
nnection.java:924)
        at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:549)
        at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:212)
        at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:404)
        at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.ja
va:409)
        at org.mortbay.thread.QueuedThreadPool$PoolThread.run(QueuedThreadPool.j
ava:582)
Caused by: javax.net.ssl.SSLHandshakeException: sun.security.validator.Validator
Exception: PKIX path building failed: sun.security.provider.certpath.SunCertPath
BuilderException: unable to find valid certification path to requested target
        at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Unknown Source)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(Unknown Source)
        at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source)
        at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source)
        at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(Unkno
wn Source)
        at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(Unknown
Source)
        at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Unknown Source)
        at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Unknown Source
)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)

        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(Un
known Source)
        at com.sun.net.ssl.internal.ssl.SSLSocketImpl.writeRecord(Unknown Source
)
        at com.sun.net.ssl.internal.ssl.AppOutputStream.write(Unknown Source)
        at java.io.BufferedOutputStream.flushBuffer(Unknown Source)
        at java.io.BufferedOutputStream.flush(Unknown Source)
        at org.apache.commons.httpclient.HttpConnection.flushRequestOutputStream
(HttpConnection.java:828)
        at org.apache.commons.httpclient.MultiThreadedHttpConnectionManager$Http
ConnectionAdapter.flushRequestOutputStream(MultiThreadedHttpConnectionManager.ja
va:1565)
        at org.apache.commons.httpclient.HttpMethodBase.writeRequest(HttpMethodB
ase.java:2116)
        at org.apache.commons.httpclient.HttpMethodBase.execute(HttpMethodBase.j
ava:1096)
        at org.apache.commons.httpclient.HttpMethodDirector.executeWithRetry(Htt
pMethodDirector.java:398)
        at org.apache.commons.httpclient.HttpMethodDirector.executeMethod(HttpMe
thodDirector.java:171)
        at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.jav
a:397)
        at org.apache.commons.httpclient.HttpClient.executeMethod(HttpClient.jav
a:323)
        at org.openid4java.util.HttpCache.head(HttpCache.java:296)
        at org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(Ya
disResolver.java:360)
        ... 43 more
Caused by: sun.security.validator.ValidatorException: PKIX path building failed:
 sun.security.provider.certpath.SunCertPathBuilderException: unable to find vali
d certification path to requested target
        at sun.security.validator.PKIXValidator.doBuild(Unknown Source)
        at sun.security.validator.PKIXValidator.engineValidate(Unknown Source)
        at sun.security.validator.Validator.validate(Unknown Source)
        at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.validate(Unknown So
urce)
        at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(
Unknown Source)
        at com.sun.net.ssl.internal.ssl.X509TrustManagerImpl.checkServerTrusted(
Unknown Source)
        ... 63 more
Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to
 find valid certification path to requested target
        at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(Unknown
 Source)
        at java.security.cert.CertPathBuilder.build(Unknown Source)
        ... 69 more
Comment 1 Jay Arthanareeswaran CLA 2011-07-28 06:12:17 EDT 
This is reproducible.

However, this is because the openid certificate is not trusted by the JRE used by Orion. Either use the correct JRE that has the certificate or import the OpenID certificate in to the JRE's cecerts. You can use the following command:

keytool -import -keystore $JAVA_HOME/jre/lib/security/cacerts -file $PATH_TO_OPENID_CERT

You can just visit openID over https in a browser and save the certificate. Let me know if this works.
Comment 2 John J. Barton CLA 2011-07-28 12:00:05 EDT 
Thanks, but I just won't use the feature if this is the requirement.
Comment 3 Jay Arthanareeswaran CLA 2011-07-28 12:20:37 EDT 
(In reply to comment #2)
> Thanks, but I just won't use the feature if this is the requirement.

Normally you won't have to do that. I will see if we can do something in Orion to make it work.
Comment 4 Tomasz Zarna CLA 2011-10-05 05:15:34 EDT 
(In reply to comment #3)
> I will see if we can do something in Orion to make it work.

Any luck?
Comment 5 Jay Arthanareeswaran CLA 2011-10-06 12:56:52 EDT 
(In reply to comment #4)
> Any luck?

No, not yet. I spent some time on it and couldn't get around to figure out a solution. Since there was a workaround I didn't want to spend lot of time on it yet. Though, I would be okay to pass it on to anyone who can give it a try.
Comment 6 John Arthorne CLA 2015-04-28 14:21:04 EDT 
We have stopped supporting original OpenID (moved to OpenID Connect).