Uploaded image for project: 'MyFaces Core'
  1. MyFaces Core
  2. MYFACES-1388

org.apache.myfaces.secret.cache error on startup

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: 1.1.5-SNAPSHOT
    • Fix Version/s: None
    • Component/s: General
    • Labels:
      None

      Description

      After switching from MyFaces 1.1.4 to MyFaces 1.1.5, the following error appears when requesting a page:

      The context parameter 'org.apache.myfaces.secret.CACHE' is not set to false, yet there is nothing stored in the application map w/ the following key 'org.apache.myfaces.secret.CACHE'. It was either not placed there by StartupServletContextListener or something has removed it.

      The error goes away if the following configuration line is added to web.xml, or if you downgrade back to 1.1.4.

      <context-param>
      <param-name>org.apache.myfaces.secret.cache</param-name>
      <param-value>false</param-value>
      </context-param>

      Other encryption parameter values are:

      <!-- MyFaces Encryption -->
      <context-param>
      <param-name>org.apache.myfaces.secret</param-name>
      <param-value>[censored]</param-value>
      </context-param>
      <context-param>
      <param-name>org.apache.myfaces.algorithm</param-name>
      <param-value>AES</param-value>
      </context-param>
      <context-param>
      <param-name>org.apache.myfaces.algorithm.parameters</param-name>
      <param-value>CBC/PKCS5Padding</param-value>
      </context-param>
      <context-param>
      <param-name>org.apache.myfaces.algorithm.iv</param-name>
      <param-value>[censored]</param-value>
      </context-param>

      java.lang.NullPointerException: The context parameter 'org.apache.myfaces.secret.CACHE' is not set to false, yet there is nothing stored in the application map w/ the following key 'org.apache.myfaces.secret.CACHE'. It was either not placed there by StartupServletContextListener or something has removed it.
      at org.apache.myfaces.shared_impl.util.StateUtils.symmetric(StateUtils.java:484)
      at org.apache.myfaces.shared_impl.util.StateUtils.encrypt(StateUtils.java:198)
      at org.apache.myfaces.shared_impl.util.StateUtils.construct(StateUtils.java:155)
      at org.apache.myfaces.renderkit.html.HtmlResponseStateManager.writeState(HtmlResponseStateManager.java:72)
      at org.apache.myfaces.application.jsp.JspStateManagerImpl.writeState(JspStateManagerImpl.java:430)
      at com.sun.facelets.FaceletViewHandler.renderView(FaceletViewHandler.java:606)
      at org.apache.myfaces.lifecycle.LifecycleImpl.render(LifecycleImpl.java:383)
      at javax.faces.webapp.FacesServlet.service(FacesServlet.java:138)
      at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:428)
      at org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebApplicationHandler.java:830)
      at de.mindmatters.faces.spring.support.RequestHandledFilter.doFilter(RequestHandledFilter.java:150)
      at org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebApplicationHandler.java:821)
      at org.apache.myfaces.webapp.filter.ExtensionsFilter.doFilter(ExtensionsFilter.java:144)
      at org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebApplicationHandler.java:821)
      at com.gvea.servlet.filter.authentication.RequiredSecActionFilter.doFilter(RequiredSecActionFilter.java:79)
      at org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebApplicationHandler.java:821)
      at com.gvea.servlet.filter.authentication.SecIndividualLookupFilter.doFilter(SecIndividualLookupFilter.java:136)
      at org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebApplicationHandler.java:821)
      at com.gvea.servlet.filter.DataContextManagerFilter.doFilter(DataContextManagerFilter.java:31)
      at org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebApplicationHandler.java:821)
      at com.gvea.servlet.filter.SequentialSessionFilter.doFilter(SequentialSessionFilter.java:63)
      at org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebApplicationHandler.java:821)
      at com.gvea.servlet.filter.authentication.ForcedAuthenticationFilter.doFilter(ForcedAuthenticationFilter.java:41)
      at org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebApplicationHandler.java:821)
      at org.mortbay.jetty.servlet.WebApplicationHandler.dispatch(WebApplicationHandler.java:471)
      at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:568)
      at org.mortbay.http.HttpContext.handle(HttpContext.java:1530)
      at org.mortbay.jetty.servlet.WebApplicationContext.handle(WebApplicationContext.java:633)
      at org.mortbay.http.HttpContext.handle(HttpContext.java:1482)
      at org.mortbay.http.HttpServer.service(HttpServer.java:909)
      at org.mortbay.http.HttpConnection.service(HttpConnection.java:816)
      at org.mortbay.http.HttpConnection.handleNext(HttpConnection.java:982)
      at org.mortbay.http.HttpConnection.handle(HttpConnection.java:833)
      at org.mortbay.http.SocketListener.handleConnection(SocketListener.java:244)
      at org.mortbay.util.ThreadedServer.handle(ThreadedServer.java:357)
      at org.mortbay.util.ThreadPool$PoolThread.run(ThreadPool.java:534)

        Attachments

        1. patch.txt
          0.9 kB
          Dennis Byrne

          Issue Links

            Activity

              People

              • Assignee:
                dennisbyrne Dennis Byrne
                Reporter:
                mkienenb Mike Kienenberger
              • Votes:
                0 Vote for this issue
                Watchers:
                0 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: