Cf login doesnt work


Nithiyasri Gnanasekaran -X (ngnanase - TECH MAHINDRA LIM@Cisco) <ngnanase at cisco.com...>
 

Hi

I am using cf-231 . After deploying, I can set cf endpoint. But I could not login
While logging, it gives me the following
404 Not Found: Requested route ('uaa.cisco.com<http://uaa.cisco.com>') does not exist.
Server error, status code: 404, error code: , message:
Related properties : uaa.require_htttps:false in yml

Below are the trace:
root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes t1/cf-deploy# cf login
API endpoint: https://api.vikramdevtest1.io

Email> admin

Password>
Authenticating...
Server error, status code: 404, error code: , message:

Password> root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vi t1/cf-deploy# ls
cf-231-final-V.yml cf-template-231.yml service.yml
cf-settings.rb cf-vikramdevtest1.yml
root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes t1/cf-deploy# vimdiff cf-template-231.yml cf-231-final-V.yml
2 files to edit
root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes t1/cf-deploy# CF_TRACE_true
CF_TRACE_true: command not found
root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes t1/cf-deploy# CF_TRACE=true cf login
API endpoint: https://api.vikramdevtest1.io

REQUEST: [2016-04-05T17:38:18Z]
GET /v2/info HTTP/1.1
Host: api.vikramdevtest1.io<http://api.vikramdevtest1.io>
Accept: application/json
Content-Type: application/json
User-Agent: go-cli 6.12.2-24abed3 / linux



RESPONSE: [2016-04-05T17:38:18Z]
HTTP/1.1 200 OK
Content-Length: 586
Content-Type: application/json;charset=utf-8
Date: Tue, 05 Apr 2016 17:38:18 GMT
Server: nginx
X-Content-Type-Options: nosniff
X-Vcap-Request-Id: 54184ed0-310b-4a2f-5d5f-a1c21a397d49
X-Vcap-Request-Id: 876ca517-01fd-4f73-7a85-955955f3de41::86dcd763-5 f8e-42b3-b657-7af57ec9ea21

{"name":"","build":"","support":"http://support.cloudfoundry.com"," version":0,"description":"","authorization_endpoint":"http://uaa.vi kramdevtest1.io<http://kramdevtest1.io>","token_endpoint":"http://uaa.vikramdevtest1.io","m in_cli_version":null,"min_recommended_cli_version":null,"api_versio n":"2.51.0","app_ssh_endpoint":"ssh.vikramdevtest1.io:2222<http://ssh.vikramdevtest1.io:2222>","app_ss h_host_key_fingerprint":null,"app_ssh_oauth_client":"ssh-proxy","ro uting_endpoint":"https://api.vikramdevtest1.io/routing","logging_en dpoint":"wss://loggregator.vikramdevtest1.io:4443<http://loggregator.vikramdevtest1.io:4443>","doppler_logging _endpoint":"wss://doppler.vikramdevtest1.io:4443<http://doppler.vikramdevtest1.io:4443>"}

REQUEST: [2016-04-05T17:38:18Z]
GET /login HTTP/1.1
Host: uaa.vikramdevtest1.io<http://uaa.vikramdevtest1.io>
Accept: application/json
Content-Type: application/json
User-Agent: go-cli 6.12.2-24abed3 / linux



RESPONSE: [2016-04-05T17:38:18Z]
HTTP/1.1 200 OK
Content-Length: 447
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Cache-Control: no-store
Content-Language: en-US
Content-Type: application/json;charset=UTF-8
Date: Tue, 05 Apr 2016 17:38:18 GMT
Expires: 0
Pragma: no-cache
Server: Apache-Coyote/1.1
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: d35da14d-3367-4032-6eef-d2050839147f
X-Xss-Protection: 1; mode=block

{"app":{"version":"3.1.0"},"links":{"uaa":"http://uaa.vikramdevtest 1.io<http://1.io>","passwd":"https://console.vikramdevtest1.io/password_resets/n ew","login":"http://login.vikramdevtest1.io","register":"https://co nsole.vikramdevtest1.io/register<http://nsole.vikramdevtest1.io/register>"},"zone_name":"uaa","entityID":"lo gin.vikramdevtest1.io<http://gin.vikramdevtest1.io>","commit_id":"9b5c13d","idpDefinitions":{},"p rompts":{"username":["text","Email"],"password":["password","Passwo rd"]},"timestamp":"2016-02-05T14:27:13+0000"}

Email> admin

Password>
Authenticating...

REQUEST: [2016-04-05T17:38:29Z]
POST /oauth/token HTTP/1.1
Host: uaa.vikramdevtest1.io<http://uaa.vikramdevtest1.io>
Accept: application/json
Authorization: [PRIVATE DATA HIDDEN]
Content-Type: application/x-www-form-urlencoded
User-Agent: go-cli 6.12.2-24abed3 / linux

grant_type=password&password=[PRIVATE DATA HIDDEN]&scope=&username=admin

RESPONSE: [2016-04-05T17:38:29Z]
HTTP/1.1 404 Not Found
Content-Length: 65
Content-Type: text/plain; charset=utf-8
Date: Tue, 05 Apr 2016 17:38:29 GMT
X-Cf-Routererror: unknown_route
X-Content-Type-Options: nosniff
X-Vcap-Request-Id: dab37d6c-3fea-428c-516a-ec7906ff6d16

404 Not Found: Requested route ('uaa.cisco.com<http://uaa.cisco.com>') does not exist.

Server error, status code: 404, error code: , message:

Password> root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtest1/cf-deploy#

Regards
Nithiyasri


Sree Tummidi
 

Hi,

Can you please share your deployment manifest. There is something strange
going on because for some reason UAA requests are being routed to
*uaa.cisco.com
<http://uaa.cisco.com/> instead of *http://uaa.vikramdevtest1.io (as shown
in the output from the info endpoint)
Please make sure you mask all sensitive information in the manifest.

Thanks,
Sree Tummidi
Sr. Product Manager
Identity - Pivotal Cloud Foundry


On Tue, Apr 5, 2016 at 5:54 PM, Nithiyasri Gnanasekaran -X (ngnanase - TECH
MAHINDRA LIM at Cisco) <ngnanase(a)cisco.com> wrote:

Hi



I am using cf-231 . After deploying, I can set cf endpoint. But I could
not login

While logging, it gives me the following

*404 Not Found: Requested route ('uaa.cisco.com <http://uaa.cisco.com>')
does not exist.*

* Server error, status code: 404, error code: , message:*

Related properties : uaa.require_htttps:false in yml



Below are the trace:

root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes
t1/cf-deploy# cf login

API endpoint: https://api.vikramdevtest1.io



Email> admin



Password>

Authenticating...

Server error, status code: 404, error code: , message:



Password> root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vi
t1/cf-deploy#
ls

cf-231-final-V.yml cf-template-231.yml service.yml

cf-settings.rb cf-vikramdevtest1.yml

root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes
t1/cf-deploy# vimdiff cf-template-231.yml cf-231-final-V.yml

2 files to edit

root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes
t1/cf-deploy# CF_TRACE_true

CF_TRACE_true: command not found

root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes
t1/cf-deploy# CF_TRACE=true cf login

API endpoint: https://api.vikramdevtest1.io



REQUEST: [2016-04-05T17:38:18Z]

GET /v2/info HTTP/1.1

Host: api.vikramdevtest1.io

Accept: application/json

Content-Type: application/json

User-Agent: go-cli 6.12.2-24abed3 / linux







RESPONSE: [2016-04-05T17:38:18Z]

HTTP/1.1 200 OK

Content-Length: 586

Content-Type: application/json;charset=utf-8

Date: Tue, 05 Apr 2016 17:38:18 GMT

Server: nginx

X-Content-Type-Options: nosniff

X-Vcap-Request-Id: 54184ed0-310b-4a2f-5d5f-a1c21a397d49

X-Vcap-Request-Id: 876ca517-01fd-4f73-7a85-955955f3de41::86dcd763-5
f8e-42b3-b657-7af57ec9ea21



{"name":"","build":"","support":"http://support.cloudfoundry.com","
version":0,"description":"","authorization_endpoint":"
http://uaa.vi
kramdevtest1.io","token_endpoint":"
http://uaa.vikramdevtest1.io","m
in_cli_version":null,"min_recommended_cli_version":null,"api_versio
n":"2.51.0","app_ssh_endpoint":"ssh.vikramdevtest1.io:2222","app_ss
h_host_key_fingerprint":null,"app_ssh_oauth_client":"ssh-proxy","ro
uting_endpoint":"https://api.vikramdevtest1.io/routing","logging_en
dpoint":"wss://loggregator.vikramdevtest1.io:4443","doppler_logging
_endpoint":"wss://doppler.vikramdevtest1.io:4443"}



REQUEST: [2016-04-05T17:38:18Z]

GET /login HTTP/1.1

Host: uaa.vikramdevtest1.io

Accept: application/json

Content-Type: application/json

User-Agent: go-cli 6.12.2-24abed3 / linux







RESPONSE: [2016-04-05T17:38:18Z]

HTTP/1.1 200 OK

Content-Length: 447

Cache-Control: no-cache, no-store, max-age=0, must-revalidate

Cache-Control: no-store

Content-Language: en-US

Content-Type: application/json;charset=UTF-8

Date: Tue, 05 Apr 2016 17:38:18 GMT

Expires: 0

Pragma: no-cache

Server: Apache-Coyote/1.1

Strict-Transport-Security: max-age=31536000 ; includeSubDomains

X-Content-Type-Options: nosniff

X-Frame-Options: DENY

X-Vcap-Request-Id: d35da14d-3367-4032-6eef-d2050839147f

X-Xss-Protection: 1; mode=block



{"app":{"version":"3.1.0"},"links":{"uaa":"http://uaa.vikramdevtest
1.io
","passwd":"https://console.vikramdevtest1.io/password_resets/n
ew","login":"http://login.vikramdevtest1.io","register":"https://co
nsole.vikramdevtest1.io/register"},"zone_name":"uaa","entityID":"lo
gin.vikramdevtest1.io","commit_id":"9b5c13d","idpDefinitions":{},"p
rompts":{"username":["text","Email"],"password":["password","Passwo
rd"]},"timestamp":"2016-02-05T14:27:13+0000"}



Email> admin



Password>

Authenticating...



REQUEST: [2016-04-05T17:38:29Z]

POST /oauth/token HTTP/1.1

Host: uaa.vikramdevtest1.io

Accept: application/json

Authorization: [PRIVATE DATA HIDDEN]

Content-Type: application/x-www-form-urlencoded

User-Agent: go-cli 6.12.2-24abed3 / linux



grant_type=password&password=[PRIVATE DATA HIDDEN]&scope=&username=admin



RESPONSE: [2016-04-05T17:38:29Z]

HTTP/1.1 404 Not Found

Content-Length: 65

Content-Type: text/plain; charset=utf-8

Date: Tue, 05 Apr 2016 17:38:29 GMT

X-Cf-Routererror: unknown_route

X-Content-Type-Options: nosniff

X-Vcap-Request-Id: dab37d6c-3fea-428c-516a-ec7906ff6d16



404 Not Found: Requested route ('uaa.cisco.com') does not exist.



Server error, status code: 404, error code: , message:



Password> root(a)dev-inception-vm1
:/opt/cisco/vms-installer/tenant-vikramdevtest1/cf-deploy#



Regards

Nithiyasri



Amit Kumar Gupta
 

What's even weirder is the GET request to /login seems to do the right
thing, but POST to /oauth/token gets translated to a request for
uaa.cisco.com. The error is coming back from the gorouter, so it's some
weird configuration at the level of whatever is sitting in front of
gorouter.

Amit

On Wednesday, April 6, 2016, Sree Tummidi <stummidi(a)pivotal.io> wrote:

Hi,

Can you please share your deployment manifest. There is something strange
going on because for some reason UAA requests are being routed to *uaa.cisco.com
<http://uaa.cisco.com/> instead of *http://uaa.vikramdevtest1.io (as
shown in the output from the info endpoint)
Please make sure you mask all sensitive information in the manifest.

Thanks,
Sree Tummidi
Sr. Product Manager
Identity - Pivotal Cloud Foundry


On Tue, Apr 5, 2016 at 5:54 PM, Nithiyasri Gnanasekaran -X (ngnanase -
TECH MAHINDRA LIM at Cisco) <ngnanase(a)cisco.com
<javascript:_e(%7B%7D,'cvml','ngnanase(a)cisco.com');>> wrote:

Hi



I am using cf-231 . After deploying, I can set cf endpoint. But I could
not login

While logging, it gives me the following

*404 Not Found: Requested route ('uaa.cisco.com <http://uaa.cisco.com>')
does not exist.*

* Server error, status code: 404, error code: , message:*

Related properties : uaa.require_htttps:false in yml



Below are the trace:

root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes
t1/cf-deploy# cf login

API endpoint: https://api.vikramdevtest1.io



Email> admin



Password>

Authenticating...

Server error, status code: 404, error code: , message:



Password> root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vi
t1/cf-deploy#
ls

cf-231-final-V.yml cf-template-231.yml service.yml

cf-settings.rb cf-vikramdevtest1.yml

root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes
t1/cf-deploy# vimdiff cf-template-231.yml cf-231-final-V.yml

2 files to edit

root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes
t1/cf-deploy# CF_TRACE_true

CF_TRACE_true: command not found

root(a)dev-inception-vm1:/opt/cisco/vms-installer/tenant-vikramdevtes
t1/cf-deploy# CF_TRACE=true cf login

API endpoint: https://api.vikramdevtest1.io



REQUEST: [2016-04-05T17:38:18Z]

GET /v2/info HTTP/1.1

Host: api.vikramdevtest1.io

Accept: application/json

Content-Type: application/json

User-Agent: go-cli 6.12.2-24abed3 / linux







RESPONSE: [2016-04-05T17:38:18Z]

HTTP/1.1 200 OK

Content-Length: 586

Content-Type: application/json;charset=utf-8

Date: Tue, 05 Apr 2016 17:38:18 GMT

Server: nginx

X-Content-Type-Options: nosniff

X-Vcap-Request-Id: 54184ed0-310b-4a2f-5d5f-a1c21a397d49

X-Vcap-Request-Id: 876ca517-01fd-4f73-7a85-955955f3de41::86dcd763-5
f8e-42b3-b657-7af57ec9ea21



{"name":"","build":"","support":"http://support.cloudfoundry.com","
version":0,"description":"","authorization_endpoint":"
http://uaa.vi
kramdevtest1.io","token_endpoint":"
http://uaa.vikramdevtest1.io","m
in_cli_version":null,"min_recommended_cli_version":null,"api_versio
n":"2.51.0","app_ssh_endpoint":"ssh.vikramdevtest1.io:2222","app_ss
h_host_key_fingerprint":null,"app_ssh_oauth_client":"ssh-proxy","ro
uting_endpoint":"https://api.vikramdevtest1.io/routing","logging_en
dpoint":"wss://loggregator.vikramdevtest1.io:4443","doppler_logging
_endpoint":"wss://doppler.vikramdevtest1.io:4443"}



REQUEST: [2016-04-05T17:38:18Z]

GET /login HTTP/1.1

Host: uaa.vikramdevtest1.io

Accept: application/json

Content-Type: application/json

User-Agent: go-cli 6.12.2-24abed3 / linux







RESPONSE: [2016-04-05T17:38:18Z]

HTTP/1.1 200 OK

Content-Length: 447

Cache-Control: no-cache, no-store, max-age=0, must-revalidate

Cache-Control: no-store

Content-Language: en-US

Content-Type: application/json;charset=UTF-8

Date: Tue, 05 Apr 2016 17:38:18 GMT

Expires: 0

Pragma: no-cache

Server: Apache-Coyote/1.1

Strict-Transport-Security: max-age=31536000 ; includeSubDomains

X-Content-Type-Options: nosniff

X-Frame-Options: DENY

X-Vcap-Request-Id: d35da14d-3367-4032-6eef-d2050839147f

X-Xss-Protection: 1; mode=block



{"app":{"version":"3.1.0"},"links":{"uaa":"http://uaa.vikramdevtest

1.io","passwd":"https://console.vikramdevtest1.io/password_resets/n
ew","login":"http://login.vikramdevtest1.io","register":"https://co
nsole.vikramdevtest1.io/register"},"zone_name":"uaa","entityID":"lo
gin.vikramdevtest1.io","commit_id":"9b5c13d","idpDefinitions":{},"p
rompts":{"username":["text","Email"],"password":["password","Passwo
rd"]},"timestamp":"2016-02-05T14:27:13+0000"}



Email> admin



Password>

Authenticating...



REQUEST: [2016-04-05T17:38:29Z]

POST /oauth/token HTTP/1.1

Host: uaa.vikramdevtest1.io

Accept: application/json

Authorization: [PRIVATE DATA HIDDEN]

Content-Type: application/x-www-form-urlencoded

User-Agent: go-cli 6.12.2-24abed3 / linux



grant_type=password&password=[PRIVATE DATA HIDDEN]&scope=&username=admin



RESPONSE: [2016-04-05T17:38:29Z]

HTTP/1.1 404 Not Found

Content-Length: 65

Content-Type: text/plain; charset=utf-8

Date: Tue, 05 Apr 2016 17:38:29 GMT

X-Cf-Routererror: unknown_route

X-Content-Type-Options: nosniff

X-Vcap-Request-Id: dab37d6c-3fea-428c-516a-ec7906ff6d16



404 Not Found: Requested route ('uaa.cisco.com') does not exist.



Server error, status code: 404, error code: , message:



Password> root(a)dev-inception-vm1
:/opt/cisco/vms-installer/tenant-vikramdevtest1/cf-deploy#



Regards

Nithiyasri