I am setting up a forgerock cluster in GKE(1.27.4-gke.900). I am using forgeops(7.3.0) and fr-reactjs-sampleapp to validate the Oauth2 authorization code flow setup.
For the basic username/password login flow, the following POST call from SPA is failing with 401 error code.
request:
curl -X POST [hostname]/am/json/realms/root/authenticate?authIndexType=service&authIndexValue=Login&goto=[hostname]%2Fam%2Foauth2%2Fauthorize%3Fclient_id%3DWebOAuthClient%26redirect_uri%3Dhttps%3A%2F%2Fforgerock.idpingress.net%2Freact%2Flogin-central%26response_type%3Dcode%26scope%3Dopenid%2520profile%2520email%26state%3D[code]%26code_challenge%3D[code]%26code_challenge_method%3DS256%26service%3DLogin -d ‘{“authId”:“[authId]”,“callbacks”:[{“type”:“NameCallback”,“output”:[{“name”:“prompt”,“value”:“User Name”}],“input”:[{“name”:“IDToken1”,“value”:“[username]”}],“_id”:0},{“type”:“PasswordCallback”,“output”:[{“name”:“prompt”,“value”:“Password”}],“input”:[{“name”:“IDToken2”,“value”:“[pw]”}],“_id”:1}],“header”:“Sign In”,“description”:“New here? <a href="#/service/Registration">Create an account
<a href="#/service/ForgottenUsername">Forgot username?<a href="#/service/ResetPassword"> Forgot password?”,“status”:200,“ok”:true}’
response:
{“code”:401,“reason”:“Unauthorized”,“message”:“Login failure”}
I can’t find any relevant articles regards to the error in the forum and all I could tell is there is something wrong with “Increment Login Count” node in the flow. Based on the error stack trace, the login failure was caused by “Failed to retrieve existing object”. Could some explain what this error means and how to troubleshoot it?
{"timestamp":"2023-09-13T19:41:52.093Z","level":"ERROR","thread":"http-nio-8081-exec-6","mdc":{"transactionId":"7cb4f8d9-ff5e-44d5-8733-1c759df9def8-2452"},"logger":"org.forgerock.openam.core.rest.authn.trees.Auth
Trees","message":"Exception in processing the tree","context":"default","exception":"org.forgerock.openam.auth.node.api.NodeProcessException: Failed to retrieve existing object
at org.forgerock.openam.auth.nodes.LoginCountDecisionNode.lambda$process$2(LoginCountDecisionNode.java:131)
at java.base/java.util.Optional.orElseThrow(Optional.java:403)
at org.forgerock.openam.auth.nodes.LoginCountDecisionNode.process(LoginCountDecisionNode.java:131)
at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:153)
at org.forgerock.openam.auth.nodes.framework.InnerTreeEvaluatorNode.process(InnerTreeEvaluatorNode.java:125)
at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:153)
at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:211)
at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:211)
at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:211)
at org.forgerock.openam.core.rest.authn.trees.AuthTrees.processTree(AuthTrees.java:515)
at org.forgerock.openam.core.rest.authn.trees.AuthTrees.evaluateTreeAndProcessResult(AuthTrees.java:318)
at org.forgerock.openam.core.rest.authn.trees.AuthTrees.invokeTree(AuthTrees.java:295)
at org.forgerock.openam.core.rest.authn.RestAuthenticationHandler.authenticate(RestAuthenticationHandler.java:259)
at org.forgerock.openam.core.rest.authn.http.AuthenticationServiceV1.authenticate(AuthenticationServiceV1.java:157)
at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at java.base/
jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:77)
at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.base/java.lang.reflect.Method.invoke(Method.java:568)
at org.forgerock.openam.http.annotations.AnnotatedMethod.invoke(AnnotatedMethod.java:81)
at org.forgerock.openam.http.annotations.Endpoints$1.handle(Endpoints.java:77)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.openam.rest.DisableCachingFilter.filter(DisableCachingFilter.java:90)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.audit.AbstractHttpAccessAuditFilter.filter(AbstractHttpAccessAuditFilter.java:88)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.openam.cors.CorsFilter.filter(CorsFilter.java:91)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.rest.RealmContextFilter.filter(RealmContextFilter.java:87)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.openam.rest.RealmRoutingFactory$ChfRealmRouter.handle(RealmRoutingFactory.java:123)
at org.forgerock.http.handler.Handlers$UndescribedAsDescribableHandler.handle(Handlers.java:180)
at org.forgerock.openam.rest.RealmRoutingFactory$HostnameFilter.filter(RealmRoutingFactory.java:100)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.openam.rest.CsrfFilter.filter(CsrfFilter.java:91)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.routing.ResourceApiVersionRoutingFilter.filter(ResourceApiVersionRoutingFilter.java:59)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.caf.authentication.framework.AuthenticationFramework.grantAccess(AuthenticationFramework.java:188)
at org.forgerock.caf.authentication.framework.AuthenticationFramework.lambda$onValidateRequestSuccess$1(AuthenticationFramework.java:181)
at org.forgerock.util.promise.Promises$CompletedPromise.thenAsync(Promises.java:263)
at org.forgerock.util.promise.Promises$CompletedPromise.thenAsync(Promises.java:252)
at org.forgerock.caf.authentication.framework.AuthenticationFramework.validateRequest(AuthenticationFramework.java:144)
at org.forgerock.caf.authentication.framework.AuthenticationFramework.processMessage(AuthenticationFramework.java:134)
at org.forgerock.caf.authentication.framework.AuthenticationFilter.filter(AuthenticationFilter.java:84)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.http.GuiceHandler.handle(GuiceHandler.java:51)
at org.forgerock.openam.http.HttpRoute$6.handle(HttpRoute.java:206)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.openam.dpro.session.ProofOfPossessionTokenFilter.filter(ProofOfPossessionTokenFilter.java:95)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.swagger.OpenApiRequestFilter.filter(OpenApiRequestFilter.java:63)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.http.ApiDescriptorFilter.filter(ApiDescriptorFilter.java:66)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.http.ResponseContext$ResponseContextFilter.filter(ResponseContext.java:53)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.http.OpenAMHttpApplication.lambda$static$1(OpenAMHttpApplication.java:60)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.http.OpenAMHttpApplication.lambda$cacheHeaderFilter$3(OpenAMHttpApplication.java:88)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.filter.TransactionIdInboundFilter.filter(TransactionIdInboundFilter.java:86)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.servlet.HttpFrameworkServlet.service(HttpFrameworkServlet.java:282)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:623)
at org.forgerock.openam.http.OpenAMHttpFrameworkServlet.service(OpenAMHttpFrameworkServlet.java:47)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:623)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:209)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:51)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.validation.LargeCookieWarningFilter.doFilter(LargeCookieWarningFilter.java:48)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.services.datastore.DataStoreConsistencyFilter.lambda$doFilter$0(DataStoreConsistencyFilter.java:46)
at org.forgerock.openam.service.datastore.ReentrantVolatileActionConsistencyController.safeExecute(ReentrantVolatileActionConsistencyController.java:37)
at org.forgerock.openam.services.datastore.DataStoreConsistencyFilter.doFilter(DataStoreConsistencyFilter.java:46)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.rest.ProtocolVersionFilter.doFilter(ProtocolVersionFilter.java:66)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.headers.SecureCookieFilter.doFilter(SecureCookieFilter.java:63)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.headers.DisableSameSiteCookiesFilter.doFilter(DisableSameSiteCookiesFilter.java:106)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.validation.ResponseValidationFilter.doFilter(ResponseValidationFilter.java:59)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.headers.SetHeadersFilter.doFilter(SetHeadersFilter.java:110)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.headers.SetHeadersFilter.doFilter(SetHeadersFilter.java:110)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.headers.SetHeadersFilter.doFilter(SetHeadersFilter.java:110)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at com.sun.identity.setup.AMSetupFilter.doFilter(AMSetupFilter.java:116)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.validation.RequestEntitySizeVerificationFilter.doFilter(RequestEntitySizeVerificationFilter.java:66)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.audit.context.AuditContextFilter.doFilter(AuditContextFilter.java:47)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:168)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:90)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:481)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:130)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:93)
at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:670)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:74)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343)
at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:390)
at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:63)
at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:926)
at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1790)
at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:52)
at org.apache.tomcat.util.threads.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1191)
at org.apache.tomcat.util.threads.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:659)
at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
at java.base/java.lang.Thread.run(Thread.java:833)","transactionId":"7cb4f8d9-ff5e-44d5-8733-1c759df9def8-2452"}
{"timestamp":"2023-09-13T19:41:52.094Z","level":"WARN","thread":"http-nio-8081-exec-6","mdc":{"transactionId":"7cb4f8d9-ff5e-44d5-8733-1c759df9def8-2452"},"logger":"org.forgerock.openam.core.rest.authn.http.Authen
ticationServiceV2","message":"Authentication encountered an error: [Status: 401 Unauthorized]","context":"default","exception":"org.forgerock.openam.core.rest.authn.exceptions.RestAuthException: Login failure
at org.forgerock.openam.core.rest.authn.trees.FailureProcessTreeResult.authFailureException(FailureProcessTreeResult.java:127)
at org.forgerock.openam.core.rest.authn.trees.AuthTrees.processTree(AuthTrees.java:520)
at org.forgerock.openam.core.rest.authn.trees.AuthTrees.evaluateTreeAndProcessResult(AuthTrees.java:318)
at org.forgerock.openam.core.rest.authn.trees.AuthTrees.invokeTree(AuthTrees.java:295)
at org.forgerock.openam.core.rest.authn.RestAuthenticationHandler.authenticate(RestAuthenticationHandler.java:259)
at org.forgerock.openam.core.rest.authn.http.AuthenticationServiceV1.authenticate(AuthenticationServiceV1.java:157)
at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:77)
at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.base/java.lang.reflect.Method.invoke(Method.java:568)
at org.forgerock.openam.http.annotations.AnnotatedMethod.invoke(AnnotatedMethod.java:81)
at org.forgerock.openam.http.annotations.Endpoints$1.handle(Endpoints.java:77)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.openam.rest.DisableCachingFilter.filter(DisableCachingFilter.java:90)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.audit.AbstractHttpAccessAuditFilter.filter(AbstractHttpAccessAuditFilter.java:88)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.openam.cors.CorsFilter.filter(CorsFilter.java:91)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.rest.RealmContextFilter.filter(RealmContextFilter.java:87)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.openam.rest.RealmRoutingFactory$ChfRealmRouter.handle(RealmRoutingFactory.java:123)
at org.forgerock.http.handler.Handlers$UndescribedAsDescribableHandler.handle(Handlers.java:180)
at org.forgerock.openam.rest.RealmRoutingFactory$HostnameFilter.filter(RealmRoutingFactory.java:100)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.openam.rest.CsrfFilter.filter(CsrfFilter.java:91)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.routing.ResourceApiVersionRoutingFilter.filter(ResourceApiVersionRoutingFilter.java:59)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.caf.authentication.framework.AuthenticationFramework.grantAccess(AuthenticationFramework.java:188)
at org.forgerock.caf.authentication.framework.AuthenticationFramework.lambda$onValidateRequestSuccess$1(AuthenticationFramework.java:181)
at org.forgerock.util.promise.Promises$CompletedPromise.thenAsync(Promises.java:263)
at org.forgerock.util.promise.Promises$CompletedPromise.thenAsync(Promises.java:252)
at org.forgerock.caf.authentication.framework.AuthenticationFramework.validateRequest(AuthenticationFramework.java:144)
at org.forgerock.caf.authentication.framework.AuthenticationFramework.processMessage(AuthenticationFramework.java:134)
at org.forgerock.caf.authentication.framework.AuthenticationFilter.filter(AuthenticationFilter.java:84)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.http.GuiceHandler.handle(GuiceHandler.java:51)
at org.forgerock.openam.http.HttpRoute$6.handle(HttpRoute.java:206)
at org.forgerock.http.routing.Router.handle(Router.java:100)
at org.forgerock.openam.dpro.session.ProofOfPossessionTokenFilter.filter(ProofOfPossessionTokenFilter.java:95)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.swagger.OpenApiRequestFilter.filter(OpenApiRequestFilter.java:63)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.http.ApiDescriptorFilter.filter(ApiDescriptorFilter.java:66)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.http.ResponseContext$ResponseContextFilter.filter(ResponseContext.java:53)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.http.OpenAMHttpApplication.lambda$static$1(OpenAMHttpApplication.java:60)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.openam.http.OpenAMHttpApplication.lambda$cacheHeaderFilter$3(OpenAMHttpApplication.java:88)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.filter.TransactionIdInboundFilter.filter(TransactionIdInboundFilter.java:86)
at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
at org.forgerock.http.servlet.HttpFrameworkServlet.service(HttpFrameworkServlet.java:282)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:623)
at org.forgerock.openam.http.OpenAMHttpFrameworkServlet.service(OpenAMHttpFrameworkServlet.java:47)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:623)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:209)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:51)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.validation.LargeCookieWarningFilter.doFilter(LargeCookieWarningFilter.java:48)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.services.datastore.DataStoreConsistencyFilter.lambda$doFilter$0(DataStoreConsistencyFilter.java:46)
at org.forgerock.openam.service.datastore.ReentrantVolatileActionConsistencyController.safeExecute(ReentrantVolatileActionConsistencyController.java:37)
at org.forgerock.openam.services.datastore.DataStoreConsistencyFilter.doFilter(DataStoreConsistencyFilter.java:46)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.rest.ProtocolVersionFilter.doFilter(ProtocolVersionFilter.java:66)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.headers.SecureCookieFilter.doFilter(SecureCookieFilter.java:63)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.headers.DisableSameSiteCookiesFilter.doFilter(DisableSameSiteCookiesFilter.java:106)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.validation.ResponseValidationFilter.doFilter(ResponseValidationFilter.java:59)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.headers.SetHeadersFilter.doFilter(SetHeadersFilter.java:110)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.headers.SetHeadersFilter.doFilter(SetHeadersFilter.java:110)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.headers.SetHeadersFilter.doFilter(SetHeadersFilter.java:110)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at com.sun.identity.setup.AMSetupFilter.doFilter(AMSetupFilter.java:116)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.validation.RequestEntitySizeVerificationFilter.doFilter(RequestEntitySizeVerificationFilter.java:66)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.forgerock.openam.audit.context.AuditContextFilter.doFilter(AuditContextFilter.java:47)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:178)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:153)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:168)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:90)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:481)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:130)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:93)
at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:670)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:74)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343)
at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:390)
at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:63)
at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:926)
at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1790)
at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:52)
at org.apache.tomcat.util.threads.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1191)
at org.apache.tomcat.util.threads.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:659)
at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
at java.base/java.lang.Thread.run(Thread.java:833)
Caused by: org.forgerock.openam.auth.node.api.NodeProcessException: Failed to retrieve existing object
at org.forgerock.openam.auth.nodes.LoginCountDecisionNode.lambda$process$2(LoginCountDecisionNode.java:131)
at java.base/java.util.Optional.orElseThrow(Optional.java:403)
at org.forgerock.openam.auth.nodes.LoginCountDecisionNode.process(LoginCountDecisionNode.java:131)
at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:153)
at org.forgerock.openam.auth.nodes.framework.InnerTreeEvaluatorNode.process(InnerTreeEvaluatorNode.java:125)
at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:153)
at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:211)
at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:211)
at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:211)
at org.forgerock.openam.core.rest.authn.trees.AuthTrees.processTree(AuthTrees.java:515)
... 121 common frames omitted","transactionId":"7cb4f8d9-ff5e-44d5-8733-1c759df9def8-2452"}
{"timestamp":"2023-09-13T19:41:52.094Z","eventName":"AM-ACCESS-OUTCOME","transactionId":"7cb4f8d9-ff5e-44d5-8733-1c759df9def8-2452","trackingIds":["7cb4f8d9-ff5e-44d5-8733-1c759df9def8-2461","7cb4f8d9-ff5e-44d5-87
33-1c759df9def8-2449"],"userId":"id=idm-provisioning,ou=agent,ou=am-config","client":{"ip":"127.0.0.6","port":60333},"http":{"request":{"secure":true,"method":"POST","path":"https://forgerock.idpingress.net/am/json/realms/root/authenticate"
,"headers":{"accept":["application/json"],"accept-api-version":["protocol=1.0,resource=2.1"],"content-type":["application/json"],"host":["forgerock.idpingress.net"],"user-agent":["Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/
537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36"],"x-forwarded-for":["72.76.119.131, 34.36.211.245, 35.191.2.81"],"x-forwarded-proto":["http"],"x-request-id":["ef4346ee-716b-4645-aa17-a45c07c2c8e6"],"x-requested-with":["forgerock-
sdk"]},"queryParameters":{"authIndexType":["service"],"authIndexValue":["Login"]}}},"response":{"status":"FAILED","statusCode":"401","elapsedTime":65,"elapsedTimeUnits":"MILLISECONDS","detail":{"reason":"Unauthorized"}},"realm":"/","compone
nt":"Authentication","source":"audit","topic":"access","level":"INFO","_eventId":"7cb4f8d9-ff5e-44d5-8733-1c759df9def8-2484"}