Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-18122

[GSS](7.2.z) File upload (multipart) with Picketlink fails with sizes over 20k (using Apache Commons FileUpload)

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Critical
    • 7.2.7.CR1, 7.2.7.GA
    • 7.2.2.GA
    • Security
    • None

    Description

      This is a followup to JBEAP-17829 - WFLY-12705 - File upload fails with IllegalStateException when PicketLink SSO is enabled

      The patch resolved a portion of the file upload issues, but uploads over a certain size fail (appears to be ~20k but I don't have a precise number).

      This issue occurs only with picketlink security and doing file uploads

      The reproducer shows that the request class differs between successful uploads and unsuccessful uploads:

      Successful calls use SPFormAuthenticationRequestWrapper:
      [cdolphy@styx jboss-eap-7.2]$ 10:52:41,761 INFO [stdout] (default task-2) Class of Request - org.picketlink.identity.federation.bindings.wildfly.sp.SPFormAuthenticationRequestWrapper
      10:52:41,764 INFO [stdout] (default task-2) item is name=jboss-fileupload-swallowed-exception.txt, StoreLocation=/home/cdolphy/gss/cases/02523510/jboss-eap-7.2/standalone/tmp/reproducer.war/upload_3c1122fc_16ea378ffdc__8000_00000003.tmp, size=9449bytes, isFormField=false, FieldName=fileupload

      But unsuccessful requests use HttpServletRequestImpl:
      10:53:02,818 INFO [stdout] (default task-2) Class of Request - io.undertow.servlet.spec.HttpServletRequestImpl

      Attachments

        1. idp.war
          2 kB
          Chris Dolphy
        2. reproducer.war
          149 kB
          Chris Dolphy

        Issue Links

          blocks

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-18217 (7.2.z) WFLY-12852 - Test case for JBEAP-18203 (File upload (multipart) with Picketlink fails with sizes over 20k)

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified
          clones

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-18203 [GSS](7.3.z) File upload (multipart) with Picketlink fails with sizes over 20k (using Apache Commons FileUpload)

          • Critical - To be worked on immediately following BLOCKER issues.
          • Verified
          incorporates

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-17804 [GSS](7.2.z) File UploadMultipart does not work for files greater than 10 kB with PicketLink SSO is enabled

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified
          is incorporated by

          Component Upgrade - A task tracking an update to a bundled component or revision of component upstream of the project. JBEAP-18220 (7.2.z) Upgrade PicketLink bindings from 2.5.5.SP12-redhat-00010 to 2.5.5.SP12-redhat-00011

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          is related to

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-18217 (7.2.z) WFLY-12852 - Test case for JBEAP-18203 (File upload (multipart) with Picketlink fails with sizes over 20k)

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-18460 [GSS](7.2.z) InputStream is empty if getParameter is called in deployment with Picketlink which causes fileupload to fail with sizes over 20k

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified
          relates to

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-17829 [GSS](7.2.z) WFLY-12705 - File upload fails with IllegalStateException when PicketLink SSO is enabled.

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Verified
          links to

          Web Link File upload fails when PicketLink SSO is enabled in JBoss EAP 7

          Activity

            People

              spyrkob Bartosz Spyrko-Smietanko
              rhn-support-cdolphy Chris Dolphy
              Votes:
              0 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: