Application using JAZN API's received Unexpected Exception from oracle.ldap.util.Subscriber.getGroup (Doc ID 399958.1)

Last updated on AUGUST 20, 2009

Applies to:

Oracle Containers for J2EE - Version: 9.0.4.2.0
This problem can occur on any platform.

Symptoms

You have a J2EE application running in an Oracle Containers for J2EE (OC4J) 10.1.3 instance (either "standalone" or as a component within Applications Server 10.1.3. Your application leverages JAZN for user authentication/authorization and you have either developed custom code that interacts with JAZN api calls or you are using product utilities (such as the "JAZN Administration tool) which uses these API's.

The code using JAZN API's is unexpectedly encountering "NullPointerErrors" when running against 10.1.3. The same code, running against the same Identity Management repository does not encounter these errors when running in earlier releases of OC4J.

For example, under the "shell" environment of the JAZN Administration tool, trying to list the users contained within a group, results in the following error:

JAZN:> listusers myRealm -role myGroup
null

If you activate additional diagnostic logging for the JAZN admintool, further information on this error is available:

java.lang.NullPointerException
at oracle.ldap.util.Subscriber.getGroup(Subscriber.java:2131)
at oracle.ldap.util.Subscriber.getGroup(Subscriber.java:2098)
at oracle.security.jazn.spi.ldap.SubRealm.getDirectGrantees(SubRealm.java:1154)
at oracle.security.jazn.spi.ldap.ExtRealm.getIndirectGrantees(ExtRealm.java:1316)
at oracle.security.jazn.spi.ldap.ExtRealm.getGrantees(ExtRealm.java:365)
at oracle.security.jazn.tools.Admintool.listUserswRole(Admintool.java:1230)
at oracle.security.jazn.tools.Admintool.processArgs(Admintool.java:610)
at oracle.security.jazn.tools.Admintool.shell(Admintool.java:3357)
at oracle.security.jazn.tools.Admintool.processArgs(Admintool.java:518)
at oracle.security.jazn.tools.Admintool$1.run(Admintool.java:264)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAsPrivileged(Subject.java:454)
at oracle.security.jazn.tools.Admintool.main(Admintool.java:262)

oracle.security.jazn.JAZNRuntimeException
at oracle.security.jazn.spi.ldap.ExtRealm.getGrantees(ExtRealm.java:390)
at oracle.security.jazn.tools.Admintool.listUserswRole(Admintool.java:1230)
at oracle.security.jazn.tools.Admintool.processArgs(Admintool.java:610)
at oracle.security.jazn.tools.Admintool.shell(Admintool.java:3357)
at oracle.security.jazn.tools.Admintool.processArgs(Admintool.java:518)
at oracle.security.jazn.tools.Admintool$1.run(Admintool.java:264)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAsPrivileged(Subject.java:454)
at oracle.security.jazn.tools.Admintool.main(Admintool.java:262)

oracle.security.jazn.JAZNRuntimeException
at oracle.security.jazn.spi.ldap.ExtRealm.getGrantees(ExtRealm.java:390)
at oracle.security.jazn.tools.Admintool.listUserswRole(Admintool.java:1230)
at oracle.security.jazn.tools.Admintool.processArgs(Admintool.java:610)
at oracle.security.jazn.tools.Admintool.shell(Admintool.java:3357)
at oracle.security.jazn.tools.Admintool.processArgs(Admintool.java:518)
at oracle.security.jazn.tools.Admintool$1.run(Admintool.java:264)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAsPrivileged(Subject.java:454)
at oracle.security.jazn.tools.Admintool.main(Admintool.java:262)
Caused by: oracle.security.jazn.JAZNRuntimeException
at oracle.security.jazn.spi.ldap.ExtRealm.getIndirectGrantees(ExtRealm.java:1342)
at oracle.security.jazn.spi.ldap.ExtRealm.getGrantees(ExtRealm.java:365)
... 8 more
Caused by: java.lang.NullPointerException
at oracle.ldap.util.Subscriber.getGroup(Subscriber.java:2131)
at oracle.ldap.util.Subscriber.getGroup(Subscriber.java:2098)
at oracle.security.jazn.spi.ldap.SubRealm.getDirectGrantees(SubRealm.java:1154)
at oracle.security.jazn.spi.ldap.ExtRealm.getIndirectGrantees(ExtRealm.java:1316)
... 9 more

Changes

This problem may occur when you migrate code running successfully under OC4J 10.1.2 and earlier releases to OC4J 10.1.3.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms