000012998 - Access Manager 6.1.3 - admingui.cfg parameter 'cleartrust.admingui.browser.use.ssl=on' does not work  'java.lang.IllegalStateException: Cannot create a session after the response has been committed'

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000012998
Applies ToApplicable to Access Manager 6.1 sp3 and higher
IssueAccess Manager 6.1.3 - admingui.cfg parameter "cleartrust.admingui.browser.use.ssl=on" does not work, "java.lang.IllegalStateException: Cannot create a session after the response has been committed"
When cleartrust.admingui.browser.use.ssl=on, the following exception when accessing axm-admin-gui is thrown: "java.lang.IllegalStateException: Cannot create a session after the response has been committed"
CauseWhen the parameter, cleartrust.admingui.browser.use.ssl is set to  "on", it will redirect all the http request to https.  The description of the parameter browser.use.ssl setting has the wrong dependency listed in the comments in admingui.cfg.  It does not state the dependencies on other ssl.use settings in the eserver.conf, and will therefore will try to manipulate the response object after committing the response (redirect action).
Resolution

axm-admin-gui.war has been corrected to properly use browser.ssl.use when set in admingui.cfg, and the parameter "cleartrust.admingui.browser.use.ssl=off" in admingui.cfg dependencies have been rewritten to correct this issue.

The new axm-admin-gui.war (both regular and FIPS compliant are available) along with a rewritten admingui.cfg are available via hotfix 6.1.3.21. This fix is available by contacting customer support and requesting hot fix 6.1.3.21. 

Legacy Article IDa56257

Attachments

    Outcomes