Dear All,
We are recently moved the go live the portal system.When the some end user login into the portal after generating the multiple session Id's within mile seconds.And i checked the logs:the below point are identified.Those error's creating more number times.
Please tell me the any suggestion or solution .This is only for production system.attaching the error list.
1) .Failed to show error page for session expiration. RID=20251cc9e5b911e598ad0000016a397e
[EXCEPTION]
java.lang.SecurityException: User not authorized.
at com.sap.engine.services.adminadapter.server.AuthorizationChecker.checkAuthorization(AuthorizationChecker.java:115)
at com.sap.engine.services.adminadapter.impl.ConvenienceEngineAdministratorImpl.getServiceProperty(ConvenienceEngineAdministratorImpl.java:392)
at com.sap.engine.services.webdynpro.WebDynproRuntimeServiceImpl.isDetailedErrorPageActive(WebDynproRuntimeServiceImpl.java:848)
at com.sap.tc.webdynpro.serverimpl.wdc.admin.ProductInfo.isDetailedErrorPageActive(ProductInfo.java:77)
at com.sap.tc.webdynpro.services.sal.admin.api.WDProductInfo.isDetailedErrorPageActive(WDProductInfo.java:238)
at com.sap.tc.webdynpro.services.exceptions.analyzer.ExceptionInfo.showInternalDetailsAllowed(ExceptionInfo.java:347)
at com.sap.tc.webdynpro.clientimpl.html.HtmlErrorPageRenderer.renderPageContent(HtmlErrorPageRenderer.java:373)
at com.sap.tc.webdynpro.clientimpl.html.HtmlErrorPageRenderer.renderErrorPageContent(HtmlErrorPageRenderer.java:312)
at com.sap.tc.webdynpro.clientimpl.html.HtmlErrorPageRenderer.renderErrorPageContent(HtmlErrorPageRenderer.java:293)
at com.sap.tc.webdynpro.clientimpl.ajax.AjaxUpdateClientPeer.renderErrorPage(AjaxUpdateClientPeer.java:188)
at com.sap.tc.webdynpro.clientimpl.http.client.AbstractUpdateClientPeer.sendErrorPage(AbstractUpdateClientPeer.java:137)
at com.sap.tc.webdynpro.clientimpl.http.client.AbstractHttpClient.sendError(AbstractHttpClient.java:296)
at com.sap.tc.webdynpro.clientserver.session.RequestManager$ExceptionHandler.sendErrorPage(RequestManager.java:1525)
at com.sap.tc.webdynpro.clientserver.session.RequestManager$ExceptionHandler.handleExpiration(RequestManager.java:1300)
at com.sap.tc.webdynpro.clientserver.session.RequestManager.doProcessing(RequestManager.java:347)
at com.sap.tc.webdynpro.serverimpl.core.AbstractDispatcherServlet.doContent(AbstractDispatcherServlet.java:87)
at com.sap.tc.webdynpro.serverimpl.wdc.DispatcherServlet.doContent(DispatcherServlet.java:101)
at com.sap.tc.webdynpro.serverimpl.core.AbstractDispatcherServlet.doGet(AbstractDispatcherServlet.java:55)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:734)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:847)
at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:152)
at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:38)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:466)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:210)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:441)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:430)
at com.sap.engine.services.servlets_jsp.filters.DSRWebContainerFilter.process(DSRWebContainerFilter.java:38)
at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78)
at com.sap.engine.services.servlets_jsp.filters.ServletSelector.process(ServletSelector.java:81)
at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78)
at com.sap.engine.services.servlets_jsp.filters.ApplicationSelector.process(ApplicationSelector.java:278)
at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78)
at com.sap.engine.services.httpserver.filters.WebContainerInvoker.process(WebContainerInvoker.java:81)
at com.sap.engine.services.httpserver.chain.HostFilter.process(HostFilter.java:9)
at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78)
at com.sap.engine.services.httpserver.filters.ResponseLogWriter.process(ResponseLogWriter.java:60)
at com.sap.engine.services.httpserver.chain.HostFilter.process(HostFilter.java:9)
at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78)
at com.sap.engine.services.httpserver.filters.DefineHostFilter.process(DefineHostFilter.java:27)
at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78)
at com.sap.engine.services.httpserver.filters.MonitoringFilter.process(MonitoringFilter.java:29)
at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78)
at com.sap.engine.services.httpserver.filters.SessionSizeFilter.process(SessionSizeFilter.java:26)
at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78)
at com.sap.engine.services.httpserver.filters.MemoryStatisticFilter.process(MemoryStatisticFilter.java:57)
at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78)
at com.sap.engine.services.httpserver.filters.DSRHttpFilter.process(DSRHttpFilter.java:43)
at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78)
at com.sap.engine.services.httpserver.server.Processor.chainedRequest(Processor.java:475)
at com.sap.engine.services.httpserver.server.Processor$FCAProcessorThread.process(Processor.java:269)
at com.sap.engine.services.httpserver.server.rcm.RequestProcessorThread.run(RequestProcessorThread.java:56)
at com.sap.engine.core.thread.execution.Executable.run(Executable.java:122)
at com.sap.engine.core.thread.execution.Executable.run(Executable.java:101)
at com.sap.engine.core.thread.execution.CentralExecutor$SingleThread.run(CentralExecutor.java:328)
2).The received security session id related cookie is not valid. The current request will be isolated in a new session. There might be a few reasons causing this behavior:
-> Possible session fixation hacker's attack.
->The received security session id cookie is already outdated. One possible solution is increasing the value of the 'SecuritySessionIdGracePeriod' servlet_jsp property. For more information read SAP Note 1464914.
-> No security session id cookie is sent (over http) because it is protected via custom configuration of the http service properties 'SecuritySessionIDHTTPSProtection' and 'SystemCookiesHTTPSProtection'.
Revise the configuration of the http service properties or adapt the problematic scenario accordingly.
3).Cannot decrypt original URL: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Thanks,
Durga Rao V.