--Task-- name: Discover_IDC_tenant enabled: True class_name: DiscoverTenantTask source_name: controller source_namespace: >default< target_name: controller target_namespace: >default< start: 0 stop: None timeout: not yet initialized for this Task as timeout was not explicitly defined, see updates bellow loop: False interval: None dependencies: [] wait_for: [] preceding_task: None options: {} group_name: None Current dir: /mnt/disks/data/xslou/lodestar-fork/pyrock ________________________________________________________________________________ [2024-03-01 00:08:02] Discover_IDC_tenant pre : N/A ________________________________________________________________________________ [2024-03-01 00:08:02] - INFO: Timeout for this Task has changed to 4h 40m (16800 seconds) [2024-03-01 00:08:02] - INFO: timeout was set to Task default (2x global_duration or 300 seconds (whatever is higher)), because it was unset ________________________________________________________________________________ [2024-03-01 00:08:02] Discover_IDC_tenant step1 : N/A ________________________________________________________________________________ Deployment was skipped. ************************************* Creating deployment ************************************* Creating IDC type deployment for stack the ema key/secret have not been provided so the tenant will be considered as static Consider that tenant under tests is static IDCDeployment context set to: gke_None_europe-west2_default [run_command]: kubectl config current-context [run_command]: OK (rc = 0 - expected to be in [0]) --- stdout --- gke_engineeringpit_us-east1-d_xlou-cdm --- stderr --- Getting credentials for default cluster in None project located in europe-west2 [run_command]: gcloud container clusters get-credentials default --zone europe-west2 --project None [run_command]: ERROR --- rc --- returned 1, expected to be in [0] --- stdout --- --- stderr --- ERROR: (gcloud) The project property must be set to a valid project ID, not the project name [None] To set your project, run: $ gcloud config set project PROJECT_ID or to unset it, run: $ gcloud config unset project Reverting context back to gke_engineeringpit_us-east1-d_xlou-cdm [loop_until]: kubectl config use-context gke_engineeringpit_us-east1-d_xlou-cdm [loop_until]: (max_time=180, interval=5, expected_rc=[0] [loop_until]: OK (rc = 0) --- stdout --- Switched to context "gke_engineeringpit_us-east1-d_xlou-cdm". --- stderr --- unable to retrieve the context for the tenant: ema-wajih-iga with a project id : None, the exception thrown was: (1, , ERROR: (gcloud) The project property must be set to a valid project ID, not the project name [None] To set your project, run: $ gcloud config set project PROJECT_ID or to unset it, run: $ gcloud config unset project ) *************************** Livecheck stage: After tenant discovery *************************** ------------------------ Running AM livecheck ------------------------ Livecheck to https://openam-ema-wajih-iga.forgeblocks.com/am/json/health/ready [http_cmd]: curl --insecure -L --request GET "https://openam-ema-wajih-iga.forgeblocks.com/am/json/health/ready" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- ------------------------ Running IDM livecheck ------------------------ Livecheck to https://openam-ema-wajih-iga.forgeblocks.com/openidm/info/ping [http_cmd]: curl --insecure -L --request GET "https://openam-ema-wajih-iga.forgeblocks.com/openidm/info/ping" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- { "_id": "", "_rev": "", "shortDesc": "OpenIDM ready", "state": "ACTIVE_READY" } Create new LoginSession for user "xiaosong.lou@forgerock.com" [LoginSession] Get "access_token" token for user "xiaosong.lou@forgerock.com" [LoginSession] Obtaining new "access_token" token from server because it was not obtained yet for the user [LoginSession] Get "token_id" token for user "xiaosong.lou@forgerock.com" [LoginSession] Obtaining new "token_id" token from server because it was not obtained yet for the user Authenticate user xiaosong.lou@forgerock.com via REST [http_cmd]: curl --insecure -L --request POST "https://openam-ema-wajih-iga.forgeblocks.com/am/json/authenticate?realm=/" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- [print_head_tail]: Print head (10 lines) and tail (10 lines) of input string (83 lines): ----- output ----- { "authId": "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJvdGsiOiIyNTZsNjFsOTU0MHJzcDNkZTI5ZXFvczM1YyIsInJlYWxtIjoiLyIsInNlc3Npb25JZCI6IipBQUpUU1FBQ01ESUFCSFI1Y0dVQUNFcFhWRjlCVlZSSUFBSlRNUUFDTURFLipleUowZVhBaU9pSktWMVFpTENKamRIa2lPaUpLVjFRaUxDSmhiR2NpT2lKSVV6STFOaUo5LlpYbEtNR1ZZUVdsUGFVcExWakZSYVV4RFNteGliVTFwVDJsS1FrMVVTVFJSTUVwRVRGVm9WRTFxVlRKSmFYZHBXVmQ0YmtscWIybGFSMng1U1c0d0xpNXRabEZuVWs1WVYySlpPV0YxV21aNVpHMWtUVmxSTGs1dFEydFhNMEYzWkhkNGJIQjVZMVJHYVdWR1dXRkllRjkyTlVkMmRtRjVMVXhrWDBWVVZXWm5TVmxSUzFsYVlXbDFlbTVDYjBObFUwdGpVMDFqUkVkUWFTMTFUME5OWTBsVFFrRmxaMnQ1UVhBMUxYTTJSRkF0YVVGcmJFTTBOa05yUzJrd05FeFhRbGRzY1ZSS1FWSkJUVE5qVlY5a1VubzFiRW8wTVRrMmFEaG9kWFJzT1dOTWREUXlaRkkzTldWT2VHSjRkR2xUTW5WSVZtRkhhMVp2WlVGTWVrcG5aMWszUVV4Rll6QTRMVTlNYlZodmVGZHFUaTFSWlZWelUwVlFTek5KTFMwdFpHTlFaRFZTUzFkQ1JHVk9TSGhzYW5WSGJFdGphM0JZVkhOTU9HZHdhSGhTTVVsMlJVSlFNRWhFY1VWVWVGcG5SMGxaVGpOaFVpMDBaRloyZG1KaWVUY3RTazl2WlZSVGNYQTVUalJtZGpaWGFHVXpNMnRhVlRsT04wdGtlazl0VlZocFRtbzJOM1pDUmxWVGVGSkVPVk5JVjNWUmExZEtOWGhtVnpVNWJFOHpORlpaYjJKSGFqbDJkRXRrYlRCbFMzcEpVVjh5TlY5blVqQlpiVTVuV0drNVdESlRjR1o2WDAxNVYwSklUSGsyTUZSUFJIbHZhMHRpUzFSamJWUkRXV05mWkhGbmRteFFURWxSUXpCM09HOVFWRFJ4VDJGWGVFRnVlR0ZKYVZBNVExQmplbUZIVW5WTlZFY3hNWEIzY3paSVJXMUViV281YUVkbE9FcDBia3B2TlRkcldFRkJWVmxwZURoSE4zUktTa2QwU2xoS2VraERRMGc1VVZCUVdqRnFUR1V0WmtneFJVOHdlVkJ1U2s4d1pERllORk5OYUhWUVMzaFFaRkpFYURsM2IxTjRZM2RyTTNCcGVVeEVhbVZ4VEVJMlExaHFSVlJZTUV4bmJGbHRWbUYyV0ROb1NXMVNUMUJUWnpaMU9GRlZYekpWWlVaM1dTMVpkakZKV1ZOck9VWlpYMVJsWkc1NFVraDRhMXBYYlU1a1lrdHBiRlIzT0RaMmJVbEVjWFpPUVhsVFZEaEtZVXhtWlVkU2NtcFdaWEF5WDE5aU5IWXlaa1ZNZVdOVFpFRk1TRWxKYVRSdFlURjJiVXhzWDBsNWFrUnNYMDlaWkhGc2ExQmxYMmRDYzJrd2FsZHRWek5QV2sxa2R6bHFSRzA0TlhCU2RsRXhkMTlhY1dNMFFrc3lZV2xUY1hwMlRUZDNSbEZWUlVsclJFdFNSVTFxUjNoNlNsSTRVekJ0YW01S1pWUnRhbkpWWkZOcWRrNVlkVVZuWTNWelRuZGhjRFo0Y1VWSU0yOWxNRjkwYld3d1duUlJjVEpLWW5OUFdHNVdjRGN0YldwU1VuWk5XVmQxU1VOM1kzZEtUbk50VUVORk9GVTBUVmxKYjBkUE5WQkxaamRVZEVKR1NrNUhkemhqYTNnNFlUVmlhMUY2TWs1R2FHRTBNSEJvVTBOQ0xVcHNUVlJGYlhsT2JqZFRTV2xLVFROalZraFlhMUJLTUVkWFJ6aG5OR3cyVEZZeFpFRjVZM1ExZUhCd2JtTm9aVVZhTmxkTVJHeG5aa1pUVFRoalkySjROazFrVmxSdmEyVklXbmhoZFdoemNFYzFUSGhqWVhCdWJHZExNamgwTVVWSGVHUndkRlJNYXpWWU1VRnpVRGhFVWtGeGNGRTJha0ppU1ZCRGJYcHpaMDVxWHpkR1pGcHlOblZRZFdoMFRUTlJNazl4YnpGU1VrVXpORE5NZG5Bd1owWTBkekoxU25kWFJtdGlhRTUzTTJOemVGUkdPR2hSV0RoTVZ6QXRPRTQwWDNOaFkwcG9OVVJVZGxSTGEzTk1VQzB0VG1JM2NFcHJMV2xTUmxwWloyVXpWbk01WjNsSVl5MWhjbUphWDBOWGQwaDViMUZOZVY5WlZsWktjRmhJZWtkSFIwZEtNRXA2VjFWU1VFSmhibTlzUjBzMFFUTmhibmRqVDNaM2NVRjZVM2RDVEY5cGFtUm9iWEJCTWt4a2MxbHdiRWR3WHpKeGJHcE9OemN6UldZMWEwMVBXV0pMY20xYU9GbG1ZMEZLVERFM09YRjZibEp6WldWMVZHcE9la2x4V2tsYVprdG5lbUpDZEc1RlFrbEJTbU5sZUZjNVIzRXplRFpZYjFGMk4weFZiemMwU0VGcVNsbEVSa1V3YlhkaVZtMW9aRzl4ZEV4RFduSlFRV1Z6VFRaSFZHOHlhbEZ2U1daNGJuQTNOMGxQZW1NNWFqTmtVMFZGUkMxd09WOXVSSGt5V25Jd1YyNWZUR3huZFdaaVEyVkNORXRtVEdaME5XMW5lbHBEWXpaWlpYQTJkRzlaVDJrdExWVXRXamRTTUc0M2JtWmhSWEJEZEdkM1R6Y3llREZVY21aRGMxSklMV2c1TUZaaVdtWmtTMG8yTmxSRGVHZEpjRTUzYTJ3MU5rMU9NV2RQV21Jek4zUnVkRnBtYUV0TGNHVmtVVUZVYjBkMFFqWnVMV1F3ZHkxQldVVnBXRGhYTkVvd04ySjRUSEprVGtOdlgzVkhOM042VW5KUWVGSlhXRkZDUlMxSGVuVnhaMkp1Wnk1d1kzWm9UbFZFTlU5QlFrcHBUVlV5V1RGak9IVlIuRlZ5cXZVVjNNczQzdy1hY3JJZjlKdjAtanp5aFZnR2t5T1hXcEVOWjFsOCIsImV4cCI6MTcwOTMzODEwMCwiaWF0IjoxNzA5MjUxNzAwfQ.O7T8k0uFF3jywNIQhoBZU96_K7K65Et00XHEMSKzsZg", "callbacks": [ { "type": "TextOutputCallback", "output": [ { "name": "message", "value": "Loading..." }, [...] "value": "var setupPage = function() { var skipInputElem = document.getElementById(\"skip-input-887\"); var messageElem; document.getElementsByClassName(\"callback-component\").forEach( function (e) { var m = e.firstElementChild; if (m.firstChild && m.firstChild.nodeName == \"#text\" && m.firstChild.nodeValue.trim() == \"Loading...\") { messageElem = m; } } ); if (!skipInputElem || !messageElem) { return setTimeout(setupPage, 50); } var skipContainer = document.createElement(\"div\"); skipContainer.style = \"width:100%\"; skipContainer.innerHTML = \"\"; skipInputElem.parentNode.append(skipContainer); messageElem.align = \"center\"; messageElem.innerHTML = \"

Set up 2-step verification

To protect your account, add a second
authentication method.
Starting March 1, 2024, you must sign in using
2-step verification. Learn more here.
\"; var bindSkipLink = function() { document.getElementById(\"skip-link-887\").onclick = function() { skipInputElem.value = \"Skip\"; document.getElementById(\"loginButton_0\").click(); return false; }; }; setTimeout(bindSkipLink, 100);};setupPage();" }, { "name": "messageType", "value": "4" } ] } ] } [http_cmd]: curl --header "Content-Type: application/json" --header "Accept-API-Version: protocol=2.0,resource=1.0" --insecure -L --request POST --cookie "amlbcookie=01" --data '{"authId": "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.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.O7T8k0uFF3jywNIQhoBZU96_K7K65Et00XHEMSKzsZg", "callbacks": [{"type": "TextOutputCallback", "output": [{"name": "message", "value": "Loading..."}, {"name": "messageType", "value": "0"}]}, {"type": "ConfirmationCallback", "output": [{"name": "prompt", "value": ""}, {"name": "messageType", "value": 0}, {"name": "options", "value": ["Set up"]}, {"name": "optionType", "value": -1}, {"name": "defaultOption", "value": 0}], "input": [{"name": "IDToken2", "value": 0}]}, {"type": "HiddenValueCallback", "output": [{"name": "value", "value": "false"}, {"name": "id", "value": "skip-input-887"}], "input": [{"name": "IDToken3", "value": "Skip"}]}, {"type": "TextOutputCallback", "output": [{"name": "message", "value": "var setupPage = function() { var skipInputElem = document.getElementById(\"skip-input-887\"); var messageElem; document.getElementsByClassName(\"callback-component\").forEach( function (e) { var m = e.firstElementChild; if (m.firstChild && m.firstChild.nodeName == \"#text\" && m.firstChild.nodeValue.trim() == \"Loading...\") { messageElem = m; } } ); if (!skipInputElem || !messageElem) { return setTimeout(setupPage, 50); } var skipContainer = document.createElement(\"div\"); skipContainer.style = \"width:100%\"; skipContainer.innerHTML = \"\"; skipInputElem.parentNode.append(skipContainer); messageElem.align = \"center\"; messageElem.innerHTML = \"

Set up 2-step verification

To protect your account, add a second
authentication method.
Starting March 1, 2024, you must sign in using
2-step verification. Learn more here.
\"; var bindSkipLink = function() { document.getElementById(\"skip-link-887\").onclick = function() { skipInputElem.value = \"Skip\"; document.getElementById(\"loginButton_0\").click(); return false; }; }; setTimeout(bindSkipLink, 100);};setupPage();"}, {"name": "messageType", "value": "4"}]}]}' "https://openam-ema-wajih-iga.forgeblocks.com/am/json/authenticate?realm=/" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- { "tokenId": "UR14CJm3aGCe9k1rV7YrIeKlpwY.*AAJTSQACMDIAAlNLABxmdG9vcUhkZElwcHVBNTVHeGxtTTh0TS9WdlU9AAR0eXBlAANDVFMAAlMxAAIwMQ..*", "successUrl": "/platform", "realm": "/" } [LoginSession] Obtaining session info [http_cmd]: curl --insecure -L --request POST "https://openam-ema-wajih-iga.forgeblocks.com/am/json/sessions?_action=getSessionInfo" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- { "username": "78f30946-9589-4328-877e-4e74e05c1bdc", "universalId": "id=78f30946-9589-4328-877e-4e74e05c1bdc,ou=user,ou=am-config", "realm": "/", "latestAccessTime": "2024-03-01T00:08:20Z", "maxIdleExpirationTime": "2024-03-01T00:38:20Z", "maxSessionExpirationTime": "2024-03-01T02:08:19Z", "properties": { "AMCtxId": "c930a419-171d-4a93-bdde-a7a17b71de74-296033" } } Obtain Oauth2 authz code via REST with PKCE flow Oauth2 authorize for access token [http_cmd]: curl --insecure --request POST --cookie "68e10e4cfff3cbb=UR14CJm3aGCe9k1rV7YrIeKlpwY.*AAJTSQACMDIAAlNLABxmdG9vcUhkZElwcHVBNTVHeGxtTTh0TS9WdlU9AAR0eXBlAANDVFMAAlMxAAIwMQ..*" --cookie "amlbcookie=01" --data '{"decision": "Allow", "csrf": "UR14CJm3aGCe9k1rV7YrIeKlpwY.*AAJTSQACMDIAAlNLABxmdG9vcUhkZElwcHVBNTVHeGxtTTh0TS9WdlU9AAR0eXBlAANDVFMAAlMxAAIwMQ..*"}' "https://openam-ema-wajih-iga.forgeblocks.com/am/oauth2/authorize?client_id=idmAdminClient&scope=openid fr:idm:*&redirect_uri=https://openam-ema-wajih-iga.forgeblocks.com/platform/appAuthHelperRedirect.html&response_type=code&realm=/&code_challenge=H8VHP73pYVOJ0f7Y9lG3J5DU3gjTBCElj1L3LM6FgO&code_challenge_method=plain" [http_cmd]: http status code OK --- status code --- http status code is 302 (expected 302) --- http response --- {'x-frame-options': 'SAMEORIGIN', 'content-security-policy-report-only': "frame-ancestors 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'", 'x-content-type-options': 'nosniff', 'cache-control': 'no-store', 'location': 'https://openam-ema-wajih-iga.forgeblocks.com/platform/appAuthHelperRedirect.html?code=UAnzGM2eU8f_xfokGYpAO7ZNesY&iss=https%3A%2F%2Fopenam-ema-wajih-iga.forgeblocks.com%3A443%2Fam%2Foauth2&client_id=idmAdminClient', 'pragma': 'no-cache', 'set-cookie': 'OAUTH_REQUEST_ATTRIBUTES=DELETED; Expires=Thu, 01 Jan 1970 00:00:00 GMT; Path=/; Domain=openam-ema-wajih-iga.forgeblocks.com; Secure; HttpOnly; SameSite=none', 'Content-Length': '0', 'date': 'Fri, 01 Mar 2024 00:08:20 GMT', 'x-forgerock-transactionid': '1709251700546-f0443966bfacc5ee729e-648070', 'strict-transport-security': 'max-age=31536000; includeSubDomains; preload;', 'Via': '1.1 google', 'Alt-Svc': 'h3=":443"; ma=2592000,h3-29=":443"; ma=2592000'} Oauth2 exchange authorize code for access token [http_cmd]: curl --insecure -L --request POST --data '{"grant_type": "authorization_code", "redirect_uri": "https://openam-ema-wajih-iga.forgeblocks.com/platform/appAuthHelperRedirect.html", "client_id": "idmAdminClient", "code": "UAnzGM2eU8f_xfokGYpAO7ZNesY", "code_verifier": "H8VHP73pYVOJ0f7Y9lG3J5DU3gjTBCElj1L3LM6FgO"}' "https://openam-ema-wajih-iga.forgeblocks.com/am/oauth2/access_token?realm=/" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- { "access_token": "eyJ0eXAiOiJKV1QiLCJraWQiOiJqTlVCbjZoU2xyU0d4d0JwaFloeE5Id0VKb1U9IiwiYWxnIjoiUlMyNTYifQ.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.JyozBHN72j06IV5qkI4iuNzkEjvXE2wRfanSh7ewxXuyYwJgh_xopn5RV5a_WaLB-a69mwhQ9I3AVgCjtiXF1Rj96mNx15nG5BuVwxZaL1hEdV6omR2Wc6XsKqd_l-mLdYucMSsScs9MvxLgsuQD_SG-adJTWM_KRpDvh5K-MU23e6uzYaCU9VG2Aj3SCpwH-CtoQW_cwfY7JwsVCrAP2qnrK2znJYoBMoshMPs_Gm_qCDZHUaT6sbeuGLkmN8COOxuqLXE_oiahSwDq_9cZYGjdrKw-GqfBXj_U9rK9pvFiDoYBZ9iZaXb2j8wMtfhR2tWWpUV7k5GQx8mmZbf_YA", "scope": "openid fr:idm:*", "id_token": "eyJ0eXAiOiJKV1QiLCJraWQiOiJqTlVCbjZoU2xyU0d4d0JwaFloeE5Id0VKb1U9IiwiYWxnIjoiUlMyNTYifQ.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.nUU7AGtktda0ieZnGhISIeSwZPknLlcmMd_SL3l6PlsAu-UGcjNes-6VA0rakra92tYGzwdrj7nCbs1r2NoxM9RhmipYvfPipKji-vqJ3h5c2ZCRH0E9TObcmiBN3P5xPP6ARtHgbQsuTK2yIGKNl7A175F3k-mHblDRqaZpjmlvwYN6FFyw5Kj7IC1LpfzyULZ2pJLZeNhu9hqchykUZZgBKmed4efK6E6Wst8YsfSbucj8dFv6zY-WcUEKegGepaLLey-l4hlAGRDmdpG67zIpz4yxvJKQnuJQ-g2jGChRu60Erlt1kOC3xVsCCNYBW4MpbBh2b4iqXJeGyzaddQ", "token_type": "Bearer", "expires_in": 3599 } Additional check to sync/queue to ensure sync with DS is ok (see LODESTAR-1245) [http_cmd]: curl --insecure -L --request GET "https://openam-ema-wajih-iga.forgeblocks.com/openidm/sync/queue?_queryFilter=true&_pageSize=1" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- { "result": [], "resultCount": 0, "pagedResultsCookie": null, "totalPagedResultsPolicy": "NONE", "totalPagedResults": -1, "remainingPagedResults": -1 } Try to create, query and delete a user Create user idm_m6m1x4o5xu in IDM [http_cmd]: curl --header "Authorization: Bearer eyJ0eXAiOiJKV1QiLCJraWQiOiJqTlVCbjZoU2xyU0d4d0JwaFloeE5Id0VKb1U9IiwiYWxnIjoiUlMyNTYifQ.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.JyozBHN72j06IV5qkI4iuNzkEjvXE2wRfanSh7ewxXuyYwJgh_xopn5RV5a_WaLB-a69mwhQ9I3AVgCjtiXF1Rj96mNx15nG5BuVwxZaL1hEdV6omR2Wc6XsKqd_l-mLdYucMSsScs9MvxLgsuQD_SG-adJTWM_KRpDvh5K-MU23e6uzYaCU9VG2Aj3SCpwH-CtoQW_cwfY7JwsVCrAP2qnrK2znJYoBMoshMPs_Gm_qCDZHUaT6sbeuGLkmN8COOxuqLXE_oiahSwDq_9cZYGjdrKw-GqfBXj_U9rK9pvFiDoYBZ9iZaXb2j8wMtfhR2tWWpUV7k5GQx8mmZbf_YA" --header "Content-Type: application/json" --insecure -L --request POST --data '{"userName": "idm_m6m1x4o5xu", "givenName": "Peter", "sn": "Parker", "password": "T35!tr0c-k123", "telephoneNumber": "6669876987", "description": "IDM Test User", "roles": [], "mail": "idm_m6m1x4o5xu@forgerock.com"}' "https://openam-ema-wajih-iga.forgeblocks.com/openidm/managed/alpha_user?_action=create" [http_cmd]: http status code OK --- status code --- http status code is 201 (expected [200, 201]) --- http response --- [print_head_tail]: Print head (10 lines) and tail (10 lines) of input string (67 lines): ----- output ----- { "_id": "33ba7985-b955-4617-9f9e-680abe892242", "_rev": "3cf8ae92-1ec5-4488-b35f-09a0e3bf519c-7147764", "country": null, "frUnindexedString1": null, "mail": "idm_m6m1x4o5xu@forgerock.com", "memberOfOrgIDs": [], "frIndexedDate5": null, "frUnindexedString2": null, "frIndexedDate4": null, [...] "frIndexedInteger1": null, "sn": "Parker", "frUnindexedDate1": null, "frIndexedInteger5": null, "preferences": null, "userName": "idm_m6m1x4o5xu", "frIndexedDate2": null, "frIndexedDate1": null, "effectiveRoles": [] } Query IDM to verify UserID 33ba7985-b955-4617-9f9e-680abe892242 is visible [http_cmd]: curl --insecure -L --request GET "https://openam-ema-wajih-iga.forgeblocks.com/openidm/managed/alpha_user/33ba7985-b955-4617-9f9e-680abe892242" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- [print_head_tail]: Print head (10 lines) and tail (10 lines) of input string (67 lines): ----- output ----- { "_id": "33ba7985-b955-4617-9f9e-680abe892242", "_rev": "3cf8ae92-1ec5-4488-b35f-09a0e3bf519c-7147764", "country": null, "frUnindexedString1": null, "mail": "idm_m6m1x4o5xu@forgerock.com", "memberOfOrgIDs": [], "frIndexedDate5": null, "frUnindexedString2": null, "frIndexedDate4": null, [...] "frIndexedInteger1": null, "sn": "Parker", "frUnindexedDate1": null, "frIndexedInteger5": null, "preferences": null, "userName": "idm_m6m1x4o5xu", "frIndexedDate2": null, "frIndexedDate1": null, "effectiveRoles": [] } Authenticate as user idm_m6m1x4o5xu [http_cmd]: curl --insecure -L --request POST "https://openam-ema-wajih-iga.forgeblocks.com/openidm/authentication?_action=login" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- { "_id": "login", "authorization": { "id": "anonymous", "roles": [ "internal/role/openidm-reg" ], "component": "internal/user" }, "authenticationId": "anonymous" } [http_cmd]: curl --insecure -L --request DELETE "https://openam-ema-wajih-iga.forgeblocks.com/openidm/managed/alpha_user/33ba7985-b955-4617-9f9e-680abe892242" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- [print_head_tail]: Print head (10 lines) and tail (10 lines) of input string (67 lines): ----- output ----- { "_id": "33ba7985-b955-4617-9f9e-680abe892242", "_rev": "3cf8ae92-1ec5-4488-b35f-09a0e3bf519c-7147764", "country": null, "frUnindexedString1": null, "mail": "idm_m6m1x4o5xu@forgerock.com", "memberOfOrgIDs": [], "frIndexedDate5": null, "frUnindexedString2": null, "frIndexedDate4": null, [...] "frIndexedInteger1": null, "sn": "Parker", "frUnindexedDate1": null, "frIndexedInteger5": null, "preferences": null, "userName": "idm_m6m1x4o5xu", "frIndexedDate2": null, "frIndexedDate1": null, "effectiveRoles": [] } --------------------- Running CTSSTORE livecheck --------------------- --------------------- Running USERSTORE livecheck --------------------- -------------------- Running PLATFORM-UI livecheck -------------------- Livecheck to https://openam-ema-wajih-iga.forgeblocks.com/am/XUI [http_cmd]: curl --insecure -L --request GET "https://openam-ema-wajih-iga.forgeblocks.com/am/XUI" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- Login
[] LIVECHECK SUCCEEDED ****************************** Initializing component pods for AM ****************************** ----------------------- Get AM software version ----------------------- Getting product version from https://openam-ema-wajih-iga.forgeblocks.com/am/json/realms/alpha/serverinfo/version [LoginSession] Get "token_id" token for user "xiaosong.lou@forgerock.com" [LoginSession] re-using "token_id" token that remains valid for 29m 48s [http_cmd]: curl --insecure -L --request GET --cookie "68e10e4cfff3cbb=UR14CJm3aGCe9k1rV7YrIeKlpwY.*AAJTSQACMDIAAlNLABxmdG9vcUhkZElwcHVBNTVHeGxtTTh0TS9WdlU9AAR0eXBlAANDVFMAAlMxAAIwMQ..*" --cookie "amlbcookie=01" "https://openam-ema-wajih-iga.forgeblocks.com/am/json/realms/alpha/serverinfo/version" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- { "_id": "version", "_rev": "-347675290", "version": "7.5.0-SNAPSHOT", "fullVersion": "ForgeRock Access Management 7.5.0-SNAPSHOT Build c27d160f2238f1869b36b4e3a66ff9baa06e89f7 (2023-November-16 17:31)", "revision": "c27d160f2238f1869b36b4e3a66ff9baa06e89f7", "date": "2023-November-16 17:31" } ***************************** Initializing component pods for IDM ***************************** ---------------------- Get IDM software version ---------------------- Getting product version from https://openam-ema-wajih-iga.forgeblocks.com/openidm/info/version [http_cmd]: curl --insecure -L --request GET "https://openam-ema-wajih-iga.forgeblocks.com/openidm/info/version" [http_cmd]: http status code OK --- status code --- http status code is 200 (expected 200) --- http response --- { "_id": "version", "productVersion": "7.4.0-2023-5-2-SNAPSHOT", "productBuildDate": "20231117175208", "productRevision": "8e440ac12c" } *************************** Initializing component pods for CTSSTORE *************************** -------------------- Get CTSSTORE software version -------------------- Component ctsstore is not in Running state so impossible to get software version ************************** Initializing component pods for USERSTORE ************************** ------------------- Get USERSTORE software version ------------------- Component userstore is not in Running state so impossible to get software version ************************* Initializing component pods for PLATFORM-UI ************************* ------------------ Get PLATFORM-UI software version ------------------ Component platform-ui is running in tenant so impossible to get software version [2024-03-01 00:08:21] - INFO: Deployment ready ________________________________________________________________________________ [2024-03-01 00:08:21] Discover_IDC_tenant post : Post method ________________________________________________________________________________ Setting result to PASS Task has been successfully stopped