--Task-- name: update-rcs-client-secret enabled: True class_name: UpdateRcsClientSecretTask source_name: controller source_namespace: >default< target_name: am target_namespace: >default< start: 0.0 stop: None timeout: not yet initialized for this Task as timeout was not explicitly defined, see updates below loop: False interval: None dependencies: [] wait_for: [] preceding_task: None options: {} group_name: None Current dir: /mnt/disk1/xslou/workshop/lodestar-fork/pyrock ________________________________________________________________________________ [2024-12-17 17:51:01] update-rcs-client-secret pre : N/A ________________________________________________________________________________ 2024-12-17 17:51:01 - INFO: Timeout for this Task has changed to 5m (300 seconds) 2024-12-17 17:51:01 - INFO: timeout was set to Task default (2x global_duration or 300 seconds (whatever is higher)), because it was unset ________________________________________________________________________________ [2024-12-17 17:51:01] update-rcs-client-secret step1 : N/A ________________________________________________________________________________ 2024-12-17 17:51:01 - INFO: Reset RCSClient password 2024-12-17 17:51:01,587 INFO [LoginSession] Get "token_id" token for user "xiaosong.lou@pingidentity.com" 2024-12-17 17:51:01,587 DEBUG [LoginSession] re-using "token_id" token that remains valid for 23m 21s 2024-12-17 17:51:01,587 INFO [http_cmd]: curl --header "Accept-API-Version: resource=1.0" --header "Content-Type: application/json" --insecure -L --request GET --cookie "15892ffd844ef80=HZRO1prH_--MsO19bLTsLsAs7iE.*AAJTSQACMDIAAlNLABxUdys3OTlnNFQ0RnFZdy9Ick9sNC9zcUhzOFU9AAR0eXBlAANDVFMAAlMxAAIwMQ..*" --cookie "amlbcookie=01" "https://openam-perf-200m.forgeblocks.com/am/json/realms/alpha/realm-config/agents/OAuth2Client/RCSCLIENT" 2024-12-17 17:51:02,031 INFO [http_cmd]: http status code OK 2024-12-17 17:51:02,031 DEBUG --- status code --- 2024-12-17 17:51:02,031 DEBUG http status code is 200 (expected 200) 2024-12-17 17:51:02,031 DEBUG --- http response --- 2024-12-17 17:51:02,031 DEBUG [print_head_tail]: Print head (10 lines) and tail (10 lines) of input string (337 lines): 2024-12-17 17:51:02,031 DEBUG ----- output ----- 2024-12-17 17:51:02,031 DEBUG { 2024-12-17 17:51:02,031 DEBUG "_id": "RCSCLIENT", 2024-12-17 17:51:02,031 DEBUG "_rev": "-1199147689", 2024-12-17 17:51:02,031 DEBUG "overrideOAuth2ClientConfig": { 2024-12-17 17:51:02,031 DEBUG "issueRefreshToken": true, 2024-12-17 17:51:02,031 DEBUG "validateScopePluginType": "PROVIDER", 2024-12-17 17:51:02,031 DEBUG "tokenEncryptionEnabled": false, 2024-12-17 17:51:02,031 DEBUG "evaluateScopePluginType": "PROVIDER", 2024-12-17 17:51:02,031 DEBUG "oidcMayActScript": "[Empty]", 2024-12-17 17:51:02,031 DEBUG "oidcClaimsScript": "1f389a3d-21cf-417c-a6d3-42ea620071f0", 2024-12-17 17:51:02,032 DEBUG 2024-12-17 17:51:02,032 DEBUG 2024-12-17 17:51:02,032 DEBUG 2024-12-17 17:51:02,032 DEBUG [...] 2024-12-17 17:51:02,032 DEBUG 2024-12-17 17:51:02,032 DEBUG 2024-12-17 17:51:02,032 DEBUG 2024-12-17 17:51:02,032 DEBUG "inherited": false, 2024-12-17 17:51:02,032 DEBUG "value": [] 2024-12-17 17:51:02,032 DEBUG } 2024-12-17 17:51:02,032 DEBUG }, 2024-12-17 17:51:02,032 DEBUG "_type": { 2024-12-17 17:51:02,032 DEBUG "_id": "OAuth2Client", 2024-12-17 17:51:02,032 DEBUG "name": "OAuth2 Clients", 2024-12-17 17:51:02,032 DEBUG "collection": true 2024-12-17 17:51:02,032 DEBUG } 2024-12-17 17:51:02,032 DEBUG } 2024-12-17 17:51:02,034 INFO [http_cmd]: curl --header "Accept-API-Version: resource=1.0" --header "Content-Type: application/json" --header "If-Match: *" --data '{"_id": "RCSCLIENT", "overrideOAuth2ClientConfig": {"issueRefreshToken": true, "validateScopePluginType": "PROVIDER", "tokenEncryptionEnabled": false, "evaluateScopePluginType": "PROVIDER", "oidcMayActScript": "[Empty]", "oidcClaimsScript": "1f389a3d-21cf-417c-a6d3-42ea620071f0", "scopesPolicySet": "oauth2Scopes", "accessTokenModificationPluginType": "SCRIPTED", "authorizeEndpointDataProviderClass": "org.forgerock.oauth2.core.plugins.registry.DefaultEndpointDataProvider", "useForceAuthnForMaxAge": false, "oidcClaimsPluginType": "SCRIPTED", "providerOverridesEnabled": true, "authorizeEndpointDataProviderScript": "[Empty]", "statelessTokensEnabled": true, "authorizeEndpointDataProviderPluginType": "PROVIDER", "remoteConsentServiceId": null, "enableRemoteConsent": false, "validateScopeClass": "org.forgerock.oauth2.core.plugins.registry.DefaultScopeValidator", "usePolicyEngineForScope": false, "evaluateScopeClass": "org.forgerock.oauth2.core.plugins.registry.DefaultScopeEvaluator", "overrideableOIDCClaims": [], "accessTokenMayActScript": "[Empty]", "evaluateScopeScript": "[Empty]", "clientsCanSkipConsent": true, "accessTokenModificationScript": "c234ba0b-58a1-4cfd-9567-09edde980745", "issueRefreshTokenOnRefreshedToken": true, "validateScopeScript": "[Empty]"}, "advancedOAuth2ClientConfig": {"logoUri": {"inherited": false, "value": []}, "subjectType": {"inherited": false, "value": "public"}, "clientUri": {"inherited": false, "value": []}, "tokenExchangeAuthLevel": {"inherited": false, "value": 0}, "responseTypes": {"inherited": false, "value": ["code", "token", "id_token", "code token", "token id_token", "code id_token", "code token id_token", "device_code", "device_code id_token"]}, "mixUpMitigation": {"inherited": false, "value": false}, "customProperties": {"inherited": false, "value": []}, "javascriptOrigins": {"inherited": false, "value": []}, "policyUri": {"inherited": false, "value": []}, "softwareVersion": {"inherited": false}, "tosURI": {"inherited": false, "value": []}, "sectorIdentifierUri": {"inherited": false}, "tokenEndpointAuthMethod": {"inherited": false, "value": "client_secret_basic"}, "refreshTokenGracePeriod": {"inherited": false, "value": 0}, "isConsentImplied": {"inherited": false, "value": false}, "softwareIdentity": {"inherited": false}, "grantTypes": {"inherited": false, "value": ["client_credentials"]}, "require_pushed_authorization_requests": {"inherited": false, "value": false}, "descriptions": {"inherited": false, "value": []}, "requestUris": {"inherited": false, "value": []}, "name": {"inherited": false, "value": []}, "contacts": {"inherited": false, "value": []}, "updateAccessToken": {"inherited": false}}, "signEncOAuth2ClientConfig": {"tokenEndpointAuthSigningAlgorithm": {"inherited": false, "value": "RS256"}, "idTokenEncryptionEnabled": {"inherited": false, "value": false}, "tokenIntrospectionEncryptedResponseEncryptionAlgorithm": {"inherited": false, "value": "A128CBC-HS256"}, "requestParameterSignedAlg": {"inherited": false}, "authorizationResponseSigningAlgorithm": {"inherited": false, "value": "RS256"}, "clientJwtPublicKey": {"inherited": false}, "idTokenPublicEncryptionKey": {"inherited": false}, "mTLSSubjectDN": {"inherited": false}, "jwkStoreCacheMissCacheTime": {"inherited": false, "value": 60000}, "jwkSet": {"inherited": false}, "idTokenEncryptionMethod": {"inherited": false, "value": "A128CBC-HS256"}, "jwksUri": {"inherited": false, "value": "http://am.fr-platform:80/am/oauth2/connect/jwk_uri"}, "tokenIntrospectionEncryptedResponseAlg": {"inherited": false, "value": "RSA-OAEP-256"}, "authorizationResponseEncryptionMethod": {"inherited": false}, "userinfoResponseFormat": {"inherited": false, "value": "JSON"}, "mTLSCertificateBoundAccessTokens": {"inherited": false, "value": false}, "publicKeyLocation": {"inherited": false, "value": "jwks_uri"}, "tokenIntrospectionResponseFormat": {"inherited": false, "value": "JSON"}, "requestParameterEncryptedEncryptionAlgorithm": {"inherited": false, "value": "A128CBC-HS256"}, "userinfoSignedResponseAlg": {"inherited": false}, "idTokenEncryptionAlgorithm": {"inherited": false, "value": "RSA-OAEP-256"}, "requestParameterEncryptedAlg": {"inherited": false}, "authorizationResponseEncryptionAlgorithm": {"inherited": false}, "mTLSTrustedCert": {"inherited": false}, "jwksCacheTimeout": {"inherited": false, "value": 3600000}, "userinfoEncryptedResponseAlg": {"inherited": false}, "idTokenSignedResponseAlg": {"inherited": false, "value": "RS256"}, "tokenIntrospectionSignedResponseAlg": {"inherited": false, "value": "RS256"}, "userinfoEncryptedResponseEncryptionAlgorithm": {"inherited": false, "value": "A128CBC-HS256"}}, "coreOAuth2ClientConfig": {"userpassword": "rcsClientSecret!", "secretLabelIdentifier": {"inherited": false}, "status": {"inherited": false, "value": "Active"}, "clientName": {"inherited": false, "value": []}, "clientType": {"inherited": false, "value": "Confidential"}, "loopbackInterfaceRedirection": {"inherited": false, "value": false}, "defaultScopes": {"inherited": false, "value": []}, "refreshTokenLifetime": {"inherited": false, "value": 0}, "scopes": {"inherited": false, "value": ["fr:idm:*"]}, "accessTokenLifetime": {"inherited": false, "value": 0}, "redirectionUris": {"inherited": false, "value": []}, "authorizationCodeLifetime": {"inherited": false, "value": 0}}, "coreOpenIDClientConfig": {"claims": {"inherited": false, "value": []}, "backchannel_logout_uri": {"inherited": false}, "defaultAcrValues": {"inherited": false, "value": []}, "jwtTokenLifetime": {"inherited": false, "value": 0}, "defaultMaxAgeEnabled": {"inherited": false, "value": false}, "clientSessionUri": {"inherited": false}, "defaultMaxAge": {"inherited": false, "value": 600}, "postLogoutRedirectUri": {"inherited": false, "value": []}, "backchannel_logout_session_required": {"inherited": false, "value": false}}, "coreUmaClientConfig": {"claimsRedirectionUris": {"inherited": false, "value": []}}, "_type": {"_id": "OAuth2Client", "name": "OAuth2 Clients", "collection": true}}' --insecure -L --request PUT --cookie "15892ffd844ef80=HZRO1prH_--MsO19bLTsLsAs7iE.*AAJTSQACMDIAAlNLABxUdys3OTlnNFQ0RnFZdy9Ick9sNC9zcUhzOFU9AAR0eXBlAANDVFMAAlMxAAIwMQ..*" --cookie "amlbcookie=01" "https://openam-perf-200m.forgeblocks.com/am/json/realms/alpha/realm-config/agents/OAuth2Client/RCSClient" 2024-12-17 17:51:02,985 INFO [http_cmd]: http status code OK 2024-12-17 17:51:02,985 DEBUG --- status code --- 2024-12-17 17:51:02,985 DEBUG http status code is 200 (expected 200) 2024-12-17 17:51:02,985 DEBUG --- http response --- 2024-12-17 17:51:02,986 DEBUG [print_head_tail]: Print head (10 lines) and tail (10 lines) of input string (337 lines): 2024-12-17 17:51:02,986 DEBUG ----- output ----- 2024-12-17 17:51:02,986 DEBUG { 2024-12-17 17:51:02,986 DEBUG "_id": "RCSClient", 2024-12-17 17:51:02,986 DEBUG "_rev": "-1199147689", 2024-12-17 17:51:02,986 DEBUG "overrideOAuth2ClientConfig": { 2024-12-17 17:51:02,986 DEBUG "issueRefreshToken": true, 2024-12-17 17:51:02,986 DEBUG "validateScopePluginType": "PROVIDER", 2024-12-17 17:51:02,986 DEBUG "tokenEncryptionEnabled": false, 2024-12-17 17:51:02,986 DEBUG "evaluateScopePluginType": "PROVIDER", 2024-12-17 17:51:02,986 DEBUG "oidcMayActScript": "[Empty]", 2024-12-17 17:51:02,986 DEBUG "oidcClaimsScript": "1f389a3d-21cf-417c-a6d3-42ea620071f0", 2024-12-17 17:51:02,986 DEBUG 2024-12-17 17:51:02,986 DEBUG 2024-12-17 17:51:02,986 DEBUG 2024-12-17 17:51:02,986 DEBUG [...] 2024-12-17 17:51:02,986 DEBUG 2024-12-17 17:51:02,986 DEBUG 2024-12-17 17:51:02,986 DEBUG 2024-12-17 17:51:02,986 DEBUG "inherited": false, 2024-12-17 17:51:02,986 DEBUG "value": [] 2024-12-17 17:51:02,986 DEBUG } 2024-12-17 17:51:02,986 DEBUG }, 2024-12-17 17:51:02,986 DEBUG "_type": { 2024-12-17 17:51:02,986 DEBUG "_id": "OAuth2Client", 2024-12-17 17:51:02,986 DEBUG "name": "OAuth2 Clients", 2024-12-17 17:51:02,986 DEBUG "collection": true 2024-12-17 17:51:02,986 DEBUG } 2024-12-17 17:51:02,986 DEBUG } ________________________________________________________________________________ [2024-12-17 17:51:02] update-rcs-client-secret post : Post method ________________________________________________________________________________ Setting result to PASS Task has been successfully stopped