com.atlassian.crucible.spi.services.NotPermittedException: You do not have permission to View the review CR-33: com.cenqua.crucible.model.Review@12

Atlassian JIRA | Wojciech Seliga | 8 years ago
  1. 0

    Take a look at sample XML response for an arbitrary review, when user tries to fetch data without any authentication. In case of public servers and malicious users, I don't think that exposing stack trace makes sense when we have "access denied". Now anonymous users know a lot of underlying stack (jetty, spring, jersey, etc.) and could theoretically use this knowledge to easier prepare an exploit. {code:xml} <?xml version='1.0' encoding='UTF-8'?> <error> <code>NotPermitted</code> <message>You do not have permission to View the review CR-33: com.cenqua.crucible.model.Review@12</message> <stacktrace>com.atlassian.crucible.spi.services.NotPermittedException: You do not have permission to View the review CR-33: com.cenqua.crucible.model.Review@12 at com.atlassian.crucible.spi.impl.DefaultReviewService.requireReviewPermission(DefaultReviewService.java:1240) at com.atlassian.crucible.spi.impl.DefaultReviewService.getReview(DefaultReviewService.java:359) at com.atlassian.crucible.spi.rpc.RestReviewService$10.doGet(RestReviewService.java:362) at com.atlassian.crucible.spi.rpc.RestReviewService$10.doGet(RestReviewService.java:361) at com.atlassian.crucible.spi.rpc.ConditionalGet.doConditionalGet(ConditionalGet.java:46) at com.atlassian.crucible.spi.rpc.RestReviewService.getReview(RestReviewService.java:360) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:585) at com.sun.jersey.impl.model.method.dispatch.EntityParamDispatchProvider$ResponseOutInvoker._dispatch(EntityParamDispatchProvider.java:156) at com.sun.jersey.impl.model.method.dispatch.ResourceJavaMethodDispatcher.dispatch(ResourceJavaMethodDispatcher.java:85) at com.sun.jersey.impl.uri.rules.HttpMethodRule.accept(HttpMethodRule.java:123) at com.sun.jersey.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:111) at com.sun.jersey.impl.uri.rules.ResourceClassRule.accept(ResourceClassRule.java:71) at com.sun.jersey.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:111) at com.sun.jersey.impl.uri.rules.RootResourceClassesRule.accept(RootResourceClassesRule.java:63) at com.sun.jersey.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:722) at com.sun.jersey.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:692) at com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:344) at javax.servlet.http.HttpServlet.service(HttpServlet.java:820) at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:487) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1144) at org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:83) at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:76) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at com.cenqua.crucible.filters.CrucibleFilter.doFilter(CrucibleFilter.java:140) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at com.cenqua.fisheye.web.filters.TotalityFilter.doFilter(TotalityFilter.java:192) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at com.atlassian.security.auth.trustedapps.filter.TrustedApplicationsFilter.doFilter(TrustedApplicationsFilter.java:98) at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at org.mortbay.servlet.UserAgentFilter.doFilter(UserAgentFilter.java:81) at org.mortbay.servlet.GzipFilter.doFilter(GzipFilter.java:129) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at com.cenqua.fisheye.web.filters.ProductInfoFilter.doFilter(ProductInfoFilter.java:32) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at com.cenqua.fisheye.web.filters.UpfrontFilter.doFilter(UpfrontFilter.java:39) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:360) at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216) at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:181) at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:726) at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:405) at org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:206) at org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114) at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:152) at org.mortbay.jetty.Server.handle(Server.java:324) at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:505) at org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpConnection.java:829) at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:514) at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:211) at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:380) at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:395) at org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:450) </stacktrace></error> {code}

    Atlassian JIRA | 8 years ago | Wojciech Seliga
    com.atlassian.crucible.spi.services.NotPermittedException: You do not have permission to View the review CR-33: com.cenqua.crucible.model.Review@12
  2. 0

    Take a look at sample XML response for an arbitrary review, when user tries to fetch data without any authentication. In case of public servers and malicious users, I don't think that exposing stack trace makes sense when we have "access denied". Now anonymous users know a lot of underlying stack (jetty, spring, jersey, etc.) and could theoretically use this knowledge to easier prepare an exploit. {code:xml} <?xml version='1.0' encoding='UTF-8'?> <error> <code>NotPermitted</code> <message>You do not have permission to View the review CR-33: com.cenqua.crucible.model.Review@12</message> <stacktrace>com.atlassian.crucible.spi.services.NotPermittedException: You do not have permission to View the review CR-33: com.cenqua.crucible.model.Review@12 at com.atlassian.crucible.spi.impl.DefaultReviewService.requireReviewPermission(DefaultReviewService.java:1240) at com.atlassian.crucible.spi.impl.DefaultReviewService.getReview(DefaultReviewService.java:359) at com.atlassian.crucible.spi.rpc.RestReviewService$10.doGet(RestReviewService.java:362) at com.atlassian.crucible.spi.rpc.RestReviewService$10.doGet(RestReviewService.java:361) at com.atlassian.crucible.spi.rpc.ConditionalGet.doConditionalGet(ConditionalGet.java:46) at com.atlassian.crucible.spi.rpc.RestReviewService.getReview(RestReviewService.java:360) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:585) at com.sun.jersey.impl.model.method.dispatch.EntityParamDispatchProvider$ResponseOutInvoker._dispatch(EntityParamDispatchProvider.java:156) at com.sun.jersey.impl.model.method.dispatch.ResourceJavaMethodDispatcher.dispatch(ResourceJavaMethodDispatcher.java:85) at com.sun.jersey.impl.uri.rules.HttpMethodRule.accept(HttpMethodRule.java:123) at com.sun.jersey.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:111) at com.sun.jersey.impl.uri.rules.ResourceClassRule.accept(ResourceClassRule.java:71) at com.sun.jersey.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:111) at com.sun.jersey.impl.uri.rules.RootResourceClassesRule.accept(RootResourceClassesRule.java:63) at com.sun.jersey.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:722) at com.sun.jersey.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:692) at com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:344) at javax.servlet.http.HttpServlet.service(HttpServlet.java:820) at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:487) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1144) at org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:83) at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:76) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at com.cenqua.crucible.filters.CrucibleFilter.doFilter(CrucibleFilter.java:140) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at com.cenqua.fisheye.web.filters.TotalityFilter.doFilter(TotalityFilter.java:192) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at com.atlassian.security.auth.trustedapps.filter.TrustedApplicationsFilter.doFilter(TrustedApplicationsFilter.java:98) at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at org.mortbay.servlet.UserAgentFilter.doFilter(UserAgentFilter.java:81) at org.mortbay.servlet.GzipFilter.doFilter(GzipFilter.java:129) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at com.cenqua.fisheye.web.filters.ProductInfoFilter.doFilter(ProductInfoFilter.java:32) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at com.cenqua.fisheye.web.filters.UpfrontFilter.doFilter(UpfrontFilter.java:39) at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136) at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:360) at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216) at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:181) at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:726) at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:405) at org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:206) at org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114) at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:152) at org.mortbay.jetty.Server.handle(Server.java:324) at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:505) at org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpConnection.java:829) at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:514) at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:211) at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:380) at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:395) at org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:450) </stacktrace></error> {code}

    Atlassian JIRA | 8 years ago | Wojciech Seliga
    com.atlassian.crucible.spi.services.NotPermittedException: You do not have permission to View the review CR-33: com.cenqua.crucible.model.Review@12
  3. 0

    When you are logged in as administrator, and don't have a normal user session, and view the /admin/viewRepoList.do page, the following error appears in the logs: {code}.. [java] 14:22:51 ERROR - Method getRepositoryData threw exception for reference $helper in template com.atlassian.fisheye.plugin.web.helpers.DefaultVelocityHelper at [1,116] [java] 14:22:51 ERROR - Failed to render velocity fragment '/plugins/servlet/applinks/listEntityLinks/com.atlassian.applinks.api.application.fecru.FishEyeRepositoryEntityType/${helper.repository.repositoryData.name}', Invocation of method 'getRepositoryData' in class com.atlassian.fisheye.plugin.web.helpers.DefaultRepositoryHelper threw exception com.atlassian.crucible.spi.services.NotPermittedException: Anonymous user does not have permission to access repository svn @ com.atlassian.fisheye.plugin.web.helpers.DefaultVelocityHelper[1,136] [java] org.apache.velocity.exception.MethodInvocationException: Invocation of method 'getRepositoryData' in class com.atlassian.fisheye.plugin.web.helpers.DefaultRepositoryHelper threw exception com.atlassian.crucible.spi.services.NotPermittedException: Anonymous user does not have permission to access repository svn @ com.atlassian.fisheye.plugin.web.helpers.DefaultVelocityHelper[1,136] [java] at org.apache.velocity.runtime.parser.node.ASTIdentifier.execute(ASTIdentifier.java:205) [java] at org.apache.velocity.runtime.parser.node.ASTReference.execute(ASTReference.java:203) [java] at org.apache.velocity.runtime.parser.node.ASTReference.render(ASTReference.java:294) [java] at org.apache.velocity.runtime.parser.node.SimpleNode.render(SimpleNode.java:318) [java] at org.apache.velocity.app.VelocityEngine.evaluate(VelocityEngine.java:356) [java] at org.apache.velocity.app.VelocityEngine.evaluate(VelocityEngine.java:228) [java] at com.atlassian.fisheye.plugin.web.helpers.DefaultVelocityHelper.renderVelocityFragment(DefaultVelocityHelper.java:49) [java] at com.atlassian.fisheye.plugin.web.FisheyeWebFragmentHelper.renderVelocityFragment(FisheyeWebFragmentHelper.java:73) [java] at com.atlassian.plugin.web.model.DefaultWebLink.getRenderedUrl(DefaultWebLink.java:35) [java] at com.atlassian.plugin.web.model.DefaultWebLink.getDisplayableUrl(DefaultWebLink.java:45) [java] at com.cenqua.fisheye.web.webfragments.WebFragmentDataFactory.getWebItems(WebFragmentDataFactory.java:101) [java] at com.cenqua.fisheye.web.webfragments.WebFragmentDataFactory.getWebItemsForRepo(WebFragmentDataFactory.java:35) [java] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [java] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) [java] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) [java] at java.lang.reflect.Method.invoke(Method.java:597) [java] at com.sun.el.parser.AstFunction.getValue(AstFunction.java:127) [java] at com.sun.el.ValueExpressionImpl.getValue(ValueExpressionImpl.java:206) [java] at org.apache.jasper.runtime.PageContextImpl.evaluateExpression(PageContextImpl.java:1001) [java] at org.apache.jsp.tag.web.cru.repOperations_tag._jspx_meth_c_forEach_0(org.apache.jsp.tag.web.cru.repOperations_tag:911) [java] at org.apache.jsp.tag.web.cru.repOperations_tag.doTag(org.apache.jsp.tag.web.cru.repOperations_tag:172) [java] at org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp._jspx_meth_rend_repOperations_0(org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp:1500) [java] at org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp._jspx_meth_ww_iterator_2(org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp:636) [java] at org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp._jspx_meth_ww_else_0(org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp:522) [java] at org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp._jspx_meth_ww_if_0(org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp:220) [java] at org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp._jspService(org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp:120) [java] at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:109) [java] at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) [java] at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:389) [java] at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:486) [java] at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:380) [java] at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) [java] at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:511) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1217) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:70) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.crucible.filters.CrucibleFilter.doFilter(CrucibleFilter.java:141) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.fisheye.web.filters.TotalityFilter.doFilter(TotalityFilter.java:182) [java] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) [java] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.security.auth.trustedapps.filter.TrustedApplicationsFilter.doFilter(TrustedApplicationsFilter.java:98) [java] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) [java] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:388) [java] at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216) [java] at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:182) [java] at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:765) [java] at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:418) [java] at org.mortbay.jetty.servlet.Dispatcher.forward(Dispatcher.java:327) [java] at org.mortbay.jetty.servlet.Dispatcher.forward(Dispatcher.java:126) [java] at com.opensymphony.webwork.dispatcher.ServletDispatcherResult.doExecute(ServletDispatcherResult.java:114) [java] at com.opensymphony.webwork.dispatcher.WebWorkResultSupport.execute(WebWorkResultSupport.java:143) [java] at com.opensymphony.xwork.DefaultActionInvocation.executeResult(DefaultActionInvocation.java:313) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:208) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.cenqua.fisheye.web.admin.interceptors.LoginInterceptor.intercept(LoginInterceptor.java:33) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.ExceptionMappingInterceptor.intercept(ExceptionMappingInterceptor.java:186) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.DefaultActionProxy.execute(DefaultActionProxy.java:116) [java] at com.opensymphony.webwork.dispatcher.DispatcherUtils.serviceAction(DispatcherUtils.java:273) [java] at com.opensymphony.webwork.dispatcher.ServletDispatcher.service(ServletDispatcher.java:111) [java] at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) [java] at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:511) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1217) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.opensymphony.module.sitemesh.filter.PageFilter.parsePage(PageFilter.java:118) [java] at com.opensymphony.module.sitemesh.filter.PageFilter.doFilter(PageFilter.java:54) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:83) [java] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:76) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.crucible.filters.CrucibleFilter.doFilter(CrucibleFilter.java:141) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.fisheye.web.filters.TotalityFilter.doFilter(TotalityFilter.java:246) [java] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) [java] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.security.auth.trustedapps.filter.TrustedApplicationsFilter.doFilter(TrustedApplicationsFilter.java:98) [java] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) [java] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.DelegatingPluginFilter$1.doFilter(DelegatingPluginFilter.java:66) [java] at com.atlassian.oauth.serviceprovider.internal.servlet.OAuthFilter.doFilter(OAuthFilter.java:69) [java] at com.atlassian.plugin.servlet.filter.DelegatingPluginFilter.doFilter(DelegatingPluginFilter.java:74) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:42) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at org.mortbay.servlet.UserAgentFilter.doFilter(UserAgentFilter.java:78) [java] at org.mortbay.servlet.GzipFilter.doFilter(GzipFilter.java:131) [java] at com.cenqua.fisheye.web.filters.CustomIncludableGzipFilter.doFilter(CustomIncludableGzipFilter.java:21) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.fisheye.web.filters.ProductInfoFilter.doFilter(ProductInfoFilter.java:36) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.fisheye.web.filters.UpfrontFilter.doFilter(UpfrontFilter.java:74) [java] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) [java] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:388) [java] at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216) [java] at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:182) [java] at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:765) [java] at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:418) [java] at org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:230) [java] at org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114) [java] at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:152) [java] at org.mortbay.jetty.Server.handle(Server.java:326) [java] at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:542) [java] at org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpConnection.java:926) [java] at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:549) [java] at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:212) [java] at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:404) [java] at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:410) [java] at org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:451) [java] Caused by: com.atlassian.crucible.spi.services.NotPermittedException: Anonymous user does not have permission to access repository svn [java] at com.atlassian.fisheye.spi.impl.SpiUtils.requireUserHasPermissionToAccess(SpiUtils.java:204) [java] at com.atlassian.fisheye.spi.impl.DefaultRepositoryService.getRepositoryInfo(DefaultRepositoryService.java:49) [java] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [java] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) [java] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) [java] at java.lang.reflect.Method.invoke(Method.java:597) [java] at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307) [java] at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182) [java] at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149) [java] at org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:77) [java] at com.cenqua.crucible.hibernate.WithSessionAspect.doCloseSession(WithSessionAspect.java:37) [java] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [java] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) [java] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) [java] at java.lang.reflect.Method.invoke(Method.java:597) [java] at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:627) [java] at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:616) [java] at org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:64) [java] at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:160) [java] at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89) [java] at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) [java] at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204) [java] at $Proxy19.getRepositoryInfo(Unknown Source) [java] at com.atlassian.fisheye.plugin.web.helpers.DefaultRepositoryHelper.getRepositoryData(DefaultRepositoryHelper.java:19) [java] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [java] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) [java] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) [java] at java.lang.reflect.Method.invoke(Method.java:597) [java] at org.apache.velocity.runtime.parser.node.PropertyExecutor.execute(PropertyExecutor.java:137) [java] at org.apache.velocity.util.introspection.UberspectImpl$VelGetterImpl.invoke(UberspectImpl.java:350) [java] at org.apache.velocity.runtime.parser.node.ASTIdentifier.execute(ASTIdentifier.java:180) [java] ... 152 more {code} To reproduce this, run the SSLFuncTest. The same behaviour does not occur in 2.3.4.

    Atlassian JIRA | 6 years ago | Nick Pellow [Atlassian]
    org.apache.velocity.exception.MethodInvocationException: Invocation of method 'getRepositoryData' in class com.atlassian.fisheye.plugin.web.helpers.DefaultRepositoryHelper threw exception com.atlassian.crucible.spi.services.NotPermittedException: Anonymous user does not have permission to access repository svn @ com.atlassian.fisheye.plugin.web.helpers.DefaultVelocityHelper[1,136]
  4. Speed up your debug routine!

    Automated exception search integrated into your IDE

  5. 0

    When you are logged in as administrator, and don't have a normal user session, and view the /admin/viewRepoList.do page, the following error appears in the logs: {code}.. [java] 14:22:51 ERROR - Method getRepositoryData threw exception for reference $helper in template com.atlassian.fisheye.plugin.web.helpers.DefaultVelocityHelper at [1,116] [java] 14:22:51 ERROR - Failed to render velocity fragment '/plugins/servlet/applinks/listEntityLinks/com.atlassian.applinks.api.application.fecru.FishEyeRepositoryEntityType/${helper.repository.repositoryData.name}', Invocation of method 'getRepositoryData' in class com.atlassian.fisheye.plugin.web.helpers.DefaultRepositoryHelper threw exception com.atlassian.crucible.spi.services.NotPermittedException: Anonymous user does not have permission to access repository svn @ com.atlassian.fisheye.plugin.web.helpers.DefaultVelocityHelper[1,136] [java] org.apache.velocity.exception.MethodInvocationException: Invocation of method 'getRepositoryData' in class com.atlassian.fisheye.plugin.web.helpers.DefaultRepositoryHelper threw exception com.atlassian.crucible.spi.services.NotPermittedException: Anonymous user does not have permission to access repository svn @ com.atlassian.fisheye.plugin.web.helpers.DefaultVelocityHelper[1,136] [java] at org.apache.velocity.runtime.parser.node.ASTIdentifier.execute(ASTIdentifier.java:205) [java] at org.apache.velocity.runtime.parser.node.ASTReference.execute(ASTReference.java:203) [java] at org.apache.velocity.runtime.parser.node.ASTReference.render(ASTReference.java:294) [java] at org.apache.velocity.runtime.parser.node.SimpleNode.render(SimpleNode.java:318) [java] at org.apache.velocity.app.VelocityEngine.evaluate(VelocityEngine.java:356) [java] at org.apache.velocity.app.VelocityEngine.evaluate(VelocityEngine.java:228) [java] at com.atlassian.fisheye.plugin.web.helpers.DefaultVelocityHelper.renderVelocityFragment(DefaultVelocityHelper.java:49) [java] at com.atlassian.fisheye.plugin.web.FisheyeWebFragmentHelper.renderVelocityFragment(FisheyeWebFragmentHelper.java:73) [java] at com.atlassian.plugin.web.model.DefaultWebLink.getRenderedUrl(DefaultWebLink.java:35) [java] at com.atlassian.plugin.web.model.DefaultWebLink.getDisplayableUrl(DefaultWebLink.java:45) [java] at com.cenqua.fisheye.web.webfragments.WebFragmentDataFactory.getWebItems(WebFragmentDataFactory.java:101) [java] at com.cenqua.fisheye.web.webfragments.WebFragmentDataFactory.getWebItemsForRepo(WebFragmentDataFactory.java:35) [java] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [java] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) [java] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) [java] at java.lang.reflect.Method.invoke(Method.java:597) [java] at com.sun.el.parser.AstFunction.getValue(AstFunction.java:127) [java] at com.sun.el.ValueExpressionImpl.getValue(ValueExpressionImpl.java:206) [java] at org.apache.jasper.runtime.PageContextImpl.evaluateExpression(PageContextImpl.java:1001) [java] at org.apache.jsp.tag.web.cru.repOperations_tag._jspx_meth_c_forEach_0(org.apache.jsp.tag.web.cru.repOperations_tag:911) [java] at org.apache.jsp.tag.web.cru.repOperations_tag.doTag(org.apache.jsp.tag.web.cru.repOperations_tag:172) [java] at org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp._jspx_meth_rend_repOperations_0(org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp:1500) [java] at org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp._jspx_meth_ww_iterator_2(org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp:636) [java] at org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp._jspx_meth_ww_else_0(org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp:522) [java] at org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp._jspx_meth_ww_if_0(org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp:220) [java] at org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp._jspService(org.apache.jsp.WEB_002dINF.jsp.admin.viewrepositorylist_jsp:120) [java] at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:109) [java] at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) [java] at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:389) [java] at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:486) [java] at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:380) [java] at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) [java] at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:511) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1217) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:70) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.crucible.filters.CrucibleFilter.doFilter(CrucibleFilter.java:141) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.fisheye.web.filters.TotalityFilter.doFilter(TotalityFilter.java:182) [java] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) [java] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.security.auth.trustedapps.filter.TrustedApplicationsFilter.doFilter(TrustedApplicationsFilter.java:98) [java] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) [java] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:388) [java] at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216) [java] at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:182) [java] at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:765) [java] at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:418) [java] at org.mortbay.jetty.servlet.Dispatcher.forward(Dispatcher.java:327) [java] at org.mortbay.jetty.servlet.Dispatcher.forward(Dispatcher.java:126) [java] at com.opensymphony.webwork.dispatcher.ServletDispatcherResult.doExecute(ServletDispatcherResult.java:114) [java] at com.opensymphony.webwork.dispatcher.WebWorkResultSupport.execute(WebWorkResultSupport.java:143) [java] at com.opensymphony.xwork.DefaultActionInvocation.executeResult(DefaultActionInvocation.java:313) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:208) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.cenqua.fisheye.web.admin.interceptors.LoginInterceptor.intercept(LoginInterceptor.java:33) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.AroundInterceptor.intercept(AroundInterceptor.java:31) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.interceptor.ExceptionMappingInterceptor.intercept(ExceptionMappingInterceptor.java:186) [java] at com.opensymphony.xwork.DefaultActionInvocation.invoke(DefaultActionInvocation.java:190) [java] at com.opensymphony.xwork.DefaultActionProxy.execute(DefaultActionProxy.java:116) [java] at com.opensymphony.webwork.dispatcher.DispatcherUtils.serviceAction(DispatcherUtils.java:273) [java] at com.opensymphony.webwork.dispatcher.ServletDispatcher.service(ServletDispatcher.java:111) [java] at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) [java] at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:511) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1217) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.opensymphony.module.sitemesh.filter.PageFilter.parsePage(PageFilter.java:118) [java] at com.opensymphony.module.sitemesh.filter.PageFilter.doFilter(PageFilter.java:54) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:83) [java] at org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:76) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.crucible.filters.CrucibleFilter.doFilter(CrucibleFilter.java:141) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.fisheye.web.filters.TotalityFilter.doFilter(TotalityFilter.java:246) [java] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) [java] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.security.auth.trustedapps.filter.TrustedApplicationsFilter.doFilter(TrustedApplicationsFilter.java:98) [java] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) [java] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.DelegatingPluginFilter$1.doFilter(DelegatingPluginFilter.java:66) [java] at com.atlassian.oauth.serviceprovider.internal.servlet.OAuthFilter.doFilter(OAuthFilter.java:69) [java] at com.atlassian.plugin.servlet.filter.DelegatingPluginFilter.doFilter(DelegatingPluginFilter.java:74) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:42) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at org.mortbay.servlet.UserAgentFilter.doFilter(UserAgentFilter.java:78) [java] at org.mortbay.servlet.GzipFilter.doFilter(GzipFilter.java:131) [java] at com.cenqua.fisheye.web.filters.CustomIncludableGzipFilter.doFilter(CustomIncludableGzipFilter.java:21) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.fisheye.web.filters.ProductInfoFilter.doFilter(ProductInfoFilter.java:36) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.atlassian.plugin.servlet.filter.IteratingFilterChain.doFilter(IteratingFilterChain.java:46) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:77) [java] at com.atlassian.plugin.servlet.filter.ServletFilterModuleContainerFilter.doFilter(ServletFilterModuleContainerFilter.java:63) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at com.cenqua.fisheye.web.filters.UpfrontFilter.doFilter(UpfrontFilter.java:74) [java] at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236) [java] at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167) [java] at org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1209) [java] at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:388) [java] at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216) [java] at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:182) [java] at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:765) [java] at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:418) [java] at org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:230) [java] at org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114) [java] at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:152) [java] at org.mortbay.jetty.Server.handle(Server.java:326) [java] at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:542) [java] at org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpConnection.java:926) [java] at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:549) [java] at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:212) [java] at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:404) [java] at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:410) [java] at org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:451) [java] Caused by: com.atlassian.crucible.spi.services.NotPermittedException: Anonymous user does not have permission to access repository svn [java] at com.atlassian.fisheye.spi.impl.SpiUtils.requireUserHasPermissionToAccess(SpiUtils.java:204) [java] at com.atlassian.fisheye.spi.impl.DefaultRepositoryService.getRepositoryInfo(DefaultRepositoryService.java:49) [java] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [java] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) [java] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) [java] at java.lang.reflect.Method.invoke(Method.java:597) [java] at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307) [java] at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182) [java] at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149) [java] at org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:77) [java] at com.cenqua.crucible.hibernate.WithSessionAspect.doCloseSession(WithSessionAspect.java:37) [java] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [java] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) [java] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) [java] at java.lang.reflect.Method.invoke(Method.java:597) [java] at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:627) [java] at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:616) [java] at org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:64) [java] at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:160) [java] at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89) [java] at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) [java] at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204) [java] at $Proxy19.getRepositoryInfo(Unknown Source) [java] at com.atlassian.fisheye.plugin.web.helpers.DefaultRepositoryHelper.getRepositoryData(DefaultRepositoryHelper.java:19) [java] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [java] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) [java] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) [java] at java.lang.reflect.Method.invoke(Method.java:597) [java] at org.apache.velocity.runtime.parser.node.PropertyExecutor.execute(PropertyExecutor.java:137) [java] at org.apache.velocity.util.introspection.UberspectImpl$VelGetterImpl.invoke(UberspectImpl.java:350) [java] at org.apache.velocity.runtime.parser.node.ASTIdentifier.execute(ASTIdentifier.java:180) [java] ... 152 more {code} To reproduce this, run the SSLFuncTest. The same behaviour does not occur in 2.3.4.

    Atlassian JIRA | 6 years ago | Nick Pellow [Atlassian]
    org.apache.velocity.exception.MethodInvocationException: Invocation of method 'getRepositoryData' in class com.atlassian.fisheye.plugin.web.helpers.DefaultRepositoryHelper threw exception com.atlassian.crucible.spi.services.NotPermittedException: Anonymous user does not have permission to access repository svn @ com.atlassian.fisheye.plugin.web.helpers.DefaultVelocityHelper[1,136]
  6. 0

    2011-07-07 18:55:24.841173500 com.atlassian.crucible.spi.services.NotPermittedException: Anonymous user does not have permission to access repository SOMEREPOSITORY 2011-07-07 18:55:24.841174500 at com.atlassian.crucible.spi.impl.DefaultSPIUtils.requireUserHasPermissionToAccess(DefaultSPIUtils.java:317) 2011-07-07 18:55:24.841175500 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 2011-07-07 18:55:24.841176500 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) 2011-07-07 18:55:24.841194500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841195500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841195500 at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307) 2011-07-07 18:55:24.841196500 at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182) 2011-07-07 18:55:24.841200500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149) 2011-07-07 18:55:24.841201500 at org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:77) 2011-07-07 18:55:24.841202500 at com.cenqua.crucible.hibernate.WithSessionAspect.doCloseSession(WithSessionAspect.java:37) 2011-07-07 18:55:24.841209500 at sun.reflect.GeneratedMethodAccessor215.invoke(Unknown Source) 2011-07-07 18:55:24.841210500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841211500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841211500 at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:627) 2011-07-07 18:55:24.841214500 at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:616) 2011-07-07 18:55:24.841215500 at org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:64) 2011-07-07 18:55:24.841216500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:160) 2011-07-07 18:55:24.841219500 at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89) 2011-07-07 18:55:24.841220500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841221500 at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204) 2011-07-07 18:55:24.841241500 at $Proxy24.requireUserHasPermissionToAccess(Unknown Source) 2011-07-07 18:55:24.841241500 at com.atlassian.fisheye.spi.services.DefaultRecentChangesetsService.getRepository(DefaultRecentChangesetsService.java:82) 2011-07-07 18:55:24.841243500 at com.atlassian.fisheye.spi.services.DefaultRecentChangesetsService.listChangesets(DefaultRecentChangesetsService.java:36) 2011-07-07 18:55:24.841244500 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 2011-07-07 18:55:24.841247500 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) 2011-07-07 18:55:24.841248500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841249500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841249500 at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307) 2011-07-07 18:55:24.841252500 at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182) 2011-07-07 18:55:24.841254500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149) 2011-07-07 18:55:24.841255500 at org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:77) 2011-07-07 18:55:24.841260500 at com.cenqua.crucible.hibernate.WithSessionAspect.doCloseSession(WithSessionAspect.java:37) 2011-07-07 18:55:24.841261500 at sun.reflect.GeneratedMethodAccessor215.invoke(Unknown Source) 2011-07-07 18:55:24.841262500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841263500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841266500 at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:627) 2011-07-07 18:55:24.841267500 at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:616) 2011-07-07 18:55:24.841268500 at org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:64) 2011-07-07 18:55:24.841269500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:160) 2011-07-07 18:55:24.841272500 at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89) 2011-07-07 18:55:24.841273500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841274500 at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204) 2011-07-07 18:55:24.841279500 at $Proxy46.listChangesets(Unknown Source) 2011-07-07 18:55:24.841280500 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 2011-07-07 18:55:24.841280500 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) 2011-07-07 18:55:24.841281500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841282500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841285500 at com.atlassian.plugin.osgi.hostcomponents.impl.DefaultComponentRegistrar$ContextClassLoaderSettingInvocationHandler.invoke(DefaultComponentRegistrar.java:129) 2011-07-07 18:55:24.841286500 at $Proxy70.listChangesets(Unknown Source) 2011-07-07 18:55:24.841287500 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 2011-07-07 18:55:24.841288500 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) 2011-07-07 18:55:24.841291500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841291500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841292500 at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307) 2011-07-07 18:55:24.841293500 at org.springframework.osgi.service.importer.support.internal.aop.ServiceInvoker.doInvoke(ServiceInvoker.java:58) 2011-07-07 18:55:24.841304500 at org.springframework.osgi.service.importer.support.internal.aop.ServiceInvoker.invoke(ServiceInvoker.java:62) 2011-07-07 18:55:24.841305500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841306500 at org.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131) 2011-07-07 18:55:24.841309500 at org.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119) 2011-07-07 18:55:24.841310500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841311500 at org.springframework.osgi.service.util.internal.aop.ServiceTCCLInterceptor.invokeUnprivileged(ServiceTCCLInterceptor.java:56) 2011-07-07 18:55:24.841315500 at org.springframework.osgi.service.util.internal.aop.ServiceTCCLInterceptor.invoke(ServiceTCCLInterceptor.java:39) 2011-07-07 18:55:24.841316500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841317500 at org.springframework.osgi.service.importer.support.LocalBundleContextAdvice.invoke(LocalBundleContextAdvice.java:59) 2011-07-07 18:55:24.841322500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841323500 at org.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131) 2011-07-07 18:55:24.841324500 at org.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119) 2011-07-07 18:55:24.841327500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841329500 at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204) 2011-07-07 18:55:24.841329500 at $Proxy339.listChangesets(Unknown Source) 2011-07-07 18:55:24.841330500 at com.atlassian.streams.fisheye.FishEyeFinderImpl.getChangesets(FishEyeFinderImpl.java:115) 2011-07-07 18:55:24.841333500 at com.atlassian.streams.fisheye.FishEyeStreamsActivityProvider$1.apply(FishEyeStreamsActivityProvider.java:76) 2011-07-07 18:55:24.841334500 at com.atlassian.streams.fisheye.FishEyeStreamsActivityProvider$1.apply(FishEyeStreamsActivityProvider.java:72) 2011-07-07 18:55:24.841340500 at com.atlassian.streams.api.common.Fold.foldl(Fold.java:23) 2011-07-07 18:55:24.841341500 at com.atlassian.streams.fisheye.FishEyeStreamsActivityProvider.getChangesets(FishEyeStreamsActivityProvider.java:66) 2011-07-07 18:55:24.841342500 at com.atlassian.streams.fisheye.FishEyeStreamsActivityProvider.getActivityFeed(FishEyeStreamsActivityProvider.java:56) 2011-07-07 18:55:24.841345500 at com.atlassian.streams.internal.LocalActivityProvider$FeedFetcher.doInTransaction(LocalActivityProvider.java:163) 2011-07-07 18:55:24.841346500 at com.atlassian.sal.core.transaction.HostContextTransactionTemplate$1.doInTransaction(HostContextTransactionTemplate.java:25) 2011-07-07 18:55:24.841347500 at com.atlassian.sal.spring.component.SpringHostContextAccessor$1.doInTransaction(SpringHostContextAccessor.java:88) 2011-07-07 18:55:24.841350500 at org.springframework.transaction.support.TransactionTemplate.execute(TransactionTemplate.java:128) 2011-07-07 18:55:24.841351500 at com.atlassian.sal.spring.component.SpringHostContextAccessor.doInTransaction(SpringHostContextAccessor.java:82) 2011-07-07 18:55:24.841352500 at com.atlassian.fisheye.plugin.FisheyeHostContextAccessor.doInTransaction(FisheyeHostContextAccessor.java:37) 2011-07-07 18:55:24.841355500 at sun.reflect.GeneratedMethodAccessor258.invoke(Unknown Source) 2011-07-07 18:55:24.841361500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841361500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841362500 at com.atlassian.plugin.osgi.hostcomponents.impl.DefaultComponentRegistrar$ContextClassLoaderSettingInvocationHandler.invoke(DefaultComponentRegistrar.java:129) 2011-07-07 18:55:24.841363500 at $Proxy64.doInTransaction(Unknown Source) 2011-07-07 18:55:24.841371500 at sun.reflect.GeneratedMethodAccessor258.invoke(Unknown Source) 2011-07-07 18:55:24.841371500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841372500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841373500 at com.atlassian.plugin.osgi.bridge.external.HostComponentFactoryBean$DynamicServiceInvocationHandler.invoke(HostComponentFactoryBean.java:154) 2011-07-07 18:55:24.841376500 at $Proxy64.doInTransaction(Unknown Source) 2011-07-07 18:55:24.841377500 at com.atlassian.sal.core.transaction.HostContextTransactionTemplate.execute(HostContextTransactionTemplate.java:21) 2011-07-07 18:55:24.841378500 at sun.reflect.GeneratedMethodAccessor380.invoke(Unknown Source) 2011-07-07 18:55:24.841379500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841384500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841385500 at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307) 2011-07-07 18:55:24.841386500 at org.springframework.osgi.service.importer.support.internal.aop.ServiceInvoker.doInvoke(ServiceInvoker.java:58) 2011-07-07 18:55:24.841387500 at org.springframework.osgi.service.importer.support.internal.aop.ServiceInvoker.invoke(ServiceInvoker.java:62) 2011-07-07 18:55:24.841390500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841391500 at org.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131) 2011-07-07 18:55:24.841392500 at org.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119) 2011-07-07 18:55:24.841395500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841396500 at org.springframework.osgi.service.util.internal.aop.ServiceTCCLInterceptor.invokeUnprivileged(ServiceTCCLInterceptor.java:56) 2011-07-07 18:55:24.841397500 at org.springframework.osgi.service.util.internal.aop.ServiceTCCLInterceptor.invoke(ServiceTCCLInterceptor.java:39) 2011-07-07 18:55:24.841403500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841404500 at org.springframework.osgi.service.importer.support.LocalBundleContextAdvice.invoke(LocalBundleContextAdvice.java:59) 2011-07-07 18:55:24.841405500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841408500 at org.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131) 2011-07-07 18:55:24.841409500 at org.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119) 2011-07-07 18:55:24.841410500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841413500 at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204) 2011-07-07 18:55:24.841414500 at $Proxy263.execute(Unknown Source) 2011-07-07 18:55:24.841415500 at com.atlassian.streams.internal.LocalActivityProvider$1.get(LocalActivityProvider.java:98) 2011-07-07 18:55:24.841420500 at com.atlassian.streams.internal.LocalActivityProvider$1.get(LocalActivityProvider.java:94) 2011-07-07 18:55:24.841421500 at com.atlassian.streams.crucible.CrucibleSessionManager.withSession(CrucibleSessionManager.java:21) 2011-07-07 18:55:24.841422500 at com.atlassian.streams.internal.SwitchingSessionManager.withSession(SwitchingSessionManager.java:16) 2011-07-07 18:55:24.841423500 at com.atlassian.streams.internal.LocalActivityProvider.getActivityFeed(LocalActivityProvider.java:93) 2011-07-07 18:55:24.841430500 at com.atlassian.streams.internal.FeedBuilder$ToFeedCallable$1.call(FeedBuilder.java:100) 2011-07-07 18:55:24.841431500 at com.atlassian.streams.internal.FeedBuilder$ToFeedCallable$1.call(FeedBuilder.java:86) 2011-07-07 18:55:24.841432500 at java.util.concurrent.FutureTask$Sync.innerRun(FutureTask.java:303) 2011-07-07 18:55:24.841433500 at java.util.concurrent.FutureTask.run(FutureTask.java:138) 2011-07-07 18:55:24.841436500 at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:441) 2011-07-07 18:55:24.841437500 at java.util.concurrent.FutureTask$Sync.innerRun(FutureTask.java:303) 2011-07-07 18:55:24.841437500 at java.util.concurrent.FutureTask.run(FutureTask.java:138) 2011-07-07 18:55:24.841438500 at com.atlassian.util.concurrent.LimitedExecutor$Runner.run(LimitedExecutor.java:96) 2011-07-07 18:55:24.841439500 at com.atlassian.sal.core.executor.ThreadLocalDelegateRunnable.run(ThreadLocalDelegateRunnable.java:36) 2011-07-07 18:55:24.841445500 at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:886) 2011-07-07 18:55:24.841446500 at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:908) 2011-07-07 18:55:24.841447500 at java.lang.Thread.run(Thread.java:619)

    Atlassian JIRA | 5 years ago | Eric Dalgliesh
    com.atlassian.crucible.spi.services.NotPermittedException: Anonymous user does not have permission to access repository SOMEREPOSITORY 2011-07-07 18:55:24.841174500 at com.atlassian.crucible.spi.impl.DefaultSPIUtils.requireUserHasPermissionToAccess(DefaultSPIUtils.java:317) 2011-07-07 18:55:24.841175500 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 2011-07-07 18:55:24.841176500 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) 2011-07-07 18:55:24.841194500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841195500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841195500 at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307) 2011-07-07 18:55:24.841196500 at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182) 2011-07-07 18:55:24.841200500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149) 2011-07-07 18:55:24.841201500 at org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:77) 2011-07-07 18:55:24.841202500 at com.cenqua.crucible.hibernate.WithSessionAspect.doCloseSession(WithSessionAspect.java:37) 2011-07-07 18:55:24.841209500 at sun.reflect.GeneratedMethodAccessor215.invoke(Unknown Source) 2011-07-07 18:55:24.841210500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841211500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841211500 at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:627) 2011-07-07 18:55:24.841214500 at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:616) 2011-07-07 18:55:24.841215500 at org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:64) 2011-07-07 18:55:24.841216500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:160) 2011-07-07 18:55:24.841219500 at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89) 2011-07-07 18:55:24.841220500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841221500 at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204) 2011-07-07 18:55:24.841241500 at $Proxy24.requireUserHasPermissionToAccess(Unknown Source) 2011-07-07 18:55:24.841241500 at com.atlassian.fisheye.spi.services.DefaultRecentChangesetsService.getRepository(DefaultRecentChangesetsService.java:82) 2011-07-07 18:55:24.841243500 at com.atlassian.fisheye.spi.services.DefaultRecentChangesetsService.listChangesets(DefaultRecentChangesetsService.java:36) 2011-07-07 18:55:24.841244500 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 2011-07-07 18:55:24.841247500 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) 2011-07-07 18:55:24.841248500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841249500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841249500 at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307) 2011-07-07 18:55:24.841252500 at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182) 2011-07-07 18:55:24.841254500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149) 2011-07-07 18:55:24.841255500 at org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:77) 2011-07-07 18:55:24.841260500 at com.cenqua.crucible.hibernate.WithSessionAspect.doCloseSession(WithSessionAspect.java:37) 2011-07-07 18:55:24.841261500 at sun.reflect.GeneratedMethodAccessor215.invoke(Unknown Source) 2011-07-07 18:55:24.841262500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841263500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841266500 at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:627) 2011-07-07 18:55:24.841267500 at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:616) 2011-07-07 18:55:24.841268500 at org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:64) 2011-07-07 18:55:24.841269500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:160) 2011-07-07 18:55:24.841272500 at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89) 2011-07-07 18:55:24.841273500 at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171) 2011-07-07 18:55:24.841274500 at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204) 2011-07-07 18:55:24.841279500 at $Proxy46.listChangesets(Unknown Source) 2011-07-07 18:55:24.841280500 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 2011-07-07 18:55:24.841280500 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) 2011-07-07 18:55:24.841281500 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 2011-07-07 18:55:24.841282500 at java.lang.reflect.Method.invoke(Method.java:597) 2011-07-07 18:55:24.841285500 at com.atlassian.plugin.osgi.hostcomponents.impl.DefaultComponentRegistrar$ContextClassLoaderSettingInvocationHandler.invoke(DefaultComponentRegistrar.java:129) 2011-07-07 18:55:24.841286500 at $Proxy70.listChangesets(Unknown Source) 2011-07-07 18:55:24.841287500 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 2011-07-07 18:55:24.841288500 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)

    Not finding the right solution?
    Take a tour to get the most out of Samebug.

    Tired of useless tips?

    Automated exception search integrated into your IDE

    Root Cause Analysis

    1. com.atlassian.crucible.spi.services.NotPermittedException

      You do not have permission to View the review CR-33: com.cenqua.crucible.model.Review@12

      at com.atlassian.crucible.spi.impl.DefaultReviewService.requireReviewPermission()
    2. com.atlassian.crucible
      RestReviewService.getReview
      1. com.atlassian.crucible.spi.impl.DefaultReviewService.requireReviewPermission(DefaultReviewService.java:1240)
      2. com.atlassian.crucible.spi.impl.DefaultReviewService.getReview(DefaultReviewService.java:359)
      3. com.atlassian.crucible.spi.rpc.RestReviewService$10.doGet(RestReviewService.java:362)
      4. com.atlassian.crucible.spi.rpc.RestReviewService$10.doGet(RestReviewService.java:361)
      5. com.atlassian.crucible.spi.rpc.ConditionalGet.doConditionalGet(ConditionalGet.java:46)
      6. com.atlassian.crucible.spi.rpc.RestReviewService.getReview(RestReviewService.java:360)
      6 frames
    3. Java RT
      Method.invoke
      1. sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
      2. sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
      3. sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
      4. java.lang.reflect.Method.invoke(Method.java:585)
      4 frames
    4. com.sun.jersey
      WebApplicationImpl.handleRequest
      1. com.sun.jersey.impl.model.method.dispatch.EntityParamDispatchProvider$ResponseOutInvoker._dispatch(EntityParamDispatchProvider.java:156)
      2. com.sun.jersey.impl.model.method.dispatch.ResourceJavaMethodDispatcher.dispatch(ResourceJavaMethodDispatcher.java:85)
      3. com.sun.jersey.impl.uri.rules.HttpMethodRule.accept(HttpMethodRule.java:123)
      4. com.sun.jersey.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:111)
      5. com.sun.jersey.impl.uri.rules.ResourceClassRule.accept(ResourceClassRule.java:71)
      6. com.sun.jersey.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:111)
      7. com.sun.jersey.impl.uri.rules.RootResourceClassesRule.accept(RootResourceClassesRule.java:63)
      8. com.sun.jersey.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:722)
      9. com.sun.jersey.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:692)
      9 frames
    5. Jersey
      ServletContainer.service
      1. com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:344)
      1 frame
    6. JavaServlet
      HttpServlet.service
      1. javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
      1 frame
    7. Jetty Server
      ServletHandler$Chain.doFilter
      1. org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:487)
      2. org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1144)
      2 frames
    8. Spring
      OncePerRequestFilter.doFilter
      1. org.springframework.web.filter.RequestContextFilter.doFilterInternal(RequestContextFilter.java:83)
      2. org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:76)
      2 frames
    9. Jetty Server
      ServletHandler$Chain.doFilter
      1. org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136)
      1 frame
    10. com.cenqua.crucible
      CrucibleFilter.doFilter
      1. com.cenqua.crucible.filters.CrucibleFilter.doFilter(CrucibleFilter.java:140)
      1 frame
    11. Jetty Server
      ServletHandler$Chain.doFilter
      1. org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136)
      1 frame
    12. com.cenqua.fisheye
      TotalityFilter.doFilter
      1. com.cenqua.fisheye.web.filters.TotalityFilter.doFilter(TotalityFilter.java:192)
      1 frame
    13. Jetty Server
      ServletHandler$Chain.doFilter
      1. org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136)
      1 frame
    14. com.atlassian.security
      TrustedApplicationsFilter.doFilter
      1. com.atlassian.security.auth.trustedapps.filter.TrustedApplicationsFilter.doFilter(TrustedApplicationsFilter.java:98)
      1 frame
    15. Spring
      DelegatingFilterProxy.doFilter
      1. org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:236)
      2. org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:167)
      2 frames
    16. Jetty Server
      ServletHandler$Chain.doFilter
      1. org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136)
      1 frame
    17. Jetty Util
      GzipFilter.doFilter
      1. org.mortbay.servlet.UserAgentFilter.doFilter(UserAgentFilter.java:81)
      2. org.mortbay.servlet.GzipFilter.doFilter(GzipFilter.java:129)
      2 frames
    18. Jetty Server
      ServletHandler$Chain.doFilter
      1. org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136)
      1 frame
    19. com.cenqua.fisheye
      ProductInfoFilter.doFilter
      1. com.cenqua.fisheye.web.filters.ProductInfoFilter.doFilter(ProductInfoFilter.java:32)
      1 frame
    20. Jetty Server
      ServletHandler$Chain.doFilter
      1. org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136)
      1 frame
    21. com.cenqua.fisheye
      UpfrontFilter.doFilter
      1. com.cenqua.fisheye.web.filters.UpfrontFilter.doFilter(UpfrontFilter.java:39)
      1 frame
    22. Jetty Server
      SelectChannelEndPoint.run
      1. org.mortbay.jetty.servlet.ServletHandler$Chain.doFilter(ServletHandler.java:1136)
      2. org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:360)
      3. org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216)
      4. org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:181)
      5. org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:726)
      6. org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:405)
      7. org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:206)
      8. org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114)
      9. org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:152)
      10. org.mortbay.jetty.Server.handle(Server.java:324)
      11. org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:505)
      12. org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpConnection.java:829)
      13. org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:514)
      14. org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:211)
      15. org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:380)
      16. org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:395)
      16 frames
    23. Jetty Util
      BoundedThreadPool$PoolThread.run
      1. org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:450)
      1 frame