New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ConstraintViolationException: Last activity instant must be greater than 0 #2
Comments
Couple questions:
Something I find odd in that thread is that expiration can be null, so a last time used based on that could be tricky. Need to find out what type of storage records are getting stored poorly. Thanks |
Another thought that came to mind: are you running on multiple systems? If so, how close are their clocks? |
2 nodes same campus, same time server. |
So the way I can reproduce this reliably is to throw an SP in to the mix that has forceAuthn to true. [idp.properties] |
Great, thanks. I'll need to dig into this later, but this gives me a good place to start. |
Okay, I'm able to replicate the problem, and notice that -6 is, indeed, not greater than 0. I'll dig into it and see what bubbles. |
Okay, I was able to track down the problem. Turns out I was (wrongly) storing a computed time with the record. I'm surprised this hasn't turned up before. Thanks for the report, and let me know if the latest commit fixes this problem. |
Nice! |
Rebuilt jar off the new code and deployed into testing locally. |
Update: (nearly 3 months later) |
Looks to be resolved |
Under certain conditions this error is exposed. Out of 30k logins this error was present 160 times during the course of a day. The result is a failed login where the users has to restart their browser to gain access to a shibboleth protected service.
In the thread linked below Scott indicated this can not be storage related. However, I have moved back to server-side storage and the error has been eliminated.
https://marc.info/?l=shibboleth-users&m=145409096929032&w=2
The text was updated successfully, but these errors were encountered: