Unexpected errors with HTTP Cookie Manager

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
13 messages Options
Reply | Threaded
Open this post in threaded view
|

Unexpected errors with HTTP Cookie Manager

Nuwan Galkissa Mudalige
Greetings !!

I'm in a process of building performance scripting for Pega 7.4 cloud application.

My script is getting failed if I use any cookie policies except "netscape" from the HTTP Cookie Manager. Though it works with "netscape" cookie policy Jmeter creates following error entries in the log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.

Is this something known product issue which can be planned to fix with later version OR if you have an alternative technical solution would be really helpful ?

This is the error log:

2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable to add the cookie
org.apache.http.cookie.MalformedCookieException: Invalid 'expires' attribute: Fri, 12 Jul 2019 14:20:28 GMT
                at org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHandler.java:64) ~[httpclient-4.5.7.jar:4.5.7]
                at org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:113) ~[httpclient-4.5.7.jar:4.5.7]
                at org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.java:134) ~[httpclient-4.5.7.jar:4.5.7]
                at org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFromHeader(HC4CookieHandler.java:125) [ApacheJMeter_http.jar:5.1.1 r1855137]
                at org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHeader(CookieManager.java:361) [ApacheJMeter_http.jar:5.1.1 r1855137]
                at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCookies(HTTPHC4Impl.java:1729) [ApacheJMeter_http.jar:5.1.1 r1855137]
                at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl.java:652) [ApacheJMeter_http.jar:5.1.1 r1855137]
                at org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSamplerProxy.java:67) [ApacheJMeter_http.jar:5.1.1 r1855137]
                at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1231) [ApacheJMeter_http.jar:5.1.1 r1855137]
                at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1220) [ApacheJMeter_http.jar:5.1.1 r1855137]
                at org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:622) [ApacheJMeter_core.jar:5.1.1 r1855137]
                at org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThread.java:546) [ApacheJMeter_core.jar:5.1.1 r1855137]
                at org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.java:486) [ApacheJMeter_core.jar:5.1.1 r1855137]
                at org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253) [ApacheJMeter_core.jar:5.1.1 r1855137]
                at java.lang.Thread.run(Unknown Source) [?:1.8.0_211]



Regards,
Nuwan



________________________________

"Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

________________________________

This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

________________________________
Reply | Threaded
Open this post in threaded view
|

Re: Unexpected errors with HTTP Cookie Manager

Felix Schumacher

Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:
> Greetings !!
>
> I'm in a process of building performance scripting for Pega 7.4 cloud application.
>
> My script is getting failed if I use any cookie policies except "netscape" from the HTTP Cookie Manager. Though it works with "netscape" cookie policy Jmeter creates following error entries in the log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.
>
> Is this something known product issue which can be planned to fix with later version OR if you have an alternative technical solution would be really helpful ?

The stacktrace looks like you used the Netscape parser for the Cookie
Manager. That parser will not except cookies with an "expires" attribute.

Please post a minimal test that shows the problem, so that we can
reproduce it. You might want to have a look at
https://bz.apache.org/bugzilla/show_bug.cgi?id=63520 where suhail
reports problems parsing cookies, too. Attached to the bugzilla entry is
a small test plan, that shows that JMeter has no problem parsing the
sample AWS cookie that suhail gave us. You could try to change that
cookie with one of your problematic cookies.

In case you meant that the netscape parser doesn't work with the cookie,
but all others do: this is intended. In doubt, use the default cookie
parser.

Regards

 Felix

>
> This is the error log:
>
> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable to add the cookie
> org.apache.http.cookie.MalformedCookieException: Invalid 'expires' attribute: Fri, 12 Jul 2019 14:20:28 GMT
>                 at org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHandler.java:64) ~[httpclient-4.5.7.jar:4.5.7]
>                 at org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:113) ~[httpclient-4.5.7.jar:4.5.7]
>                 at org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.java:134) ~[httpclient-4.5.7.jar:4.5.7]
>                 at org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFromHeader(HC4CookieHandler.java:125) [ApacheJMeter_http.jar:5.1.1 r1855137]
>                 at org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHeader(CookieManager.java:361) [ApacheJMeter_http.jar:5.1.1 r1855137]
>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCookies(HTTPHC4Impl.java:1729) [ApacheJMeter_http.jar:5.1.1 r1855137]
>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl.java:652) [ApacheJMeter_http.jar:5.1.1 r1855137]
>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSamplerProxy.java:67) [ApacheJMeter_http.jar:5.1.1 r1855137]
>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1231) [ApacheJMeter_http.jar:5.1.1 r1855137]
>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1220) [ApacheJMeter_http.jar:5.1.1 r1855137]
>                 at org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:622) [ApacheJMeter_core.jar:5.1.1 r1855137]
>                 at org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThread.java:546) [ApacheJMeter_core.jar:5.1.1 r1855137]
>                 at org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.java:486) [ApacheJMeter_core.jar:5.1.1 r1855137]
>                 at org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253) [ApacheJMeter_core.jar:5.1.1 r1855137]
>                 at java.lang.Thread.run(Unknown Source) [?:1.8.0_211]
>
>
>
> Regards,
> Nuwan
>
>
>
> ________________________________
>
> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."
>
> ________________________________
>
> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.
>
> ________________________________
>

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

RE: Unexpected errors with HTTP Cookie Manager

Nuwan Galkissa Mudalige
Hi Felix,



Thanks for your response.



This is the response header I have seen on View results tree while using "Netscape" cookie policy and flow was going good. But as I stated (stacktrace below) its produced that error log.



HTTP/1.1 200 OK

Date: Mon, 08 Jul 2019 15:11:54 GMT

Content-Type: text/html;charset=UTF-8

Transfer-Encoding: chunked

Connection: keep-alive

Set-Cookie: AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx8oh44Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c; Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/

Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374; Path=/prweb; Secure; HttpOnly

Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8; Version=1; Comment="PegaRULES session tracking"; Path=/prweb

Cache-Control: no-cache, no-store, must-revalidate

Pragma: no-cache

Expires: Thu, 01 Dec 1994 16:00:00 GMT

Server: server

Content-Encoding: gzip



While using "Standard" as cookie policy, script getting failed occurring 500 error with response header as below but no other errors produced in log.



HTTP/1.1 500 Internal Server Error

Date: Mon, 08 Jul 2019 15:14:06 GMT

Content-Type: text/html;charset=UTF-8

Content-Length: 3608

Connection: keep-alive

Set-Cookie: AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyLS+B5KTiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3; Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/

Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO; Version=1; Comment="PegaRULES session tracking"; Path=/prweb

X-Content-Security-Policy-Report-Only: base-uri *; child-src * data: blob: filesystem: mediastream:; form-action *; frame-ancestors *; connect-src * data: blob: filesystem: mediastream:; font-src * data: blob: filesystem: mediastream:; frame-src * data: blob: filesystem: mediastream:; img-src * data: blob: filesystem: mediastream:; media-src * data: blob: filesystem: mediastream:; object-src * data: blob: filesystem: mediastream:; script-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:; style-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;  default-src *; report-uri (URL)

X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob: filesystem: mediastream:; form-action *; frame-ancestors *; connect-src * data: blob: filesystem: mediastream:; font-src * data: blob: filesystem: mediastream:; frame-src * data: blob: filesystem: mediastream:; img-src * data: blob: filesystem: mediastream:; media-src * data: blob: filesystem: mediastream:; object-src * data: blob: filesystem: mediastream:; script-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:; style-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;  default-src *; report-uri (URL)

Content-Security-Policy-Report-Only: base-uri *; child-src * data: blob: filesystem: mediastream:; form-action *; frame-ancestors *; connect-src * data: blob: filesystem: mediastream:; font-src * data: blob: filesystem: mediastream:; frame-src * data: blob: filesystem: mediastream:; img-src * data: blob: filesystem: mediastream:; media-src * data: blob: filesystem: mediastream:; object-src * data: blob: filesystem: mediastream:; script-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:; style-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;  default-src *; report-uri (URL)

Cache-Control: max-age=0

Pragma: no-cache

Expires: Thu, 01 Dec 1994 16:00:00 GMT

Server: server





Regards,

Nuwan





-----Original Message-----
From: Felix Schumacher [mailto:[hidden email]]
Sent: Saturday, July 06, 2019 6:00 AM
To: [hidden email]
Subject: Re: Unexpected errors with HTTP Cookie Manager



External email: Exercise caution when opening attachments or clicking on links.



Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:

> Greetings !!

>

> I'm in a process of building performance scripting for Pega 7.4 cloud application.

>

> My script is getting failed if I use any cookie policies except "netscape" from the HTTP Cookie Manager. Though it works with "netscape" cookie policy Jmeter creates following error entries in the log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.

>

> Is this something known product issue which can be planned to fix with later version OR if you have an alternative technical solution would be really helpful ?



The stacktrace looks like you used the Netscape parser for the Cookie Manager. That parser will not except cookies with an "expires" attribute.



Please post a minimal test that shows the problem, so that we can reproduce it. You might want to have a look at

https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&data=02%7C01%7Cnmudalige%40virtusa.com%7Cfdde8751765c49282f6408d701f8c50e%7C0d85160c589944caacc8db1501b993b6%7C0%7C1%7C636980040294308505&sdata=sD1Ts5DT%2BSfZ27C48PaD9bpYECbX8uEyH%2FmD7tK6nvo%3D&reserved=0 where suhail reports problems parsing cookies, too. Attached to the bugzilla entry is a small test plan, that shows that JMeter has no problem parsing the sample AWS cookie that suhail gave us. You could try to change that cookie with one of your problematic cookies.



In case you meant that the netscape parser doesn't work with the cookie, but all others do: this is intended. In doubt, use the default cookie parser.



Regards



Felix



>

> This is the error log:

>

> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable to

> add the cookie

> org.apache.http.cookie.MalformedCookieException: Invalid 'expires' attribute: Fri, 12 Jul 2019 14:20:28 GMT

>                 at org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHandler.java:64) ~[httpclient-4.5.7.jar:4.5.7]

>                 at org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:113) ~[httpclient-4.5.7.jar:4.5.7]

>                 at org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.java:134) ~[httpclient-4.5.7.jar:4.5.7]

>                 at org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFromHeader(HC4CookieHandler.java:125) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHeader(CookieManager.java:361) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCookies(HTTPHC4Impl.java:1729) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl.java:652) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSamplerProxy.java:67) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1231) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1220) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:622) [ApacheJMeter_core.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThread.java:546) [ApacheJMeter_core.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.java:486) [ApacheJMeter_core.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253) [ApacheJMeter_core.jar:5.1.1 r1855137]

>                 at java.lang.Thread.run(Unknown Source) [?:1.8.0_211]

>

>

>

> Regards,

> Nuwan

>

>

>

> ________________________________

>

> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

>

> ________________________________

>

> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

>

> ________________________________

>



---------------------------------------------------------------------

To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

For additional commands, e-mail: [hidden email]<mailto:[hidden email]>




________________________________

"Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

________________________________

This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

________________________________
Reply | Threaded
Open this post in threaded view
|

RE: Unexpected errors with HTTP Cookie Manager

Nuwan Galkissa Mudalige
Hi Felix/Team,

I was trying to enabling "CookieManager.check.cookies=false" in jmeter.properties but still getting the same results. Do you need any other info ? Please help on this.


Regards,
Nuwan

From: Nuwan Galkissa Mudalige
Sent: Monday, July 08, 2019 11:30 AM
To: JMeter Users List
Subject: RE: Unexpected errors with HTTP Cookie Manager


Hi Felix,



Thanks for your response.



This is the response header I have seen on View results tree while using "Netscape" cookie policy and flow was going good. But as I stated (stacktrace below) its produced that error log.



HTTP/1.1 200 OK

Date: Mon, 08 Jul 2019 15:11:54 GMT

Content-Type: text/html;charset=UTF-8

Transfer-Encoding: chunked

Connection: keep-alive

Set-Cookie: AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx8oh44Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c; Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/

Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374; Path=/prweb; Secure; HttpOnly

Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8; Version=1; Comment="PegaRULES session tracking"; Path=/prweb

Cache-Control: no-cache, no-store, must-revalidate

Pragma: no-cache

Expires: Thu, 01 Dec 1994 16:00:00 GMT

Server: server

Content-Encoding: gzip



While using "Standard" as cookie policy, script getting failed occurring 500 error with response header as below but no other errors produced in log.



HTTP/1.1 500 Internal Server Error

Date: Mon, 08 Jul 2019 15:14:06 GMT

Content-Type: text/html;charset=UTF-8

Content-Length: 3608

Connection: keep-alive

Set-Cookie: AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyLS+B5KTiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3; Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/

Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO; Version=1; Comment="PegaRULES session tracking"; Path=/prweb

X-Content-Security-Policy-Report-Only: base-uri *; child-src * data: blob: filesystem: mediastream:; form-action *; frame-ancestors *; connect-src * data: blob: filesystem: mediastream:; font-src * data: blob: filesystem: mediastream:; frame-src * data: blob: filesystem: mediastream:; img-src * data: blob: filesystem: mediastream:; media-src * data: blob: filesystem: mediastream:; object-src * data: blob: filesystem: mediastream:; script-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:; style-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;  default-src *; report-uri (URL)

X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob: filesystem: mediastream:; form-action *; frame-ancestors *; connect-src * data: blob: filesystem: mediastream:; font-src * data: blob: filesystem: mediastream:; frame-src * data: blob: filesystem: mediastream:; img-src * data: blob: filesystem: mediastream:; media-src * data: blob: filesystem: mediastream:; object-src * data: blob: filesystem: mediastream:; script-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:; style-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;  default-src *; report-uri (URL)

Content-Security-Policy-Report-Only: base-uri *; child-src * data: blob: filesystem: mediastream:; form-action *; frame-ancestors *; connect-src * data: blob: filesystem: mediastream:; font-src * data: blob: filesystem: mediastream:; frame-src * data: blob: filesystem: mediastream:; img-src * data: blob: filesystem: mediastream:; media-src * data: blob: filesystem: mediastream:; object-src * data: blob: filesystem: mediastream:; script-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:; style-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;  default-src *; report-uri (URL)

Cache-Control: max-age=0

Pragma: no-cache

Expires: Thu, 01 Dec 1994 16:00:00 GMT

Server: server





Regards,

Nuwan





-----Original Message-----
From: Felix Schumacher [mailto:[hidden email]]
Sent: Saturday, July 06, 2019 6:00 AM
To: [hidden email]<mailto:[hidden email]>
Subject: Re: Unexpected errors with HTTP Cookie Manager



External email: Exercise caution when opening attachments or clicking on links.



Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:

> Greetings !!

>

> I'm in a process of building performance scripting for Pega 7.4 cloud application.

>

> My script is getting failed if I use any cookie policies except "netscape" from the HTTP Cookie Manager. Though it works with "netscape" cookie policy Jmeter creates following error entries in the log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.

>

> Is this something known product issue which can be planned to fix with later version OR if you have an alternative technical solution would be really helpful ?



The stacktrace looks like you used the Netscape parser for the Cookie Manager. That parser will not except cookies with an "expires" attribute.



Please post a minimal test that shows the problem, so that we can reproduce it. You might want to have a look at

https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&amp;data=02%7C01%7Cnmudalige%40virtusa.com%7Cfdde8751765c49282f6408d701f8c50e%7C0d85160c589944caacc8db1501b993b6%7C0%7C1%7C636980040294308505&amp;sdata=sD1Ts5DT%2BSfZ27C48PaD9bpYECbX8uEyH%2FmD7tK6nvo%3D&amp;reserved=0 where suhail reports problems parsing cookies, too. Attached to the bugzilla entry is a small test plan, that shows that JMeter has no problem parsing the sample AWS cookie that suhail gave us. You could try to change that cookie with one of your problematic cookies.



In case you meant that the netscape parser doesn't work with the cookie, but all others do: this is intended. In doubt, use the default cookie parser.



Regards



Felix



>

> This is the error log:

>

> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable to

> add the cookie

> org.apache.http.cookie.MalformedCookieException: Invalid 'expires' attribute: Fri, 12 Jul 2019 14:20:28 GMT

>                 at org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHandler.java:64) ~[httpclient-4.5.7.jar:4.5.7]

>                 at org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:113) ~[httpclient-4.5.7.jar:4.5.7]

>                 at org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.java:134) ~[httpclient-4.5.7.jar:4.5.7]

>                 at org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFromHeader(HC4CookieHandler.java:125) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHeader(CookieManager.java:361) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCookies(HTTPHC4Impl.java:1729) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl.java:652) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSamplerProxy.java:67) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1231) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1220) [ApacheJMeter_http.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:622) [ApacheJMeter_core.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThread.java:546) [ApacheJMeter_core.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.java:486) [ApacheJMeter_core.jar:5.1.1 r1855137]

>                 at org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253) [ApacheJMeter_core.jar:5.1.1 r1855137]

>                 at java.lang.Thread.run(Unknown Source) [?:1.8.0_211]

>

>

>

> Regards,

> Nuwan

>

>

>

> ________________________________

>

> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

>

> ________________________________

>

> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

>

> ________________________________

>



---------------------------------------------------------------------

To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

For additional commands, e-mail: [hidden email]<mailto:[hidden email]>




________________________________

"Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

________________________________

This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

________________________________
Reply | Threaded
Open this post in threaded view
|

Re: Unexpected errors with HTTP Cookie Manager

Felix Schumacher
In reply to this post by Nuwan Galkissa Mudalige

Am 08.07.19 um 17:30 schrieb Nuwan Galkissa Mudalige:

> Hi Felix,
>
>
>
> Thanks for your response.
>
>
>
> This is the response header I have seen on View results tree while using "Netscape" cookie policy and flow was going good. But as I stated (stacktrace below) its produced that error log.
>
>
>
> HTTP/1.1 200 OK
>
> Date: Mon, 08 Jul 2019 15:11:54 GMT
>
> Content-Type: text/html;charset=UTF-8
>
> Transfer-Encoding: chunked
>
> Connection: keep-alive
>
> Set-Cookie: AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx8oh44Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c; Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/
>
> Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374; Path=/prweb; Secure; HttpOnly
>
> Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8; Version=1; Comment="PegaRULES session tracking"; Path=/prweb
>
> Cache-Control: no-cache, no-store, must-revalidate
>
> Pragma: no-cache
>
> Expires: Thu, 01 Dec 1994 16:00:00 GMT
>
> Server: server
>
> Content-Encoding: gzip
>
>
>
> While using "Standard" as cookie policy, script getting failed occurring 500 error with response header as below but no other errors produced in log.
>
>
>
> HTTP/1.1 500 Internal Server Error
>
> Date: Mon, 08 Jul 2019 15:14:06 GMT
>
> Content-Type: text/html;charset=UTF-8
>
> Content-Length: 3608
>
> Connection: keep-alive
>
> Set-Cookie: AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyLS+B5KTiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3; Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/
>
> Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO; Version=1; Comment="PegaRULES session tracking"; Path=/prweb
>
> X-Content-Security-Policy-Report-Only: base-uri *; child-src * data: blob: filesystem: mediastream:; form-action *; frame-ancestors *; connect-src * data: blob: filesystem: mediastream:; font-src * data: blob: filesystem: mediastream:; frame-src * data: blob: filesystem: mediastream:; img-src * data: blob: filesystem: mediastream:; media-src * data: blob: filesystem: mediastream:; object-src * data: blob: filesystem: mediastream:; script-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:; style-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;  default-src *; report-uri (URL)
>
> X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob: filesystem: mediastream:; form-action *; frame-ancestors *; connect-src * data: blob: filesystem: mediastream:; font-src * data: blob: filesystem: mediastream:; frame-src * data: blob: filesystem: mediastream:; img-src * data: blob: filesystem: mediastream:; media-src * data: blob: filesystem: mediastream:; object-src * data: blob: filesystem: mediastream:; script-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:; style-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;  default-src *; report-uri (URL)
>
> Content-Security-Policy-Report-Only: base-uri *; child-src * data: blob: filesystem: mediastream:; form-action *; frame-ancestors *; connect-src * data: blob: filesystem: mediastream:; font-src * data: blob: filesystem: mediastream:; frame-src * data: blob: filesystem: mediastream:; img-src * data: blob: filesystem: mediastream:; media-src * data: blob: filesystem: mediastream:; object-src * data: blob: filesystem: mediastream:; script-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:; style-src * 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;  default-src *; report-uri (URL)
>
> Cache-Control: max-age=0
>
> Pragma: no-cache
>
> Expires: Thu, 01 Dec 1994 16:00:00 GMT
>
> Server: server
>
As stated before. A minimal test plan to reproduce would really help.

Apart from that. A status code of 500 means that the server couldn't
cope in what ever form and throws an error. The parsing of the cookie
(we get a set-cookie header) happens after the servers response. So it
would probably be better to look at what you send to the server instead
of looking at what you receive.

Felix

>
>
>
> Regards,
>
> Nuwan
>
>
>
>
>
> -----Original Message-----
> From: Felix Schumacher [mailto:[hidden email]]
> Sent: Saturday, July 06, 2019 6:00 AM
> To: [hidden email]
> Subject: Re: Unexpected errors with HTTP Cookie Manager
>
>
>
> External email: Exercise caution when opening attachments or clicking on links.
>
>
>
> Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:
>
>> Greetings !!
>> I'm in a process of building performance scripting for Pega 7.4 cloud application.
>> My script is getting failed if I use any cookie policies except "netscape" from the HTTP Cookie Manager. Though it works with "netscape" cookie policy Jmeter creates following error entries in the log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.
>> Is this something known product issue which can be planned to fix with later version OR if you have an alternative technical solution would be really helpful ?
>
>
> The stacktrace looks like you used the Netscape parser for the Cookie Manager. That parser will not except cookies with an "expires" attribute.
>
>
>
> Please post a minimal test that shows the problem, so that we can reproduce it. You might want to have a look at
>
> https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&amp;data=02%7C01%7Cnmudalige%40virtusa.com%7Cfdde8751765c49282f6408d701f8c50e%7C0d85160c589944caacc8db1501b993b6%7C0%7C1%7C636980040294308505&amp;sdata=sD1Ts5DT%2BSfZ27C48PaD9bpYECbX8uEyH%2FmD7tK6nvo%3D&amp;reserved=0 where suhail reports problems parsing cookies, too. Attached to the bugzilla entry is a small test plan, that shows that JMeter has no problem parsing the sample AWS cookie that suhail gave us. You could try to change that cookie with one of your problematic cookies.
>
>
>
> In case you meant that the netscape parser doesn't work with the cookie, but all others do: this is intended. In doubt, use the default cookie parser.
>
>
>
> Regards
>
>
>
> Felix
>
>
>
>> This is the error log:
>> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable to
>> add the cookie
>> org.apache.http.cookie.MalformedCookieException: Invalid 'expires' attribute: Fri, 12 Jul 2019 14:20:28 GMT
>>                 at org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHandler.java:64) ~[httpclient-4.5.7.jar:4.5.7]
>>                 at org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:113) ~[httpclient-4.5.7.jar:4.5.7]
>>                 at org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.java:134) ~[httpclient-4.5.7.jar:4.5.7]
>>                 at org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFromHeader(HC4CookieHandler.java:125) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>                 at org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHeader(CookieManager.java:361) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCookies(HTTPHC4Impl.java:1729) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl.java:652) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSamplerProxy.java:67) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1231) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1220) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>                 at org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:622) [ApacheJMeter_core.jar:5.1.1 r1855137]
>>                 at org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThread.java:546) [ApacheJMeter_core.jar:5.1.1 r1855137]
>>                 at org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.java:486) [ApacheJMeter_core.jar:5.1.1 r1855137]
>>                 at org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253) [ApacheJMeter_core.jar:5.1.1 r1855137]
>>                 at java.lang.Thread.run(Unknown Source) [?:1.8.0_211]
>> Regards,
>> Nuwan
>> ________________________________
>> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."
>> ________________________________
>> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.
>> ________________________________
>
>
> ---------------------------------------------------------------------
>
> To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>
>
> For additional commands, e-mail: [hidden email]<mailto:[hidden email]>
>
>
>
>
> ________________________________
>
> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."
>
> ________________________________
>
> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.
>
> ________________________________
>

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: Unexpected errors with HTTP Cookie Manager

Felix Schumacher

Am 10.07.19 um 21:45 schrieb Nuwan Galkissa Mudalige:
> Hello Felix,
>
> Can you suggest me something I need to put on the Cookie Manager with a policy ? sharing a sample test plan is very difficult due security policies and it is the place where user is logging.

I would have a look at the request headers instead of the response
headers and see, whether there are any differences. Maybe you could post
those (redacted when there are private details like credentials).

The cookie manager is probably best when used in default mode.

Have a look at the server and watch out for error messages that are
shown/logged when rendering the "500" error pages.

Felix

>
> Please help.
>
> Regards,
> Nuwan
>
>
> -----Original Message-----
> From: Felix Schumacher [mailto:[hidden email]]
> Sent: Wednesday, July 10, 2019 3:33 PM
> To: [hidden email]
> Subject: Re: Unexpected errors with HTTP Cookie Manager
>
> External email: Exercise caution when opening attachments or clicking on links.
>
> Am 08.07.19 um 17:30 schrieb Nuwan Galkissa Mudalige:
>> Hi Felix,
>>
>>
>>
>> Thanks for your response.
>>
>>
>>
>> This is the response header I have seen on View results tree while using "Netscape" cookie policy and flow was going good. But as I stated (stacktrace below) its produced that error log.
>>
>>
>>
>> HTTP/1.1 200 OK
>>
>> Date: Mon, 08 Jul 2019 15:11:54 GMT
>>
>> Content-Type: text/html;charset=UTF-8
>>
>> Transfer-Encoding: chunked
>>
>> Connection: keep-alive
>>
>> Set-Cookie:
>> AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx8oh44
>> Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c;
>> Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/
>>
>> Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374; Path=/prweb;
>> Secure; HttpOnly
>>
>> Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8; Version=1;
>> Comment="PegaRULES session tracking"; Path=/prweb
>>
>> Cache-Control: no-cache, no-store, must-revalidate
>>
>> Pragma: no-cache
>>
>> Expires: Thu, 01 Dec 1994 16:00:00 GMT
>>
>> Server: server
>>
>> Content-Encoding: gzip
>>
>>
>>
>> While using "Standard" as cookie policy, script getting failed occurring 500 error with response header as below but no other errors produced in log.
>>
>>
>>
>> HTTP/1.1 500 Internal Server Error
>>
>> Date: Mon, 08 Jul 2019 15:14:06 GMT
>>
>> Content-Type: text/html;charset=UTF-8
>>
>> Content-Length: 3608
>>
>> Connection: keep-alive
>>
>> Set-Cookie:
>> AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyLS+B5K
>> TiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3;
>> Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/
>>
>> Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO; Version=1;
>> Comment="PegaRULES session tracking"; Path=/prweb
>>
>> X-Content-Security-Policy-Report-Only: base-uri *; child-src * data:
>> blob: filesystem: mediastream:; form-action *; frame-ancestors *;
>> connect-src * data: blob: filesystem: mediastream:; font-src * data:
>> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:
>> mediastream:; img-src * data: blob: filesystem: mediastream:;
>> media-src * data: blob: filesystem: mediastream:; object-src * data:
>> blob: filesystem: mediastream:; script-src * 'unsafe-inline'
>> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *
>> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;
>> default-src *; report-uri (URL)
>>
>> X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob:
>> filesystem: mediastream:; form-action *; frame-ancestors *;
>> connect-src * data: blob: filesystem: mediastream:; font-src * data:
>> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:
>> mediastream:; img-src * data: blob: filesystem: mediastream:;
>> media-src * data: blob: filesystem: mediastream:; object-src * data:
>> blob: filesystem: mediastream:; script-src * 'unsafe-inline'
>> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *
>> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;
>> default-src *; report-uri (URL)
>>
>> Content-Security-Policy-Report-Only: base-uri *; child-src * data:
>> blob: filesystem: mediastream:; form-action *; frame-ancestors *;
>> connect-src * data: blob: filesystem: mediastream:; font-src * data:
>> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:
>> mediastream:; img-src * data: blob: filesystem: mediastream:;
>> media-src * data: blob: filesystem: mediastream:; object-src * data:
>> blob: filesystem: mediastream:; script-src * 'unsafe-inline'
>> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *
>> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;
>> default-src *; report-uri (URL)
>>
>> Cache-Control: max-age=0
>>
>> Pragma: no-cache
>>
>> Expires: Thu, 01 Dec 1994 16:00:00 GMT
>>
>> Server: server
>>
> As stated before. A minimal test plan to reproduce would really help.
>
> Apart from that. A status code of 500 means that the server couldn't cope in what ever form and throws an error. The parsing of the cookie (we get a set-cookie header) happens after the servers response. So it would probably be better to look at what you send to the server instead of looking at what you receive.
>
> Felix
>
>>
>>
>> Regards,
>>
>> Nuwan
>>
>>
>>
>>
>>
>> -----Original Message-----
>> From: Felix Schumacher [mailto:[hidden email]]
>> Sent: Saturday, July 06, 2019 6:00 AM
>> To: [hidden email]
>> Subject: Re: Unexpected errors with HTTP Cookie Manager
>>
>>
>>
>> External email: Exercise caution when opening attachments or clicking on links.
>>
>>
>>
>> Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:
>>
>>> Greetings !!
>>> I'm in a process of building performance scripting for Pega 7.4 cloud application.
>>> My script is getting failed if I use any cookie policies except "netscape" from the HTTP Cookie Manager. Though it works with "netscape" cookie policy Jmeter creates following error entries in the log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.
>>> Is this something known product issue which can be planned to fix with later version OR if you have an alternative technical solution would be really helpful ?
>>
>> The stacktrace looks like you used the Netscape parser for the Cookie Manager. That parser will not except cookies with an "expires" attribute.
>>
>>
>>
>> Please post a minimal test that shows the problem, so that we can
>> reproduce it. You might want to have a look at
>>
>> https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&amp;data=02%7C01%7Cnmudalige%40virtusa.com%7C09e0637cc3184f96050408d7056d6984%7C0d85160c589944caacc8db1501b993b6%7C0%7C0%7C636983839801571369&amp;sdata=OSYsQEgx28xzPFtXhH9Je20TJADWoLMTEIgH%2BuAc%2FMA%3D&amp;reserved=0 where suhail reports problems parsing cookies, too. Attached to the bugzilla entry is a small test plan, that shows that JMeter has no problem parsing the sample AWS cookie that suhail gave us. You could try to change that cookie with one of your problematic cookies.
>>
>>
>>
>> In case you meant that the netscape parser doesn't work with the cookie, but all others do: this is intended. In doubt, use the default cookie parser.
>>
>>
>>
>> Regards
>>
>>
>>
>> Felix
>>
>>
>>
>>> This is the error log:
>>> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable to
>>> add the cookie
>>> org.apache.http.cookie.MalformedCookieException: Invalid 'expires' attribute: Fri, 12 Jul 2019 14:20:28 GMT
>>>                 at org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHandler.java:64) ~[httpclient-4.5.7.jar:4.5.7]
>>>                 at org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:113) ~[httpclient-4.5.7.jar:4.5.7]
>>>                 at org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.java:134) ~[httpclient-4.5.7.jar:4.5.7]
>>>                 at org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFromHeader(HC4CookieHandler.java:125) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>>                 at org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHeader(CookieManager.java:361) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCookies(HTTPHC4Impl.java:1729) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl.java:652) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSamplerProxy.java:67) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1231) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1220) [ApacheJMeter_http.jar:5.1.1 r1855137]
>>>                 at org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:622) [ApacheJMeter_core.jar:5.1.1 r1855137]
>>>                 at org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThread.java:546) [ApacheJMeter_core.jar:5.1.1 r1855137]
>>>                 at org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.java:486) [ApacheJMeter_core.jar:5.1.1 r1855137]
>>>                 at org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253) [ApacheJMeter_core.jar:5.1.1 r1855137]
>>>                 at java.lang.Thread.run(Unknown Source) [?:1.8.0_211]
>>> Regards, Nuwan ________________________________ "Virtusa has been
>>> recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."
>>> ________________________________
>>> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.
>>> ________________________________
>>
>> ---------------------------------------------------------------------
>>
>> To unsubscribe, e-mail:
>> [hidden email]<mailto:[hidden email]
>> he.org>
>>
>> For additional commands, e-mail:
>> [hidden email]<mailto:[hidden email]>
>>
>>
>>
>>
>> ________________________________
>>
>> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."
>>
>> ________________________________
>>
>> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.
>>
>> ________________________________
>>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
>
> ________________________________
>
> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group’s 2018 PEAK Matrix Service Provider of the Year™ awards; Named as an Outsourcing Leader and an All Star Company in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."
>
> ________________________________
>
> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.
>
> ________________________________

---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

RE: Unexpected errors with HTTP Cookie Manager

Nuwan Galkissa Mudalige
Hi Felix,



No errors were captured by server logs. The flow is working fine for manual user and when you use nestcape as a cookie policy.



Netscape header request:


Connection: keep-alive
Referer: https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
Accept-Language: en-US,en;q=0.9
Origin: https://{URL}<https://%7bURL%7d>
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Upgrade-Insecure-Requests: 1
Content-Type: application/x-www-form-urlencoded
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
Content-Length: 186
Host: {URL}





Standard header request:


Connection: keep-alive
Referer: https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
Accept-Language: en-US,en;q=0.9
Origin: https://{URL}<https://%7bURL%7d>
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Upgrade-Insecure-Requests: 1
Content-Type: application/x-www-form-urlencoded
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
Content-Length: 186
Host: {URL}



Default header request:


Connection: keep-alive
Referer: https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
Accept-Language: en-US,en;q=0.9
Origin: https://{URL}<https://%7bURL%7d>
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Upgrade-Insecure-Requests: 1
Content-Type: application/x-www-form-urlencoded
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
Content-Length: 186
Host: {URL}





Regards,

Nuwan



-----Original Message-----
From: Felix Schumacher [mailto:[hidden email]]
Sent: Wednesday, July 10, 2019 3:50 PM
To: [hidden email]
Subject: Re: Unexpected errors with HTTP Cookie Manager



External email: Exercise caution when opening attachments or clicking on links.



Am 10.07.19 um 21:45 schrieb Nuwan Galkissa Mudalige:

> Hello Felix,

>

> Can you suggest me something I need to put on the Cookie Manager with a policy ? sharing a sample test plan is very difficult due security policies and it is the place where user is logging.



I would have a look at the request headers instead of the response headers and see, whether there are any differences. Maybe you could post those (redacted when there are private details like credentials).



The cookie manager is probably best when used in default mode.



Have a look at the server and watch out for error messages that are shown/logged when rendering the "500" error pages.



Felix



>

> Please help.

>

> Regards,

> Nuwan

>

>

> -----Original Message-----

> From: Felix Schumacher [mailto:[hidden email]]

> Sent: Wednesday, July 10, 2019 3:33 PM

> To: [hidden email]<mailto:[hidden email]>

> Subject: Re: Unexpected errors with HTTP Cookie Manager

>

> External email: Exercise caution when opening attachments or clicking on links.

>

> Am 08.07.19 um 17:30 schrieb Nuwan Galkissa Mudalige:

>> Hi Felix,

>>

>>

>>

>> Thanks for your response.

>>

>>

>>

>> This is the response header I have seen on View results tree while using "Netscape" cookie policy and flow was going good. But as I stated (stacktrace below) its produced that error log.

>>

>>

>>

>> HTTP/1.1 200 OK

>>

>> Date: Mon, 08 Jul 2019 15:11:54 GMT

>>

>> Content-Type: text/html;charset=UTF-8

>>

>> Transfer-Encoding: chunked

>>

>> Connection: keep-alive

>>

>> Set-Cookie:

>> AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx8oh4

>> 4

>> Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c;

>> Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/

>>

>> Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374; Path=/prweb;

>> Secure; HttpOnly

>>

>> Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8; Version=1;

>> Comment="PegaRULES session tracking"; Path=/prweb

>>

>> Cache-Control: no-cache, no-store, must-revalidate

>>

>> Pragma: no-cache

>>

>> Expires: Thu, 01 Dec 1994 16:00:00 GMT

>>

>> Server: server

>>

>> Content-Encoding: gzip

>>

>>

>>

>> While using "Standard" as cookie policy, script getting failed occurring 500 error with response header as below but no other errors produced in log.

>>

>>

>>

>> HTTP/1.1 500 Internal Server Error

>>

>> Date: Mon, 08 Jul 2019 15:14:06 GMT

>>

>> Content-Type: text/html;charset=UTF-8

>>

>> Content-Length: 3608

>>

>> Connection: keep-alive

>>

>> Set-Cookie:

>> AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyLS+B5

>> K TiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3;

>> Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/

>>

>> Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO; Version=1;

>> Comment="PegaRULES session tracking"; Path=/prweb

>>

>> X-Content-Security-Policy-Report-Only: base-uri *; child-src * data:

>> blob: filesystem: mediastream:; form-action *; frame-ancestors *;

>> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>> mediastream:; img-src * data: blob: filesystem: mediastream:;

>> media-src * data: blob: filesystem: mediastream:; object-src * data:

>> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;

>> default-src *; report-uri (URL)

>>

>> X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob:

>> filesystem: mediastream:; form-action *; frame-ancestors *;

>> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>> mediastream:; img-src * data: blob: filesystem: mediastream:;

>> media-src * data: blob: filesystem: mediastream:; object-src * data:

>> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;

>> default-src *; report-uri (URL)

>>

>> Content-Security-Policy-Report-Only: base-uri *; child-src * data:

>> blob: filesystem: mediastream:; form-action *; frame-ancestors *;

>> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>> mediastream:; img-src * data: blob: filesystem: mediastream:;

>> media-src * data: blob: filesystem: mediastream:; object-src * data:

>> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;

>> default-src *; report-uri (URL)

>>

>> Cache-Control: max-age=0

>>

>> Pragma: no-cache

>>

>> Expires: Thu, 01 Dec 1994 16:00:00 GMT

>>

>> Server: server

>>

> As stated before. A minimal test plan to reproduce would really help.

>

> Apart from that. A status code of 500 means that the server couldn't cope in what ever form and throws an error. The parsing of the cookie (we get a set-cookie header) happens after the servers response. So it would probably be better to look at what you send to the server instead of looking at what you receive.

>

> Felix

>

>>

>>

>> Regards,

>>

>> Nuwan

>>

>>

>>

>>

>>

>> -----Original Message-----

>> From: Felix Schumacher [mailto:[hidden email]]

>> Sent: Saturday, July 06, 2019 6:00 AM

>> To: [hidden email]<mailto:[hidden email]>

>> Subject: Re: Unexpected errors with HTTP Cookie Manager

>>

>>

>>

>> External email: Exercise caution when opening attachments or clicking on links.

>>

>>

>>

>> Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:

>>

>>> Greetings !!

>>> I'm in a process of building performance scripting for Pega 7.4 cloud application.

>>> My script is getting failed if I use any cookie policies except "netscape" from the HTTP Cookie Manager. Though it works with "netscape" cookie policy Jmeter creates following error entries in the log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.

>>> Is this something known product issue which can be planned to fix with later version OR if you have an alternative technical solution would be really helpful ?

>>

>> The stacktrace looks like you used the Netscape parser for the Cookie Manager. That parser will not except cookies with an "expires" attribute.

>>

>>

>>

>> Please post a minimal test that shows the problem, so that we can

>> reproduce it. You might want to have a look at

>>

>> https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&amp;data=02%7C01%7Cnmudalige%40virtusa.com%7C5809d5cd4aa64d13b63608d7056fd8a1%7C0d85160c589944caacc8db1501b993b6%7C0%7C0%7C636983850258450470&amp;sdata=U%2FXpP00EYyM8wxp7SjFJ8xRDmRXwL3YvhNKYzoTOBbk%3D&amp;reserved=0 where suhail reports problems parsing cookies, too. Attached to the bugzilla entry is a small test plan, that shows that JMeter has no problem parsing the sample AWS cookie that suhail gave us. You could try to change that cookie with one of your problematic cookies.

>>

>>

>>

>> In case you meant that the netscape parser doesn't work with the cookie, but all others do: this is intended. In doubt, use the default cookie parser.

>>

>>

>>

>> Regards

>>

>>

>>

>> Felix

>>

>>

>>

>>> This is the error log:

>>> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable

>>> to add the cookie

>>> org.apache.http.cookie.MalformedCookieException: Invalid 'expires' attribute: Fri, 12 Jul 2019 14:20:28 GMT

>>>                 at org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHandler.java:64) ~[httpclient-4.5.7.jar:4.5.7]

>>>                 at org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:113) ~[httpclient-4.5.7.jar:4.5.7]

>>>                 at org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.java:134) ~[httpclient-4.5.7.jar:4.5.7]

>>>                 at org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFromHeader(HC4CookieHandler.java:125) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHeader(CookieManager.java:361) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCookies(HTTPHC4Impl.java:1729) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl.java:652) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSamplerProxy.java:67) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1231) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1220) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:622) [ApacheJMeter_core.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThread.java:546) [ApacheJMeter_core.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.java:486) [ApacheJMeter_core.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253) [ApacheJMeter_core.jar:5.1.1 r1855137]

>>>                 at java.lang.Thread.run(Unknown Source)

>>> [?:1.8.0_211] Regards, Nuwan ________________________________

>>> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

>>> ________________________________

>>> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

>>> ________________________________

>>

>> ---------------------------------------------------------------------

>>

>> To unsubscribe, e-mail:

>> [hidden email]<mailto:[hidden email]<mailto:[hidden email]%3cmailto:[hidden email]>

>> c

>> he.org>

>>

>> For additional commands, e-mail:

>> [hidden email]<mailto:[hidden email]<mailto:[hidden email]%3cmailto:[hidden email]>>

>>

>>

>>

>>

>> ________________________________

>>

>> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

>>

>> ________________________________

>>

>> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

>>

>> ________________________________

>>

> ---------------------------------------------------------------------

> To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

> For additional commands, e-mail: [hidden email]<mailto:[hidden email]>

>

>

> ________________________________

>

> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group’s 2018 PEAK Matrix Service Provider of the Year™ awards; Named as an Outsourcing Leader and an All Star Company in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

>

> ________________________________

>

> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

>

> ________________________________



---------------------------------------------------------------------

To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

For additional commands, e-mail: [hidden email]<mailto:[hidden email]>




________________________________

"Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group’s 2018 PEAK Matrix Service Provider of the Year™ awards; Named as an Outsourcing Leader and an All Star Company in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

________________________________

This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

________________________________
Reply | Threaded
Open this post in threaded view
|

RE: Unexpected errors with HTTP Cookie Manager

Nuwan Galkissa Mudalige
Hi Felix,

Did you get a chance to validate the given request headers ?

Regards,
Nuwan

From: Nuwan Galkissa Mudalige
Sent: Wednesday, July 10, 2019 6:04 PM
To: JMeter Users List
Subject: RE: Unexpected errors with HTTP Cookie Manager


Hi Felix,



No errors were captured by server logs. The flow is working fine for manual user and when you use nestcape as a cookie policy.



Netscape header request:


Connection: keep-alive
Referer: https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
Accept-Language: en-US,en;q=0.9
Origin: https://{URL}<https://%7bURL%7d>
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Upgrade-Insecure-Requests: 1
Content-Type: application/x-www-form-urlencoded
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
Content-Length: 186
Host: {URL}





Standard header request:


Connection: keep-alive
Referer: https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
Accept-Language: en-US,en;q=0.9
Origin: https://{URL}<https://%7bURL%7d>
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Upgrade-Insecure-Requests: 1
Content-Type: application/x-www-form-urlencoded
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
Content-Length: 186
Host: {URL}



Default header request:


Connection: keep-alive
Referer: https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
Accept-Language: en-US,en;q=0.9
Origin: https://{URL}<https://%7bURL%7d>
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
Upgrade-Insecure-Requests: 1
Content-Type: application/x-www-form-urlencoded
Cache-Control: max-age=0
Accept-Encoding: gzip, deflate, br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
Content-Length: 186
Host: {URL}





Regards,

Nuwan



-----Original Message-----
From: Felix Schumacher [mailto:[hidden email]]
Sent: Wednesday, July 10, 2019 3:50 PM
To: [hidden email]<mailto:[hidden email]>
Subject: Re: Unexpected errors with HTTP Cookie Manager



External email: Exercise caution when opening attachments or clicking on links.



Am 10.07.19 um 21:45 schrieb Nuwan Galkissa Mudalige:

> Hello Felix,

>

> Can you suggest me something I need to put on the Cookie Manager with a policy ? sharing a sample test plan is very difficult due security policies and it is the place where user is logging.



I would have a look at the request headers instead of the response headers and see, whether there are any differences. Maybe you could post those (redacted when there are private details like credentials).



The cookie manager is probably best when used in default mode.



Have a look at the server and watch out for error messages that are shown/logged when rendering the "500" error pages.



Felix



>

> Please help.

>

> Regards,

> Nuwan

>

>

> -----Original Message-----

> From: Felix Schumacher [mailto:[hidden email]]

> Sent: Wednesday, July 10, 2019 3:33 PM

> To: [hidden email]<mailto:[hidden email]>

> Subject: Re: Unexpected errors with HTTP Cookie Manager

>

> External email: Exercise caution when opening attachments or clicking on links.

>

> Am 08.07.19 um 17:30 schrieb Nuwan Galkissa Mudalige:

>> Hi Felix,

>>

>>

>>

>> Thanks for your response.

>>

>>

>>

>> This is the response header I have seen on View results tree while using "Netscape" cookie policy and flow was going good. But as I stated (stacktrace below) its produced that error log.

>>

>>

>>

>> HTTP/1.1 200 OK

>>

>> Date: Mon, 08 Jul 2019 15:11:54 GMT

>>

>> Content-Type: text/html;charset=UTF-8

>>

>> Transfer-Encoding: chunked

>>

>> Connection: keep-alive

>>

>> Set-Cookie:

>> AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx8oh4

>> 4

>> Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c;

>> Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/

>>

>> Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374; Path=/prweb;

>> Secure; HttpOnly

>>

>> Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8; Version=1;

>> Comment="PegaRULES session tracking"; Path=/prweb

>>

>> Cache-Control: no-cache, no-store, must-revalidate

>>

>> Pragma: no-cache

>>

>> Expires: Thu, 01 Dec 1994 16:00:00 GMT

>>

>> Server: server

>>

>> Content-Encoding: gzip

>>

>>

>>

>> While using "Standard" as cookie policy, script getting failed occurring 500 error with response header as below but no other errors produced in log.

>>

>>

>>

>> HTTP/1.1 500 Internal Server Error

>>

>> Date: Mon, 08 Jul 2019 15:14:06 GMT

>>

>> Content-Type: text/html;charset=UTF-8

>>

>> Content-Length: 3608

>>

>> Connection: keep-alive

>>

>> Set-Cookie:

>> AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyLS+B5

>> K TiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3;

>> Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/

>>

>> Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO; Version=1;

>> Comment="PegaRULES session tracking"; Path=/prweb

>>

>> X-Content-Security-Policy-Report-Only: base-uri *; child-src * data:

>> blob: filesystem: mediastream:; form-action *; frame-ancestors *;

>> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>> mediastream:; img-src * data: blob: filesystem: mediastream:;

>> media-src * data: blob: filesystem: mediastream:; object-src * data:

>> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;

>> default-src *; report-uri (URL)

>>

>> X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob:

>> filesystem: mediastream:; form-action *; frame-ancestors *;

>> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>> mediastream:; img-src * data: blob: filesystem: mediastream:;

>> media-src * data: blob: filesystem: mediastream:; object-src * data:

>> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;

>> default-src *; report-uri (URL)

>>

>> Content-Security-Policy-Report-Only: base-uri *; child-src * data:

>> blob: filesystem: mediastream:; form-action *; frame-ancestors *;

>> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>> mediastream:; img-src * data: blob: filesystem: mediastream:;

>> media-src * data: blob: filesystem: mediastream:; object-src * data:

>> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;

>> default-src *; report-uri (URL)

>>

>> Cache-Control: max-age=0

>>

>> Pragma: no-cache

>>

>> Expires: Thu, 01 Dec 1994 16:00:00 GMT

>>

>> Server: server

>>

> As stated before. A minimal test plan to reproduce would really help.

>

> Apart from that. A status code of 500 means that the server couldn't cope in what ever form and throws an error. The parsing of the cookie (we get a set-cookie header) happens after the servers response. So it would probably be better to look at what you send to the server instead of looking at what you receive.

>

> Felix

>

>>

>>

>> Regards,

>>

>> Nuwan

>>

>>

>>

>>

>>

>> -----Original Message-----

>> From: Felix Schumacher [mailto:[hidden email]]

>> Sent: Saturday, July 06, 2019 6:00 AM

>> To: [hidden email]<mailto:[hidden email]>

>> Subject: Re: Unexpected errors with HTTP Cookie Manager

>>

>>

>>

>> External email: Exercise caution when opening attachments or clicking on links.

>>

>>

>>

>> Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:

>>

>>> Greetings !!

>>> I'm in a process of building performance scripting for Pega 7.4 cloud application.

>>> My script is getting failed if I use any cookie policies except "netscape" from the HTTP Cookie Manager. Though it works with "netscape" cookie policy Jmeter creates following error entries in the log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.

>>> Is this something known product issue which can be planned to fix with later version OR if you have an alternative technical solution would be really helpful ?

>>

>> The stacktrace looks like you used the Netscape parser for the Cookie Manager. That parser will not except cookies with an "expires" attribute.

>>

>>

>>

>> Please post a minimal test that shows the problem, so that we can

>> reproduce it. You might want to have a look at

>>

>> https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&amp;data=02%7C01%7Cnmudalige%40virtusa.com%7C5809d5cd4aa64d13b63608d7056fd8a1%7C0d85160c589944caacc8db1501b993b6%7C0%7C0%7C636983850258450470&amp;sdata=U%2FXpP00EYyM8wxp7SjFJ8xRDmRXwL3YvhNKYzoTOBbk%3D&amp;reserved=0 where suhail reports problems parsing cookies, too. Attached to the bugzilla entry is a small test plan, that shows that JMeter has no problem parsing the sample AWS cookie that suhail gave us. You could try to change that cookie with one of your problematic cookies.

>>

>>

>>

>> In case you meant that the netscape parser doesn't work with the cookie, but all others do: this is intended. In doubt, use the default cookie parser.

>>

>>

>>

>> Regards

>>

>>

>>

>> Felix

>>

>>

>>

>>> This is the error log:

>>> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable

>>> to add the cookie

>>> org.apache.http.cookie.MalformedCookieException: Invalid 'expires' attribute: Fri, 12 Jul 2019 14:20:28 GMT

>>>                 at org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHandler.java:64) ~[httpclient-4.5.7.jar:4.5.7]

>>>                 at org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:113) ~[httpclient-4.5.7.jar:4.5.7]

>>>                 at org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.java:134) ~[httpclient-4.5.7.jar:4.5.7]

>>>                 at org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFromHeader(HC4CookieHandler.java:125) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHeader(CookieManager.java:361) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCookies(HTTPHC4Impl.java:1729) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl.java:652) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSamplerProxy.java:67) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1231) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1220) [ApacheJMeter_http.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:622) [ApacheJMeter_core.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThread.java:546) [ApacheJMeter_core.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.java:486) [ApacheJMeter_core.jar:5.1.1 r1855137]

>>>                 at org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253) [ApacheJMeter_core.jar:5.1.1 r1855137]

>>>                 at java.lang.Thread.run(Unknown Source)

>>> [?:1.8.0_211] Regards, Nuwan ________________________________

>>> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

>>> ________________________________

>>> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

>>> ________________________________

>>

>> ---------------------------------------------------------------------

>>

>> To unsubscribe, e-mail:

>> [hidden email]<mailto:[hidden email]<mailto:[hidden email]%3cmailto:[hidden email]>

>> c

>> he.org>

>>

>> For additional commands, e-mail:

>> [hidden email]<mailto:[hidden email]<mailto:[hidden email]%3cmailto:[hidden email]>>

>>

>>

>>

>>

>> ________________________________

>>

>> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group's 2018 PEAK Matrix Service Provider of the Year(tm) awards; Named as an Outsourcing Leader and an All Star Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

>>

>> ________________________________

>>

>> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

>>

>> ________________________________

>>

> ---------------------------------------------------------------------

> To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

> For additional commands, e-mail: [hidden email]<mailto:[hidden email]>

>

>

> ________________________________

>

> "Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group’s 2018 PEAK Matrix Service Provider of the Year™ awards; Named as an Outsourcing Leader and an All Star Company in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

>

> ________________________________

>

> This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

>

> ________________________________



---------------------------------------------------------------------

To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

For additional commands, e-mail: [hidden email]<mailto:[hidden email]>




________________________________

"Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group’s 2018 PEAK Matrix Service Provider of the Year™ awards; Named as an Outsourcing Leader and an All Star Company in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

________________________________

This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

________________________________
Reply | Threaded
Open this post in threaded view
|

Re: Unexpected errors with HTTP Cookie Manager

Felix Schumacher

Am 16.07.19 um 17:42 schrieb Nuwan Galkissa Mudalige:
>
> Hi Felix,
>
>  
>
> Did you get a chance to validate the given request headers ?
>

The headers look the same to me. Have you looked at the other tab on the
request? Cookies are displayed on the "request body" tab.

Are there any differences?

Felix

>  
>
> Regards,
>
> Nuwan
>
>  
>
> *From:* Nuwan Galkissa Mudalige
> *Sent:* Wednesday, July 10, 2019 6:04 PM
> *To:* JMeter Users List
> *Subject:* RE: Unexpected errors with HTTP Cookie Manager
>
>  
>
> Hi Felix,
>
>  
>
> No errors were captured by server logs. The flow is working fine for
> manual user and when you use nestcape as a cookie policy.
>
>  
>
> *Netscape header request:*
>
>  
>
> Connection: keep-alive
>
> Referer:
> https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD
> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
>
> Accept-Language: en-US,en;q=0.9
>
> Origin: https://{URL} <https://%7bURL%7d>
>
> Accept:
> text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
>
> Upgrade-Insecure-Requests: 1
>
> Content-Type: application/x-www-form-urlencoded
>
> Cache-Control: max-age=0
>
> Accept-Encoding: gzip, deflate, br
>
> User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
> AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
>
> Content-Length: 186
>
> Host: {URL}
>
>  
>
>  
>
> *Standard header request:*
>
>  
>
> Connection: keep-alive
>
> Referer:
> https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD
> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
>
> Accept-Language: en-US,en;q=0.9
>
> Origin: https://{URL} <https://%7bURL%7d>
>
> Accept:
> text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
>
> Upgrade-Insecure-Requests: 1
>
> Content-Type: application/x-www-form-urlencoded
>
> Cache-Control: max-age=0
>
> Accept-Encoding: gzip, deflate, br
>
> User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
> AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
>
> Content-Length: 186
>
> Host: {URL}
>
>  
>
> *Default header request:*
>
>  
>
> Connection: keep-alive
>
> Referer:
> https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD
> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
>
> Accept-Language: en-US,en;q=0.9
>
> Origin: https://{URL} <https://%7bURL%7d>
>
> Accept:
> text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3
>
> Upgrade-Insecure-Requests: 1
>
> Content-Type: application/x-www-form-urlencoded
>
> Cache-Control: max-age=0
>
> Accept-Encoding: gzip, deflate, br
>
> User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
> AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100 Safari/537.36
>
> Content-Length: 186
>
> Host: {URL}
>
>  
>
>  
>
> Regards,
>
> Nuwan
>
>  
>
> -----Original Message-----
> From: Felix Schumacher [mailto:[hidden email]]
> Sent: Wednesday, July 10, 2019 3:50 PM
> To: [hidden email] <mailto:[hidden email]>
> Subject: Re: Unexpected errors with HTTP Cookie Manager
>
>  
>
> External email: Exercise caution when opening attachments or clicking
> on links.
>
>  
>
> Am 10.07.19 um 21:45 schrieb Nuwan Galkissa Mudalige:
>
> > Hello Felix,
>
> > 
>
> > Can you suggest me something I need to put on the Cookie Manager
> with a policy ? sharing a sample test plan is very difficult due
> security policies and it is the place where user is logging.
>
>  
>
> I would have a look at the request headers instead of the response
> headers and see, whether there are any differences. Maybe you could
> post those (redacted when there are private details like credentials).
>
>  
>
> The cookie manager is probably best when used in default mode.
>
>  
>
> Have a look at the server and watch out for error messages that are
> shown/logged when rendering the "500" error pages.
>
>  
>
> Felix
>
>  
>
> > 
>
> > Please help.
>
> > 
>
> > Regards,
>
> > Nuwan
>
> > 
>
> > 
>
> > -----Original Message-----
>
> > From: Felix Schumacher [mailto:[hidden email]]
>
> > Sent: Wednesday, July 10, 2019 3:33 PM
>
> > To: [hidden email] <mailto:[hidden email]>
>
> > Subject: Re: Unexpected errors with HTTP Cookie Manager
>
> > 
>
> > External email: Exercise caution when opening attachments or
> clicking on links.
>
> > 
>
> > Am 08.07.19 um 17:30 schrieb Nuwan Galkissa Mudalige:
>
> >> Hi Felix,
>
> >> 
>
> >> 
>
> >> 
>
> >> Thanks for your response.
>
> >> 
>
> >> 
>
> >> 
>
> >> This is the response header I have seen on View results tree while
> using "Netscape" cookie policy and flow was going good. But as I
> stated (stacktrace below) its produced that error log.
>
> >> 
>
> >> 
>
> >> 
>
> >> HTTP/1.1 200 OK
>
> >> 
>
> >> Date: Mon, 08 Jul 2019 15:11:54 GMT
>
> >> 
>
> >> Content-Type: text/html;charset=UTF-8
>
> >> 
>
> >> Transfer-Encoding: chunked
>
> >> 
>
> >> Connection: keep-alive
>
> >> 
>
> >> Set-Cookie:
>
> >> AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx8oh4
>
> >> 4
>
> >> Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c;
>
> >> Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/
>
> >> 
>
> >> Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374; Path=/prweb;
>
> >> Secure; HttpOnly
>
> >> 
>
> >> Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8; Version=1;
>
> >> Comment="PegaRULES session tracking"; Path=/prweb
>
> >> 
>
> >> Cache-Control: no-cache, no-store, must-revalidate
>
> >> 
>
> >> Pragma: no-cache
>
> >> 
>
> >> Expires: Thu, 01 Dec 1994 16:00:00 GMT
>
> >> 
>
> >> Server: server
>
> >> 
>
> >> Content-Encoding: gzip
>
> >> 
>
> >> 
>
> >> 
>
> >> While using "Standard" as cookie policy, script getting failed
> occurring 500 error with response header as below but no other errors
> produced in log.
>
> >> 
>
> >> 
>
> >> 
>
> >> HTTP/1.1 500 Internal Server Error
>
> >> 
>
> >> Date: Mon, 08 Jul 2019 15:14:06 GMT
>
> >> 
>
> >> Content-Type: text/html;charset=UTF-8
>
> >> 
>
> >> Content-Length: 3608
>
> >> 
>
> >> Connection: keep-alive
>
> >> 
>
> >> Set-Cookie:
>
> >> AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyLS+B5
>
> >> K TiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3;
>
> >> Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/
>
> >> 
>
> >> Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO; Version=1;
>
> >> Comment="PegaRULES session tracking"; Path=/prweb
>
> >> 
>
> >> X-Content-Security-Policy-Report-Only: base-uri *; child-src * data:
>
> >> blob: filesystem: mediastream:; form-action *; frame-ancestors *;
>
> >> connect-src * data: blob: filesystem: mediastream:; font-src * data:
>
> >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:
>
> >> mediastream:; img-src * data: blob: filesystem: mediastream:;
>
> >> media-src * data: blob: filesystem: mediastream:; object-src * data:
>
> >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'
>
> >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *
>
> >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;
>
> >> default-src *; report-uri (URL)
>
> >> 
>
> >> X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob:
>
> >> filesystem: mediastream:; form-action *; frame-ancestors *;
>
> >> connect-src * data: blob: filesystem: mediastream:; font-src * data:
>
> >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:
>
> >> mediastream:; img-src * data: blob: filesystem: mediastream:;
>
> >> media-src * data: blob: filesystem: mediastream:; object-src * data:
>
> >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'
>
> >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *
>
> >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;
>
> >> default-src *; report-uri (URL)
>
> >> 
>
> >> Content-Security-Policy-Report-Only: base-uri *; child-src * data:
>
> >> blob: filesystem: mediastream:; form-action *; frame-ancestors *;
>
> >> connect-src * data: blob: filesystem: mediastream:; font-src * data:
>
> >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:
>
> >> mediastream:; img-src * data: blob: filesystem: mediastream:;
>
> >> media-src * data: blob: filesystem: mediastream:; object-src * data:
>
> >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'
>
> >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *
>
> >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;
>
> >> default-src *; report-uri (URL)
>
> >> 
>
> >> Cache-Control: max-age=0
>
> >> 
>
> >> Pragma: no-cache
>
> >> 
>
> >> Expires: Thu, 01 Dec 1994 16:00:00 GMT
>
> >> 
>
> >> Server: server
>
> >> 
>
> > As stated before. A minimal test plan to reproduce would really help.
>
> > 
>
> > Apart from that. A status code of 500 means that the server couldn't
> cope in what ever form and throws an error. The parsing of the cookie
> (we get a set-cookie header) happens after the servers response. So it
> would probably be better to look at what you send to the server
> instead of looking at what you receive.
>
> > 
>
> > Felix
>
> > 
>
> >> 
>
> >> 
>
> >> Regards,
>
> >> 
>
> >> Nuwan
>
> >> 
>
> >> 
>
> >> 
>
> >> 
>
> >> 
>
> >> -----Original Message-----
>
> >> From: Felix Schumacher [mailto:[hidden email]]
>
> >> Sent: Saturday, July 06, 2019 6:00 AM
>
> >> To: [hidden email] <mailto:[hidden email]>
>
> >> Subject: Re: Unexpected errors with HTTP Cookie Manager
>
> >> 
>
> >> 
>
> >> 
>
> >> External email: Exercise caution when opening attachments or
> clicking on links.
>
> >> 
>
> >> 
>
> >> 
>
> >> Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:
>
> >> 
>
> >>> Greetings !!
>
> >>> I'm in a process of building performance scripting for Pega 7.4
> cloud application.
>
> >>> My script is getting failed if I use any cookie policies except
> "netscape" from the HTTP Cookie Manager. Though it works with
> "netscape" cookie policy Jmeter creates following error entries in the
> log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.
>
> >>> Is this something known product issue which can be planned to fix
> with later version OR if you have an alternative technical solution
> would be really helpful ?
>
> >> 
>
> >> The stacktrace looks like you used the Netscape parser for the
> Cookie Manager. That parser will not except cookies with an "expires"
> attribute.
>
> >> 
>
> >> 
>
> >> 
>
> >> Please post a minimal test that shows the problem, so that we can
>
> >> reproduce it. You might want to have a look at
>
> >> 
>
> >>
> https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&amp;data=02%7C01%7Cnmudalige%40virtusa.com%7C5809d5cd4aa64d13b63608d7056fd8a1%7C0d85160c589944caacc8db1501b993b6%7C0%7C0%7C636983850258450470&amp;sdata=U%2FXpP00EYyM8wxp7SjFJ8xRDmRXwL3YvhNKYzoTOBbk%3D&amp;reserved=0
> where suhail reports problems parsing cookies, too. Attached to the
> bugzilla entry is a small test plan, that shows that JMeter has no
> problem parsing the sample AWS cookie that suhail gave us. You could
> try to change that cookie with one of your problematic cookies.
>
> >> 
>
> >> 
>
> >> 
>
> >> In case you meant that the netscape parser doesn't work with the
> cookie, but all others do: this is intended. In doubt, use the default
> cookie parser.
>
> >> 
>
> >> 
>
> >> 
>
> >> Regards
>
> >> 
>
> >> 
>
> >> 
>
> >> Felix
>
> >> 
>
> >> 
>
> >> 
>
> >>> This is the error log:
>
> >>> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable
>
> >>> to add the cookie
>
> >>> org.apache.http.cookie.MalformedCookieException: Invalid 'expires'
> attribute: Fri, 12 Jul 2019 14:20:28 GMT
>
> >>>                 at
> org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHandler.java:64)
> ~[httpclient-4.5.7.jar:4.5.7]
>
> >>>                 at
> org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:113)
> ~[httpclient-4.5.7.jar:4.5.7]
>
> >>>                 at
> org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.java:134)
> ~[httpclient-4.5.7.jar:4.5.7]
>
> >>>                 at
> org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFromHeader(HC4CookieHandler.java:125)
> [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> >>>                 at
> org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHeader(CookieManager.java:361)
> [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> >>>                 at
> org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCookies(HTTPHC4Impl.java:1729)
> [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> >>>                 at
> org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl.java:652)
> [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> >>>                 at
> org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSamplerProxy.java:67)
> [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> >>>                 at
> org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1231)
> [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> >>>                 at
> org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSamplerBase.java:1220)
> [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> >>>                 at
> org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:622)
> [ApacheJMeter_core.jar:5.1.1 r1855137]
>
> >>>                 at
> org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThread.java:546)
> [ApacheJMeter_core.jar:5.1.1 r1855137]
>
> >>>                 at
> org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.java:486)
> [ApacheJMeter_core.jar:5.1.1 r1855137]
>
> >>>                 at
> org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253)
> [ApacheJMeter_core.jar:5.1.1 r1855137]
>
> >>>                 at java.lang.Thread.run(Unknown Source)
>
> >>> [?:1.8.0_211] Regards, Nuwan ________________________________
>
> >>> "Virtusa has been recognized as one of the top 20 global IT
> service providers in Everest Group's 2018 PEAK Matrix Service Provider
> of the Year(tm) awards; Named as an Outsourcing Leader and an All Star
> Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most
> Innovative Technology Company of the Year at the 2017 American
> Business Awards; Positioned as a Top 15 Sourcing Service Provider by
> Information Services Group (ISG)."
>
> >>> ________________________________
>
> >>> This message, including any attachments, contains confidential
> information intended for a specific individual and purpose, and is
> intended for the addressee only. Any unauthorized disclosure, use,
> dissemination, copying, or distribution of this message or any of its
> attachments or the information contained in this e-mail, or the taking
> of any action based on it, is strictly prohibited. If you are not the
> intended recipient, please notify the sender immediately by return
> e-mail and delete this message.
>
> >>> ________________________________
>
> >> 
>
> >> ---------------------------------------------------------------------
>
> >> 
>
> >> To unsubscribe, e-mail:
>
> >>
> [hidden email]<mailto:[hidden email]
> <mailto:[hidden email]%3cmailto:[hidden email]>
>
> >> c
>
> >> he.org>
>
> >> 
>
> >> For additional commands, e-mail:
>
> >> [hidden email]<mailto:[hidden email]
> <mailto:[hidden email]%3cmailto:[hidden email]>>
>
> >> 
>
> >> 
>
> >> 
>
> >> 
>
> >> ________________________________
>
> >> 
>
> >> "Virtusa has been recognized as one of the top 20 global IT service
> providers in Everest Group's 2018 PEAK Matrix Service Provider of the
> Year(tm) awards; Named as an Outsourcing Leader and an All Star
> Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most
> Innovative Technology Company of the Year at the 2017 American
> Business Awards; Positioned as a Top 15 Sourcing Service Provider by
> Information Services Group (ISG)."
>
> >> 
>
> >> ________________________________
>
> >> 
>
> >> This message, including any attachments, contains confidential
> information intended for a specific individual and purpose, and is
> intended for the addressee only. Any unauthorized disclosure, use,
> dissemination, copying, or distribution of this message or any of its
> attachments or the information contained in this e-mail, or the taking
> of any action based on it, is strictly prohibited. If you are not the
> intended recipient, please notify the sender immediately by return
> e-mail and delete this message.
>
> >> 
>
> >> ________________________________
>
> >> 
>
> > ---------------------------------------------------------------------
>
> > To unsubscribe, e-mail: [hidden email]
> <mailto:[hidden email]>
>
> > For additional commands, e-mail: [hidden email]
> <mailto:[hidden email]>
>
> > 
>
> > 
>
> > ________________________________
>
> > 
>
> > "Virtusa has been recognized as one of the top 20 global IT service
> providers in Everest Group’s 2018 PEAK Matrix Service Provider of the
> Year™ awards; Named as an Outsourcing Leader and an All Star Company
> in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most
> Innovative Technology Company of the Year at the 2017 American
> Business Awards; Positioned as a Top 15 Sourcing Service Provider by
> Information Services Group (ISG)."
>
> > 
>
> > ________________________________
>
> > 
>
> > This message, including any attachments, contains confidential
> information intended for a specific individual and purpose, and is
> intended for the addressee only. Any unauthorized disclosure, use,
> dissemination, copying, or distribution of this message or any of its
> attachments or the information contained in this e-mail, or the taking
> of any action based on it, is strictly prohibited. If you are not the
> intended recipient, please notify the sender immediately by return
> e-mail and delete this message.
>
> > 
>
> > ________________________________
>
>  
>
> ---------------------------------------------------------------------
>
> To unsubscribe, e-mail: [hidden email]
> <mailto:[hidden email]>
>
> For additional commands, e-mail: [hidden email]
> <mailto:[hidden email]>
>
>  
>
>  
> ------------------------------------------------------------------------
>
> "Virtusa has been recognized as one of the top 20 global IT service
> providers in Everest Group’s 2018 PEAK Matrix Service Provider of the
> Year™ awards; Named as an Outsourcing Leader and an All Star Company
> in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most
> Innovative Technology Company of the Year at the 2017 American
> Business Awards; Positioned as a Top 15 Sourcing Service Provider by
> Information Services Group (ISG)."
>
> ------------------------------------------------------------------------
>
> This message, including any attachments, contains confidential
> information intended for a specific individual and purpose, and is
> intended for the addressee only. Any unauthorized disclosure, use,
> dissemination, copying, or distribution of this message or any of its
> attachments or the information contained in this e-mail, or the taking
> of any action based on it, is strictly prohibited. If you are not the
> intended recipient, please notify the sender immediately by return
> e-mail and delete this message.
>
> ------------------------------------------------------------------------
Reply | Threaded
Open this post in threaded view
|

RE: Unexpected errors with HTTP Cookie Manager

Nuwan Galkissa Mudalige
Yes, I can see some. Please refer below.



Netscape:



POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD



POST data:

pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-Security.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmNewPassword=



Cookie Data:

Pega-RULES="{atn}e3ByfWdZTFh4b3hPSjZ3TXphSzAwSGlodTREdEU2ajRNaTF2eU5lenVFS1hueC85YS91ejBSSUkraHNNbm1nMUYvVUxvTnF5aHJIaG5lNmsKU1ZNZDRCblNoZz09"; JSESSIONID=22C82AA94B6949FA18D6F18B90593F18





Standard:



POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD



POST data:

pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-Security.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmNewPassword=



Cookie Data:

JSESSIONID=579619B9BB5054A3DFCF41122FA61A97; Pega-RULES={atn}e3ByfURTYlZMZHdqamdyeGJ4OEZYd2JQYUNvQm0wZllXYncyeHFFOG1jTXpaSWZGNkVtdy9ZVkc2RU9zd2JjWm9CbjJ1SDFTbjAyL0pUT1EKSkNRUnlJalU2UT09; AWSALB=ms7WE400/cj+xZZ9fwV4wASiuKa23v3TNxoKcz/OsIZPfmf902BfdF6ZeR0Lo5jRonG11GEdiz2J0Ok/KpHj+QyeXWVXdBIqdCKgMupuA0raJDXBQ+3E7CzHY+WU







Default:



POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD



POST data:

pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-Security.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmNewPassword=



Cookie Data:

JSESSIONID=BC5382E7E7F2721AF27BB31E36007653; Pega-RULES={atn}e3ByfS9KdXZHNkhrOG5LR1g2RXhURVpLbTJZZVZzUXFsWmhrNm9HcjBpRy9kcTV0akNOUzlmU1NMYVEvcXZ3Z0lhQzI0bVQySVlIZ2hWeDQKWWdJeVpLb2xqUT09







Regards,

Nuwan



-----Original Message-----
From: Felix Schumacher [mailto:[hidden email]]
Sent: Tuesday, July 16, 2019 3:19 PM
To: JMeter Users List
Subject: Re: Unexpected errors with HTTP Cookie Manager



External email: Exercise caution when opening attachments or clicking on links.



Am 16.07.19 um 17:42 schrieb Nuwan Galkissa Mudalige:

>

> Hi Felix,

>

>

>

> Did you get a chance to validate the given request headers ?

>



The headers look the same to me. Have you looked at the other tab on the request? Cookies are displayed on the "request body" tab.



Are there any differences?



Felix



>

>

> Regards,

>

> Nuwan

>

>

>

> *From:* Nuwan Galkissa Mudalige

> *Sent:* Wednesday, July 10, 2019 6:04 PM

> *To:* JMeter Users List

> *Subject:* RE: Unexpected errors with HTTP Cookie Manager

>

>

>

> Hi Felix,

>

>

>

> No errors were captured by server logs. The flow is working fine for

> manual user and when you use nestcape as a cookie policy.

>

>

>

> *Netscape header request:*

>

>

>

> Connection: keep-alive

>

> Referer:

> https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

>

> Accept-Language: en-US,en;q=0.9

>

> Origin: https://{URL}<https://%7bURL%7d> <https://%7bURL%7d>

>

> Accept:

> text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image

> /apng,*/*;q=0.8,application/signed-exchange;v=b3

>

> Upgrade-Insecure-Requests: 1

>

> Content-Type: application/x-www-form-urlencoded

>

> Cache-Control: max-age=0

>

> Accept-Encoding: gzip, deflate, br

>

> User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

> AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100

> Safari/537.36

>

> Content-Length: 186

>

> Host: {URL}

>

>

>

>

>

> *Standard header request:*

>

>

>

> Connection: keep-alive

>

> Referer:

> https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

>

> Accept-Language: en-US,en;q=0.9

>

> Origin: https://{URL}<https://%7bURL%7d> <https://%7bURL%7d>

>

> Accept:

> text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image

> /apng,*/*;q=0.8,application/signed-exchange;v=b3

>

> Upgrade-Insecure-Requests: 1

>

> Content-Type: application/x-www-form-urlencoded

>

> Cache-Control: max-age=0

>

> Accept-Encoding: gzip, deflate, br

>

> User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

> AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100

> Safari/537.36

>

> Content-Length: 186

>

> Host: {URL}

>

>

>

> *Default header request:*

>

>

>

> Connection: keep-alive

>

> Referer:

> https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

>

> Accept-Language: en-US,en;q=0.9

>

> Origin: https://{URL}<https://%7bURL%7d> <https://%7bURL%7d>

>

> Accept:

> text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image

> /apng,*/*;q=0.8,application/signed-exchange;v=b3

>

> Upgrade-Insecure-Requests: 1

>

> Content-Type: application/x-www-form-urlencoded

>

> Cache-Control: max-age=0

>

> Accept-Encoding: gzip, deflate, br

>

> User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

> AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100

> Safari/537.36

>

> Content-Length: 186

>

> Host: {URL}

>

>

>

>

>

> Regards,

>

> Nuwan

>

>

>

> -----Original Message-----

> From: Felix Schumacher [mailto:[hidden email]]

> Sent: Wednesday, July 10, 2019 3:50 PM

> To: [hidden email]<mailto:[hidden email]> <mailto:[hidden email]>

> Subject: Re: Unexpected errors with HTTP Cookie Manager

>

>

>

> External email: Exercise caution when opening attachments or clicking

> on links.

>

>

>

> Am 10.07.19 um 21:45 schrieb Nuwan Galkissa Mudalige:

>

> > Hello Felix,

>

> >

>

> > Can you suggest me something I need to put on the Cookie Manager

> with a policy ? sharing a sample test plan is very difficult due

> security policies and it is the place where user is logging.

>

>

>

> I would have a look at the request headers instead of the response

> headers and see, whether there are any differences. Maybe you could

> post those (redacted when there are private details like credentials).

>

>

>

> The cookie manager is probably best when used in default mode.

>

>

>

> Have a look at the server and watch out for error messages that are

> shown/logged when rendering the "500" error pages.

>

>

>

> Felix

>

>

>

> >

>

> > Please help.

>

> >

>

> > Regards,

>

> > Nuwan

>

> >

>

> >

>

> > -----Original Message-----

>

> > From: Felix Schumacher [mailto:[hidden email]]

>

> > Sent: Wednesday, July 10, 2019 3:33 PM

>

> > To: [hidden email]<mailto:[hidden email]> <mailto:[hidden email]>

>

> > Subject: Re: Unexpected errors with HTTP Cookie Manager

>

> >

>

> > External email: Exercise caution when opening attachments or

> clicking on links.

>

> >

>

> > Am 08.07.19 um 17:30 schrieb Nuwan Galkissa Mudalige:

>

> >> Hi Felix,

>

> >>

>

> >>

>

> >>

>

> >> Thanks for your response.

>

> >>

>

> >>

>

> >>

>

> >> This is the response header I have seen on View results tree while

> using "Netscape" cookie policy and flow was going good. But as I

> stated (stacktrace below) its produced that error log.

>

> >>

>

> >>

>

> >>

>

> >> HTTP/1.1 200 OK

>

> >>

>

> >> Date: Mon, 08 Jul 2019 15:11:54 GMT

>

> >>

>

> >> Content-Type: text/html;charset=UTF-8

>

> >>

>

> >> Transfer-Encoding: chunked

>

> >>

>

> >> Connection: keep-alive

>

> >>

>

> >> Set-Cookie:

>

> >> AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx8o

> >> h4

>

> >> 4

>

> >> Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c;

>

> >> Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/

>

> >>

>

> >> Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374;

> >> Path=/prweb;

>

> >> Secure; HttpOnly

>

> >>

>

> >> Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8;

> >> Version=1;

>

> >> Comment="PegaRULES session tracking"; Path=/prweb

>

> >>

>

> >> Cache-Control: no-cache, no-store, must-revalidate

>

> >>

>

> >> Pragma: no-cache

>

> >>

>

> >> Expires: Thu, 01 Dec 1994 16:00:00 GMT

>

> >>

>

> >> Server: server

>

> >>

>

> >> Content-Encoding: gzip

>

> >>

>

> >>

>

> >>

>

> >> While using "Standard" as cookie policy, script getting failed

> occurring 500 error with response header as below but no other errors

> produced in log.

>

> >>

>

> >>

>

> >>

>

> >> HTTP/1.1 500 Internal Server Error

>

> >>

>

> >> Date: Mon, 08 Jul 2019 15:14:06 GMT

>

> >>

>

> >> Content-Type: text/html;charset=UTF-8

>

> >>

>

> >> Content-Length: 3608

>

> >>

>

> >> Connection: keep-alive

>

> >>

>

> >> Set-Cookie:

>

> >> AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyLS+

> >> B5

>

> >> K TiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3;

>

> >> Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/

>

> >>

>

> >> Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO;

> >> Version=1;

>

> >> Comment="PegaRULES session tracking"; Path=/prweb

>

> >>

>

> >> X-Content-Security-Policy-Report-Only: base-uri *; child-src * data:

>

> >> blob: filesystem: mediastream:; form-action *; frame-ancestors *;

>

> >> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>

> >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>

> >> mediastream:; img-src * data: blob: filesystem: mediastream:;

>

> >> media-src * data: blob: filesystem: mediastream:; object-src * data:

>

> >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>

> >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>

> >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;

>

> >> default-src *; report-uri (URL)

>

> >>

>

> >> X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob:

>

> >> filesystem: mediastream:; form-action *; frame-ancestors *;

>

> >> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>

> >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>

> >> mediastream:; img-src * data: blob: filesystem: mediastream:;

>

> >> media-src * data: blob: filesystem: mediastream:; object-src * data:

>

> >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>

> >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>

> >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;

>

> >> default-src *; report-uri (URL)

>

> >>

>

> >> Content-Security-Policy-Report-Only: base-uri *; child-src * data:

>

> >> blob: filesystem: mediastream:; form-action *; frame-ancestors *;

>

> >> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>

> >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>

> >> mediastream:; img-src * data: blob: filesystem: mediastream:;

>

> >> media-src * data: blob: filesystem: mediastream:; object-src * data:

>

> >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>

> >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>

> >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;

>

> >> default-src *; report-uri (URL)

>

> >>

>

> >> Cache-Control: max-age=0

>

> >>

>

> >> Pragma: no-cache

>

> >>

>

> >> Expires: Thu, 01 Dec 1994 16:00:00 GMT

>

> >>

>

> >> Server: server

>

> >>

>

> > As stated before. A minimal test plan to reproduce would really help.

>

> >

>

> > Apart from that. A status code of 500 means that the server couldn't

> cope in what ever form and throws an error. The parsing of the cookie

> (we get a set-cookie header) happens after the servers response. So it

> would probably be better to look at what you send to the server

> instead of looking at what you receive.

>

> >

>

> > Felix

>

> >

>

> >>

>

> >>

>

> >> Regards,

>

> >>

>

> >> Nuwan

>

> >>

>

> >>

>

> >>

>

> >>

>

> >>

>

> >> -----Original Message-----

>

> >> From: Felix Schumacher [mailto:[hidden email]]

>

> >> Sent: Saturday, July 06, 2019 6:00 AM

>

> >> To: [hidden email]<mailto:[hidden email]> <mailto:[hidden email]>

>

> >> Subject: Re: Unexpected errors with HTTP Cookie Manager

>

> >>

>

> >>

>

> >>

>

> >> External email: Exercise caution when opening attachments or

> clicking on links.

>

> >>

>

> >>

>

> >>

>

> >> Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:

>

> >>

>

> >>> Greetings !!

>

> >>> I'm in a process of building performance scripting for Pega 7.4

> cloud application.

>

> >>> My script is getting failed if I use any cookie policies except

> "netscape" from the HTTP Cookie Manager. Though it works with

> "netscape" cookie policy Jmeter creates following error entries in the

> log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.

>

> >>> Is this something known product issue which can be planned to fix

> with later version OR if you have an alternative technical solution

> would be really helpful ?

>

> >>

>

> >> The stacktrace looks like you used the Netscape parser for the

> Cookie Manager. That parser will not except cookies with an "expires"

> attribute.

>

> >>

>

> >>

>

> >>

>

> >> Please post a minimal test that shows the problem, so that we can

>

> >> reproduce it. You might want to have a look at

>

> >>

>

> >>

> https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.a

> pache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&amp;data=02%7C01%7Cnm

> udalige%40virtusa.com%7C70642cdfd04a4388711b08d70a228a13%7C0d85160c589

> 944caacc8db1501b993b6%7C0%7C0%7C636989015789471278&amp;sdata=Y3dUQfQcs

> JLG8WXsOVZVk7UW0MbAQNaN7DYITQPNXzA%3D&amp;reserved=0

> where suhail reports problems parsing cookies, too. Attached to the

> bugzilla entry is a small test plan, that shows that JMeter has no

> problem parsing the sample AWS cookie that suhail gave us. You could

> try to change that cookie with one of your problematic cookies.

>

> >>

>

> >>

>

> >>

>

> >> In case you meant that the netscape parser doesn't work with the

> cookie, but all others do: this is intended. In doubt, use the default

> cookie parser.

>

> >>

>

> >>

>

> >>

>

> >> Regards

>

> >>

>

> >>

>

> >>

>

> >> Felix

>

> >>

>

> >>

>

> >>

>

> >>> This is the error log:

>

> >>> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable

>

> >>> to add the cookie

>

> >>> org.apache.http.cookie.MalformedCookieException: Invalid 'expires'

> attribute: Fri, 12 Jul 2019 14:20:28 GMT

>

> >>>                 at

> org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHand

> ler.java:64)

> ~[httpclient-4.5.7.jar:4.5.7]

>

> >>>                 at

> org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:1

> 13)

> ~[httpclient-4.5.7.jar:4.5.7]

>

> >>>                 at

> org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.

> java:134)

> ~[httpclient-4.5.7.jar:4.5.7]

>

> >>>                 at

> org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFrom

> Header(HC4CookieHandler.java:125)

> [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >>>                 at

> org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHea

> der(CookieManager.java:361)

> [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >>>                 at

> org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCook

> ies(HTTPHC4Impl.java:1729)

> [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >>>                 at

> org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl

> .java:652)

> [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >>>                 at

> org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSa

> mplerProxy.java:67)

> [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >>>                 at

> org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSam

> plerBase.java:1231)

> [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >>>                 at

> org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSam

> plerBase.java:1220)

> [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >>>                 at

> org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:62

> 2)

> [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >>>                 at

> org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThre

> ad.java:546)

> [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >>>                 at

> org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.jav

> a:486)

> [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >>>                 at

> org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253)

> [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >>>                 at java.lang.Thread.run(Unknown Source)

>

> >>> [?:1.8.0_211] Regards, Nuwan ________________________________

>

> >>> "Virtusa has been recognized as one of the top 20 global IT

> service providers in Everest Group's 2018 PEAK Matrix Service Provider

> of the Year(tm) awards; Named as an Outsourcing Leader and an All Star

> Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most

> Innovative Technology Company of the Year at the 2017 American

> Business Awards; Positioned as a Top 15 Sourcing Service Provider by

> Information Services Group (ISG)."

>

> >>> ________________________________

>

> >>> This message, including any attachments, contains confidential

> information intended for a specific individual and purpose, and is

> intended for the addressee only. Any unauthorized disclosure, use,

> dissemination, copying, or distribution of this message or any of its

> attachments or the information contained in this e-mail, or the taking

> of any action based on it, is strictly prohibited. If you are not the

> intended recipient, please notify the sender immediately by return

> e-mail and delete this message.

>

> >>> ________________________________

>

> >>

>

> >> -------------------------------------------------------------------

> >> --

>

> >>

>

> >> To unsubscribe, e-mail:

>

> >>

> [hidden email]<mailto:[hidden email]<mailto:[hidden email]%3cmailto:[hidden email]>

> <mailto:[hidden email]%3cmailto:user-unsubscribe@j

> meter.apa>

>

> >> c

>

> >> he.org>

>

> >>

>

> >> For additional commands, e-mail:

>

> >> [hidden email]<mailto:[hidden email]<mailto:[hidden email]%3cmailto:[hidden email]>

> <mailto:[hidden email]%3cmailto:[hidden email]

> rg>>

>

> >>

>

> >>

>

> >>

>

> >>

>

> >> ________________________________

>

> >>

>

> >> "Virtusa has been recognized as one of the top 20 global IT service

> providers in Everest Group's 2018 PEAK Matrix Service Provider of the

> Year(tm) awards; Named as an Outsourcing Leader and an All Star

> Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most

> Innovative Technology Company of the Year at the 2017 American

> Business Awards; Positioned as a Top 15 Sourcing Service Provider by

> Information Services Group (ISG)."

>

> >>

>

> >> ________________________________

>

> >>

>

> >> This message, including any attachments, contains confidential

> information intended for a specific individual and purpose, and is

> intended for the addressee only. Any unauthorized disclosure, use,

> dissemination, copying, or distribution of this message or any of its

> attachments or the information contained in this e-mail, or the taking

> of any action based on it, is strictly prohibited. If you are not the

> intended recipient, please notify the sender immediately by return

> e-mail and delete this message.

>

> >>

>

> >> ________________________________

>

> >>

>

> > --------------------------------------------------------------------

> > -

>

> > To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > For additional commands, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> >

>

> >

>

> > ________________________________

>

> >

>

> > "Virtusa has been recognized as one of the top 20 global IT service

> providers in Everest Group’s 2018 PEAK Matrix Service Provider of the

> Year™ awards; Named as an Outsourcing Leader and an All Star Company

> in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most

> Innovative Technology Company of the Year at the 2017 American

> Business Awards; Positioned as a Top 15 Sourcing Service Provider by

> Information Services Group (ISG)."

>

> >

>

> > ________________________________

>

> >

>

> > This message, including any attachments, contains confidential

> information intended for a specific individual and purpose, and is

> intended for the addressee only. Any unauthorized disclosure, use,

> dissemination, copying, or distribution of this message or any of its

> attachments or the information contained in this e-mail, or the taking

> of any action based on it, is strictly prohibited. If you are not the

> intended recipient, please notify the sender immediately by return

> e-mail and delete this message.

>

> >

>

> > ________________________________

>

>

>

> ---------------------------------------------------------------------

>

> To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> For additional commands, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

>

>

>

> ----------------------------------------------------------------------

> --

>

> "Virtusa has been recognized as one of the top 20 global IT service

> providers in Everest Group’s 2018 PEAK Matrix Service Provider of the

> Year™ awards; Named as an Outsourcing Leader and an All Star Company

> in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most

> Innovative Technology Company of the Year at the 2017 American

> Business Awards; Positioned as a Top 15 Sourcing Service Provider by

> Information Services Group (ISG)."

>

> ----------------------------------------------------------------------

> --

>

> This message, including any attachments, contains confidential

> information intended for a specific individual and purpose, and is

> intended for the addressee only. Any unauthorized disclosure, use,

> dissemination, copying, or distribution of this message or any of its

> attachments or the information contained in this e-mail, or the taking

> of any action based on it, is strictly prohibited. If you are not the

> intended recipient, please notify the sender immediately by return

> e-mail and delete this message.

>

> ----------------------------------------------------------------------

> --


________________________________

"Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group’s 2018 PEAK Matrix Service Provider of the Year™ awards; Named as an Outsourcing Leader and an All Star Company in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

________________________________

This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

________________________________
Reply | Threaded
Open this post in threaded view
|

Re: Unexpected errors with HTTP Cookie Manager

Felix Schumacher

Am 16.07.19 um 21:36 schrieb Nuwan Galkissa Mudalige:

>
> Yes, I can see some. Please refer below.
>
>  
>
> *Netscape:*
>
>  
>
> POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD
>
>  
>
> POST data:
>
> pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-Security.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmNewPassword=
>
>  
>
> Cookie Data:
>
> Pega-RULES="{atn}e3ByfWdZTFh4b3hPSjZ3TXphSzAwSGlodTREdEU2ajRNaTF2eU5lenVFS1hueC85YS91ejBSSUkraHNNbm1nMUYvVUxvTnF5aHJIaG5lNmsKU1ZNZDRCblNoZz09";
> JSESSIONID=22C82AA94B6949FA18D6F18B90593F18
>
>  
>
>  
>
> *Standard:*
>
>  
>
> POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD
>
>  
>
> POST data:
>
> pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-Security.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmNewPassword=
>
>  
>
> Cookie Data:
>
> JSESSIONID=579619B9BB5054A3DFCF41122FA61A97;
> Pega-RULES={atn}e3ByfURTYlZMZHdqamdyeGJ4OEZYd2JQYUNvQm0wZllXYncyeHFFOG1jTXpaSWZGNkVtdy9ZVkc2RU9zd2JjWm9CbjJ1SDFTbjAyL0pUT1EKSkNRUnlJalU2UT09;
> AWSALB=ms7WE400/cj+xZZ9fwV4wASiuKa23v3TNxoKcz/OsIZPfmf902BfdF6ZeR0Lo5jRonG11GEdiz2J0Ok/KpHj+QyeXWVXdBIqdCKgMupuA0raJDXBQ+3E7CzHY+WU
>

This one has the AWSALB header, while the netscape has an Pega-RULES
header. I bet it would be best, when both cookie headers would be
present on the request.

Can you check once again, that this isn't a mistake while copying the
cookie values?

Can you look at the requests before this request, where the Pega-RULES
cookie is being set and report that value?

And it might be best to compare those values to actual values inside of
a "real" browser.

Felix

>  
>
>  
>
>  
>
> *Default:*
>
>  
>
> POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD
>
>  
>
> POST data:
>
> pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-Security.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmNewPassword=
>
>  
>
> Cookie Data:
>
> JSESSIONID=BC5382E7E7F2721AF27BB31E36007653;
> Pega-RULES={atn}e3ByfS9KdXZHNkhrOG5LR1g2RXhURVpLbTJZZVZzUXFsWmhrNm9HcjBpRy9kcTV0akNOUzlmU1NMYVEvcXZ3Z0lhQzI0bVQySVlIZ2hWeDQKWWdJeVpLb2xqUT09
>
>  
>
>  
>
>  
>
> Regards,
>
> Nuwan
>
>  
>
> -----Original Message-----
> From: Felix Schumacher [mailto:[hidden email]]
> Sent: Tuesday, July 16, 2019 3:19 PM
> To: JMeter Users List
> Subject: Re: Unexpected errors with HTTP Cookie Manager
>
>  
>
> External email: Exercise caution when opening attachments or clicking
> on links.
>
>  
>
> Am 16.07.19 um 17:42 schrieb Nuwan Galkissa Mudalige:
>
> > 
>
> > Hi Felix,
>
> > 
>
> > 
>
> > 
>
> > Did you get a chance to validate the given request headers ?
>
> > 
>
>  
>
> The headers look the same to me. Have you looked at the other tab on
> the request? Cookies are displayed on the "request body" tab.
>
>  
>
> Are there any differences?
>
>  
>
> Felix
>
>  
>
> > 
>
> > 
>
> > Regards,
>
> > 
>
> > Nuwan
>
> > 
>
> > 
>
> > 
>
> > *From:* Nuwan Galkissa Mudalige
>
> > *Sent:* Wednesday, July 10, 2019 6:04 PM
>
> > *To:* JMeter Users List
>
> > *Subject:* RE: Unexpected errors with HTTP Cookie Manager
>
> > 
>
> > 
>
> > 
>
> > Hi Felix,
>
> > 
>
> > 
>
> > 
>
> > No errors were captured by server logs. The flow is working fine for
>
> > manual user and when you use nestcape as a cookie policy.
>
> > 
>
> > 
>
> > 
>
> > *Netscape header request:*
>
> > 
>
> > 
>
> > 
>
> > Connection: keep-alive
>
> > 
>
> > Referer:
>
> > https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD
> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
>
> > <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
>
> > 
>
> > Accept-Language: en-US,en;q=0.9
>
> > 
>
> > Origin: https://{URL} <https://%7bURL%7d> <https://%7bURL%7d>
>
> > 
>
> > Accept:
>
> > text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image
>
> > /apng,*/*;q=0.8,application/signed-exchange;v=b3
>
> > 
>
> > Upgrade-Insecure-Requests: 1
>
> > 
>
> > Content-Type: application/x-www-form-urlencoded
>
> > 
>
> > Cache-Control: max-age=0
>
> > 
>
> > Accept-Encoding: gzip, deflate, br
>
> > 
>
> > User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
>
> > AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100
>
> > Safari/537.36
>
> > 
>
> > Content-Length: 186
>
> > 
>
> > Host: {URL}
>
> > 
>
> > 
>
> > 
>
> > 
>
> > 
>
> > *Standard header request:*
>
> > 
>
> > 
>
> > 
>
> > Connection: keep-alive
>
> > 
>
> > Referer:
>
> > https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD
> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
>
> > <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
>
> > 
>
> > Accept-Language: en-US,en;q=0.9
>
> > 
>
> > Origin: https://{URL} <https://%7bURL%7d> <https://%7bURL%7d>
>
> > 
>
> > Accept:
>
> > text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image
>
> > /apng,*/*;q=0.8,application/signed-exchange;v=b3
>
> > 
>
> > Upgrade-Insecure-Requests: 1
>
> > 
>
> > Content-Type: application/x-www-form-urlencoded
>
> > 
>
> > Cache-Control: max-age=0
>
> > 
>
> > Accept-Encoding: gzip, deflate, br
>
> > 
>
> > User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
>
> > AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100
>
> > Safari/537.36
>
> > 
>
> > Content-Length: 186
>
> > 
>
> > Host: {URL}
>
> > 
>
> > 
>
> > 
>
> > *Default header request:*
>
> > 
>
> > 
>
> > 
>
> > Connection: keep-alive
>
> > 
>
> > Referer:
>
> > https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD
> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
>
> > <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>
>
> > 
>
> > Accept-Language: en-US,en;q=0.9
>
> > 
>
> > Origin: https://{URL} <https://%7bURL%7d> <https://%7bURL%7d>
>
> > 
>
> > Accept:
>
> > text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image
>
> > /apng,*/*;q=0.8,application/signed-exchange;v=b3
>
> > 
>
> > Upgrade-Insecure-Requests: 1
>
> > 
>
> > Content-Type: application/x-www-form-urlencoded
>
> > 
>
> > Cache-Control: max-age=0
>
> > 
>
> > Accept-Encoding: gzip, deflate, br
>
> > 
>
> > User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
>
> > AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100
>
> > Safari/537.36
>
> > 
>
> > Content-Length: 186
>
> > 
>
> > Host: {URL}
>
> > 
>
> > 
>
> > 
>
> > 
>
> > 
>
> > Regards,
>
> > 
>
> > Nuwan
>
> > 
>
> > 
>
> > 
>
> > -----Original Message-----
>
> > From: Felix Schumacher [mailto:[hidden email]]
>
> > Sent: Wednesday, July 10, 2019 3:50 PM
>
> > To: [hidden email] <mailto:[hidden email]>
> <mailto:[hidden email]>
>
> > Subject: Re: Unexpected errors with HTTP Cookie Manager
>
> > 
>
> > 
>
> > 
>
> > External email: Exercise caution when opening attachments or clicking
>
> > on links.
>
> > 
>
> > 
>
> > 
>
> > Am 10.07.19 um 21:45 schrieb Nuwan Galkissa Mudalige:
>
> > 
>
> > > Hello Felix,
>
> > 
>
> > > 
>
> > 
>
> > > Can you suggest me something I need to put on the Cookie Manager
>
> > with a policy ? sharing a sample test plan is very difficult due
>
> > security policies and it is the place where user is logging.
>
> > 
>
> > 
>
> > 
>
> > I would have a look at the request headers instead of the response
>
> > headers and see, whether there are any differences. Maybe you could
>
> > post those (redacted when there are private details like credentials).
>
> > 
>
> > 
>
> > 
>
> > The cookie manager is probably best when used in default mode.
>
> > 
>
> > 
>
> > 
>
> > Have a look at the server and watch out for error messages that are
>
> > shown/logged when rendering the "500" error pages.
>
> > 
>
> > 
>
> > 
>
> > Felix
>
> > 
>
> > 
>
> > 
>
> > > 
>
> > 
>
> > > Please help.
>
> > 
>
> > > 
>
> > 
>
> > > Regards,
>
> > 
>
> > > Nuwan
>
> > 
>
> > > 
>
> > 
>
> > > 
>
> > 
>
> > > -----Original Message-----
>
> > 
>
> > > From: Felix Schumacher [mailto:[hidden email]]
>
> > 
>
> > > Sent: Wednesday, July 10, 2019 3:33 PM
>
> > 
>
> > > To: [hidden email] <mailto:[hidden email]>
> <mailto:[hidden email]>
>
> > 
>
> > > Subject: Re: Unexpected errors with HTTP Cookie Manager
>
> > 
>
> > > 
>
> > 
>
> > > External email: Exercise caution when opening attachments or
>
> > clicking on links.
>
> > 
>
> > > 
>
> > 
>
> > > Am 08.07.19 um 17:30 schrieb Nuwan Galkissa Mudalige:
>
> > 
>
> > >> Hi Felix,
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> Thanks for your response.
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> This is the response header I have seen on View results tree while
>
> > using "Netscape" cookie policy and flow was going good. But as I
>
> > stated (stacktrace below) its produced that error log.
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> HTTP/1.1 200 OK
>
> > 
>
> > >> 
>
> > 
>
> > >> Date: Mon, 08 Jul 2019 15:11:54 GMT
>
> > 
>
> > >> 
>
> > 
>
> > >> Content-Type: text/html;charset=UTF-8
>
> > 
>
> > >> 
>
> > 
>
> > >> Transfer-Encoding: chunked
>
> > 
>
> > >> 
>
> > 
>
> > >> Connection: keep-alive
>
> > 
>
> > >> 
>
> > 
>
> > >> Set-Cookie:
>
> > 
>
> > >> AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx8o
>
> > >> h4
>
> > 
>
> > >> 4
>
> > 
>
> > >> Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c;
>
> > 
>
> > >> Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/
>
> > 
>
> > >> 
>
> > 
>
> > >> Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374;
>
> > >> Path=/prweb;
>
> > 
>
> > >> Secure; HttpOnly
>
> > 
>
> > >> 
>
> > 
>
> > >> Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8;
>
> > >> Version=1;
>
> > 
>
> > >> Comment="PegaRULES session tracking"; Path=/prweb
>
> > 
>
> > >> 
>
> > 
>
> > >> Cache-Control: no-cache, no-store, must-revalidate
>
> > 
>
> > >> 
>
> > 
>
> > >> Pragma: no-cache
>
> > 
>
> > >> 
>
> > 
>
> > >> Expires: Thu, 01 Dec 1994 16:00:00 GMT
>
> > 
>
> > >> 
>
> > 
>
> > >> Server: server
>
> > 
>
> > >> 
>
> > 
>
> > >> Content-Encoding: gzip
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> While using "Standard" as cookie policy, script getting failed
>
> > occurring 500 error with response header as below but no other errors
>
> > produced in log.
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> HTTP/1.1 500 Internal Server Error
>
> > 
>
> > >> 
>
> > 
>
> > >> Date: Mon, 08 Jul 2019 15:14:06 GMT
>
> > 
>
> > >> 
>
> > 
>
> > >> Content-Type: text/html;charset=UTF-8
>
> > 
>
> > >> 
>
> > 
>
> > >> Content-Length: 3608
>
> > 
>
> > >> 
>
> > 
>
> > >> Connection: keep-alive
>
> > 
>
> > >> 
>
> > 
>
> > >> Set-Cookie:
>
> > 
>
> > >> AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyLS+
>
> > >> B5
>
> > 
>
> > >> K TiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3;
>
> > 
>
> > >> Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/
>
> > 
>
> > >> 
>
> > 
>
> > >> Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO;
>
> > >> Version=1;
>
> > 
>
> > >> Comment="PegaRULES session tracking"; Path=/prweb
>
> > 
>
> > >> 
>
> > 
>
> > >> X-Content-Security-Policy-Report-Only: base-uri *; child-src * data:
>
> > 
>
> > >> blob: filesystem: mediastream:; form-action *; frame-ancestors *;
>
> > 
>
> > >> connect-src * data: blob: filesystem: mediastream:; font-src * data:
>
> > 
>
> > >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:
>
> > 
>
> > >> mediastream:; img-src * data: blob: filesystem: mediastream:;
>
> > 
>
> > >> media-src * data: blob: filesystem: mediastream:; object-src * data:
>
> > 
>
> > >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'
>
> > 
>
> > >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *
>
> > 
>
> > >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;
>
> > 
>
> > >> default-src *; report-uri (URL)
>
> > 
>
> > >> 
>
> > 
>
> > >> X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob:
>
> > 
>
> > >> filesystem: mediastream:; form-action *; frame-ancestors *;
>
> > 
>
> > >> connect-src * data: blob: filesystem: mediastream:; font-src * data:
>
> > 
>
> > >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:
>
> > 
>
> > >> mediastream:; img-src * data: blob: filesystem: mediastream:;
>
> > 
>
> > >> media-src * data: blob: filesystem: mediastream:; object-src * data:
>
> > 
>
> > >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'
>
> > 
>
> > >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *
>
> > 
>
> > >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;
>
> > 
>
> > >> default-src *; report-uri (URL)
>
> > 
>
> > >> 
>
> > 
>
> > >> Content-Security-Policy-Report-Only: base-uri *; child-src * data:
>
> > 
>
> > >> blob: filesystem: mediastream:; form-action *; frame-ancestors *;
>
> > 
>
> > >> connect-src * data: blob: filesystem: mediastream:; font-src * data:
>
> > 
>
> > >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:
>
> > 
>
> > >> mediastream:; img-src * data: blob: filesystem: mediastream:;
>
> > 
>
> > >> media-src * data: blob: filesystem: mediastream:; object-src * data:
>
> > 
>
> > >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'
>
> > 
>
> > >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *
>
> > 
>
> > >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem: mediastream:;
>
> > 
>
> > >> default-src *; report-uri (URL)
>
> > 
>
> > >> 
>
> > 
>
> > >> Cache-Control: max-age=0
>
> > 
>
> > >> 
>
> > 
>
> > >> Pragma: no-cache
>
> > 
>
> > >> 
>
> > 
>
> > >> Expires: Thu, 01 Dec 1994 16:00:00 GMT
>
> > 
>
> > >> 
>
> > 
>
> > >> Server: server
>
> > 
>
> > >> 
>
> > 
>
> > > As stated before. A minimal test plan to reproduce would really help.
>
> > 
>
> > > 
>
> > 
>
> > > Apart from that. A status code of 500 means that the server couldn't
>
> > cope in what ever form and throws an error. The parsing of the cookie
>
> > (we get a set-cookie header) happens after the servers response. So it
>
> > would probably be better to look at what you send to the server
>
> > instead of looking at what you receive.
>
> > 
>
> > > 
>
> > 
>
> > > Felix
>
> > 
>
> > > 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> Regards,
>
> > 
>
> > >> 
>
> > 
>
> > >> Nuwan
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> -----Original Message-----
>
> > 
>
> > >> From: Felix Schumacher [mailto:[hidden email]]
>
> > 
>
> > >> Sent: Saturday, July 06, 2019 6:00 AM
>
> > 
>
> > >> To: [hidden email] <mailto:[hidden email]>
> <mailto:[hidden email]>
>
> > 
>
> > >> Subject: Re: Unexpected errors with HTTP Cookie Manager
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> External email: Exercise caution when opening attachments or
>
> > clicking on links.
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:
>
> > 
>
> > >> 
>
> > 
>
> > >>> Greetings !!
>
> > 
>
> > >>> I'm in a process of building performance scripting for Pega 7.4
>
> > cloud application.
>
> > 
>
> > >>> My script is getting failed if I use any cookie policies except
>
> > "netscape" from the HTTP Cookie Manager. Though it works with
>
> > "netscape" cookie policy Jmeter creates following error entries in the
>
> > log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.
>
> > 
>
> > >>> Is this something known product issue which can be planned to fix
>
> > with later version OR if you have an alternative technical solution
>
> > would be really helpful ?
>
> > 
>
> > >> 
>
> > 
>
> > >> The stacktrace looks like you used the Netscape parser for the
>
> > Cookie Manager. That parser will not except cookies with an "expires"
>
> > attribute.
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> Please post a minimal test that shows the problem, so that we can
>
> > 
>
> > >> reproduce it. You might want to have a look at
>
> > 
>
> > >> 
>
> > 
>
> > >>
>
> > https://apc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.a
>
> > pache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&amp;data=02%7C01%7Cnm
>
> > udalige%40virtusa.com%7C70642cdfd04a4388711b08d70a228a13%7C0d85160c589
>
> > 944caacc8db1501b993b6%7C0%7C0%7C636989015789471278&amp;sdata=Y3dUQfQcs
>
> > JLG8WXsOVZVk7UW0MbAQNaN7DYITQPNXzA%3D&amp;reserved=0
>
> > where suhail reports problems parsing cookies, too. Attached to the
>
> > bugzilla entry is a small test plan, that shows that JMeter has no
>
> > problem parsing the sample AWS cookie that suhail gave us. You could
>
> > try to change that cookie with one of your problematic cookies.
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> In case you meant that the netscape parser doesn't work with the
>
> > cookie, but all others do: this is intended. In doubt, use the default
>
> > cookie parser.
>
> > 
>
> > >>
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> Regards
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> Felix
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >>> This is the error log:
>
> > 
>
> > >>> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler: Unable
>
> > 
>
> > >>> to add the cookie
>
> > 
>
> > >>> org.apache.http.cookie.MalformedCookieException: Invalid 'expires'
>
> > attribute: Fri, 12 Jul 2019 14:20:28 GMT
>
> > 
>
> > >>>                 at
>
> > org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHand
>
> > ler.java:64)
>
> > ~[httpclient-4.5.7.jar:4.5.7]
>
> > 
>
> > >>>                 at
>
> > org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java:1
>
> > 13)
>
> > ~[httpclient-4.5.7.jar:4.5.7]
>
> > 
>
> > >>>                 at
>
> > org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.
>
> > java:134)
>
> > ~[httpclient-4.5.7.jar:4.5.7]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFrom
>
> > Header(HC4CookieHandler.java:125)
>
> > [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromHea
>
> > der(CookieManager.java:361)
>
> > [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCook
>
> > ies(HTTPHC4Impl.java:1729)
>
> > [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Impl
>
> > .java:652)
>
> > [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTPSa
>
> > mplerProxy.java:67)
>
> > [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSam
>
> > plerBase.java:1231)
>
> > [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPSam
>
> > plerBase.java:1220)
>
> > [ApacheJMeter_http.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:62
>
> > 2)
>
> > [ApacheJMeter_core.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterThre
>
> > ad.java:546)
>
> > [ApacheJMeter_core.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.jav
>
> > a:486)
>
> > [ApacheJMeter_core.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at
>
> > org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253)
>
> > [ApacheJMeter_core.jar:5.1.1 r1855137]
>
> > 
>
> > >>>                 at java.lang.Thread.run(Unknown Source)
>
> > 
>
> > >>> [?:1.8.0_211] Regards, Nuwan ________________________________
>
> > 
>
> > >>> "Virtusa has been recognized as one of the top 20 global IT
>
> > service providers in Everest Group's 2018 PEAK Matrix Service Provider
>
> > of the Year(tm) awards; Named as an Outsourcing Leader and an All Star
>
> > Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most
>
> > Innovative Technology Company of the Year at the 2017 American
>
> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by
>
> > Information Services Group (ISG)."
>
> > 
>
> > >>> ________________________________
>
> > 
>
> > >>> This message, including any attachments, contains confidential
>
> > information intended for a specific individual and purpose, and is
>
> > intended for the addressee only. Any unauthorized disclosure, use,
>
> > dissemination, copying, or distribution of this message or any of its
>
> > attachments or the information contained in this e-mail, or the taking
>
> > of any action based on it, is strictly prohibited. If you are not the
>
> > intended recipient, please notify the sender immediately by return
>
> > e-mail and delete this message.
>
> > 
>
> > >>> ________________________________
>
> > 
>
> > >> 
>
> > 
>
> > >> -------------------------------------------------------------------
>
> > >> --
>
> > 
>
> > >> 
>
> > 
>
> > >> To unsubscribe, e-mail:
>
> > 
>
> > >>
>
> >
> [hidden email]<mailto:[hidden email]
> <mailto:[hidden email]%3cmailto:[hidden email]>
>
> > <mailto:[hidden email]%3cmailto:user-unsubscribe@j
>
> > meter.apa>
>
> > 
>
> > >> c
>
> > 
>
> > >> he.org>
>
> > 
>
> > >> 
>
> > 
>
> > >> For additional commands, e-mail:
>
> > 
>
> > >> [hidden email]<mailto:[hidden email]
> <mailto:[hidden email]%3cmailto:[hidden email]>
>
> > <mailto:[hidden email]%3cmailto:[hidden email]
>
> > rg>>
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> 
>
> > 
>
> > >> ________________________________
>
> > 
>
> > >> 
>
> > 
>
> > >> "Virtusa has been recognized as one of the top 20 global IT service
>
> > providers in Everest Group's 2018 PEAK Matrix Service Provider of the
>
> > Year(tm) awards; Named as an Outsourcing Leader and an All Star
>
> > Company in IAOP's 2018 Global Outsourcing 100; Recognized as the Most
>
> > Innovative Technology Company of the Year at the 2017 American
>
> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by
>
> > Information Services Group (ISG)."
>
> > 
>
> > >> 
>
> > 
>
> > >> ________________________________
>
> > 
>
> > >> 
>
> > 
>
> > >> This message, including any attachments, contains confidential
>
> > information intended for a specific individual and purpose, and is
>
> > intended for the addressee only. Any unauthorized disclosure, use,
>
> > dissemination, copying, or distribution of this message or any of its
>
> > attachments or the information contained in this e-mail, or the taking
>
> > of any action based on it, is strictly prohibited. If you are not the
>
> > intended recipient, please notify the sender immediately by return
>
> > e-mail and delete this message.
>
> > 
>
> > >> 
>
> > 
>
> > >> ________________________________
>
> > 
>
> > >> 
>
> > 
>
> > > --------------------------------------------------------------------
>
> > > -
>
> > 
>
> > > To unsubscribe, e-mail: [hidden email]
> <mailto:[hidden email]>
>
> > <mailto:[hidden email]>
>
> > 
>
> > > For additional commands, e-mail: [hidden email]
> <mailto:[hidden email]>
>
> > <mailto:[hidden email]>
>
> > 
>
> > > 
>
> > 
>
> > > 
>
> > 
>
> > > ________________________________
>
> > 
>
> > > 
>
> > 
>
> > > "Virtusa has been recognized as one of the top 20 global IT service
>
> > providers in Everest Group’s 2018 PEAK Matrix Service Provider of the
>
> > Year™ awards; Named as an Outsourcing Leader and an All Star Company
>
> > in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most
>
> > Innovative Technology Company of the Year at the 2017 American
>
> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by
>
> > Information Services Group (ISG)."
>
> > 
>
> > > 
>
> > 
>
> > > ________________________________
>
> > 
>
> > > 
>
> > 
>
> > > This message, including any attachments, contains confidential
>
> > information intended for a specific individual and purpose, and is
>
> > intended for the addressee only. Any unauthorized disclosure, use,
>
> > dissemination, copying, or distribution of this message or any of its
>
> > attachments or the information contained in this e-mail, or the taking
>
> > of any action based on it, is strictly prohibited. If you are not the
>
> > intended recipient, please notify the sender immediately by return
>
> > e-mail and delete this message.
>
> > 
>
> > > 
>
> > 
>
> > > ________________________________
>
> > 
>
> > 
>
> > 
>
> > ---------------------------------------------------------------------
>
> > 
>
> > To unsubscribe, e-mail: [hidden email]
> <mailto:[hidden email]>
>
> > <mailto:[hidden email]>
>
> > 
>
> > For additional commands, e-mail: [hidden email]
> <mailto:[hidden email]>
>
> > <mailto:[hidden email]>
>
> > 
>
> > 
>
> > 
>
> > 
>
> > ----------------------------------------------------------------------
>
> > --
>
> > 
>
> > "Virtusa has been recognized as one of the top 20 global IT service
>
> > providers in Everest Group’s 2018 PEAK Matrix Service Provider of the
>
> > Year™ awards; Named as an Outsourcing Leader and an All Star Company
>
> > in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most
>
> > Innovative Technology Company of the Year at the 2017 American
>
> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by
>
> > Information Services Group (ISG)."
>
> > 
>
> > ----------------------------------------------------------------------
>
> > --
>
> > 
>
> > This message, including any attachments, contains confidential
>
> > information intended for a specific individual and purpose, and is
>
> > intended for the addressee only. Any unauthorized disclosure, use,
>
> > dissemination, copying, or distribution of this message or any of its
>
> > attachments or the information contained in this e-mail, or the taking
>
> > of any action based on it, is strictly prohibited. If you are not the
>
> > intended recipient, please notify the sender immediately by return
>
> > e-mail and delete this message.
>
> > 
>
> > ----------------------------------------------------------------------
>
> > --
>
>  
> ------------------------------------------------------------------------
>
> "Virtusa has been recognized as one of the top 20 global IT service
> providers in Everest Group’s 2018 PEAK Matrix Service Provider of the
> Year™ awards; Named as an Outsourcing Leader and an All Star Company
> in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most
> Innovative Technology Company of the Year at the 2017 American
> Business Awards; Positioned as a Top 15 Sourcing Service Provider by
> Information Services Group (ISG)."
>
> ------------------------------------------------------------------------
>
> This message, including any attachments, contains confidential
> information intended for a specific individual and purpose, and is
> intended for the addressee only. Any unauthorized disclosure, use,
> dissemination, copying, or distribution of this message or any of its
> attachments or the information contained in this e-mail, or the taking
> of any action based on it, is strictly prohibited. If you are not the
> intended recipient, please notify the sender immediately by return
> e-mail and delete this message.
>
> ------------------------------------------------------------------------
Reply | Threaded
Open this post in threaded view
|

RE: Unexpected errors with HTTP Cookie Manager

Nuwan Galkissa Mudalige
STANDARD:

POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://cnollc-cnoiwf-prod-mirror.pegacloud.net/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

POST data:
pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-Security.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmNewPassword=

Cookie Data:
JSESSIONID=D920137AF30975960F41E8FD8A1DA715; Pega-RULES={atn}e3ByfVlXQWR4aFhvVmlpMUZVd1hNdk05RGFNVkZPSGtVOVhlcnM3dEh1WkJoMjlBb0IwUXdHS080UlJ1bzNmeCt3dlBlcHRBdkU1WHMvbjcKcjdCRk9TRmowQT09; AWSALB=jfWea5NiNn/9Av5cSb3A0I5jjlnLqLa2GEvwc6iAmDuVa7/q6QpEdCluR+Ea+61S1UHvtH5wCBvTMTl8EJQsxEwJlyDvESR4uJ7ZKTxyS4DYQw/BuXFy5t+hNxNu


----This is the early request before the above one ------

GET {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/images/pzPegaIcon.ico<https://cnollc-cnoiwf-prod-mirror.pegacloud.net/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/images/pzPegaIcon.ico>

GET data:


Cookie Data:
JSESSIONID=D920137AF30975960F41E8FD8A1DA715; Pega-RULES={atn}e3ByfVlXQWR4aFhvVmlpMUZVd1hNdk05RGFNVkZPSGtVOVhlcnM3dEh1WkJoMjlBb0IwUXdHS080UlJ1bzNmeCt3dlBlcHRBdkU1WHMvbjcKcjdCRk9TRmowQT09; AWSALB=WU/MIz8m6dCbJ4b2lA/80F3Dv6nFWYFs0/A0HmRBccaicAn0/wzmrHIQWZAgG70fDMuJnhJZiuxMYo2c+RHtthncWBEWMVB5mZWvh0gVU6mGXMw9CVATbeZvjTZC

------------------------------------------------------------------------------

Netscape:

Main Request

GET {URL}:443/prweb/QYT6eV92gg3CDLGZYohWIgrej5ulQwPR*/!STANDARD?pzPostData=1479145834<https://cnollc-cnoiwf-prod-mirror.pegacloud.net:443/prweb/QYT6eV92gg3CDLGZYohWIgrej5ulQwPR*/!STANDARD?pzPostData=1479145834>

GET data:


Cookie Data:
Pega-RULES="{atn}e3ByfWpXTlJ5MWR1MGdTVFZINlJ3ZTRTYUlCeU83RGU4YmYzaENCQWl5UU9ENGNZMGsrVk1aZkU1ZTZSaVkwdCtEclZCTmtrK2ZFczVOckEKRDVtQlJteFNpZz09"; JSESSIONID=AC40F21122C2C644AA87DE321EE2A8CB

Sub request – 0

POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://cnollc-cnoiwf-prod-mirror.pegacloud.net/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

POST data:
pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-Security.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmNewPassword=

Cookie Data:
Pega-RULES="{atn}e3ByfWpXTlJ5MWR1MGdTVFZINlJ3ZTRTYUlCeU83RGU4YmYzaENCQWl5UU9ENGNZMGsrVk1aZkU1ZTZSaVkwdCtEclZCTmtrK2ZFczVOckEKRDVtQlJteFNpZz09"; JSESSIONID=AC40F21122C2C644AA87DE321EE2A8CB

Sub request – 1

GET {URL}:443/prweb/QYT6eV92gg3CDLGZYohWIgrej5ulQwPR*/!STANDARD?pzPostData=1479145834<https://cnollc-cnoiwf-prod-mirror.pegacloud.net:443/prweb/QYT6eV92gg3CDLGZYohWIgrej5ulQwPR*/!STANDARD?pzPostData=1479145834>

GET data:


Cookie Data:
JSESSIONID=BD2B9FA757E089E8EB48BCA57D58A981; Pega-RULES=H0Q42G38E7FGPBWXGPRJZ4KVZTZOPDUXV





Regards,

Nuwan



-----Original Message-----
From: Felix Schumacher [mailto:[hidden email]]
Sent: Tuesday, July 16, 2019 3:50 PM
To: JMeter Users List
Subject: Re: Unexpected errors with HTTP Cookie Manager



External email: Exercise caution when opening attachments or clicking on links.



Am 16.07.19 um 21:36 schrieb Nuwan Galkissa Mudalige:

>

> Yes, I can see some. Please refer below.

>

>

>

> *Netscape:*

>

>

>

> POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

>

>

>

> POST data:

>

> pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-S

> ecurity.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmN

> ewPassword=

>

>

>

> Cookie Data:

>

> Pega-RULES="{atn}e3ByfWdZTFh4b3hPSjZ3TXphSzAwSGlodTREdEU2ajRNaTF2eU5le

> nVFS1hueC85YS91ejBSSUkraHNNbm1nMUYvVUxvTnF5aHJIaG5lNmsKU1ZNZDRCblNoZz0

> 9";

> JSESSIONID=22C82AA94B6949FA18D6F18B90593F18

>

>

>

>

>

> *Standard:*

>

>

>

> POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

>

>

>

> POST data:

>

> pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-S

> ecurity.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmN

> ewPassword=

>

>

>

> Cookie Data:

>

> JSESSIONID=579619B9BB5054A3DFCF41122FA61A97;

> Pega-RULES={atn}e3ByfURTYlZMZHdqamdyeGJ4OEZYd2JQYUNvQm0wZllXYncyeHFFOG

> 1jTXpaSWZGNkVtdy9ZVkc2RU9zd2JjWm9CbjJ1SDFTbjAyL0pUT1EKSkNRUnlJalU2UT09

> ;

> AWSALB=ms7WE400/cj+xZZ9fwV4wASiuKa23v3TNxoKcz/OsIZPfmf902BfdF6ZeR0Lo5j

> RonG11GEdiz2J0Ok/KpHj+QyeXWVXdBIqdCKgMupuA0raJDXBQ+3E7CzHY+WU

>



This one has the AWSALB header, while the netscape has an Pega-RULES header. I bet it would be best, when both cookie headers would be present on the request.



Can you check once again, that this isn't a mistake while copying the cookie values?



Can you look at the requests before this request, where the Pega-RULES cookie is being set and report that value?



And it might be best to compare those values to actual values inside of a "real" browser.



Felix



>

>

>

>

>

>

> *Default:*

>

>

>

> POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

>

>

>

> POST data:

>

> pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-S

> ecurity.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmN

> ewPassword=

>

>

>

> Cookie Data:

>

> JSESSIONID=BC5382E7E7F2721AF27BB31E36007653;

> Pega-RULES={atn}e3ByfS9KdXZHNkhrOG5LR1g2RXhURVpLbTJZZVZzUXFsWmhrNm9Hcj

> BpRy9kcTV0akNOUzlmU1NMYVEvcXZ3Z0lhQzI0bVQySVlIZ2hWeDQKWWdJeVpLb2xqUT09

>

>

>

>

>

>

>

> Regards,

>

> Nuwan

>

>

>

> -----Original Message-----

> From: Felix Schumacher [mailto:[hidden email]]

> Sent: Tuesday, July 16, 2019 3:19 PM

> To: JMeter Users List

> Subject: Re: Unexpected errors with HTTP Cookie Manager

>

>

>

> External email: Exercise caution when opening attachments or clicking

> on links.

>

>

>

> Am 16.07.19 um 17:42 schrieb Nuwan Galkissa Mudalige:

>

> >

>

> > Hi Felix,

>

> >

>

> >

>

> >

>

> > Did you get a chance to validate the given request headers ?

>

> >

>

>

>

> The headers look the same to me. Have you looked at the other tab on

> the request? Cookies are displayed on the "request body" tab.

>

>

>

> Are there any differences?

>

>

>

> Felix

>

>

>

> >

>

> >

>

> > Regards,

>

> >

>

> > Nuwan

>

> >

>

> >

>

> >

>

> > *From:* Nuwan Galkissa Mudalige

>

> > *Sent:* Wednesday, July 10, 2019 6:04 PM

>

> > *To:* JMeter Users List

>

> > *Subject:* RE: Unexpected errors with HTTP Cookie Manager

>

> >

>

> >

>

> >

>

> > Hi Felix,

>

> >

>

> >

>

> >

>

> > No errors were captured by server logs. The flow is working fine for

>

> > manual user and when you use nestcape as a cookie policy.

>

> >

>

> >

>

> >

>

> > *Netscape header request:*

>

> >

>

> >

>

> >

>

> > Connection: keep-alive

>

> >

>

> > Referer:

>

> > https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

>

> > <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

> > >

>

> >

>

> > Accept-Language: en-US,en;q=0.9

>

> >

>

> > Origin: https://{URL}<https://%7bURL%7d> <https://%7bURL%7d> <https://%7bURL%7d>

>

> >

>

> > Accept:

>

> > text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,ima

> > ge

>

> > /apng,*/*;q=0.8,application/signed-exchange;v=b3

>

> >

>

> > Upgrade-Insecure-Requests: 1

>

> >

>

> > Content-Type: application/x-www-form-urlencoded

>

> >

>

> > Cache-Control: max-age=0

>

> >

>

> > Accept-Encoding: gzip, deflate, br

>

> >

>

> > User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

>

> > AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100

>

> > Safari/537.36

>

> >

>

> > Content-Length: 186

>

> >

>

> > Host: {URL}

>

> >

>

> >

>

> >

>

> >

>

> >

>

> > *Standard header request:*

>

> >

>

> >

>

> >

>

> > Connection: keep-alive

>

> >

>

> > Referer:

>

> > https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

>

> > <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

> > >

>

> >

>

> > Accept-Language: en-US,en;q=0.9

>

> >

>

> > Origin: https://{URL}<https://%7bURL%7d> <https://%7bURL%7d> <https://%7bURL%7d>

>

> >

>

> > Accept:

>

> > text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,ima

> > ge

>

> > /apng,*/*;q=0.8,application/signed-exchange;v=b3

>

> >

>

> > Upgrade-Insecure-Requests: 1

>

> >

>

> > Content-Type: application/x-www-form-urlencoded

>

> >

>

> > Cache-Control: max-age=0

>

> >

>

> > Accept-Encoding: gzip, deflate, br

>

> >

>

> > User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

>

> > AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100

>

> > Safari/537.36

>

> >

>

> > Content-Length: 186

>

> >

>

> > Host: {URL}

>

> >

>

> >

>

> >

>

> > *Default header request:*

>

> >

>

> >

>

> >

>

> > Connection: keep-alive

>

> >

>

> > Referer:

>

> > https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

>

> > <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

> > >

>

> >

>

> > Accept-Language: en-US,en;q=0.9

>

> >

>

> > Origin: https://{URL}<https://%7bURL%7d> <https://%7bURL%7d> <https://%7bURL%7d>

>

> >

>

> > Accept:

>

> > text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,ima

> > ge

>

> > /apng,*/*;q=0.8,application/signed-exchange;v=b3

>

> >

>

> > Upgrade-Insecure-Requests: 1

>

> >

>

> > Content-Type: application/x-www-form-urlencoded

>

> >

>

> > Cache-Control: max-age=0

>

> >

>

> > Accept-Encoding: gzip, deflate, br

>

> >

>

> > User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

>

> > AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100

>

> > Safari/537.36

>

> >

>

> > Content-Length: 186

>

> >

>

> > Host: {URL}

>

> >

>

> >

>

> >

>

> >

>

> >

>

> > Regards,

>

> >

>

> > Nuwan

>

> >

>

> >

>

> >

>

> > -----Original Message-----

>

> > From: Felix Schumacher [mailto:[hidden email]]

>

> > Sent: Wednesday, July 10, 2019 3:50 PM

>

> > To: [hidden email]<mailto:[hidden email]> <mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > Subject: Re: Unexpected errors with HTTP Cookie Manager

>

> >

>

> >

>

> >

>

> > External email: Exercise caution when opening attachments or

> > clicking

>

> > on links.

>

> >

>

> >

>

> >

>

> > Am 10.07.19 um 21:45 schrieb Nuwan Galkissa Mudalige:

>

> >

>

> > > Hello Felix,

>

> >

>

> > >

>

> >

>

> > > Can you suggest me something I need to put on the Cookie Manager

>

> > with a policy ? sharing a sample test plan is very difficult due

>

> > security policies and it is the place where user is logging.

>

> >

>

> >

>

> >

>

> > I would have a look at the request headers instead of the response

>

> > headers and see, whether there are any differences. Maybe you could

>

> > post those (redacted when there are private details like credentials).

>

> >

>

> >

>

> >

>

> > The cookie manager is probably best when used in default mode.

>

> >

>

> >

>

> >

>

> > Have a look at the server and watch out for error messages that are

>

> > shown/logged when rendering the "500" error pages.

>

> >

>

> >

>

> >

>

> > Felix

>

> >

>

> >

>

> >

>

> > >

>

> >

>

> > > Please help.

>

> >

>

> > >

>

> >

>

> > > Regards,

>

> >

>

> > > Nuwan

>

> >

>

> > >

>

> >

>

> > >

>

> >

>

> > > -----Original Message-----

>

> >

>

> > > From: Felix Schumacher [mailto:[hidden email]]

>

> >

>

> > > Sent: Wednesday, July 10, 2019 3:33 PM

>

> >

>

> > > To: [hidden email]<mailto:[hidden email]> <mailto:[hidden email]>

> <mailto:[hidden email]>

>

> >

>

> > > Subject: Re: Unexpected errors with HTTP Cookie Manager

>

> >

>

> > >

>

> >

>

> > > External email: Exercise caution when opening attachments or

>

> > clicking on links.

>

> >

>

> > >

>

> >

>

> > > Am 08.07.19 um 17:30 schrieb Nuwan Galkissa Mudalige:

>

> >

>

> > >> Hi Felix,

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Thanks for your response.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> This is the response header I have seen on View results tree

> > >> while

>

> > using "Netscape" cookie policy and flow was going good. But as I

>

> > stated (stacktrace below) its produced that error log.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> HTTP/1.1 200 OK

>

> >

>

> > >>

>

> >

>

> > >> Date: Mon, 08 Jul 2019 15:11:54 GMT

>

> >

>

> > >>

>

> >

>

> > >> Content-Type: text/html;charset=UTF-8

>

> >

>

> > >>

>

> >

>

> > >> Transfer-Encoding: chunked

>

> >

>

> > >>

>

> >

>

> > >> Connection: keep-alive

>

> >

>

> > >>

>

> >

>

> > >> Set-Cookie:

>

> >

>

> > >> AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx

> > >> 8o

>

> > >> h4

>

> >

>

> > >> 4

>

> >

>

> > >> Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c;

>

> >

>

> > >> Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/

>

> >

>

> > >>

>

> >

>

> > >> Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374;

>

> > >> Path=/prweb;

>

> >

>

> > >> Secure; HttpOnly

>

> >

>

> > >>

>

> >

>

> > >> Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8;

>

> > >> Version=1;

>

> >

>

> > >> Comment="PegaRULES session tracking"; Path=/prweb

>

> >

>

> > >>

>

> >

>

> > >> Cache-Control: no-cache, no-store, must-revalidate

>

> >

>

> > >>

>

> >

>

> > >> Pragma: no-cache

>

> >

>

> > >>

>

> >

>

> > >> Expires: Thu, 01 Dec 1994 16:00:00 GMT

>

> >

>

> > >>

>

> >

>

> > >> Server: server

>

> >

>

> > >>

>

> >

>

> > >> Content-Encoding: gzip

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> While using "Standard" as cookie policy, script getting failed

>

> > occurring 500 error with response header as below but no other

> > errors

>

> > produced in log.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> HTTP/1.1 500 Internal Server Error

>

> >

>

> > >>

>

> >

>

> > >> Date: Mon, 08 Jul 2019 15:14:06 GMT

>

> >

>

> > >>

>

> >

>

> > >> Content-Type: text/html;charset=UTF-8

>

> >

>

> > >>

>

> >

>

> > >> Content-Length: 3608

>

> >

>

> > >>

>

> >

>

> > >> Connection: keep-alive

>

> >

>

> > >>

>

> >

>

> > >> Set-Cookie:

>

> >

>

> > >> AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyL

> > >> S+

>

> > >> B5

>

> >

>

> > >> K TiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3;

>

> >

>

> > >> Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/

>

> >

>

> > >>

>

> >

>

> > >> Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO;

>

> > >> Version=1;

>

> >

>

> > >> Comment="PegaRULES session tracking"; Path=/prweb

>

> >

>

> > >>

>

> >

>

> > >> X-Content-Security-Policy-Report-Only: base-uri *; child-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; form-action *; frame-ancestors *;

>

> >

>

> > >> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>

> >

>

> > >> mediastream:; img-src * data: blob: filesystem: mediastream:;

>

> >

>

> > >> media-src * data: blob: filesystem: mediastream:; object-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>

> >

>

> > >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>

> >

>

> > >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem:

> > >> mediastream:;

>

> >

>

> > >> default-src *; report-uri (URL)

>

> >

>

> > >>

>

> >

>

> > >> X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob:

>

> >

>

> > >> filesystem: mediastream:; form-action *; frame-ancestors *;

>

> >

>

> > >> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>

> >

>

> > >> mediastream:; img-src * data: blob: filesystem: mediastream:;

>

> >

>

> > >> media-src * data: blob: filesystem: mediastream:; object-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>

> >

>

> > >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>

> >

>

> > >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem:

> > >> mediastream:;

>

> >

>

> > >> default-src *; report-uri (URL)

>

> >

>

> > >>

>

> >

>

> > >> Content-Security-Policy-Report-Only: base-uri *; child-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; form-action *; frame-ancestors *;

>

> >

>

> > >> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>

> >

>

> > >> mediastream:; img-src * data: blob: filesystem: mediastream:;

>

> >

>

> > >> media-src * data: blob: filesystem: mediastream:; object-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>

> >

>

> > >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>

> >

>

> > >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem:

> > >> mediastream:;

>

> >

>

> > >> default-src *; report-uri (URL)

>

> >

>

> > >>

>

> >

>

> > >> Cache-Control: max-age=0

>

> >

>

> > >>

>

> >

>

> > >> Pragma: no-cache

>

> >

>

> > >>

>

> >

>

> > >> Expires: Thu, 01 Dec 1994 16:00:00 GMT

>

> >

>

> > >>

>

> >

>

> > >> Server: server

>

> >

>

> > >>

>

> >

>

> > > As stated before. A minimal test plan to reproduce would really help.

>

> >

>

> > >

>

> >

>

> > > Apart from that. A status code of 500 means that the server

> > > couldn't

>

> > cope in what ever form and throws an error. The parsing of the

> > cookie

>

> > (we get a set-cookie header) happens after the servers response. So

> > it

>

> > would probably be better to look at what you send to the server

>

> > instead of looking at what you receive.

>

> >

>

> > >

>

> >

>

> > > Felix

>

> >

>

> > >

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Regards,

>

> >

>

> > >>

>

> >

>

> > >> Nuwan

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> -----Original Message-----

>

> >

>

> > >> From: Felix Schumacher [mailto:[hidden email]]

>

> >

>

> > >> Sent: Saturday, July 06, 2019 6:00 AM

>

> >

>

> > >> To: [hidden email]<mailto:[hidden email]> <mailto:[hidden email]>

> <mailto:[hidden email]>

>

> >

>

> > >> Subject: Re: Unexpected errors with HTTP Cookie Manager

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> External email: Exercise caution when opening attachments or

>

> > clicking on links.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:

>

> >

>

> > >>

>

> >

>

> > >>> Greetings !!

>

> >

>

> > >>> I'm in a process of building performance scripting for Pega 7.4

>

> > cloud application.

>

> >

>

> > >>> My script is getting failed if I use any cookie policies except

>

> > "netscape" from the HTTP Cookie Manager. Though it works with

>

> > "netscape" cookie policy Jmeter creates following error entries in

> > the

>

> > log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.

>

> >

>

> > >>> Is this something known product issue which can be planned to

> > >>> fix

>

> > with later version OR if you have an alternative technical solution

>

> > would be really helpful ?

>

> >

>

> > >>

>

> >

>

> > >> The stacktrace looks like you used the Netscape parser for the

>

> > Cookie Manager. That parser will not except cookies with an "expires"

>

> > attribute.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Please post a minimal test that shows the problem, so that we can

>

> >

>

> > >> reproduce it. You might want to have a look at

>

> >

>

> > >>

>

> >

>

> > >>

>

> > https://bz.a

>

> > pache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&amp;data=02%7C01%7C

> > nm

>

> > udalige%40virtusa.com%7C70642cdfd04a4388711b08d70a228a13%7C0d85160c5

> > 89

>

> > 944caacc8db1501b993b6%7C0%7C0%7C636989015789471278&amp;sdata=Y3dUQfQ

> > cs

>

> > JLG8WXsOVZVk7UW0MbAQNaN7DYITQPNXzA%3D&amp;reserved=0

>

> > where suhail reports problems parsing cookies, too. Attached to the

>

> > bugzilla entry is a small test plan, that shows that JMeter has no

>

> > problem parsing the sample AWS cookie that suhail gave us. You could

>

> > try to change that cookie with one of your problematic cookies.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> In case you meant that the netscape parser doesn't work with the

>

> > cookie, but all others do: this is intended. In doubt, use the

> > default

>

> > cookie parser.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Regards

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Felix

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>> This is the error log:

>

> >

>

> > >>> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler:

> > >>> Unable

>

> >

>

> > >>> to add the cookie

>

> >

>

> > >>> org.apache.http.cookie.MalformedCookieException: Invalid 'expires'

>

> > attribute: Fri, 12 Jul 2019 14:20:28 GMT

>

> >

>

> > >>>                 at

>

> > org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHa

> > nd

>

> > ler.java:64)

>

> > ~[httpclient-4.5.7.jar:4.5.7]

>

> >

>

> > >>>                 at

>

> > org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java

> > :1

>

> > 13)

>

> > ~[httpclient-4.5.7.jar:4.5.7]

>

> >

>

> > >>>                 at

>

> > org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.

>

> > java:134)

>

> > ~[httpclient-4.5.7.jar:4.5.7]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFr

> > om

>

> > Header(HC4CookieHandler.java:125)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromH

> > ea

>

> > der(CookieManager.java:361)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCo

> > ok

>

> > ies(HTTPHC4Impl.java:1729)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Im

> > pl

>

> > .java:652)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTP

> > Sa

>

> > mplerProxy.java:67)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPS

> > am

>

> > plerBase.java:1231)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPS

> > am

>

> > plerBase.java:1220)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:

> > 62

>

> > 2)

>

> > [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterTh

> > re

>

> > ad.java:546)

>

> > [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.j

> > av

>

> > a:486)

>

> > [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253)

>

> > [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at java.lang.Thread.run(Unknown Source)

>

> >

>

> > >>> [?:1.8.0_211] Regards, Nuwan ________________________________

>

> >

>

> > >>> "Virtusa has been recognized as one of the top 20 global IT

>

> > service providers in Everest Group's 2018 PEAK Matrix Service

> > Provider

>

> > of the Year(tm) awards; Named as an Outsourcing Leader and an All

> > Star

>

> > Company in IAOP's 2018 Global Outsourcing 100; Recognized as the

> > Most

>

> > Innovative Technology Company of the Year at the 2017 American

>

> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by

>

> > Information Services Group (ISG)."

>

> >

>

> > >>> ________________________________

>

> >

>

> > >>> This message, including any attachments, contains confidential

>

> > information intended for a specific individual and purpose, and is

>

> > intended for the addressee only. Any unauthorized disclosure, use,

>

> > dissemination, copying, or distribution of this message or any of

> > its

>

> > attachments or the information contained in this e-mail, or the

> > taking

>

> > of any action based on it, is strictly prohibited. If you are not

> > the

>

> > intended recipient, please notify the sender immediately by return

>

> > e-mail and delete this message.

>

> >

>

> > >>> ________________________________

>

> >

>

> > >>

>

> >

>

> > >> -----------------------------------------------------------------

> > >> --

>

> > >> --

>

> >

>

> > >>

>

> >

>

> > >> To unsubscribe, e-mail:

>

> >

>

> > >>

>

> >

> [hidden email]<mailto:[hidden email]<mailto:[hidden email]%3cmailto:[hidden email]>

> <mailto:[hidden email]%3cmailto:user-unsubscribe@j

> meter.apa>

>

> > <mailto:[hidden email]%3cmailto:user-unsubscribe

> > @j

>

> > meter.apa>

>

> >

>

> > >> c

>

> >

>

> > >> he.org>

>

> >

>

> > >>

>

> >

>

> > >> For additional commands, e-mail:

>

> >

>

> > >> [hidden email]<mailto:[hidden email]<mailto:[hidden email]%3cmailto:[hidden email]>

> <mailto:[hidden email]%3cmailto:[hidden email]

> rg>

>

> > <mailto:[hidden email]%3cmailto:[hidden email]

> > .o

>

> > rg>>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> ________________________________

>

> >

>

> > >>

>

> >

>

> > >> "Virtusa has been recognized as one of the top 20 global IT

> > >> service

>

> > providers in Everest Group's 2018 PEAK Matrix Service Provider of

> > the

>

> > Year(tm) awards; Named as an Outsourcing Leader and an All Star

>

> > Company in IAOP's 2018 Global Outsourcing 100; Recognized as the

> > Most

>

> > Innovative Technology Company of the Year at the 2017 American

>

> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by

>

> > Information Services Group (ISG)."

>

> >

>

> > >>

>

> >

>

> > >> ________________________________

>

> >

>

> > >>

>

> >

>

> > >> This message, including any attachments, contains confidential

>

> > information intended for a specific individual and purpose, and is

>

> > intended for the addressee only. Any unauthorized disclosure, use,

>

> > dissemination, copying, or distribution of this message or any of

> > its

>

> > attachments or the information contained in this e-mail, or the

> > taking

>

> > of any action based on it, is strictly prohibited. If you are not

> > the

>

> > intended recipient, please notify the sender immediately by return

>

> > e-mail and delete this message.

>

> >

>

> > >>

>

> >

>

> > >> ________________________________

>

> >

>

> > >>

>

> >

>

> > > ------------------------------------------------------------------

> > > --

>

> > > -

>

> >

>

> > > To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > <mailto:[hidden email]>

>

> >

>

> > > For additional commands, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > <mailto:[hidden email]>

>

> >

>

> > >

>

> >

>

> > >

>

> >

>

> > > ________________________________

>

> >

>

> > >

>

> >

>

> > > "Virtusa has been recognized as one of the top 20 global IT

> > > service

>

> > providers in Everest Group’s 2018 PEAK Matrix Service Provider of

> > the

>

> > Year™ awards; Named as an Outsourcing Leader and an All Star Company

>

> > in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most

>

> > Innovative Technology Company of the Year at the 2017 American

>

> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by

>

> > Information Services Group (ISG)."

>

> >

>

> > >

>

> >

>

> > > ________________________________

>

> >

>

> > >

>

> >

>

> > > This message, including any attachments, contains confidential

>

> > information intended for a specific individual and purpose, and is

>

> > intended for the addressee only. Any unauthorized disclosure, use,

>

> > dissemination, copying, or distribution of this message or any of

> > its

>

> > attachments or the information contained in this e-mail, or the

> > taking

>

> > of any action based on it, is strictly prohibited. If you are not

> > the

>

> > intended recipient, please notify the sender immediately by return

>

> > e-mail and delete this message.

>

> >

>

> > >

>

> >

>

> > > ________________________________

>

> >

>

> >

>

> >

>

> > --------------------------------------------------------------------

> > -

>

> >

>

> > To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > <mailto:[hidden email]>

>

> >

>

> > For additional commands, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > <mailto:[hidden email]>

>

> >

>

> >

>

> >

>

> >

>

> > --------------------------------------------------------------------

> > --

>

> > --

>

> >

>

> > "Virtusa has been recognized as one of the top 20 global IT service

>

> > providers in Everest Group’s 2018 PEAK Matrix Service Provider of

> > the

>

> > Year™ awards; Named as an Outsourcing Leader and an All Star Company

>

> > in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most

>

> > Innovative Technology Company of the Year at the 2017 American

>

> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by

>

> > Information Services Group (ISG)."

>

> >

>

> > --------------------------------------------------------------------

> > --

>

> > --

>

> >

>

> > This message, including any attachments, contains confidential

>

> > information intended for a specific individual and purpose, and is

>

> > intended for the addressee only. Any unauthorized disclosure, use,

>

> > dissemination, copying, or distribution of this message or any of

> > its

>

> > attachments or the information contained in this e-mail, or the

> > taking

>

> > of any action based on it, is strictly prohibited. If you are not

> > the

>

> > intended recipient, please notify the sender immediately by return

>

> > e-mail and delete this message.

>

> >

>

> > --------------------------------------------------------------------

> > --

>

> > --

>

>

> ----------------------------------------------------------------------

> --

>

> "Virtusa has been recognized as one of the top 20 global IT service

> providers in Everest Group’s 2018 PEAK Matrix Service Provider of the

> Year™ awards; Named as an Outsourcing Leader and an All Star Company

> in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most

> Innovative Technology Company of the Year at the 2017 American

> Business Awards; Positioned as a Top 15 Sourcing Service Provider by

> Information Services Group (ISG)."

>

> ----------------------------------------------------------------------

> --

>

> This message, including any attachments, contains confidential

> information intended for a specific individual and purpose, and is

> intended for the addressee only. Any unauthorized disclosure, use,

> dissemination, copying, or distribution of this message or any of its

> attachments or the information contained in this e-mail, or the taking

> of any action based on it, is strictly prohibited. If you are not the

> intended recipient, please notify the sender immediately by return

> e-mail and delete this message.

>

> ----------------------------------------------------------------------

> --


________________________________

"Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group’s 2018 PEAK Matrix Service Provider of the Year™ awards; Named as an Outsourcing Leader and an All Star Company in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

________________________________

This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

________________________________
Reply | Threaded
Open this post in threaded view
|

RE: Unexpected errors with HTTP Cookie Manager

Nuwan Galkissa Mudalige
In reply to this post by Felix Schumacher
Hi Felix,

Any thoughts please.

Regards,
Nuwan

From: Nuwan Galkissa Mudalige
Sent: Tuesday, July 16, 2019 4:31 PM
To: JMeter Users List; '[hidden email]'
Subject: RE: Unexpected errors with HTTP Cookie Manager

STANDARD:

POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://cnollc-cnoiwf-prod-mirror.pegacloud.net/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

POST data:
pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-Security.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmNewPassword=

Cookie Data:
JSESSIONID=D920137AF30975960F41E8FD8A1DA715; Pega-RULES={atn}e3ByfVlXQWR4aFhvVmlpMUZVd1hNdk05RGFNVkZPSGtVOVhlcnM3dEh1WkJoMjlBb0IwUXdHS080UlJ1bzNmeCt3dlBlcHRBdkU1WHMvbjcKcjdCRk9TRmowQT09; AWSALB=jfWea5NiNn/9Av5cSb3A0I5jjlnLqLa2GEvwc6iAmDuVa7/q6QpEdCluR+Ea+61S1UHvtH5wCBvTMTl8EJQsxEwJlyDvESR4uJ7ZKTxyS4DYQw/BuXFy5t+hNxNu


----This is the early request before the above one ------

GET {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/images/pzPegaIcon.ico<https://cnollc-cnoiwf-prod-mirror.pegacloud.net/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/images/pzPegaIcon.ico>

GET data:


Cookie Data:
JSESSIONID=D920137AF30975960F41E8FD8A1DA715; Pega-RULES={atn}e3ByfVlXQWR4aFhvVmlpMUZVd1hNdk05RGFNVkZPSGtVOVhlcnM3dEh1WkJoMjlBb0IwUXdHS080UlJ1bzNmeCt3dlBlcHRBdkU1WHMvbjcKcjdCRk9TRmowQT09; AWSALB=WU/MIz8m6dCbJ4b2lA/80F3Dv6nFWYFs0/A0HmRBccaicAn0/wzmrHIQWZAgG70fDMuJnhJZiuxMYo2c+RHtthncWBEWMVB5mZWvh0gVU6mGXMw9CVATbeZvjTZC

------------------------------------------------------------------------------

Netscape:

Main Request

GET {URL}:443/prweb/QYT6eV92gg3CDLGZYohWIgrej5ulQwPR*/!STANDARD?pzPostData=1479145834<https://cnollc-cnoiwf-prod-mirror.pegacloud.net:443/prweb/QYT6eV92gg3CDLGZYohWIgrej5ulQwPR*/!STANDARD?pzPostData=1479145834>

GET data:


Cookie Data:
Pega-RULES="{atn}e3ByfWpXTlJ5MWR1MGdTVFZINlJ3ZTRTYUlCeU83RGU4YmYzaENCQWl5UU9ENGNZMGsrVk1aZkU1ZTZSaVkwdCtEclZCTmtrK2ZFczVOckEKRDVtQlJteFNpZz09"; JSESSIONID=AC40F21122C2C644AA87DE321EE2A8CB

Sub request – 0

POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://cnollc-cnoiwf-prod-mirror.pegacloud.net/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

POST data:
pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-Security.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmNewPassword=

Cookie Data:
Pega-RULES="{atn}e3ByfWpXTlJ5MWR1MGdTVFZINlJ3ZTRTYUlCeU83RGU4YmYzaENCQWl5UU9ENGNZMGsrVk1aZkU1ZTZSaVkwdCtEclZCTmtrK2ZFczVOckEKRDVtQlJteFNpZz09"; JSESSIONID=AC40F21122C2C644AA87DE321EE2A8CB

Sub request – 1

GET {URL}:443/prweb/QYT6eV92gg3CDLGZYohWIgrej5ulQwPR*/!STANDARD?pzPostData=1479145834<https://cnollc-cnoiwf-prod-mirror.pegacloud.net:443/prweb/QYT6eV92gg3CDLGZYohWIgrej5ulQwPR*/!STANDARD?pzPostData=1479145834>

GET data:


Cookie Data:
JSESSIONID=BD2B9FA757E089E8EB48BCA57D58A981; Pega-RULES=H0Q42G38E7FGPBWXGPRJZ4KVZTZOPDUXV





Regards,

Nuwan



-----Original Message-----
From: Felix Schumacher [mailto:[hidden email]]
Sent: Tuesday, July 16, 2019 3:50 PM
To: JMeter Users List
Subject: Re: Unexpected errors with HTTP Cookie Manager



External email: Exercise caution when opening attachments or clicking on links.



Am 16.07.19 um 21:36 schrieb Nuwan Galkissa Mudalige:

>

> Yes, I can see some. Please refer below.

>

>

>

> *Netscape:*

>

>

>

> POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

>

>

>

> POST data:

>

> pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-S

> ecurity.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmN

> ewPassword=

>

>

>

> Cookie Data:

>

> Pega-RULES="{atn}e3ByfWdZTFh4b3hPSjZ3TXphSzAwSGlodTREdEU2ajRNaTF2eU5le

> nVFS1hueC85YS91ejBSSUkraHNNbm1nMUYvVUxvTnF5aHJIaG5lNmsKU1ZNZDRCblNoZz0

> 9";

> JSESSIONID=22C82AA94B6949FA18D6F18B90593F18

>

>

>

>

>

> *Standard:*

>

>

>

> POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

>

>

>

> POST data:

>

> pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-S

> ecurity.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmN

> ewPassword=

>

>

>

> Cookie Data:

>

> JSESSIONID=579619B9BB5054A3DFCF41122FA61A97;

> Pega-RULES={atn}e3ByfURTYlZMZHdqamdyeGJ4OEZYd2JQYUNvQm0wZllXYncyeHFFOG

> 1jTXpaSWZGNkVtdy9ZVkc2RU9zd2JjWm9CbjJ1SDFTbjAyL0pUT1EKSkNRUnlJalU2UT09

> ;

> AWSALB=ms7WE400/cj+xZZ9fwV4wASiuKa23v3TNxoKcz/OsIZPfmf902BfdF6ZeR0Lo5j

> RonG11GEdiz2J0Ok/KpHj+QyeXWVXdBIqdCKgMupuA0raJDXBQ+3E7CzHY+WU

>



This one has the AWSALB header, while the netscape has an Pega-RULES header. I bet it would be best, when both cookie headers would be present on the request.



Can you check once again, that this isn't a mistake while copying the cookie values?



Can you look at the requests before this request, where the Pega-RULES cookie is being set and report that value?



And it might be best to compare those values to actual values inside of a "real" browser.



Felix



>

>

>

>

>

>

> *Default:*

>

>

>

> POST {URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

>

>

>

> POST data:

>

> pzAuth=guest&UserIdentifier={UserID}&Password={PW}&pyActivity%3DCode-S

> ecurity.Login=&lockScreenID=&lockScreenPassword=&newPassword=&confirmN

> ewPassword=

>

>

>

> Cookie Data:

>

> JSESSIONID=BC5382E7E7F2721AF27BB31E36007653;

> Pega-RULES={atn}e3ByfS9KdXZHNkhrOG5LR1g2RXhURVpLbTJZZVZzUXFsWmhrNm9Hcj

> BpRy9kcTV0akNOUzlmU1NMYVEvcXZ3Z0lhQzI0bVQySVlIZ2hWeDQKWWdJeVpLb2xqUT09

>

>

>

>

>

>

>

> Regards,

>

> Nuwan

>

>

>

> -----Original Message-----

> From: Felix Schumacher [mailto:[hidden email]]

> Sent: Tuesday, July 16, 2019 3:19 PM

> To: JMeter Users List

> Subject: Re: Unexpected errors with HTTP Cookie Manager

>

>

>

> External email: Exercise caution when opening attachments or clicking

> on links.

>

>

>

> Am 16.07.19 um 17:42 schrieb Nuwan Galkissa Mudalige:

>

> >

>

> > Hi Felix,

>

> >

>

> >

>

> >

>

> > Did you get a chance to validate the given request headers ?

>

> >

>

>

>

> The headers look the same to me. Have you looked at the other tab on

> the request? Cookies are displayed on the "request body" tab.

>

>

>

> Are there any differences?

>

>

>

> Felix

>

>

>

> >

>

> >

>

> > Regards,

>

> >

>

> > Nuwan

>

> >

>

> >

>

> >

>

> > *From:* Nuwan Galkissa Mudalige

>

> > *Sent:* Wednesday, July 10, 2019 6:04 PM

>

> > *To:* JMeter Users List

>

> > *Subject:* RE: Unexpected errors with HTTP Cookie Manager

>

> >

>

> >

>

> >

>

> > Hi Felix,

>

> >

>

> >

>

> >

>

> > No errors were captured by server logs. The flow is working fine for

>

> > manual user and when you use nestcape as a cookie policy.

>

> >

>

> >

>

> >

>

> > *Netscape header request:*

>

> >

>

> >

>

> >

>

> > Connection: keep-alive

>

> >

>

> > Referer:

>

> > https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

>

> > <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

> > >

>

> >

>

> > Accept-Language: en-US,en;q=0.9

>

> >

>

> > Origin: https://{URL}<https://%7bURL%7d> <https://%7bURL%7d> <https://%7bURL%7d>

>

> >

>

> > Accept:

>

> > text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,ima

> > ge

>

> > /apng,*/*;q=0.8,application/signed-exchange;v=b3

>

> >

>

> > Upgrade-Insecure-Requests: 1

>

> >

>

> > Content-Type: application/x-www-form-urlencoded

>

> >

>

> > Cache-Control: max-age=0

>

> >

>

> > Accept-Encoding: gzip, deflate, br

>

> >

>

> > User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

>

> > AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100

>

> > Safari/537.36

>

> >

>

> > Content-Length: 186

>

> >

>

> > Host: {URL}

>

> >

>

> >

>

> >

>

> >

>

> >

>

> > *Standard header request:*

>

> >

>

> >

>

> >

>

> > Connection: keep-alive

>

> >

>

> > Referer:

>

> > https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

>

> > <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

> > >

>

> >

>

> > Accept-Language: en-US,en;q=0.9

>

> >

>

> > Origin: https://{URL}<https://%7bURL%7d> <https://%7bURL%7d> <https://%7bURL%7d>

>

> >

>

> > Accept:

>

> > text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,ima

> > ge

>

> > /apng,*/*;q=0.8,application/signed-exchange;v=b3

>

> >

>

> > Upgrade-Insecure-Requests: 1

>

> >

>

> > Content-Type: application/x-www-form-urlencoded

>

> >

>

> > Cache-Control: max-age=0

>

> >

>

> > Accept-Encoding: gzip, deflate, br

>

> >

>

> > User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

>

> > AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100

>

> > Safari/537.36

>

> >

>

> > Content-Length: 186

>

> >

>

> > Host: {URL}

>

> >

>

> >

>

> >

>

> > *Default header request:*

>

> >

>

> >

>

> >

>

> > Connection: keep-alive

>

> >

>

> > Referer:

>

> > https://{URL}/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD<https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

> <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD>

>

> > <https://%7bURL%7d/prweb/beEBp4uRVTogorRwSwWqbOtn9IL2fwdI*/!STANDARD

> > >

>

> >

>

> > Accept-Language: en-US,en;q=0.9

>

> >

>

> > Origin: https://{URL}<https://%7bURL%7d> <https://%7bURL%7d> <https://%7bURL%7d>

>

> >

>

> > Accept:

>

> > text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,ima

> > ge

>

> > /apng,*/*;q=0.8,application/signed-exchange;v=b3

>

> >

>

> > Upgrade-Insecure-Requests: 1

>

> >

>

> > Content-Type: application/x-www-form-urlencoded

>

> >

>

> > Cache-Control: max-age=0

>

> >

>

> > Accept-Encoding: gzip, deflate, br

>

> >

>

> > User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

>

> > AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.100

>

> > Safari/537.36

>

> >

>

> > Content-Length: 186

>

> >

>

> > Host: {URL}

>

> >

>

> >

>

> >

>

> >

>

> >

>

> > Regards,

>

> >

>

> > Nuwan

>

> >

>

> >

>

> >

>

> > -----Original Message-----

>

> > From: Felix Schumacher [mailto:[hidden email]]

>

> > Sent: Wednesday, July 10, 2019 3:50 PM

>

> > To: [hidden email]<mailto:[hidden email]> <mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > Subject: Re: Unexpected errors with HTTP Cookie Manager

>

> >

>

> >

>

> >

>

> > External email: Exercise caution when opening attachments or

> > clicking

>

> > on links.

>

> >

>

> >

>

> >

>

> > Am 10.07.19 um 21:45 schrieb Nuwan Galkissa Mudalige:

>

> >

>

> > > Hello Felix,

>

> >

>

> > >

>

> >

>

> > > Can you suggest me something I need to put on the Cookie Manager

>

> > with a policy ? sharing a sample test plan is very difficult due

>

> > security policies and it is the place where user is logging.

>

> >

>

> >

>

> >

>

> > I would have a look at the request headers instead of the response

>

> > headers and see, whether there are any differences. Maybe you could

>

> > post those (redacted when there are private details like credentials).

>

> >

>

> >

>

> >

>

> > The cookie manager is probably best when used in default mode.

>

> >

>

> >

>

> >

>

> > Have a look at the server and watch out for error messages that are

>

> > shown/logged when rendering the "500" error pages.

>

> >

>

> >

>

> >

>

> > Felix

>

> >

>

> >

>

> >

>

> > >

>

> >

>

> > > Please help.

>

> >

>

> > >

>

> >

>

> > > Regards,

>

> >

>

> > > Nuwan

>

> >

>

> > >

>

> >

>

> > >

>

> >

>

> > > -----Original Message-----

>

> >

>

> > > From: Felix Schumacher [mailto:[hidden email]]

>

> >

>

> > > Sent: Wednesday, July 10, 2019 3:33 PM

>

> >

>

> > > To: [hidden email]<mailto:[hidden email]> <mailto:[hidden email]>

> <mailto:[hidden email]>

>

> >

>

> > > Subject: Re: Unexpected errors with HTTP Cookie Manager

>

> >

>

> > >

>

> >

>

> > > External email: Exercise caution when opening attachments or

>

> > clicking on links.

>

> >

>

> > >

>

> >

>

> > > Am 08.07.19 um 17:30 schrieb Nuwan Galkissa Mudalige:

>

> >

>

> > >> Hi Felix,

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Thanks for your response.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> This is the response header I have seen on View results tree

> > >> while

>

> > using "Netscape" cookie policy and flow was going good. But as I

>

> > stated (stacktrace below) its produced that error log.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> HTTP/1.1 200 OK

>

> >

>

> > >>

>

> >

>

> > >> Date: Mon, 08 Jul 2019 15:11:54 GMT

>

> >

>

> > >>

>

> >

>

> > >> Content-Type: text/html;charset=UTF-8

>

> >

>

> > >>

>

> >

>

> > >> Transfer-Encoding: chunked

>

> >

>

> > >>

>

> >

>

> > >> Connection: keep-alive

>

> >

>

> > >>

>

> >

>

> > >> Set-Cookie:

>

> >

>

> > >> AWSALB=a43vUysH+nYh+vMTmlxI51GVYW5NIpVq43syRhz6SjKmdYPjHihYDogxHx

> > >> 8o

>

> > >> h4

>

> >

>

> > >> 4

>

> >

>

> > >> Bsb+cj/hO7PRmY74IQ+vJqEU1Em/dqR4jFDFm83zbP4uI3hTmAW7e2E0OsR2c;

>

> >

>

> > >> Expires=Mon, 15 Jul 2019 15:11:54 GMT; Path=/

>

> >

>

> > >>

>

> >

>

> > >> Set-Cookie: JSESSIONID=D1429B51C989CAC25C6A0B6C32C91374;

>

> > >> Path=/prweb;

>

> >

>

> > >> Secure; HttpOnly

>

> >

>

> > >>

>

> >

>

> > >> Set-Cookie: Pega-RULES=HFO5M1MF3WBPFYB4E5TYIL2HXHD1WA1N8;

>

> > >> Version=1;

>

> >

>

> > >> Comment="PegaRULES session tracking"; Path=/prweb

>

> >

>

> > >>

>

> >

>

> > >> Cache-Control: no-cache, no-store, must-revalidate

>

> >

>

> > >>

>

> >

>

> > >> Pragma: no-cache

>

> >

>

> > >>

>

> >

>

> > >> Expires: Thu, 01 Dec 1994 16:00:00 GMT

>

> >

>

> > >>

>

> >

>

> > >> Server: server

>

> >

>

> > >>

>

> >

>

> > >> Content-Encoding: gzip

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> While using "Standard" as cookie policy, script getting failed

>

> > occurring 500 error with response header as below but no other

> > errors

>

> > produced in log.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> HTTP/1.1 500 Internal Server Error

>

> >

>

> > >>

>

> >

>

> > >> Date: Mon, 08 Jul 2019 15:14:06 GMT

>

> >

>

> > >>

>

> >

>

> > >> Content-Type: text/html;charset=UTF-8

>

> >

>

> > >>

>

> >

>

> > >> Content-Length: 3608

>

> >

>

> > >>

>

> >

>

> > >> Connection: keep-alive

>

> >

>

> > >>

>

> >

>

> > >> Set-Cookie:

>

> >

>

> > >> AWSALB=vxunHR9QhZ2s8+gAmj9QIAuRRDT1wVNzV04qNcvs/tDjcxl3jb3PoRTjyL

> > >> S+

>

> > >> B5

>

> >

>

> > >> K TiAVtChi14ynOTfHKSHfXHFuAeSw4HXrrP5x/pZsjaN+9Lt2Mqvtr8THIJDs3;

>

> >

>

> > >> Expires=Mon, 15 Jul 2019 15:14:06 GMT; Path=/

>

> >

>

> > >>

>

> >

>

> > >> Set-Cookie: Pega-RULES=HTTPDVX31HWKJYWLSFW41O8AFCCHWN8OO;

>

> > >> Version=1;

>

> >

>

> > >> Comment="PegaRULES session tracking"; Path=/prweb

>

> >

>

> > >>

>

> >

>

> > >> X-Content-Security-Policy-Report-Only: base-uri *; child-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; form-action *; frame-ancestors *;

>

> >

>

> > >> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>

> >

>

> > >> mediastream:; img-src * data: blob: filesystem: mediastream:;

>

> >

>

> > >> media-src * data: blob: filesystem: mediastream:; object-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>

> >

>

> > >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>

> >

>

> > >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem:

> > >> mediastream:;

>

> >

>

> > >> default-src *; report-uri (URL)

>

> >

>

> > >>

>

> >

>

> > >> X-WebKit-CSP-Report-Only: base-uri *; child-src * data: blob:

>

> >

>

> > >> filesystem: mediastream:; form-action *; frame-ancestors *;

>

> >

>

> > >> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>

> >

>

> > >> mediastream:; img-src * data: blob: filesystem: mediastream:;

>

> >

>

> > >> media-src * data: blob: filesystem: mediastream:; object-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>

> >

>

> > >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>

> >

>

> > >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem:

> > >> mediastream:;

>

> >

>

> > >> default-src *; report-uri (URL)

>

> >

>

> > >>

>

> >

>

> > >> Content-Security-Policy-Report-Only: base-uri *; child-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; form-action *; frame-ancestors *;

>

> >

>

> > >> connect-src * data: blob: filesystem: mediastream:; font-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; frame-src * data: blob: filesystem:

>

> >

>

> > >> mediastream:; img-src * data: blob: filesystem: mediastream:;

>

> >

>

> > >> media-src * data: blob: filesystem: mediastream:; object-src * data:

>

> >

>

> > >> blob: filesystem: mediastream:; script-src * 'unsafe-inline'

>

> >

>

> > >> 'unsafe-eval' data: blob: filesystem: mediastream:; style-src *

>

> >

>

> > >> 'unsafe-inline' 'unsafe-eval' data: blob: filesystem:

> > >> mediastream:;

>

> >

>

> > >> default-src *; report-uri (URL)

>

> >

>

> > >>

>

> >

>

> > >> Cache-Control: max-age=0

>

> >

>

> > >>

>

> >

>

> > >> Pragma: no-cache

>

> >

>

> > >>

>

> >

>

> > >> Expires: Thu, 01 Dec 1994 16:00:00 GMT

>

> >

>

> > >>

>

> >

>

> > >> Server: server

>

> >

>

> > >>

>

> >

>

> > > As stated before. A minimal test plan to reproduce would really help.

>

> >

>

> > >

>

> >

>

> > > Apart from that. A status code of 500 means that the server

> > > couldn't

>

> > cope in what ever form and throws an error. The parsing of the

> > cookie

>

> > (we get a set-cookie header) happens after the servers response. So

> > it

>

> > would probably be better to look at what you send to the server

>

> > instead of looking at what you receive.

>

> >

>

> > >

>

> >

>

> > > Felix

>

> >

>

> > >

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Regards,

>

> >

>

> > >>

>

> >

>

> > >> Nuwan

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> -----Original Message-----

>

> >

>

> > >> From: Felix Schumacher [mailto:[hidden email]]

>

> >

>

> > >> Sent: Saturday, July 06, 2019 6:00 AM

>

> >

>

> > >> To: [hidden email]<mailto:[hidden email]> <mailto:[hidden email]>

> <mailto:[hidden email]>

>

> >

>

> > >> Subject: Re: Unexpected errors with HTTP Cookie Manager

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> External email: Exercise caution when opening attachments or

>

> > clicking on links.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Am 05.07.19 um 17:18 schrieb Nuwan Galkissa Mudalige:

>

> >

>

> > >>

>

> >

>

> > >>> Greetings !!

>

> >

>

> > >>> I'm in a process of building performance scripting for Pega 7.4

>

> > cloud application.

>

> >

>

> > >>> My script is getting failed if I use any cookie policies except

>

> > "netscape" from the HTTP Cookie Manager. Though it works with

>

> > "netscape" cookie policy Jmeter creates following error entries in

> > the

>

> > log. I have tried from Jmeter 4.0 to 5.1.1 and got the same results.

>

> >

>

> > >>> Is this something known product issue which can be planned to

> > >>> fix

>

> > with later version OR if you have an alternative technical solution

>

> > would be really helpful ?

>

> >

>

> > >>

>

> >

>

> > >> The stacktrace looks like you used the Netscape parser for the

>

> > Cookie Manager. That parser will not except cookies with an "expires"

>

> > attribute.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Please post a minimal test that shows the problem, so that we can

>

> >

>

> > >> reproduce it. You might want to have a look at

>

> >

>

> > >>

>

> >

>

> > >>

>

> > https://bz.a

>

> > pache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D63520&amp;data=02%7C01%7C

> > nm

>

> > udalige%40virtusa.com%7C70642cdfd04a4388711b08d70a228a13%7C0d85160c5

> > 89

>

> > 944caacc8db1501b993b6%7C0%7C0%7C636989015789471278&amp;sdata=Y3dUQfQ

> > cs

>

> > JLG8WXsOVZVk7UW0MbAQNaN7DYITQPNXzA%3D&amp;reserved=0

>

> > where suhail reports problems parsing cookies, too. Attached to the

>

> > bugzilla entry is a small test plan, that shows that JMeter has no

>

> > problem parsing the sample AWS cookie that suhail gave us. You could

>

> > try to change that cookie with one of your problematic cookies.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> In case you meant that the netscape parser doesn't work with the

>

> > cookie, but all others do: this is intended. In doubt, use the

> > default

>

> > cookie parser.

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Regards

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> Felix

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>> This is the error log:

>

> >

>

> > >>> 2019-07-05 10:20:28,313 ERROR o.a.j.p.h.c.HC4CookieHandler:

> > >>> Unable

>

> >

>

> > >>> to add the cookie

>

> >

>

> > >>> org.apache.http.cookie.MalformedCookieException: Invalid 'expires'

>

> > attribute: Fri, 12 Jul 2019 14:20:28 GMT

>

> >

>

> > >>>                 at

>

> > org.apache.http.impl.cookie.BasicExpiresHandler.parse(BasicExpiresHa

> > nd

>

> > ler.java:64)

>

> > ~[httpclient-4.5.7.jar:4.5.7]

>

> >

>

> > >>>                 at

>

> > org.apache.http.impl.cookie.CookieSpecBase.parse(CookieSpecBase.java

> > :1

>

> > 13)

>

> > ~[httpclient-4.5.7.jar:4.5.7]

>

> >

>

> > >>>                 at

>

> > org.apache.http.impl.cookie.NetscapeDraftSpec.parse(NetscapeDraftSpec.

>

> > java:134)

>

> > ~[httpclient-4.5.7.jar:4.5.7]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.control.HC4CookieHandler.addCookieFr

> > om

>

> > Header(HC4CookieHandler.java:125)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.control.CookieManager.addCookieFromH

> > ea

>

> > der(CookieManager.java:361)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.saveConnectionCo

> > ok

>

> > ies(HTTPHC4Impl.java:1729)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.sampler.HTTPHC4Impl.sample(HTTPHC4Im

> > pl

>

> > .java:652)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.sampler.HTTPSamplerProxy.sample(HTTP

> > Sa

>

> > mplerProxy.java:67)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPS

> > am

>

> > plerBase.java:1231)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.protocol.http.sampler.HTTPSamplerBase.sample(HTTPS

> > am

>

> > plerBase.java:1220)

>

> > [ApacheJMeter_http.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.threads.JMeterThread.doSampling(JMeterThread.java:

> > 62

>

> > 2)

>

> > [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.threads.JMeterThread.executeSamplePackage(JMeterTh

> > re

>

> > ad.java:546)

>

> > [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.threads.JMeterThread.processSampler(JMeterThread.j

> > av

>

> > a:486)

>

> > [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at

>

> > org.apache.jmeter.threads.JMeterThread.run(JMeterThread.java:253)

>

> > [ApacheJMeter_core.jar:5.1.1 r1855137]

>

> >

>

> > >>>                 at java.lang.Thread.run(Unknown Source)

>

> >

>

> > >>> [?:1.8.0_211] Regards, Nuwan ________________________________

>

> >

>

> > >>> "Virtusa has been recognized as one of the top 20 global IT

>

> > service providers in Everest Group's 2018 PEAK Matrix Service

> > Provider

>

> > of the Year(tm) awards; Named as an Outsourcing Leader and an All

> > Star

>

> > Company in IAOP's 2018 Global Outsourcing 100; Recognized as the

> > Most

>

> > Innovative Technology Company of the Year at the 2017 American

>

> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by

>

> > Information Services Group (ISG)."

>

> >

>

> > >>> ________________________________

>

> >

>

> > >>> This message, including any attachments, contains confidential

>

> > information intended for a specific individual and purpose, and is

>

> > intended for the addressee only. Any unauthorized disclosure, use,

>

> > dissemination, copying, or distribution of this message or any of

> > its

>

> > attachments or the information contained in this e-mail, or the

> > taking

>

> > of any action based on it, is strictly prohibited. If you are not

> > the

>

> > intended recipient, please notify the sender immediately by return

>

> > e-mail and delete this message.

>

> >

>

> > >>> ________________________________

>

> >

>

> > >>

>

> >

>

> > >> -----------------------------------------------------------------

> > >> --

>

> > >> --

>

> >

>

> > >>

>

> >

>

> > >> To unsubscribe, e-mail:

>

> >

>

> > >>

>

> >

> [hidden email]<mailto:[hidden email]<mailto:[hidden email]%3cmailto:[hidden email]>

> <mailto:[hidden email]%3cmailto:user-unsubscribe@j

> meter.apa>

>

> > <mailto:[hidden email]%3cmailto:user-unsubscribe

> > @j

>

> > meter.apa>

>

> >

>

> > >> c

>

> >

>

> > >> he.org>

>

> >

>

> > >>

>

> >

>

> > >> For additional commands, e-mail:

>

> >

>

> > >> [hidden email]<mailto:[hidden email]<mailto:[hidden email]%3cmailto:[hidden email]>

> <mailto:[hidden email]%3cmailto:[hidden email]

> rg>

>

> > <mailto:[hidden email]%3cmailto:[hidden email]

> > .o

>

> > rg>>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >>

>

> >

>

> > >> ________________________________

>

> >

>

> > >>

>

> >

>

> > >> "Virtusa has been recognized as one of the top 20 global IT

> > >> service

>

> > providers in Everest Group's 2018 PEAK Matrix Service Provider of

> > the

>

> > Year(tm) awards; Named as an Outsourcing Leader and an All Star

>

> > Company in IAOP's 2018 Global Outsourcing 100; Recognized as the

> > Most

>

> > Innovative Technology Company of the Year at the 2017 American

>

> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by

>

> > Information Services Group (ISG)."

>

> >

>

> > >>

>

> >

>

> > >> ________________________________

>

> >

>

> > >>

>

> >

>

> > >> This message, including any attachments, contains confidential

>

> > information intended for a specific individual and purpose, and is

>

> > intended for the addressee only. Any unauthorized disclosure, use,

>

> > dissemination, copying, or distribution of this message or any of

> > its

>

> > attachments or the information contained in this e-mail, or the

> > taking

>

> > of any action based on it, is strictly prohibited. If you are not

> > the

>

> > intended recipient, please notify the sender immediately by return

>

> > e-mail and delete this message.

>

> >

>

> > >>

>

> >

>

> > >> ________________________________

>

> >

>

> > >>

>

> >

>

> > > ------------------------------------------------------------------

> > > --

>

> > > -

>

> >

>

> > > To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > <mailto:[hidden email]>

>

> >

>

> > > For additional commands, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > <mailto:[hidden email]>

>

> >

>

> > >

>

> >

>

> > >

>

> >

>

> > > ________________________________

>

> >

>

> > >

>

> >

>

> > > "Virtusa has been recognized as one of the top 20 global IT

> > > service

>

> > providers in Everest Group’s 2018 PEAK Matrix Service Provider of

> > the

>

> > Year™ awards; Named as an Outsourcing Leader and an All Star Company

>

> > in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most

>

> > Innovative Technology Company of the Year at the 2017 American

>

> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by

>

> > Information Services Group (ISG)."

>

> >

>

> > >

>

> >

>

> > > ________________________________

>

> >

>

> > >

>

> >

>

> > > This message, including any attachments, contains confidential

>

> > information intended for a specific individual and purpose, and is

>

> > intended for the addressee only. Any unauthorized disclosure, use,

>

> > dissemination, copying, or distribution of this message or any of

> > its

>

> > attachments or the information contained in this e-mail, or the

> > taking

>

> > of any action based on it, is strictly prohibited. If you are not

> > the

>

> > intended recipient, please notify the sender immediately by return

>

> > e-mail and delete this message.

>

> >

>

> > >

>

> >

>

> > > ________________________________

>

> >

>

> >

>

> >

>

> > --------------------------------------------------------------------

> > -

>

> >

>

> > To unsubscribe, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > <mailto:[hidden email]>

>

> >

>

> > For additional commands, e-mail: [hidden email]<mailto:[hidden email]>

> <mailto:[hidden email]>

>

> > <mailto:[hidden email]>

>

> >

>

> >

>

> >

>

> >

>

> > --------------------------------------------------------------------

> > --

>

> > --

>

> >

>

> > "Virtusa has been recognized as one of the top 20 global IT service

>

> > providers in Everest Group’s 2018 PEAK Matrix Service Provider of

> > the

>

> > Year™ awards; Named as an Outsourcing Leader and an All Star Company

>

> > in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most

>

> > Innovative Technology Company of the Year at the 2017 American

>

> > Business Awards; Positioned as a Top 15 Sourcing Service Provider by

>

> > Information Services Group (ISG)."

>

> >

>

> > --------------------------------------------------------------------

> > --

>

> > --

>

> >

>

> > This message, including any attachments, contains confidential

>

> > information intended for a specific individual and purpose, and is

>

> > intended for the addressee only. Any unauthorized disclosure, use,

>

> > dissemination, copying, or distribution of this message or any of

> > its

>

> > attachments or the information contained in this e-mail, or the

> > taking

>

> > of any action based on it, is strictly prohibited. If you are not

> > the

>

> > intended recipient, please notify the sender immediately by return

>

> > e-mail and delete this message.

>

> >

>

> > --------------------------------------------------------------------

> > --

>

> > --

>

>

> ----------------------------------------------------------------------

> --

>

> "Virtusa has been recognized as one of the top 20 global IT service

> providers in Everest Group’s 2018 PEAK Matrix Service Provider of the

> Year™ awards; Named as an Outsourcing Leader and an All Star Company

> in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most

> Innovative Technology Company of the Year at the 2017 American

> Business Awards; Positioned as a Top 15 Sourcing Service Provider by

> Information Services Group (ISG)."

>

> ----------------------------------------------------------------------

> --

>

> This message, including any attachments, contains confidential

> information intended for a specific individual and purpose, and is

> intended for the addressee only. Any unauthorized disclosure, use,

> dissemination, copying, or distribution of this message or any of its

> attachments or the information contained in this e-mail, or the taking

> of any action based on it, is strictly prohibited. If you are not the

> intended recipient, please notify the sender immediately by return

> e-mail and delete this message.

>

> ----------------------------------------------------------------------

> --


________________________________

"Virtusa has been recognized as one of the top 20 global IT service providers in Everest Group’s 2018 PEAK Matrix Service Provider of the Year™ awards; Named as an Outsourcing Leader and an All Star Company in IAOP’s 2018 Global Outsourcing 100; Recognized as the Most Innovative Technology Company of the Year at the 2017 American Business Awards; Positioned as a Top 15 Sourcing Service Provider by Information Services Group (ISG)."

________________________________

This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is intended for the addressee only. Any unauthorized disclosure, use, dissemination, copying, or distribution of this message or any of its attachments or the information contained in this e-mail, or the taking of any action based on it, is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail and delete this message.

________________________________