tracker issue : CF-3639079

select a category, or use search below
(searches all categories and all time range)
Title:

Can't Add Datasource

| View in Tracker

Status/Resolution/Reason: Closed/Withdrawn/Duplicate

Reporter/Name(from Bugbase): Rory Brown / Rory Brown (gozargozarian3)

Created: 09/24/2013

Components: Administrator

Versions: 10.0

Failure Type:

Found In Build/Fixed In Build: Final /

Priority/Frequency: Major / Some users will encounter

Locale/System: English / Windows 7

Vote Count: 0

Duplicate ID:	CF-3530399

Problem Description:
When trying to add a datasource and after filling in the form for the database information, administrator panel returns that an error has occurred, please log in again.  It then redirects me to a login page.  I cannot add any datasources at all to the server.

Steps to Reproduce:
This started happening randomly on certain servers.  Not sure how to reproduce, but seems to happen after using the cfide.adminapi.administrator to add datasource programmatically.  Although, I think I've seen this even without doing that.

Actual Result:
No datasource is added, even after rebooting server.  Get a generic error from the admin panel with no explanation and forced to log in again.  coldfusion-out.log contains this error for each attempt to add a datasource: Warning [catalina-exec-9] - There was an error while verifying the token. Either the session timed out or un-authenticated access is suspected.

Expected Result:
Datasource added

Any Workarounds:
Can only add datasources through script, by manually running a cfide.adminapi.administrator.

----------------------------- Additional Watson Details -----------------------------

Watson Bug ID:	3639079

External Customer Info:
External Company:  
External Customer Name: gozargozarian3
External Customer Email:  
External Test Config: My Hardware and Environment details: Windows 7 / Server 2008, Coldfusion 10 update 11

Attachments:

Comments:

Try clearing your cookies. I've seen this happen before when you have another cf server that's setting a domain cookie for cfid/cftoken/jsessionid.
Comment by External U.
14467 | September 24, 2013 03:39:47 PM GMT
I've seen this happen before. I think it was related to IIS restrictions that may get applied when following the ColdFusion Lockdown Guide. I'm going on memory here from something I saw last year. It's worth a check.
Comment by External U.
14468 | September 24, 2013 03:40:16 PM GMT
FYI, I just verified the domain cookie issue and can reproduce it that way. If you look at your cookies, you'll see you have multiple CFID/CFTOKEN/JSESSIONID cookies - one specific to the server you're on, and one for your .foo.com domain. CF is getting both cookies sent to it by your browser and thinks you are trying to spoof your session. When you submit a form (adding the data source), the new protection in CF 10 kicks in, invalidates your session, and you get booted. You can also see this if you try changing ANY value in the CF Admin and clicking submit - not just creating a datasource.
Comment by External U.
14469 | September 24, 2013 03:53:37 PM GMT