01/31 10:25:25 [ajp-nio-127.0.0.1-8020-exec-4] ERROR processResponse error. invalid_response 01/31 10:26:40 [ajp-nio-127.0.0.1-8020-exec-3] WARN Error executing validateXML: schema_reference.4: Failed to read schema document 'bundle://5a95f7f4-292b-4044-9e7d-2bd1e4eb78ed_272.0:1/schemas/saml-schema-protocol-2.0.xsd', because 1) could not find the document; 2) the document could not be read; 3) the root element of the document is not . org.xml.sax.SAXParseException: schema_reference.4: Failed to read schema document 'bundle://5a95f7f4-292b-4044-9e7d-2bd1e4eb78ed_272.0:1/schemas/saml-schema-protocol-2.0.xsd', because 1) could not find the document; 2) the document could not be read; 3) the root element of the document is not . at org.apache.xerces.util.ErrorHandlerWrapper.createSAXParseException(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.util.ErrorHandlerWrapper.error(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.XMLErrorReporter.reportError(Unknown Source) ~[xercesImpl.jar:2.12.0] at org.apache.xerces.impl.XMLErrorReporter.reportError(Unknown Source) ~[xercesImpl.jar:2.12.0] at org.apache.xerces.impl.xs.traversers.XSDHandler.reportSchemaError(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.xs.traversers.XSDHandler.getSchemaDocument1(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.xs.traversers.XSDHandler.getSchemaDocument(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.xs.traversers.XSDHandler.parseSchema(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.xs.XMLSchemaLoader.loadSchema(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.xs.XMLSchemaLoader.loadGrammar(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.xs.XMLSchemaLoader.loadGrammar(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.jaxp.validation.XMLSchemaFactory.newSchema(Unknown Source) ~[xercesImpl.jar:?] at javax.xml.validation.SchemaFactory.newSchema(SchemaFactory.java:669) ~[?:?] at javax.xml.validation.SchemaFactory.newSchema(SchemaFactory.java:701) ~[?:?] at com.onelogin.saml2.util.SchemaFactory.loadFromUrl(SchemaFactory.java:28) ~[java-saml-core-2.4.0.jar:?] at com.onelogin.saml2.util.Util.validateXML(Util.java:297) ~[java-saml-core-2.4.0.jar:?] at com.onelogin.saml2.authn.SamlResponse.isValid(SamlResponse.java:191) ~[java-saml-core-2.4.0.jar:?] at coldfusion.saml.SamlAuth.processResponse(SamlAuth.java:622) ~[saml-2021.0.05.330109.jar:?] at coldfusion.saml.SamlAuth.processResponse(SamlAuth.java:655) ~[saml-2021.0.05.330109.jar:?] at coldfusion.saml.SamlResponseHandler.handleLoginResponse(SamlResponseHandler.java:187) ~[saml-2021.0.05.330109.jar:?] at coldfusion.saml.SamlResponseHandler.handleResponse(SamlResponseHandler.java:129) ~[saml-2021.0.05.330109.jar:?] at coldfusion.saml.SAMLServiceImpl.ProcessSAMLResponse(SAMLServiceImpl.java:502) ~[saml-2021.0.05.330109.jar:?] at coldfusion.runtime.CFPage.ProcessSAMLResponse(CFPage.java:17417) ~[chf20210005.jar:development] at cfApplication2ecfc1689583175$funcONREQUEST.runFunction(/www/boris/wwwroot/nch/Application.cfc:80) ~[?:?] at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:623) ~[chf20210005.jar:development] at coldfusion.runtime.UDFMethod$ReturnTypeFilter.invoke(UDFMethod.java:553) ~[chf20210005.jar:development] at coldfusion.runtime.UDFMethod$ArgumentCollectionFilter.invoke(UDFMethod.java:516) ~[chf20210005.jar:development] at coldfusion.filter.FunctionAccessFilter.invoke(FunctionAccessFilter.java:95) ~[cfusion.jar:development] at coldfusion.runtime.UDFMethod.runFilterChain(UDFMethod.java:463) ~[chf20210005.jar:development] at coldfusion.runtime.UDFMethod.runFilterChain(UDFMethod.java:438) ~[chf20210005.jar:development] at coldfusion.runtime.UDFMethod.invoke(UDFMethod.java:310) ~[chf20210005.jar:development] at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:975) ~[chf20210005.jar:development] at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:696) ~[chf20210005.jar:development] at coldfusion.runtime.TemplateProxy.invoke(TemplateProxy.java:503) ~[chf20210005.jar:development] at coldfusion.runtime.AppEventInvoker.invoke(AppEventInvoker.java:115) ~[cfusion.jar:development] at coldfusion.runtime.AppEventInvoker.onRequest(AppEventInvoker.java:308) ~[cfusion.jar:development] at coldfusion.filter.ApplicationFilter.invoke(ApplicationFilter.java:569) ~[chf20210005.jar:development] at coldfusion.filter.RequestMonitorFilter.invoke(RequestMonitorFilter.java:43) ~[cfusion.jar:development] at coldfusion.filter.MonitoringFilter.invoke(MonitoringFilter.java:40) ~[cfusion.jar:development] at coldfusion.filter.PathFilter.invoke(PathFilter.java:162) ~[cfusion.jar:development] at coldfusion.filter.IpFilter.invoke(IpFilter.java:45) ~[cfusion.jar:development] at coldfusion.filter.ExceptionFilter.invoke(ExceptionFilter.java:97) ~[cfusion.jar:development] at coldfusion.filter.BrowserDebugFilter.invoke(BrowserDebugFilter.java:81) ~[cfusion.jar:development] at coldfusion.filter.ClientScopePersistenceFilter.invoke(ClientScopePersistenceFilter.java:28) ~[cfusion.jar:development] at coldfusion.filter.BrowserFilter.invoke(BrowserFilter.java:38) ~[cfusion.jar:development] at coldfusion.filter.NoCacheFilter.invoke(NoCacheFilter.java:60) ~[cfusion.jar:development] at coldfusion.filter.GlobalsFilter.invoke(GlobalsFilter.java:38) ~[cfusion.jar:development] at coldfusion.filter.DatasourceFilter.invoke(DatasourceFilter.java:22) ~[cfusion.jar:development] at coldfusion.filter.CachingFilter.invoke(CachingFilter.java:62) ~[cfusion.jar:development] at coldfusion.filter.RequestThrottleFilter.invoke(RequestThrottleFilter.java:151) ~[cfusion.jar:development] at coldfusion.CfmServlet.service(CfmServlet.java:231) ~[chf20210005.jar:development] at coldfusion.bootstrap.BootstrapServlet.service(BootstrapServlet.java:311) ~[cfmx_bootstrap.jar:development] at jdk.internal.reflect.GeneratedMethodAccessor68.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.apache.catalina.security.SecurityUtil.lambda$execute$0(SecurityUtil.java:280) ~[catalina.jar:9.0.60] at java.security.AccessController.doPrivileged(Native Method) ~[?:?] at javax.security.auth.Subject.doAsPrivileged(Subject.java:550) ~[?:?] at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:311) ~[catalina.jar:9.0.60] at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:170) ~[catalina.jar:9.0.60] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:221) ~[catalina.jar:9.0.60] at org.apache.catalina.core.ApplicationFilterChain.lambda$doFilter$0(ApplicationFilterChain.java:145) ~[catalina.jar:9.0.60] at java.security.AccessController.doPrivileged(Native Method) ~[?:?] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:143) ~[catalina.jar:9.0.60] at coldfusion.monitor.event.MonitoringServletFilter.doFilter(MonitoringServletFilter.java:46) ~[cfusion.jar:development] at coldfusion.bootstrap.BootstrapFilter.doFilter(BootstrapFilter.java:47) ~[cfmx_bootstrap.jar:development] at jdk.internal.reflect.GeneratedMethodAccessor62.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.apache.catalina.security.SecurityUtil.lambda$execute$0(SecurityUtil.java:280) ~[catalina.jar:9.0.60] at java.security.AccessController.doPrivileged(Native Method) ~[?:?] at javax.security.auth.Subject.doAsPrivileged(Subject.java:550) ~[?:?] at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:311) ~[catalina.jar:9.0.60] at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:253) ~[catalina.jar:9.0.60] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:187) ~[catalina.jar:9.0.60] at org.apache.catalina.core.ApplicationFilterChain.lambda$doFilter$0(ApplicationFilterChain.java:145) ~[catalina.jar:9.0.60] at java.security.AccessController.doPrivileged(Native Method) ~[?:?] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:143) ~[catalina.jar:9.0.60] at coldfusion.inspect.weinre.MobileDeviceDomInspectionFilter.doFilter(MobileDeviceDomInspectionFilter.java:57) ~[cfusion.jar:development] at coldfusion.bootstrap.BootstrapFilter.doFilter(BootstrapFilter.java:47) ~[cfmx_bootstrap.jar:development] at jdk.internal.reflect.GeneratedMethodAccessor62.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.apache.catalina.security.SecurityUtil.lambda$execute$0(SecurityUtil.java:280) ~[catalina.jar:9.0.60] at java.security.AccessController.doPrivileged(Native Method) ~[?:?] at javax.security.auth.Subject.doAsPrivileged(Subject.java:550) ~[?:?] at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:311) ~[catalina.jar:9.0.60] at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:253) ~[catalina.jar:9.0.60] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:187) ~[catalina.jar:9.0.60] at org.apache.catalina.core.ApplicationFilterChain.lambda$doFilter$0(ApplicationFilterChain.java:145) ~[catalina.jar:9.0.60] at java.security.AccessController.doPrivileged(Native Method) ~[?:?] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:143) ~[catalina.jar:9.0.60] at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:53) ~[tomcat-websocket.jar:9.0.60] at jdk.internal.reflect.GeneratedMethodAccessor62.invoke(Unknown Source) ~[?:?] at jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:?] at java.lang.reflect.Method.invoke(Method.java:566) ~[?:?] at org.apache.catalina.security.SecurityUtil.lambda$execute$0(SecurityUtil.java:280) ~[catalina.jar:9.0.60] at java.security.AccessController.doPrivileged(Native Method) ~[?:?] at javax.security.auth.Subject.doAsPrivileged(Subject.java:550) ~[?:?] at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:311) ~[catalina.jar:9.0.60] at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:253) ~[catalina.jar:9.0.60] at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:187) ~[catalina.jar:9.0.60] at org.apache.catalina.core.ApplicationFilterChain.lambda$doFilter$0(ApplicationFilterChain.java:145) ~[catalina.jar:9.0.60] at java.security.AccessController.doPrivileged(Native Method) ~[?:?] at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:143) ~[catalina.jar:9.0.60] at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:197) ~[catalina.jar:9.0.60] at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:97) ~[catalina.jar:9.0.60] at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:541) ~[catalina.jar:9.0.60] at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:135) ~[catalina.jar:9.0.60] at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:92) ~[catalina.jar:9.0.60] at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:78) ~[catalina.jar:9.0.60] at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:377) ~[catalina.jar:9.0.60] at org.apache.coyote.ajp.AjpProcessor.service(AjpProcessor.java:463) ~[tomcat-coyote.jar:9.0.60] at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65) ~[tomcat-coyote.jar:9.0.60] at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:889) ~[tomcat-coyote.jar:9.0.60] at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1743) ~[tomcat-coyote.jar:9.0.60] at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) ~[tomcat-coyote.jar:9.0.60] at org.apache.tomcat.util.threads.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1191) ~[tomcat-util.jar:9.0.60] at org.apache.tomcat.util.threads.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:659) ~[tomcat-util.jar:9.0.60] at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) ~[tomcat-util.jar:9.0.60] at java.lang.Thread.run(Thread.java:834) ~[?:?] Caused by: java.net.MalformedURLException: access denied ("org.osgi.framework.AdminPermission" "(id=272)" "resolve,resource") at java.net.URL.(URL.java:679) ~[?:?] at java.net.URL.(URL.java:541) ~[?:?] at java.net.URL.(URL.java:488) ~[?:?] at org.apache.xerces.impl.XMLEntityManager.setupCurrentEntity(Unknown Source) ~[xercesImpl.jar:2.12.0] at org.apache.xerces.impl.XMLVersionDetector.determineDocVersion(Unknown Source) ~[xercesImpl.jar:2.12.0] at org.apache.xerces.impl.xs.opti.SchemaParsingConfig.parse(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.xs.opti.SchemaParsingConfig.parse(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.xs.opti.SchemaDOMParser.parse(Unknown Source) ~[xercesImpl.jar:?] ... 115 more Caused by: java.security.AccessControlException: access denied ("org.osgi.framework.AdminPermission" "(id=272)" "resolve,resource") at java.security.AccessControlContext.checkPermission(AccessControlContext.java:472) ~[?:?] at java.security.AccessController.checkPermission(AccessController.java:897) ~[?:?] at java.lang.SecurityManager.checkPermission(SecurityManager.java:322) ~[?:?] at org.apache.felix.framework.URLHandlersBundleStreamHandler.checkPermission(URLHandlersBundleStreamHandler.java:147) ~[felix.jar:?] at org.apache.felix.framework.URLHandlersBundleStreamHandler.parseURL(URLHandlersBundleStreamHandler.java:93) ~[felix.jar:?] at java.net.URL.(URL.java:674) ~[?:?] at java.net.URL.(URL.java:541) ~[?:?] at java.net.URL.(URL.java:488) ~[?:?] at org.apache.xerces.impl.XMLEntityManager.setupCurrentEntity(Unknown Source) ~[xercesImpl.jar:2.12.0] at org.apache.xerces.impl.XMLVersionDetector.determineDocVersion(Unknown Source) ~[xercesImpl.jar:2.12.0] at org.apache.xerces.impl.xs.opti.SchemaParsingConfig.parse(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.xs.opti.SchemaParsingConfig.parse(Unknown Source) ~[xercesImpl.jar:?] at org.apache.xerces.impl.xs.opti.SchemaDOMParser.parse(Unknown Source) ~[xercesImpl.jar:?] ... 115 more 01/31 10:26:40 [ajp-nio-127.0.0.1-8020-exec-3] ERROR Invalid SAML Response. Not match the saml-schema-protocol-2.0.xsd 01/31 10:26:40 [ajp-nio-127.0.0.1-8020-exec-3] ERROR processResponse error. invalid_response