We Keep Coding

keycloak on kubernetes: x509 auth with ingress

Does anyone have an example config for x509 authentication w/ Keycloak on Kubernetes via an ingress endpoint? I have x509 working fine w/ a NodePort setup, but access via ingress fails and Keycloak cycles to the username/password form.
18:37:54,474 DEBUG [org.keycloak.authentication.AuthenticationProcessor] (default task-2) AUTHENTICATE
18:37:54,474 DEBUG [org.keycloak.authentication.AuthenticationProcessor] (default task-2) AUTHENTICATE ONLY
18:37:54,474 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) processFlow: x509-browser
18:37:54,475 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) check execution: 'auth-cookie', requirement: 'ALTERNATIVE'
18:37:54,475 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) authenticator: auth-cookie
18:37:54,475 DEBUG [org.keycloak.authentication.AuthenticationSelectionResolver] (default task-2) Going through the flow 'x509-browser' for adding executions
18:37:54,475 DEBUG [org.keycloak.authentication.AuthenticationSelectionResolver] (default task-2) Going through the flow 'x509-browser forms' for adding executions
18:37:54,475 DEBUG [org.keycloak.authentication.AuthenticationSelectionResolver] (default task-2) Selections when trying execution 'auth-cookie' : [ authSelection - auth-cookie, authSelection - auth-x509-client-username-form, authSelection - auth-username-password-form]
18:37:54,475 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) invoke authenticator.authenticate: auth-cookie
18:37:54,475 DEBUG [org.keycloak.services.util.CookieHelper] (default task-2) Could not find cookie KEYCLOAK_IDENTITY, trying KEYCLOAK_IDENTITY_LEGACY
18:37:54,475 DEBUG [org.keycloak.services.managers.AuthenticationManager] (default task-2) Could not find cookie: KEYCLOAK_IDENTITY
18:37:54,476 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) authenticator ATTEMPTED: auth-cookie
18:37:54,476 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) check execution: 'auth-x509-client-username-form', requirement: 'ALTERNATIVE'
18:37:54,476 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) authenticator: auth-x509-client-username-form
18:37:54,476 DEBUG [org.keycloak.authentication.AuthenticationSelectionResolver] (default task-2) Going through the flow 'x509-browser' for adding executions
18:37:54,476 DEBUG [org.keycloak.authentication.AuthenticationSelectionResolver] (default task-2) Going through the flow 'x509-browser forms' for adding executions
18:37:54,476 DEBUG [org.keycloak.authentication.AuthenticationSelectionResolver] (default task-2) Selections when trying execution 'auth-x509-client-username-form' : [ authSelection - auth-x509-client-username-form, authSelection - auth-username-password-form]
18:37:54,476 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) invoke authenticator.authenticate: auth-x509-client-username-form
18:37:54,476 DEBUG [org.keycloak.services] (default task-2) [X509ClientCertificateAuthenticator:authenticate] x509 client certificate is not available for mutual SSL.
18:37:54,476 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) authenticator ATTEMPTED: auth-x509-client-username-form
18:37:54,476 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) check execution: 'x509-browser forms flow', requirement: 'ALTERNATIVE'
18:37:54,476 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) processFlow: x509-browser forms
18:37:54,476 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) check execution: 'auth-username-password-form', requirement: 'REQUIRED'
18:37:54,476 DEBUG [org.keycloak.authentication.DefaultAuthenticationFlow] (default task-2) authenticator: auth-username-password-form

Ingress is just an API and implemented by various providers, which support additional configuration in a product specific way.
In your example it is nginx.
Make sure that nginx is deployed with support for SNI based TLS passthrough, therefore keycloak will receive the original TLS connection and leverage client certificates.
For nginx the ingress configuration for that is an additional annotation:
annotations:
nginx.ingress.kubernetes.io/ssl-passthrough: "true"
Relevant documentation: https://kubernetes.github.io/ingress-nginx/user-guide/tls/#ssl-passthrough

Unable to send email from within Keycloak

Unable to send email from within Keycloak, it fails with the same error even when the credentials are correct
org.jboss.threads#2.4.0.Final//org.jboss.threads.EnhancedQueueExecutor$ThreadBody.run(EnhancedQueueExecutor.java:1377)
05:11:44,147 ERROR [stderr] (default task-3) at org.jboss.xnio#3.8.2.Final//org.xnio.XnioWorker$WorkerThreadFactory$1$1.run(XnioWorker.java:1280)
05:11:44,147 ERROR [stderr] (default task-3) at java.base/java.lang.Thread.run(Thread.java:829)
05:11:44,147 ERROR [stderr] (default task-3) Caused by: javax.mail.AuthenticationFailedException: 535-5.7.8 Username and Password not accepted. Learn more at
05:11:44,147 ERROR [stderr] (default task-3) 535 5.7.8 https://support.google.com/mail/?p=BadCredentials g2sm2890122qki.42 - gsmtp
NOTE: Less secure app is enabled in email account which is configured with Keycloak

Play framework how to use redis as cache server with tls enabled

I am trying to use Redis as a cache server for my web server written in scala using play framework.
I am using the library play-redis as per the play scala documentation. But I am not able to connect to my redis server with tls enabled which is a new feature in version 6. I have tried both cluster , stand-alone & aws-cluster options as explained in the play-redis library documentation.
It is working fine when I try to connect to my local redis which does'nt have tls enabled.
Play version - 2.8.x
Scala version - 2.13.5
Method in my service class using cache module
cache.getOrElseUpdate[QueryResponse](query.toString) {
psqlDb.withConnection[Future[QueryResponse]] { implicit conn:Connection =>
val queryList: Seq[Map[String, ResponseData]] = query.dataQuery.map(query => {
val result: List[Map[String, String]] = SQL(SQLQueryBuilder.getSQLQuery(query)).as(parser.*)
Map(query.dataLabel -> ResponseData(result))
})
Future{QueryResponse(data = queryList)}
}
}
My play conf file
instances {
play {
host: mycache.dns.com
source: aws-cluster
}
}
}
Error I am getting when I connect to tls enabled redis
2021-05-21 10:25:23 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-2 - Pool stats (total=2, active=0, idle=2, waiting=0)
2021-05-21 10:25:23 INFO redis.actors.RedisClientActor akka://application/user/RedisClientPool-$b Connect to /xx.xx.x.xx:6379
2021-05-21 10:25:23 DEBUG akka.io.TcpOutgoingConnection akka://application/system/IO-TCP/selectors/$a/0 Attempting connection to [/xx.xx.x.xx:6379]
2021-05-21 10:25:23 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-2 - Added connection org.postgresql.jdbc.PgConnection#628938f6
2021-05-21 10:25:23 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-2 - Added connection org.postgresql.jdbc.PgConnection#52e89e1b
2021-05-21 10:25:23 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-2 - Added connection org.postgresql.jdbc.PgConnection#798d5238
2021-05-21 10:25:23 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-2 - Added connection org.postgresql.jdbc.PgConnection#4391945e
2021-05-21 10:25:23 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-2 - Added connection org.postgresql.jdbc.PgConnection#1b41b4c4
2021-05-21 10:25:23 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-2 - Added connection org.postgresql.jdbc.PgConnection#513c3200
2021-05-21 10:25:23 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-2 - Added connection org.postgresql.jdbc.PgConnection#47cd4b77
2021-05-21 10:25:23 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-2 - Added connection org.postgresql.jdbc.PgConnection#35bf221e
2021-05-21 10:25:23 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-2 - After adding stats (total=10, active=0, idle=10, waiting=0)
2021-05-21 10:25:23 DEBUG akka.io.TcpOutgoingConnection akka://application/system/IO-TCP/selectors/$a/0 Connection established to [/xx.xx.x.xx:6379]
2021-05-21 10:25:23 INFO redis.actors.RedisClientActor akka://application/user/RedisClientPool-$b Connected to /xx.xx.x.xx:6379
2021-05-21 10:25:28 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-1 - Pool stats (total=10, active=0, idle=10, waiting=0)
2021-05-21 10:25:28 DEBUG com.zaxxer.hikari.pool.HikariPool HikariPool-1 - Fill pool skipped, pool is at sufficient level.
2021-05-21 10:25:33 ERROR p.api.http.DefaultHttpErrorHandler
! #7jn65pj3d - Internal server error, for (POST) [/my/url/path] ->
play.api.UnexpectedException: Unexpected exception[TimeoutException: Future timed out after [10 seconds]]
at play.core.server.DevServerStart$$anon$1.reload(DevServerStart.scala:254)
at play.core.server.DevServerStart$$anon$1.get(DevServerStart.scala:148)
at play.core.server.AkkaHttpServer.handleRequest(AkkaHttpServer.scala:302)
at play.core.server.AkkaHttpServer.$anonfun$createServerBinding$1(AkkaHttpServer.scala:224)
at akka.stream.impl.fusing.MapAsync$$anon$30.onPush(Ops.scala:1297)
at akka.stream.impl.fusing.GraphInterpreter.processPush(GraphInterpreter.scala:541)
at akka.stream.impl.fusing.GraphInterpreter.processEvent(GraphInterpreter.scala:495)
at akka.stream.impl.fusing.GraphInterpreter.execute(GraphInterpreter.scala:390)
at akka.stream.impl.fusing.GraphInterpreterShell.runBatch(ActorGraphInterpreter.scala:625)
at akka.stream.impl.fusing.GraphInterpreterShell$AsyncInput.execute(ActorGraphInterpreter.scala:502)
at akka.stream.impl.fusing.GraphInterpreterShell.processEvent(ActorGraphInterpreter.scala:600)
at akka.stream.impl.fusing.ActorGraphInterpreter.akka$stream$impl$fusing$ActorGraphInterpreter$$processEvent(ActorGraphInterpreter.scala:775)
at akka.stream.impl.fusing.ActorGraphInterpreter$$anonfun$receive$1.applyOrElse(ActorGraphInterpreter.scala:790)
at akka.actor.Actor.aroundReceive(Actor.scala:537)
at akka.actor.Actor.aroundReceive$(Actor.scala:535)
at akka.stream.impl.fusing.ActorGraphInterpreter.aroundReceive(ActorGraphInterpreter.scala:691)
at akka.actor.ActorCell.receiveMessage(ActorCell.scala:579)
at akka.actor.ActorCell.invoke(ActorCell.scala:547)
at akka.dispatch.Mailbox.processMailbox(Mailbox.scala:270)
at akka.dispatch.Mailbox.run(Mailbox.scala:231)
at akka.dispatch.Mailbox.exec(Mailbox.scala:243)
at java.base/java.util.concurrent.ForkJoinTask.doExec(ForkJoinTask.java:290)
at java.base/java.util.concurrent.ForkJoinPool$WorkQueue.topLevelExec(ForkJoinPool.java:1020)
at java.base/java.util.concurrent.ForkJoinPool.scan(ForkJoinPool.java:1656)
at java.base/java.util.concurrent.ForkJoinPool.runWorker(ForkJoinPool.java:1594)
at java.base/java.util.concurrent.ForkJoinWorkerThread.run(ForkJoinWorkerThread.java:183)
Caused by: java.util.concurrent.TimeoutException: Future timed out after [10 seconds]
at scala.concurrent.impl.Promise$DefaultPromise.tryAwait0(Promise.scala:212)
at scala.concurrent.impl.Promise$DefaultPromise.result(Promise.scala:225)
at scala.concurrent.Await$.$anonfun$result$1(package.scala:201)
at akka.dispatch.MonitorableThreadFactory$AkkaForkJoinWorkerThread$$anon$3.block(ThreadPoolBuilder.scala:174)
at java.base/java.util.concurrent.ForkJoinPool.managedBlock(ForkJoinPool.java:3118)
at akka.dispatch.MonitorableThreadFactory$AkkaForkJoinWorkerThread.blockOn(ThreadPoolBuilder.scala:172)
at scala.concurrent.Await$.result(package.scala:124)
at redis.RedisCluster.<init>(RedisCluster.scala:56)
at play.api.cache.redis.connector.RedisCommandsCluster$$anon$2.<init>(RedisCommands.scala:106)
at play.api.cache.redis.connector.RedisCommandsCluster.<init>(RedisCommands.scala:106)
at play.api.cache.redis.connector.RedisCommandsProvider.get$lzycompute(RedisCommands.scala:21)
at play.api.cache.redis.connector.RedisCommandsProvider.get(RedisCommands.scala:20)
at play.api.cache.redis.connector.RedisConnectorProvider.commands$lzycompute(RedisConnectorProvider.scala:15)
at play.api.cache.redis.connector.RedisConnectorProvider.commands(RedisConnectorProvider.scala:15)
at play.api.cache.redis.connector.RedisConnectorProvider.get$lzycompute(RedisConnectorProvider.scala:17)
at play.api.cache.redis.connector.RedisConnectorProvider.get(RedisConnectorProvider.scala:17)
at play.api.cache.redis.impl.RedisCachesProvider$$anon$1.redisConnector$lzycompute(RedisCaches.scala:33)
at play.api.cache.redis.impl.RedisCachesProvider$$anon$1.redisConnector(RedisCaches.scala:33)
at play.api.cache.redis.impl.RedisCachesProvider$$anon$1.async$lzycompute(RedisCaches.scala:34)
at play.api.cache.redis.impl.RedisCachesProvider$$anon$1.async(RedisCaches.scala:34)
at play.api.cache.redis.impl.RedisCachesProvider$$anon$1.java$lzycompute(RedisCaches.scala:38)
at play.api.cache.redis.impl.RedisCachesProvider$$anon$1.java(RedisCaches.scala:38)
at play.api.cache.redis.impl.RedisCachesProvider$$anon$1.javaSync$lzycompute(RedisCaches.scala:40)
at play.api.cache.redis.impl.RedisCachesProvider$$anon$1.javaSync(RedisCaches.scala:40)
at play.api.cache.redis.impl.RedisCachesProvider$$anon$1.javaSync(RedisCaches.scala:32)
at play.api.cache.redis.GuiceProvider$.$anonfun$bindings$7(RedisCacheModule.scala:77)
at play.api.cache.redis.NamedCacheInstanceProvider.get$lzycompute(RedisCacheModule.scala:121)
at play.api.cache.redis.NamedCacheInstanceProvider.get(RedisCacheModule.scala:121)
at com.google.inject.util.Providers$GuicifiedProvider.get(Providers.java:121)
at com.google.inject.internal.ProviderInternalFactory.provision(ProviderInternalFactory.java:86)
at com.google.inject.internal.InternalFactoryToInitializableAdapter.provision(InternalFactoryToInitializableAdapter.java:57)
at com.google.inject.internal.ProviderInternalFactory.circularGet(ProviderInternalFactory.java:60)
at com.google.inject.internal.InternalFactoryToInitializableAdapter.get(InternalFactoryToInitializableAdapter.java:47)
at com.google.inject.internal.FactoryProxy.get(FactoryProxy.java:60)
at com.google.inject.internal.SingleParameterInjector.inject(SingleParameterInjector.java:40)
at com.google.inject.internal.SingleParameterInjector.getAll(SingleParameterInjector.java:60)
at com.google.inject.internal.ConstructorInjector.provision(ConstructorInjector.java:113)
at com.google.inject.internal.ConstructorInjector.construct(ConstructorInjector.java:91)
at com.google.inject.internal.ConstructorBindingImpl$Factory.get(ConstructorBindingImpl.java:296)
at com.google.inject.internal.ProviderToInternalFactoryAdapter.get(ProviderToInternalFactoryAdapter.java:40)
at com.google.inject.internal.SingletonScope$1.get(SingletonScope.java:169)
at com.google.inject.internal.InternalFactoryToProviderAdapter.get(InternalFactoryToProviderAdapter.java:45)
at com.google.inject.internal.FactoryProxy.get(FactoryProxy.java:60)
at com.google.inject.internal.SingleParameterInjector.inject(SingleParameterInjector.java:40)
at com.google.inject.internal.SingleParameterInjector.getAll(SingleParameterInjector.java:60)
at com.google.inject.internal.ConstructorInjector.provision(ConstructorInjector.java:113)
at com.google.inject.internal.ConstructorInjector.construct(ConstructorInjector.java:91)
at com.google.inject.internal.ConstructorBindingImpl$Factory.get(ConstructorBindingImpl.java:296)
at com.google.inject.internal.ProviderToInternalFactoryAdapter.get(ProviderToInternalFactoryAdapter.java:40)
at com.google.inject.internal.SingletonScope$1.get(SingletonScope.java:169)
at com.google.inject.internal.InternalFactoryToProviderAdapter.get(InternalFactoryToProviderAdapter.java:45)
at com.google.inject.internal.SingleParameterInjector.inject(SingleParameterInjector.java:40)
at com.google.inject.internal.SingleParameterInjector.getAll(SingleParameterInjector.java:60)
at com.google.inject.internal.ConstructorInjector.provision(ConstructorInjector.java:113)
at com.google.inject.internal.ConstructorInjector.construct(ConstructorInjector.java:91)
at com.google.inject.internal.ConstructorBindingImpl$Factory.get(ConstructorBindingImpl.java:296)
at com.google.inject.internal.FactoryProxy.get(FactoryProxy.java:60)
at com.google.inject.internal.SingleParameterInjector.inject(SingleParameterInjector.java:40)
at com.google.inject.internal.SingleParameterInjector.getAll(SingleParameterInjector.java:60)
at com.google.inject.internal.ConstructorInjector.provision(ConstructorInjector.java:113)
at com.google.inject.internal.ConstructorInjector.construct(ConstructorInjector.java:91)
at com.google.inject.internal.ConstructorBindingImpl$Factory.get(ConstructorBindingImpl.java:296)
at com.google.inject.internal.FactoryProxy.get(FactoryProxy.java:60)
at com.google.inject.internal.SingleParameterInjector.inject(SingleParameterInjector.java:40)
at com.google.inject.internal.SingleParameterInjector.getAll(SingleParameterInjector.java:60)
at com.google.inject.internal.ConstructorInjector.provision(ConstructorInjector.java:113)
at com.google.inject.internal.ConstructorInjector.construct(ConstructorInjector.java:91)
at com.google.inject.internal.ConstructorBindingImpl$Factory.get(ConstructorBindingImpl.java:296)
at com.google.inject.internal.ProviderToInternalFactoryAdapter.get(ProviderToInternalFactoryAdapter.java:40)
at com.google.inject.internal.SingletonScope$1.get(SingletonScope.java:169)
at com.google.inject.internal.InternalFactoryToProviderAdapter.get(InternalFactoryToProviderAdapter.java:45)
at com.google.inject.internal.FactoryProxy.get(FactoryProxy.java:60)
at com.google.inject.internal.InjectorImpl$1.get(InjectorImpl.java:1100)
at com.google.inject.internal.InjectorImpl.getInstance(InjectorImpl.java:1138)
at play.api.inject.guice.GuiceInjector.instanceOf(GuiceInjectorBuilder.scala:436)
at play.api.inject.guice.GuiceInjector.instanceOf(GuiceInjectorBuilder.scala:431)
at play.api.inject.ContextClassLoaderInjector.$anonfun$instanceOf$2(Injector.scala:119)
at play.api.inject.ContextClassLoaderInjector.withContext(Injector.scala:128)
at play.api.inject.ContextClassLoaderInjector.instanceOf(Injector.scala:119)
at play.api.inject.guice.GuiceApplicationBuilder.build(GuiceApplicationBuilder.scala:155)
at play.api.inject.guice.GuiceApplicationLoader.load(GuiceApplicationLoader.scala:21)
at play.core.server.DevServerStart$$anon$1.$anonfun$reload$2(DevServerStart.scala:193)
at play.utils.Threads$.withContextClassLoader(Threads.scala:22)
at play.core.server.DevServerStart$$anon$1.reload(DevServerStart.scala:185)
... 25 common frames omitted
Is there tls support for this library ? How can I connect to redis server with tls in play framework in an asynchronous way ?

Kafka with Kerberos

I'm encountering the following errors while configuring kafka with Kerberos authentication.
Can somebody please let me know, what could be going wrong here in getting it fixed. Tried various options, but nothing seems to be working for me.
I could notice zookeeper is getting connected and in next attempt it fails
[2019-10-09 05:06:07,942] INFO Initiating client connection, connectString=kafka-d1.example.com:2181 sessionTimeout=6000 watcher=kafka.zookeeper.ZooKeeperClient$ZooKeeperClientWatcher$#6adbc9d (org.apache.zookeeper.ZooKeeper)
[2019-10-09 05:06:07,945] DEBUG zookeeper.disableAutoWatchReset is false (org.apache.zookeeper.ClientCnxn)
[2019-10-09 05:06:07,959] INFO [ZooKeeperClient] Waiting until connected. (kafka.zookeeper.ZooKeeperClient)
[2019-10-09 05:06:07,961] DEBUG JAAS loginContext is: Client (org.apache.zookeeper.client.ZooKeeperSaslClient)
[2019-10-09 05:06:08,252] INFO Client successfully logged in. (org.apache.zookeeper.Login)
[2019-10-09 05:06:08,253] INFO TGT refresh thread started. (org.apache.zookeeper.Login)
[2019-10-09 05:06:08,254] DEBUG Client principal is "kafka/kafka-d1.example.com#EXAMPLE.COM". (org.apache.zookeeper.Login)
[2019-10-09 05:06:08,261] DEBUG Server principal is "krbtgt/EXAMPLE.COM#EXAMPLE.COM". (org.apache.zookeeper.Login)
[2019-10-09 05:06:08,264] INFO TGT valid starting at: Wed Oct 09 05:06:08 EDT 2019 (org.apache.zookeeper.Login)
[2019-10-09 05:06:08,264] INFO TGT expires: Wed Oct 09 15:06:08 EDT 2019 (org.apache.zookeeper.Login)
[2019-10-09 05:06:08,264] INFO TGT refresh sleeping until: Wed Oct 09 13:06:47 EDT 2019 (org.apache.zookeeper.Login)
[2019-10-09 05:06:08,265] INFO Client will use GSSAPI as SASL mechanism. (org.apache.zookeeper.client.ZooKeeperSaslClient)
[2019-10-09 05:06:08,265] DEBUG creating sasl client: Client=kafka/kafka-d1.example.com#EXAMPLE.COM;service=zookeeper;serviceHostname=kafka-d1.example.com (org.apache.zookeeper.client.ZooKeeperSaslClient)
[2019-10-09 05:06:08,272] INFO Opening socket connection to server kafka-d1.example.com/10.14.61.17:2181. Will attempt to SASL-authenticate using Login Context section 'Client' (org.apache.zookeeper.ClientCnxn)
[2019-10-09 05:06:08,277] INFO Socket connection established to kafka-d1.example.com/10.14.61.17:2181, initiating session (org.apache.zookeeper.ClientCnxn)
[2019-10-09 05:06:08,278] DEBUG Session establishment request sent on kafka-d1.example.com/10.14.61.17:2181 (org.apache.zookeeper.ClientCnxn)
[2019-10-09 05:06:08,286] INFO Session establishment complete on server kafka-d1.example.com/10.14.61.17:2181, sessionid = 0x16dafa306f20009, negotiated timeout = 6000 (org.apache.zookeeper.ClientCnxn)
[2019-10-09 05:06:08,288] DEBUG ClientCnxn:sendSaslPacket:length=0 (org.apache.zookeeper.client.ZooKeeperSaslClient)
[2019-10-09 05:06:08,289] DEBUG saslClient.evaluateChallenge(len=0) (org.apache.zookeeper.client.ZooKeeperSaslClient)
[2019-10-09 05:06:08,289] INFO [ZooKeeperClient] Connected. (kafka.zookeeper.ZooKeeperClient)
[2019-10-09 05:06:08,300] ERROR An error: (java.security.PrivilegedActionException: javax.security.sasl.SaslException: GSS initiate failed [Caused by GSSException: No valid credentials provided (Mechanism level: Server not found in Kerberos database (7))]) occurred when evaluating Zookeeper Quorum Member's received SASL token. Zookeeper Client will go to AUTH_FAILED state. (org.apache.zookeeper.client.ZooKeeperSaslClient)
[2019-10-09 05:06:08,300] ERROR SASL authentication with Zookeeper Quorum member failed: javax.security.sasl.SaslException: An error: (java.security.PrivilegedActionException: javax.security.sasl.SaslException: GSS initiate failed [Caused by GSSException: No valid credentials provided (Mechanism level: Server not found in Kerberos database (7))]) occurred when evaluating Zookeeper Quorum Member's received SASL token. Zookeeper Client will go to AUTH_FAILED state. (org.apache.zookeeper.ClientCnxn)
[2019-10-09 05:06:08,300] ERROR [ZooKeeperClient] Auth failed. (kafka.zookeeper.ZooKeeperClient)
[2019-10-09 05:06:08,350] ERROR Fatal error during KafkaServer startup. Prepare to shutdown (kafka.server.KafkaServer)
org.apache.zookeeper.KeeperException$AuthFailedException: KeeperErrorCode = AuthFailed for /consumers
at org.apache.zookeeper.KeeperException.create(KeeperException.java:126)
at org.apache.zookeeper.KeeperException.create(KeeperException.java:54)
at kafka.zookeeper.AsyncResponse.maybeThrow(ZooKeeperClient.scala:546)
at kafka.zk.KafkaZkClient.createRecursive(KafkaZkClient.scala:1559)
at kafka.zk.KafkaZkClient.makeSurePersistentPathExists(KafkaZkClient.scala:1480)
at kafka.zk.KafkaZkClient$$anonfun$createTopLevelPaths$1.apply(KafkaZkClient.scala:1472)
at kafka.zk.KafkaZkClient$$anonfun$createTopLevelPaths$1.apply(KafkaZkClient.scala:1472)
at scala.collection.immutable.List.foreach(List.scala:392)
at kafka.zk.KafkaZkClient.createTopLevelPaths(KafkaZkClient.scala:1472)
at kafka.server.KafkaServer.initZkClient(KafkaServer.scala:373)
at kafka.server.KafkaServer.startup(KafkaServer.scala:202)
at kafka.server.KafkaServerStartable.startup(KafkaServerStartable.scala:38)
at kafka.Kafka$.main(Kafka.scala:75)
at kafka.Kafka.main(Kafka.scala)
[2019-10-09 05:06:08,354] INFO shutting down (kafka.server.KafkaServer)
[2019-10-09 05:06:08,356] INFO [ZooKeeperClient] Closing. (kafka.zookeeper.ZooKeeperClient)
[2019-10-09 05:06:08,357] DEBUG Close called on already closed client (org.apache.zookeeper.ZooKeeper)
[2019-10-09 05:06:08,359] INFO [ZooKeeperClient] Closed. (kafka.zookeeper.ZooKeeperClient)
[2019-10-09 05:06:08,361] INFO shut down completed (kafka.server.KafkaServer)
[2019-10-09 05:06:08,361] ERROR Exiting Kafka. (kafka.server.KafkaServerStartable)
[2019-10-09 05:06:08,364] INFO shutting down (kafka.server.KafkaServer)
Server {
com.sun.security.auth.module.Krb5LoginModule required
useKeyTab=true
keyTab=/etc/keytabs/zookeeper.keytab
storeKey=true
useTicketCache=false
principal=zookeeper/kafka-d1.EXAMPLE.COM#EXAMPLE.COM;
};
cat /etc/kafka/jaas.conf
KafkaServer {
com.sun.security.auth.module.Krb5LoginModule required
useKeyTab=true
storeKey=true
keyTab="/etc/keytabs/kafka-d1.keytab"
principal="kafka/kafka-d1.EXAMPLE.COM#EXAMPLE.COM";
};
Client {
com.sun.security.auth.module.Krb5LoginModule required
useKeyTab=true
storeKey=true
keyTab="/etc/keytabs/kafka-d1.keytab"
principal="kafka/kafka-d1.EXAMPLE.COM#EXAMPLE.COM";
};
/etc/krb5.conf
[libdefaults]
default_realm = EXAMPLE.COM
dns_lookup_kdc = false
dns_lookup_realm = false
ticket_lifetime = 86400
renew_lifetime = 604800
forwardable = true
default_tgs_enctypes = aes256-cts
default_tkt_enctypes = aes256-cts
permitted_enctypes = aes256-cts
udp_preference_limit = 1
kdc_timeout = 3000
ignore_acceptor_hostname = true
[realms]
EXAMPLE.COM = {
kdc = srv-kerb.example.com
admin_server = srv-kerb.example.com
kdc = srv-kerb.example.com
}
[domain_realm]
Caused by: org.apache.kafka.common.errors.SaslAuthenticationException: An error: (java.security.PrivilegedActionException: javax.security.sasl.SaslException: GSS initiate failed [Caused by GSSException: No valid credentials provided (Mechanism level: Server not found in Kerberos database (7))]) occurred when evaluating SASL token received from the Kafka Broker. This may be caused by Java's being unable to resolve the Kafka Broker's hostname correctly. You may want to try to adding '-Dsun.net.spi.nameservice.provider.1=dns,sun' to your client's JVMFLAGS environment. Users must configure FQDN of kafka brokers when authenticating using SASL and socketChannel.socket().getInetAddress().getHostName() must match the hostname in principal/hostname#realm Kafka Client will go to AUTHENTICATION_FAILED state.

I had the same problem. Changing zookeeper host value, from IP address to FQDN (hostname) and also adding the hostname in /etc/hosts fixed the problem for me.

Unable to download dependencies in gradle using proxy

I am running gradle 2.3 through eclipse from behind a proxy server.
I gave the proxy properties in gradle.properties and saw that they were being picked up while running the build but failing to download the dependencies through https.
I'm getting the 407 Proxy authentication required error.
Below is the debug stack trace. Please help me resolve the issue.I've verfied that the credentials are correct.
[sts] -----------------------------------------------------
[sts] Starting Gradle build for the following tasks:
[sts] test
[sts] -----------------------------------------------------
14:15:53.053 [INFO] [org.gradle.launcher.daemon.server.exec.LogToClient] The client will now receive all logging from the daemon (pid: 8988). The daemon log file: C:\Users\majumdaran\.gradle\daemon\2.3\daemon-8988.out.log
14:15:53.054 [INFO] [org.gradle.launcher.daemon.server.health.DaemonHealthTracker] Starting 38th build in daemon [uptime: 1 hrs 22 mins 15.573 secs, performance: 100%, memory: 3% of 1.0 GB]
14:15:53.054 [DEBUG] [org.gradle.launcher.daemon.server.exec.ExecuteBuild] The daemon has started executing the build.
14:15:53.055 [INFO] [org.gradle.launcher.daemon.server.exec.ExecuteBuild] Executing build with daemon context: DefaultDaemonContext[uid=ea429d4f-cd0a-4652-8ce5-1fb55b48bf57,javaHome=C:\Program Files (x86)\Java\jdk1.6.0_45,daemonRegistryDir=C:\Users\majumdaran\.gradle\daemon,pid=8988,idleTimeout=10800000,daemonOpts=-XX:MaxPermSize=256m,-XX:+HeapDumpOnOutOfMemoryError,-Xmx1024m,-Dfile.encoding=windows-1252,-Duser.country=US,-Duser.language=en,-Duser.variant]
14:15:53.054 [INFO] [org.gradle.launcher.daemon.server.exec.ForwardClientInput] Closing daemon's stdin at end of input.
14:15:53.056 [INFO] [org.gradle.launcher.daemon.server.exec.ForwardClientInput] The daemon will no longer process any standard input.
14:15:53.087 [DEBUG] [org.gradle.internal.resource.transport.http.JavaSystemPropertiesHttpProxySettings] Found java system property 'http.nonProxyHosts': localhost|127.0.0.1. Will ignore proxy settings for these hosts.
14:15:53.089 [DEBUG] [org.gradle.internal.resource.transport.http.HttpClientConfigurer] Using org.gradle.internal.resource.PasswordCredentials#f530f1 and NTLM Credentials [user: majumdaran, domain: KT, workstation: LSWRNL1434] for authenticating against 'proxynap.domain.com:80'
14:15:53.093 [INFO] [org.gradle.BuildLogger] Starting Build
14:15:53.093 [DEBUG] [org.gradle.BuildLogger] Gradle user home: C:\Users\majumdaran\.gradle
14:15:53.093 [DEBUG] [org.gradle.BuildLogger] Current dir: C:\Work\UtilServices
14:15:53.094 [DEBUG] [org.gradle.BuildLogger] Settings file: null
14:15:53.094 [DEBUG] [org.gradle.BuildLogger] Build file: null
14:15:53.122 [DEBUG] [org.gradle.initialization.buildsrc.BuildSourceBuilder] Starting to build the build sources.
14:15:53.123 [DEBUG] [org.gradle.initialization.buildsrc.BuildSourceBuilder] Gradle source dir does not exist. We leave.
14:15:53.123 [DEBUG] [org.gradle.initialization.DefaultGradlePropertiesLoader] Found env project properties: []
14:15:53.123 [DEBUG] [org.gradle.initialization.DefaultGradlePropertiesLoader] Found system project properties: []
14:15:53.126 [DEBUG] [org.gradle.api.internal.artifacts.mvnsettings.DefaultLocalMavenRepositoryLocator] No local repository in Settings file defined. Using default path: C:\Users\majumdaran\.m2\repository
14:15:53.139 [DEBUG] [org.gradle.initialization.ScriptEvaluatingSettingsProcessor] Timing: Processing settings took: 0.015 secs
14:15:53.139 [INFO] [org.gradle.BuildLogger] Settings evaluated using empty settings script.
14:15:53.141 [DEBUG] [org.gradle.initialization.ProjectPropertySettingBuildLoader] Looking for project properties from: C:\Work\UtilServices\gradle.properties
14:15:53.141 [DEBUG] [org.gradle.initialization.ProjectPropertySettingBuildLoader] Adding project properties (if not overwritten by user properties): [systemProp.https.auth.ntlm.domain, systemProp.https.keepAlive, systemProp.https.proxyUser, systemProp.https.proxyPort, systemProp.https.proxyPassword, systemProp.https.proxyHost]
14:15:53.142 [INFO] [org.gradle.BuildLogger] Projects loaded. Root project using build file 'C:\Work\UtilServices\build.gradle'.
14:15:53.143 [INFO] [org.gradle.BuildLogger] Included projects: [root project 'UtilServices']
14:15:53.146 [INFO] [org.gradle.configuration.project.BuildScriptProcessor] Evaluating root project 'UtilServices' using build file 'C:\Work\UtilServices\build.gradle'.
14:15:53.152 [DEBUG] [org.gradle.cache.internal.DefaultFileLockManager] Waiting to acquire shared lock on buildscript class cache for build file 'C:\Work\UtilServices\build.gradle' (C:\Users\majumdaran\.gradle\caches\2.3\scripts\build_andeld3ft8eben9snt8ql2hqb\ProjectScript\buildscript).
14:15:53.152 [DEBUG] [org.gradle.cache.internal.DefaultFileLockManager] Lock acquired.
14:15:53.157 [DEBUG] [org.gradle.cache.internal.DefaultFileLockManager] Waiting to acquire shared lock on no_buildscript class cache for build file 'C:\Work\UtilServices\build.gradle' (C:\Users\majumdaran\.gradle\caches\2.3\scripts\build_andeld3ft8eben9snt8ql2hqb\ProjectScript\no_buildscript).
14:15:53.157 [DEBUG] [org.gradle.cache.internal.DefaultFileLockManager] Lock acquired.
14:15:53.211 [DEBUG] [org.gradle.configuration.project.BuildScriptProcessor] Timing: Running the build script took 0.065 secs
14:15:53.213 [INFO] [org.gradle.BuildLogger] All projects evaluated.
14:15:53.214 [INFO] [org.gradle.execution.TaskNameResolvingBuildConfigurationAction] Selected primary task 'test' from project :
14:15:53.218 [DEBUG] [org.gradle.execution.taskgraph.DefaultTaskGraphExecuter] Timing: Creating the DAG took 0.0040 secs
14:15:53.219 [INFO] [org.gradle.BuildLogger] Tasks to be executed: [task ':compileJava', task ':processResources', task ':classes', task ':compileTestJava', task ':processTestResources', task ':testClasses', task ':test']
14:15:53.219 [INFO] [org.gradle.execution.taskgraph.AbstractTaskPlanExecutor] :compileJava (Thread[Daemon worker Thread 20,5,main]) started.
14:15:53.220 [LIFECYCLE] [class org.gradle.TaskExecutionLogger] :compileJava
14:15:53.221 [INFO] [org.gradle.api.internal.changedetection.state.InMemoryTaskArtifactCache] In-memory cache of C:\Work\UtilServices\.gradle\2.3\taskArtifacts\fileHashes.bin: Size{3}, CacheStats{hitCount=0, missCount=0, loadSuccessCount=0, loadExceptionCount=0, totalLoadTime=0, evictionCount=0}
14:15:53.221 [INFO] [org.gradle.api.internal.changedetection.state.InMemoryTaskArtifactCache] In-memory cache of C:\Work\UtilServices\.gradle\2.3\taskArtifacts\outputFileStates.bin: Size{5}, CacheStats{hitCount=0, missCount=0, loadSuccessCount=0, loadExceptionCount=0, totalLoadTime=0, evictionCount=0}
14:15:53.221 [INFO] [org.gradle.api.internal.changedetection.state.InMemoryTaskArtifactCache] In-memory cache of C:\Work\UtilServices\.gradle\2.3\taskArtifacts\fileSnapshots.bin: Size{36}, CacheStats{hitCount=0, missCount=0, loadSuccessCount=0, loadExceptionCount=0, totalLoadTime=0, evictionCount=0}
14:15:53.221 [INFO] [org.gradle.api.internal.changedetection.state.InMemoryTaskArtifactCache] In-memory cache of C:\Work\UtilServices\.gradle\2.3\taskArtifacts\taskArtifacts.bin: Size{4}, CacheStats{hitCount=0, missCount=0, loadSuccessCount=0, loadExceptionCount=0, totalLoadTime=0, evictionCount=0}
14:15:53.222 [DEBUG] [org.gradle.api.internal.tasks.execution.ExecuteAtMostOnceTaskExecuter] Starting to execute task ':compileJava'
14:15:53.224 [DEBUG] [org.gradle.api.internal.tasks.execution.SkipUpToDateTaskExecuter] Determining if task ':compileJava' is up-to-date
14:15:53.226 [DEBUG] [org.gradle.cache.internal.DefaultFileLockManager] Waiting to acquire exclusive lock on task history cache (C:\Work\UtilServices\.gradle\2.3\taskArtifacts).
14:15:53.226 [DEBUG] [org.gradle.cache.internal.DefaultFileLockManager] Lock acquired.
14:15:53.228 [DEBUG] [org.gradle.cache.internal.btree.BTreePersistentIndexedCache] Opening cache outputFileStates.bin (C:\Work\UtilServices\.gradle\2.3\taskArtifacts\outputFileStates.bin)
14:15:53.231 [DEBUG] [org.gradle.cache.internal.DefaultFileLockManager] Waiting to acquire exclusive lock on artifact cache (C:\Users\majumdaran\.gradle\caches\modules-2).
14:15:53.232 [DEBUG] [org.gradle.cache.internal.DefaultFileLockManager] Lock acquired.
14:15:53.232 [DEBUG] [org.gradle.api.internal.artifacts.ivyservice.resolveengine.DefaultDependencyResolver] Resolving configuration ':compile'
14:15:53.233 [DEBUG] [org.gradle.internal.resource.transport.http.JavaSystemPropertiesHttpProxySettings] Found java system property 'http.nonProxyHosts': localhost|127.0.0.1. Will ignore proxy settings for these hosts.
14:15:53.233 [DEBUG] [org.gradle.internal.resource.transport.http.HttpClientConfigurer] Using org.gradle.internal.resource.PasswordCredentials#3ed883 and NTLM Credentials [user: majumdaran, domain: KT, workstation: LSWRNL1434] for authenticating against 'proxynap.domain.com:80'
14:15:53.234 [DEBUG] [org.gradle.api.internal.artifacts.ivyservice.ivyresolve.memcache.InMemoryCachedRepositoryFactory] Creating new in-memory cache for repo 'MavenRepo' [4471c3b2f5ea2d40ffaa8b3948cdbacd].
14:15:53.237 [DEBUG] [org.gradle.api.internal.artifacts.ivyservice.resolveengine.graph.DependencyGraphBuilder] Visiting configuration :UtilServices:unspecified(compile).
14:15:53.238 [DEBUG] [org.gradle.api.internal.artifacts.ivyservice.resolveengine.graph.DependencyGraphBuilder] Visiting dependency :UtilServices:unspecified(compile) -> javax.ws.rs:jsr311-api:1.1.1(dependency: javax.ws.rs#jsr311-api;1.1.1 {compile=[default]})
14:15:53.238 [DEBUG] [org.gradle.api.internal.artifacts.ivyservice.resolveengine.graph.DependencyGraphBuilder] Selecting new module version javax.ws.rs:jsr311-api:1.1.1
14:15:53.238 [DEBUG] [org.gradle.api.internal.artifacts.ivyservice.ivyresolve.RepositoryChainDependencyResolver] Attempting to resolve javax.ws.rs:jsr311-api:1.1.1 using repositories [MavenRepo]
14:15:53.239 [DEBUG] [org.gradle.cache.internal.btree.BTreePersistentIndexedCache] Opening cache module-metadata.bin (C:\Users\majumdaran\.gradle\caches\modules-2\metadata-2.14\module-metadata.bin)
14:15:53.240 [DEBUG] [org.gradle.api.internal.artifacts.repositories.resolver.DefaultExternalResourceArtifactResolver] Loading https://repo1.maven.org/maven2/javax/ws/rs/jsr311-api/1.1.1/jsr311-api-1.1.1.pom
14:15:53.240 [DEBUG] [org.gradle.internal.resource.transfer.DefaultCacheAwareExternalResourceAccessor] Constructing external resource: https://repo1.maven.org/maven2/javax/ws/rs/jsr311-api/1.1.1/jsr311-api-1.1.1.pom
14:15:53.240 [DEBUG] [org.gradle.cache.internal.btree.BTreePersistentIndexedCache] Opening cache artifact-at-url.bin (C:\Users\majumdaran\.gradle\caches\modules-2\metadata-2.14\artifact-at-url.bin)
14:15:53.242 [DEBUG] [org.gradle.internal.resource.transport.http.HttpResourceAccessor] Constructing external resource: https://repo1.maven.org/maven2/javax/ws/rs/jsr311-api/1.1.1/jsr311-api-1.1.1.pom
14:15:53.242 [DEBUG] [org.gradle.internal.resource.transport.http.HttpClientHelper] Performing HTTP GET: https://repo1.maven.org/maven2/javax/ws/rs/jsr311-api/1.1.1/jsr311-api-1.1.1.pom
14:15:53.248 [DEBUG] [org.apache.http.impl.conn.PoolingClientConnectionManager] Connection request: [route: {tls}->http://PROXYNAP.domain.COM:80->https://repo1.maven.org][total kept alive: 0; route allocated: 0 of 5; total allocated: 0 of 10]
14:15:53.248 [DEBUG] [org.apache.http.impl.conn.PoolingClientConnectionManager] Connection leased: [id: 105][route: {tls}->http://PROXYNAP.domain.COM:80->https://repo1.maven.org][total kept alive: 0; route allocated: 1 of 5; total allocated: 1 of 10]
14:15:53.286 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnectionOperator] Connecting to PROXYNAP.domain.COM:80
14:15:53.325 [DEBUG] [org.apache.http.client.protocol.RequestAuthCache] Auth cache not set in the context
14:15:53.326 [DEBUG] [org.apache.http.client.protocol.RequestProxyAuthentication] Proxy auth state: UNCHALLENGED
14:15:53.326 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnection] Sending request: CONNECT repo1.maven.org:443 HTTP/1.1
14:15:53.326 [DEBUG] [org.apache.http.headers] >> CONNECT repo1.maven.org:443 HTTP/1.1
14:15:53.327 [DEBUG] [org.apache.http.headers] >> Host: repo1.maven.org
14:15:53.327 [DEBUG] [org.apache.http.headers] >> Proxy-Connection: Keep-Alive
14:15:53.327 [DEBUG] [org.apache.http.headers] >> User-Agent: Gradle/2.3 (Windows 7;6.1;x86) (Sun Microsystems Inc.;1.6.0_45;20.45-b01)
14:15:53.389 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnection] Receiving response: HTTP/1.1 407 Proxy Authentication Required
14:15:53.390 [DEBUG] [org.apache.http.headers] << HTTP/1.1 407 Proxy Authentication Required
14:15:53.391 [DEBUG] [org.apache.http.headers] << Proxy-Authenticate: NEGOTIATE
14:15:53.392 [DEBUG] [org.apache.http.headers] << Proxy-Authenticate: NTLM
14:15:53.394 [DEBUG] [org.apache.http.headers] << Proxy-Authenticate: BASIC realm="DomainDC"
14:15:53.394 [DEBUG] [org.apache.http.headers] << Cache-Control: no-cache
14:15:53.396 [DEBUG] [org.apache.http.headers] << Pragma: no-cache
14:15:53.396 [DEBUG] [org.apache.http.headers] << Content-Type: text/html; charset=utf-8
14:15:53.397 [DEBUG] [org.apache.http.headers] << Proxy-Connection: close
14:15:53.397 [DEBUG] [org.apache.http.headers] << Set-Cookie: BCSI-CS-219523f463b2e8fe=2; Path=/
14:15:53.398 [DEBUG] [org.apache.http.headers] << Connection: close
14:15:53.399 [DEBUG] [org.apache.http.headers] << Content-Length: 813
14:15:53.399 [DEBUG] [org.apache.http.client.protocol.ResponseProcessCookies] Cookie spec not specified in HTTP context
14:15:53.400 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] Authentication required
14:15:53.401 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] PROXYNAP.domain.COM:80 requested authentication
14:15:53.402 [DEBUG] [org.apache.http.impl.client.ProxyAuthenticationStrategy] Authentication schemes in the order of preference: [negotiate, Kerberos, NTLM, Digest, Basic]
14:15:53.402 [DEBUG] [org.apache.http.impl.auth.SPNegoScheme] Received challenge '' from the auth server
14:15:53.403 [DEBUG] [org.apache.http.impl.client.ProxyAuthenticationStrategy] Challenge for Kerberos authentication scheme not available
14:15:53.404 [DEBUG] [org.apache.http.impl.client.ProxyAuthenticationStrategy] Challenge for Digest authentication scheme not available
14:15:53.404 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] Selected authentication options: [NEGOTIATE, NTLM, BASIC]
14:15:53.406 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnection] Connection 0.0.0.0:52729<->172.30.1.181:80 closed
14:15:53.407 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnectionOperator] Connecting to PROXYNAP.domain.COM:80
14:15:53.462 [DEBUG] [org.apache.http.client.protocol.RequestAuthCache] Auth cache not set in the context
14:15:53.463 [DEBUG] [org.apache.http.client.protocol.RequestProxyAuthentication] Proxy auth state: CHALLENGED
14:15:53.463 [DEBUG] [org.apache.http.client.protocol.RequestProxyAuthentication] Generating response to an authentication challenge using Negotiate scheme
14:15:53.463 [DEBUG] [org.apache.http.impl.auth.SPNegoScheme] init PROXYNAP.domain.COM:80
14:15:53.464 [WARN] [org.apache.http.client.protocol.RequestProxyAuthentication] NEGOTIATE authentication error: Invalid name provided (Mechanism level: Could not load configuration file C:\WINDOWS\krb5.ini (The system cannot find the file specified))
14:15:53.465 [DEBUG] [org.apache.http.client.protocol.RequestProxyAuthentication] Generating response to an authentication challenge using ntlm scheme
14:15:53.465 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnection] Sending request: CONNECT repo1.maven.org:443 HTTP/1.1
14:15:53.465 [DEBUG] [org.apache.http.headers] >> CONNECT repo1.maven.org:443 HTTP/1.1
14:15:53.465 [DEBUG] [org.apache.http.headers] >> Host: repo1.maven.org
14:15:53.465 [DEBUG] [org.apache.http.headers] >> Proxy-Connection: Keep-Alive
14:15:53.466 [DEBUG] [org.apache.http.headers] >> User-Agent: Gradle/2.3 (Windows 7;6.1;x86) (Sun Microsystems Inc.;1.6.0_45;20.45-b01)
14:15:53.466 [DEBUG] [org.apache.http.headers] >> Proxy-Authorization: NTLM TlRMTVNTUAABAAAAATIAAAIAAgAgAAAACgAKACIAAABLVExTV1JOTDE0MzQ=
14:15:53.505 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnection] Receiving response: HTTP/1.1 407 Proxy Authentication Required
14:15:53.506 [DEBUG] [org.apache.http.headers] << HTTP/1.1 407 Proxy Authentication Required
14:15:53.506 [DEBUG] [org.apache.http.headers] << Proxy-Authenticate: NTLM TlRMTVNTUAACAAAABAAEADgAAAAFAoECnPhQEmC+RM4AAAAAAAAAAKQApAA8AAAABgGxHQAAAA9LAFQAAgAEAEsAVAABABYASwBUAE4AQQBQAFAAUgBYADcAMgAwAAQAHABrAHQALgBnAHIAbwB1AHAALgBsAG8AYwBhAGwAAwA0AEsAVABOAEEAUABQAFIAWAA3ADIAMAAuAGsAdAAuAGcAcgBvAHUAcAAuAGwAbwBjAGEAbAAFABYAZwByAG8AdQBwAC4AbABvAGMAYQBsAAcACADCTfoMKHLQAQAAAAA=
14:15:53.507 [DEBUG] [org.apache.http.headers] << Cache-Control: no-cache
14:15:53.507 [DEBUG] [org.apache.http.headers] << Pragma: no-cache
14:15:53.507 [DEBUG] [org.apache.http.headers] << Content-Type: text/html; charset=utf-8
14:15:53.508 [DEBUG] [org.apache.http.headers] << Proxy-Connection: Keep-Alive
14:15:53.508 [DEBUG] [org.apache.http.headers] << Set-Cookie: BCSI-CS-219523f463b2e8fe=2; Path=/
14:15:53.509 [DEBUG] [org.apache.http.headers] << Connection: Keep-Alive
14:15:53.510 [DEBUG] [org.apache.http.headers] << Content-Length: 830
14:15:53.510 [DEBUG] [org.apache.http.client.protocol.ResponseProcessCookies] Cookie spec not specified in HTTP context
14:15:53.510 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] Authentication required
14:15:53.511 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] PROXYNAP.domain.COM:80 requested authentication
14:15:53.511 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] Authorization challenge processed
14:15:53.512 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] Connection kept alive
14:15:53.512 [DEBUG] [org.apache.http.client.protocol.RequestAuthCache] Auth cache not set in the context
14:15:53.513 [DEBUG] [org.apache.http.client.protocol.RequestProxyAuthentication] Proxy auth state: HANDSHAKE
14:15:53.514 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnection] Sending request: CONNECT repo1.maven.org:443 HTTP/1.1
14:15:53.515 [DEBUG] [org.apache.http.headers] >> CONNECT repo1.maven.org:443 HTTP/1.1
14:15:53.515 [DEBUG] [org.apache.http.headers] >> Host: repo1.maven.org
14:15:53.516 [DEBUG] [org.apache.http.headers] >> Proxy-Connection: Keep-Alive
14:15:53.516 [DEBUG] [org.apache.http.headers] >> User-Agent: Gradle/2.3 (Windows 7;6.1;x86) (Sun Microsystems Inc.;1.6.0_45;20.45-b01)
14:15:53.517 [DEBUG] [org.apache.http.headers] >> Proxy-Authorization: NTLM TlRMTVNTUAADAAAAGAAYAEAAAADUANQAWAAAAAQABAAsAQAAFAAUADABAAAUABQARAEAAAAAAAAAAAAAAQIAAMH+sPRYQvIsFNzzYiq7VWtugTt+sJGtkYOrVJygwj5Y6T5BUskeLkUBAQAAAAAAAKBA8QwoctABZMcATJhdTDoAAAAAAgAEAEsAVAABABYASwBUAE4AQQBQAFAAUgBYADcAMgAwAAQAHABrAHQALgBnAHIAbwB1AHAALgBsAG8AYwBhAGwAAwA0AEsAVABOAEEAUABQAFIAWAA3ADIAMAAuAGsAdAAuAGcAcgBvAHUAcAAuAGwAbwBjAGEAbAAFABYAZwByAG8AdQBwAC4AbABvAGMAYQBsAAcACADCTfoMKHLQAQAAAAAAAAAASwBUAG0AYQBqAHUAbQBkAGEAcgBhAG4ATABTAFcAUgBOAEwAMQA0ADMANAA=
14:15:53.566 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnection] Receiving response: HTTP/1.1 407 Proxy Authentication Required
14:15:53.567 [DEBUG] [org.apache.http.headers] << HTTP/1.1 407 Proxy Authentication Required
14:15:53.568 [DEBUG] [org.apache.http.headers] << Proxy-Authenticate: NTLM
14:15:53.569 [DEBUG] [org.apache.http.headers] << Cache-Control: no-cache
14:15:53.570 [DEBUG] [org.apache.http.headers] << Pragma: no-cache
14:15:53.571 [DEBUG] [org.apache.http.headers] << Content-Type: text/html; charset=utf-8
14:15:53.573 [DEBUG] [org.apache.http.headers] << Proxy-Connection: close
14:15:53.574 [DEBUG] [org.apache.http.headers] << Set-Cookie: BCSI-CS-219523f463b2e8fe=2; Path=/
14:15:53.575 [DEBUG] [org.apache.http.headers] << Connection: close
14:15:53.576 [DEBUG] [org.apache.http.headers] << Content-Length: 863
14:15:53.577 [DEBUG] [org.apache.http.client.protocol.ResponseProcessCookies] Cookie spec not specified in HTTP context
14:15:53.577 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] Authentication required
14:15:53.578 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] PROXYNAP.domain.COM:80 requested authentication
14:15:53.579 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] Authorization challenge processed
14:15:53.579 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] Authentication failed
14:15:53.580 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnection] Connection 0.0.0.0:52730<->172.30.1.181:80 closed
14:15:53.581 [DEBUG] [org.apache.http.impl.client.SystemDefaultHttpClient] CONNECT refused by proxy: HTTP/1.1 407 Proxy Authentication Required
14:15:53.583 [DEBUG] [org.apache.http.impl.conn.DefaultClientConnection] Connection 0.0.0.0:52730<->172.30.1.181:80 closed
14:15:53.584 [DEBUG] [org.apache.http.impl.conn.PoolingClientConnectionManager] Connection released: [id: 105][route: {tls}->http://PROXYNAP.domain.COM:80->https://repo1.maven.org][total kept alive: 0; route allocated: 0 of 5; total allocated: 0 of 10]
14:15:53.585 [INFO] [org.gradle.internal.resource.transport.http.HttpClientHelper] Failed to get resource: GET. [HTTP HTTP/1.1 407 Proxy Authentication Required: https://repo1.maven.org/maven2/javax/ws/rs/jsr311-api/1.1.1/jsr311-api-1.1.1.pom]
14:15:53.586 [DEBUG]
--- deleted due to so 30000 chars limit