You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2006/02/27 08:31:23 UTC
DO NOT REPLY [Bug 38789] New: - Existing User, wrong password generates internal error
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=38789>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38789
Summary: Existing User, wrong password generates internal error
Product: Apache httpd-2
Version: 2.2.0
Platform: Sun
OS/Version: Solaris
Status: NEW
Severity: normal
Priority: P2
Component: mod_authz_ldap
AssignedTo: bugs@httpd.apache.org
ReportedBy: mika.borner@clariden.com
When authenticating with an existing user against LDAP, supplying a wrong
password, an internal server error is generated immediatly.
If the user does not exists, the user is challenged again (correct behaviour).
If the user exists and the supplied password is correct, the user will be
authenticated, and authorized (correct behaviour).
The LDAP Server is Novell NDS
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 38789] - Existing User, wrong password generates internal error
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=38789>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38789
bnicholes@apache.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |NEEDINFO
------- Additional Comments From bnicholes@apache.org 2006-03-06 16:52 -------
I don't have a Solaris box to test with, but given the description of the
problem, everything works as expected on Suse Linux 10 against a Novell NDS
ldap server. Can you provide more information such as your auth_ldap
configuration and any error messages in the error_log with LogLevel set to
DEBUG.
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 38789] - Existing User, wrong password generates internal error
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=38789>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38789
------- Additional Comments From mika.borner@clariden.com 2006-05-31 05:36 -------
This seems to work now, as I am using httpd Version 2.2.2 with the Novell CLDAP
SDK linked to it.
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 38789] - Existing User, wrong password generates internal error
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=38789>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38789
------- Additional Comments From bnicholes@apache.org 2006-03-15 15:59 -------
I tried to match your configuration as close as possible, but I am still not
seeing a problem. Everything seems to work as expected.
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 38789] - Existing User, wrong password generates internal error
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=38789>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38789
mika.borner@clariden.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEEDINFO |NEW
------- Additional Comments From mika.borner@clariden.com 2006-03-15 12:06 -------
(In reply to comment #2)
> I don't have a Solaris box to test with, but given the description of the
> problem, everything works as expected on Suse Linux 10 against a Novell NDS
> ldap server. Can you provide more information such as your auth_ldap
> configuration and any error messages in the error_log with LogLevel set to
> DEBUG.
Here it comes. Debug does not show anything interesting:
[Wed Mar 15 12:55:32 2006] [info] Initial (No.1) HTTPS request received for
child 5 (server host.domain:443)
[Wed Mar 15 12:55:32 2006] [debug] mod_authnz_ldap.c(373): [client 169.xx.xx.x]
[20006] auth_ldap authenticate: using URL ldap://nds-ldap1.domain:389/
o=Organisation?uid, referer: https://host.domain/menu.html
[Wed Mar 15 12:55:35 2006] [warn] [client 169.xx.xx.xx] [20006] auth_ldap
authenticate: user username authentication failed; URI /PATH/
[ldap_simple_bind_s() to check user credentials failed][Invalid credentials],
referer: https://host.domain/menu.html
[Wed Mar 15 12:55:35 2006] [info] [client 169.xx.xx.xx] Connection closed to
child 5 with unclean shutdown (server host.domain:443)
Directive:
<Location /PATH>
AuthType Basic
AuthName "host.domain"
AuthBasicProvider ldap
AuthLDAPURL ldap://nds-ldap1.domain:389/o=Organisation?uid
require ldap-attribute ou=4314
Options Indexes
IndexOptions FancyIndexing
IndexStyleSheet "/css/font.css"
Order allow,deny
Allow from all
</Location>
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 38789] - Existing User, wrong password generates internal error
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=38789>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38789
jpetrakis@rcn.com changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |jpetrakis@rcn.com
------- Additional Comments From jpetrakis@rcn.com 2006-03-05 02:17 -------
Also happens on httpd built on Win32 authenticating against openldap using patch
from bug 37814
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
DO NOT REPLY [Bug 38789] - Existing User, wrong password generates internal error
Posted by bu...@apache.org.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=38789>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=38789
------- Additional Comments From bugs@isiminger.com 2006-05-23 17:31 -------
I am experiencing the same problem. System is Fedora Core 4; Apache HTTP Server
2.0.54; Against OpenLDAP 2.2.29
mod_authz_ldap Directive is as follows:
<Directory /some/path/ >
Options None
AuthType Basic
AuthName "Authentication"
AuthzLDAPMethod ldap
AuthzLDAPServer ldap.example.com
AuthzLDAPUserBase ou=People,dc=example,dc=com
AuthzLDAPUserKey uid
AuthzLDAPUserScope subtree
AuthzLDAPAuthoritative off
require valid-user
</Directory>
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org