You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jetspeed-user@portals.apache.org by Christopher Marshall <ch...@avenue100.com> on 2009/09/21 16:55:23 UTC
LDAP Configuration Problems
I have been attempting to get Jetspeed to talk to the Fedora directory
server without success and it looks as though the requests being made by
Jetspeed are incorrect. I have configured the the override.properties
three different ways and had different results with each. The structure
of the LDAP directory is a little different than the sample, as there is
dc=com at the top and an ou=jetspeed below it.
CASE 1 =========================
override.properties
ldap.url=ldap://localhost:389
ldap.base=dc=com
ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
ldap.password=< password >
ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
ldap.user.filter = (objectclass=person)
ldap.search.scope = 2
ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com
ldap.user.entryPrefix=uid
ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com
ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com
Jetspeed successfully binds with the ldap.userDn and makes the request
SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2
filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
javaSerializedData javaClassName javaFactory javaCodebase
javaReferenceAddress javaClassNames javaremotelocation"
RESULT err=0 tag=101 nentries=1 etime=0
Jetspeed then succesfully binds again with the ldap.userDN and makes the
request
SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com,dc=com" scope=2
filter="(&(objectClass=inetOrgPerson)(&(objectClass=inetOrgPerson)(uid=cmarshall)))
attrs=ALL
RESULT err=32 tag=101 nentries=0 etime=0
Note the repeat of dc=com,dc=com
CASE 2 ==========================
override.properties
ldap.url=ldap://localhost:389
ldap.base=dc=com
ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
ldap.password=< password >
ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
ldap.user.filter = (objectclass=person)
ldap.search.scope = 2
ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com
ldap.user.entryPrefix=uid
ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com
ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com
Jetspeed successfully binds with the ldap.userDn and makes the request
SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2
filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
javaSerializedData javaClassName javaFactory javaCodebase
javaReferenceAddress javaClassNames javaremotelocation"
RESULT err=0 tag=101 nentries=1 etime=0
Jetspeed attempts to bind with
BIND dn="uid=CMarshall,ou=Peopleou=sevenSeasou=jetspeeddc=com"
method=128 version=3
RESULT err=32 tag=97 nentries=0 etime=0
Yes, the commas that should be there are really missing.
CASE 3 =============================
override.properties
ldap.url=ldap://localhost:389
ldap.base=dc=com
ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
ldap.password=< password >
ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
ldap.user.filter = (objectclass=person)
ldap.search.scope = 2
ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed
ldap.user.entryPrefix=uid
ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed
ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed
Jetspeed successfully binds with the ldap.userDn amd makes the request
SRCH base="ou=People,ou=sevenSeas,ou=jetspeed" scope=2
filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
javaSerializedData javaClassName javaFactory javaCodebase
javaReferenceAddress javaClassNames javaremotelocation"
RESULT err=32 tag=101 nentries=0 etime=0
Note that the dc=com has not appended to the end of the search base.
Suggestions?
Chris Marshall
---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@portals.apache.org
For additional commands, e-mail: jetspeed-user-help@portals.apache.org
RE: LDAP Configuration Problems
Posted by "Varsha NRao (HCL Financial Services)" <Va...@hcl.in>.
Hi all,
I am trying to integrate Jetspeed 2.2.0 with an LdaP server(TDS), I followed the steps given in the link
http://osdir.com/ml/jetspeed-user-portals.apache.org/2009-08/msg00014.html#
We don’t have a Roles concept in our project, its just that users belong to groups.
My override.properties file is as follows:
ldap.url=ldap://localhost:389
ldap.base=dc=test,dc=com
ldap.userDn=cn=root
ldap.password=password
ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
ldap.user.filter=(objectclass=inetOrgPerson)
ldap.search.scope=2
ldap.user.searchBase=
ldap.user.entryPrefix=uid
ldap.role.searchBase=cn=groups,dc=test,dc=com
ldap.group.searchBase=cn=groups,dc=test,dc=com
#Turn on LDAP Security
spring.filter.key=portal.ldap
And my security-ldap.xml file is as follows:
<bean id="UserDaoConfiguration" class="org.apache.jetspeed.security.mapping.ldap.dao.LDAPEntityDAOConfiguration" init-method="initialize">
<meta key="j2:cat" value="ldapSecurity" />
<property name="baseDN" value="${ldap.base}" />
<property name="searchDN" value="${ldap.user.searchBase}" />
<property name="searchFilter">
<bean class="org.apache.jetspeed.security.mapping.ldap.filter.SimpleFilter">
<constructor-arg index="0" value="(objectClass=inetOrgPerson)" />
</bean>
</property>
<property name="ldapIdAttribute" value="uid" />
<property name="objectClasses" value="inetOrgPerson,organizationalPerson,person,top"/>
<property name="attributeDefinitions">
<set>
<bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl">
<constructor-arg type="java.lang.String" index="0" value="uid" />
<constructor-arg index="1" value="false" />
<constructor-arg index="2" value="false" />
<property name="required" value="true"/>
<property name="idAttribute" value="true"/>
</bean>
<bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl">
<constructor-arg type="java.lang.String" index="0" value="cn" />
<constructor-arg index="1" value="false" />
<constructor-arg index="2" value="false" />
<property name="required" value="true"/>
<property name="idAttribute" value="true"/>
</bean>
<bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl">
<constructor-arg type="java.lang.String" index="0" value="sn" />
<constructor-arg index="1" value="false" />
<constructor-arg index="2" value="false" />
<property name="required" value="true"/>
<property name="idAttribute" value="true"/>
</bean>
<bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl">
<constructor-arg type="java.lang.String" index="0" value="givenName" />
<constructor-arg index="1" value="false" />
<constructor-arg index="2" value="true" />
<constructor-arg type="java.lang.String" index="3" value="user.name.given" />
</bean>
</set>
</property>
<property name="entityType" value="user" />
</bean>
<bean id="RoleDaoConfiguration" class="org.apache.jetspeed.security.mapping.ldap.dao.LDAPEntityDAOConfiguration" init-method="initialize">
<meta key="j2:cat" value="ldapSecurity" />
<property name="baseDN" value="${ldap.base}" />
<property name="searchDN" value="${ldap.role.searchBase}" />
<property name="searchFilter">
<bean class="org.apache.jetspeed.security.mapping.ldap.filter.SimpleFilter">
<constructor-arg index="0" value="(objectClass=groupOfUniqueNames)" />
</bean>
</property>
<property name="ldapIdAttribute" value="cn" />
<property name="objectClasses" value="groupOfUniqueNames,top"/>
<property name="attributeDefinitions">
<set>
<bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl">
<constructor-arg type="java.lang.String" index="0" value="cn" />
<constructor-arg index="1" value="false" />
<constructor-arg index="2" value="false" />
<property name="required" value="true"/>
<property name="idAttribute" value="true"/>
</bean>
<bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl">
<constructor-arg type="java.lang.String" index="0" value="uniqueMember" />
<constructor-arg index="1" value="true" />
<constructor-arg index="2" value="false" />
<property name="required" value="true" />
<property name="requiredDefaultValue" value="uid=dummy" />
</bean>
</set>
</property>
<property name="entityType" value="role" />
</bean>
<bean id="GroupDaoConfiguration" class="org.apache.jetspeed.security.mapping.ldap.dao.LDAPEntityDAOConfiguration" init-method="initialize">
<meta key="j2:cat" value="ldapSecurity" />
<property name="baseDN" value="${ldap.base}" />
<property name="searchDN" value="${ldap.group.searchBase}" />
<property name="searchFilter">
<bean class="org.apache.jetspeed.security.mapping.ldap.filter.SimpleFilter">
<constructor-arg index="0" value="(objectClass=groupOfUniqueNames)" />
</bean>
</property>
<property name="ldapIdAttribute" value="cn" />
<property name="objectClasses" value="groupOfUniqueNames,top"/>
<property name="attributeDefinitions">
<set>
<bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl">
<constructor-arg type="java.lang.String" index="0" value="cn" />
<constructor-arg index="1" value="false" />
<constructor-arg index="2" value="false" />
<property name="required" value="true"/>
<property name="idAttribute" value="true"/>
</bean>
<bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl">
<constructor-arg type="java.lang.String" index="0" value="uniqueMember" />
<constructor-arg index="1" value="true" />
<constructor-arg index="2" value="false" />
<property name="required" value="true" />
<property name="requiredDefaultValue" value="uid=dummy" />
</bean>
</set>
</property>
<property name="entityType" value="group" />
</bean>
<bean id="UserDao" class="org.apache.jetspeed.security.mapping.ldap.dao.impl.SpringLDAPEntityDAO">
<meta key="j2:cat" value="ldapSecurity" />
<constructor-arg ref="UserDaoConfiguration"/>
<property name="ldapTemplate">
<bean class="org.springframework.ldap.core.LdapTemplate">
<property name="contextSource" ref="LdapSpringContext" />
</bean>
</property>
</bean>
<bean id="UserRoleRelationDAO" class="org.apache.jetspeed.security.mapping.ldap.dao.impl.AttributeBasedRelationDAO">
<meta key="j2:cat" value="ldapSecurity" />
<property name="relationAttribute" value="uniqueMember" />
<property name="attributeContainsInternalId" value="true" />
<property name="useFromEntityAttribute" value="false" />
<property name="relationType">
<bean class="org.apache.jetspeed.security.mapping.impl.SecurityEntityRelationTypeImpl">
<constructor-arg index="0" value="isMemberOf" />
<constructor-arg index="1" value="user" />
<constructor-arg index="2" value="role" />
</bean>
</property>
</bean>
<bean id="UserGroupRelationDAO" class="org.apache.jetspeed.security.mapping.ldap.dao.impl.AttributeBasedRelationDAO">
<meta key="j2:cat" value="ldapSecurity" />
<property name="relationAttribute" value="uniqueMember" />
<property name="attributeContainsInternalId" value="true" />
<property name="useFromEntityAttribute" value="false" />
<property name="relationType">
<bean class="org.apache.jetspeed.security.mapping.impl.SecurityEntityRelationTypeImpl">
<constructor-arg index="0" value="isMemberOf" />
<constructor-arg index="1" value="user" />
<constructor-arg index="2" value="group" />
</bean>
</property>
</bean>
<bean id="RoleGroupRelationDAO" class="org.apache.jetspeed.security.mapping.ldap.dao.impl.AttributeBasedRelationDAO">
<meta key="j2:cat" value="ldapSecurity" />
<property name="relationAttribute" value="member" />
<property name="attributeContainsInternalId" value="true" />
<property name="useFromEntityAttribute" value="true" />
<property name="relationType">
<bean class="org.apache.jetspeed.security.mapping.impl.SecurityEntityRelationTypeImpl">
<constructor-arg index="0" value="isMemberOf" />
<constructor-arg index="1" value="group" />
<constructor-arg index="2" value="role" />
</bean>
</property>
</bean>
My problem is that we don’t have a Roles concept in our project, its just that users belong to groups.
So I tried keeping the ldap.role.searchBase empty and ldap.group.searchBase empty, I also tried setting both to the same value . But still I get an error.
When I try to log in I am getting a NameNotFoundException in the authenticate() method of LdapAuthenticationProvider class
if(authenticated)
{
System.out.println(" Inside if(authenticated)");
User user = getUser(userName);-----Exception is coming at this point
System.out.println("After getting user ==> "+user.getName()+" ==> "+user);
authUser = new AuthenticatedUserImpl(user, new UserCredentialImpl(upcm.getPasswordCredential(user)));
System.out.println("After authUser==> "+authUser);
}
org.springframework.ldap.NameNotFoundException: [LDAP: error code 32 - No Such O
bject]; nested exception is javax.naming.NameNotFoundException: [LDAP: error cod
e 32 - No Such Object]; remaining name 'cn=groups,dc=test,dc=com'
at org.springframework.ldap.support.LdapUtils.convertLdapException(LdapU
tils.java:172)
at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:3
06)
at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:2
59)
at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:6
06)
at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:5
24)
at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:4
73)
at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:4
93)
at org.apache.jetspeed.security.mapping.ldap.dao.impl.SpringLDAPEntityDA
O.getEntities(SpringLDAPEntityDAO.java:227)
at org.apache.jetspeed.security.mapping.ldap.dao.impl.AttributeBasedRela
tionDAO.internalGetRelatedEntities(AttributeBasedRelationDAO.java:89)
at org.apache.jetspeed.security.mapping.ldap.dao.impl.AttributeBasedRela
tionDAO.getRelatedEntitiesFrom(AttributeBasedRelationDAO.java:52)
at org.apache.jetspeed.security.mapping.ldap.dao.DefaultLDAPEntityManage
r.getRelatedEntitiesFrom(DefaultLDAPEntityManager.java:149)
at org.apache.jetspeed.security.spi.impl.DefaultJetspeedSecuritySynchron
izer.synchronizeAddedEntityRelations(DefaultJetspeedSecuritySynchronizer.java:20
0)
at org.apache.jetspeed.security.spi.impl.DefaultJetspeedSecuritySynchron
izer.synchronizeEntityRelations(DefaultJetspeedSecuritySynchronizer.java:168)
at org.apache.jetspeed.security.spi.impl.DefaultJetspeedSecuritySynchron
izer.recursiveSynchronizeEntity(DefaultJetspeedSecuritySynchronizer.java:148)
at org.apache.jetspeed.security.spi.impl.DefaultJetspeedSecuritySynchron
izer.synchronizeUserPrincipal(DefaultJetspeedSecuritySynchronizer.java:128)
at org.apache.jetspeed.security.impl.LdapAuthenticationProvider.getUser(
LdapAuthenticationProvider.java:102)
at org.apache.jetspeed.security.impl.LdapAuthenticationProvider.authenti
cate(LdapAuthenticationProvider.java:74)
at org.apache.jetspeed.security.impl.DefaultLoginModule.login(DefaultLog
inModule.java:222)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at javax.security.auth.login.LoginContext.invoke(Unknown Source)
at javax.security.auth.login.LoginContext.access$000(Unknown Source)
at javax.security.auth.login.LoginContext$4.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokePriv(Unknown Source)
at javax.security.auth.login.LoginContext.login(Unknown Source)
at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:399)
at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:323)
at org.apache.catalina.authenticator.FormAuthenticator.authenticate(Form
Authenticator.java:258)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(Authentica
torBase.java:417)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.j
ava:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.j
ava:102)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVal
ve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.jav
a:293)
at org.apache.coyote.http11.Http11AprProcessor.process(Http11AprProcesso
r.java:859)
at org.apache.coyote.http11.Http11AprProtocol$Http11ConnectionHandler.pr
ocess(Http11AprProtocol.java:574)
at org.apache.tomcat.util.net.AprEndpoint$Worker.run(AprEndpoint.java:15
27)
at java.lang.Thread.run(Unknown Source)
Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Ob
ject]; remaining name 'cn=groups,dc=test,dc=com'
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.searchAux(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.c_search(Unknown Source)
at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(Unknown Source)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(Unknown So
urce)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(Unknown So
urce)
at javax.naming.directory.InitialDirContext.search(Unknown Source)
at org.springframework.ldap.core.LdapTemplate$4.executeSearch(LdapTempla
te.java:253)
at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:2
93)
... 38 more
java.lang.NullPointerException
at org.apache.jetspeed.security.impl.UserManagerImpl.resolveSubjectPrinc
ipals(UserManagerImpl.java:173)
at org.apache.jetspeed.security.impl.UserManagerImpl.getSubject(UserMana
gerImpl.java:143)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflecti
on(AopUtils.java:307)
at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJo
inpoint(ReflectiveMethodInvocation.java:182)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(
ReflectiveMethodInvocation.java:149)
at org.springframework.transaction.interceptor.TransactionInterceptor.in
voke(TransactionInterceptor.java:106)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(
ReflectiveMethodInvocation.java:171)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynami
cAopProxy.java:204)
at $Proxy4.getSubject(Unknown Source)
at org.apache.jetspeed.security.impl.DefaultLoginModule.commit(DefaultLo
ginModule.java:165)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at javax.security.auth.login.LoginContext.invoke(Unknown Source)
at javax.security.auth.login.LoginContext.access$000(Unknown Source)
at javax.security.auth.login.LoginContext$4.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokePriv(Unknown Source)
at javax.security.auth.login.LoginContext.login(Unknown Source)
at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:399)
at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:323)
at org.apache.catalina.authenticator.FormAuthenticator.authenticate(Form
Authenticator.java:258)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(Authentica
torBase.java:417)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.j
ava:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.j
ava:102)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVal
ve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.jav
a:293)
at org.apache.coyote.http11.Http11AprProcessor.process(Http11AprProcesso
r.java:859)
at org.apache.coyote.http11.Http11AprProtocol$Http11ConnectionHandler.pr
ocess(Http11AprProtocol.java:574)
at org.apache.tomcat.util.net.AprEndpoint$Worker.run(AprEndpoint.java:15
27)
at java.lang.Thread.run(Unknown Source)
Oct 5, 2009 5:55:31 PM org.apache.catalina.realm.JAASRealm authenticate
WARNING: Cannot find message associated with key jaasRealm.loginException
javax.security.auth.login.LoginException
at org.apache.jetspeed.security.impl.DefaultLoginModule.commit(DefaultLo
ginModule.java:181)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)
at java.lang.reflect.Method.invoke(Unknown Source)
at javax.security.auth.login.LoginContext.invoke(Unknown Source)
at javax.security.auth.login.LoginContext.access$000(Unknown Source)
at javax.security.auth.login.LoginContext$4.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokePriv(Unknown Source)
at javax.security.auth.login.LoginContext.login(Unknown Source)
at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:399)
at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:323)
at org.apache.catalina.authenticator.FormAuthenticator.authenticate(Form
Authenticator.java:258)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(Authentica
torBase.java:417)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.j
ava:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.j
ava:102)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVal
ve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.jav
a:293)
at org.apache.coyote.http11.Http11AprProcessor.process(Http11AprProcesso
r.java:859)
at org.apache.coyote.http11.Http11AprProtocol$Http11ConnectionHandler.pr
ocess(Http11AprProtocol.java:574)
at org.apache.tomcat.util.net.AprEndpoint$Worker.run(AprEndpoint.java:15
27)
at java.lang.Thread.run(Unknown Source)
Any help on this issue is welcome.
Thanks
Cheers :)
Varsha
"No one can go back and make a brand new start.
Anyone can start from now and make a brand new ending..."
Please do not print this email unless it is absolutely necessary. Spread environmental awareness
-----Original Message-----
From: Christopher Marshall [mailto:cmarshall@courseadvisor.com]
Sent: Wednesday, September 23, 2009 3:38 PM
To: Aysegul Aydin; Jetspeed Users List; chris@avenue100.com
Subject: Re: LDAP Configuration Problems
Aysegul,
Your patch does in fact fix things. I have Jetspeed-2.2.0 successfully
authenticating against the Fedora directory server now.
Thanks,
Chris
On 9/23/09 1:51 AM, "Aysegul Aydin" <ay...@yahoo.com> wrote:
> Hi,
>
> ldap.user.searchBase property has a bug. Take a look at the jira issue:
> http://issues.apache.org/jira/browse/JS2-1030 . If you can deal with the
> source code you can fix your portal yourself (that's what I've done).
> Check-out the source code of Jetspeed2.2.0 from SVN and fix the class
> org.apache.jetspeed.security.impl.LdapAuthenticationProvider, method
> getSearchDomain as this:
>
> private String getSearchDomain()
> {
> StringBuffer searchDomain = new StringBuffer();
> if (!StringUtils.isEmpty(context.getUserSearchBase()))
> {
> searchDomain.append(context.getUserSearchBase());
> }
> if (searchDomain.length() == 0)
> {
> if (!StringUtils.isEmpty(context.getRootContext()))
> {
> searchDomain.append(context.getRootContext());
> }
> }
> else
> {
> if (!StringUtils.isEmpty(context.getRootContext()))
> {
> searchDomain.append("," + context.getRootContext());
> }
> }
> return searchDomain.toString();
> }
>
> Otherwise leave the property empty.
> Good luck,
> Aysegul.
>
>
> From: Christopher Marshall <ch...@avenue100.com>
> To: chris@avenue100.com
> Cc: jetspeed-user@portals.apache.org
> Sent: Tuesday, September 22, 2009 12:41:40 AM
> Subject: Re: LDAP Configuration Problems
>
> Looking at my post again, I have a cut and paste error. In "CASE 2"
> ldap.base= have an empty value.
>
> Chris
>
> Christopher Marshall wrote:
>> > I have been attempting to get Jetspeed to talk to the Fedora directory
>> server without success and it looks as though the requests being made by
>> Jetspeed are incorrect. I have configured the the override.properties three
>> different ways and had different results with each. The structure of the
>> LDAP directory is a little different than the sample, as there is dc=com at
>> the top and an ou=jetspeed below it.
>> >
>> > CASE 1 =========================
>> > override.properties
>> >
>> > ldap.url=ldap://localhost:389
>> > ldap.base=dc=com
>> > ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
>> > ldap.password=< password >
>> > ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
>> > ldap.user.filter = (objectclass=person)
>> > ldap.search.scope = 2
>> > ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com
>> > ldap.user.entryPrefix=uid
>> > ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com
>> > ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com
>> >
>> > Jetspeed successfully binds with the ldap.userDn and makes the request
>> >
>> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2
>> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
>> javaSerializedData javaClassName javaFactory javaCodebase
>> javaReferenceAddress javaClassNames javaremotelocation"
>> > RESULT err=0 tag=101 nentries=1 etime=0
>> >
>> > Jetspeed then succesfully binds again with the ldap.userDN and makes the
>> request
>> >
>> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com,dc=com" scope=2
>> filter="(&(objectClass=inetOrgPerson)(&(objectClass=inetOrgPerson)(uid=cmarsh
>> all))) attrs=ALL
>> > RESULT err=32 tag=101 nentries=0 etime=0
>> >
>> > Note the repeat of dc=com,dc=com
>> >
>> > CASE 2 ==========================
>> > override.properties
>> >
>> > ldap.url=ldap://localhost:389
>> > ldap.base=dc=com
>> > ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
>> > ldap.password=< password >
>> > ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
>> > ldap.user.filter = (objectclass=person)
>> > ldap.search.scope = 2
>> > ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com
>> > ldap.user.entryPrefix=uid
>> > ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com
>> > ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com
>> >
>> > Jetspeed successfully binds with the ldap.userDn and makes the request
>> >
>> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2
>> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
>> javaSerializedData javaClassName javaFactory javaCodebase
>> javaReferenceAddress javaClassNames javaremotelocation"
>> > RESULT err=0 tag=101 nentries=1 etime=0
>> >
>> > Jetspeed attempts to bind with
>> >
>> > BIND dn="uid=CMarshall,ou=Peopleou=sevenSeasou=jetspeeddc=com" method=128
>> version=3
>> > RESULT err=32 tag=97 nentries=0 etime=0
>> >
>> > Yes, the commas that should be there are really missing.
>> >
>> > CASE 3 =============================
>> > override.properties
>> >
>> > ldap.url=ldap://localhost:389
>> > ldap.base=dc=com
>> > ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
>> > ldap.password=< password >
>> > ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
>> > ldap.user.filter = (objectclass=person)
>> > ldap.search.scope = 2
>> > ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed
>> > ldap.user.entryPrefix=uid
>> > ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed
>> > ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed
>> >
>> > Jetspeed successfully binds with the ldap.userDn amd makes the request
>> >
>> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed" scope=2
>> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
>> javaSerializedData javaClassName javaFactory javaCodebase
>> javaReferenceAddress javaClassNames javaremotelocation"
>> > RESULT err=32 tag=101 nentries=0 etime=0
>> >
>> > Note that the dc=com has not appended to the end of the search base.
>> >
>> > Suggestions?
>> >
>> > Chris Marshall
>> >
>> >
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: jetspeed-user-unsubscribe@portals.apache.org
> For additional commands, e-mail: jetspeed-user-help@portals.apache.org
>
>
>
DISCLAIMER:
-----------------------------------------------------------------------------------------------------------------------
The contents of this e-mail and any attachment(s) are confidential and intended for the named recipient(s) only.
It shall not attach any liability on the originator or HCL or its affiliates. Any views or opinions presented in
this email are solely those of the author and may not necessarily reflect the opinions of HCL or its affiliates.
Any form of reproduction, dissemination, copying, disclosure, modification, distribution and / or publication of
this message without the prior written consent of the author of this e-mail is strictly prohibited. If you have
received this email in error please delete it and notify the sender immediately. Before opening any mail and
attachments please check them for viruses and defect.
-----------------------------------------------------------------------------------------------------------------------
Re: LDAP Configuration Problems
Posted by Christopher Marshall <cm...@courseadvisor.com>.
Aysegul,
Your patch does in fact fix things. I have Jetspeed-2.2.0 successfully
authenticating against the Fedora directory server now.
Thanks,
Chris
On 9/23/09 1:51 AM, "Aysegul Aydin" <ay...@yahoo.com> wrote:
> Hi,
>
> ldap.user.searchBase property has a bug. Take a look at the jira issue:
> http://issues.apache.org/jira/browse/JS2-1030 . If you can deal with the
> source code you can fix your portal yourself (that's what I've done).
> Check-out the source code of Jetspeed2.2.0 from SVN and fix the class
> org.apache.jetspeed.security.impl.LdapAuthenticationProvider, method
> getSearchDomain as this:
>
> private String getSearchDomain()
> {
> StringBuffer searchDomain = new StringBuffer();
> if (!StringUtils.isEmpty(context.getUserSearchBase()))
> {
> searchDomain.append(context.getUserSearchBase());
> }
> if (searchDomain.length() == 0)
> {
> if (!StringUtils.isEmpty(context.getRootContext()))
> {
> searchDomain.append(context.getRootContext());
> }
> }
> else
> {
> if (!StringUtils.isEmpty(context.getRootContext()))
> {
> searchDomain.append("," + context.getRootContext());
> }
> }
> return searchDomain.toString();
> }
>
> Otherwise leave the property empty.
> Good luck,
> Aysegul.
>
>
> From: Christopher Marshall <ch...@avenue100.com>
> To: chris@avenue100.com
> Cc: jetspeed-user@portals.apache.org
> Sent: Tuesday, September 22, 2009 12:41:40 AM
> Subject: Re: LDAP Configuration Problems
>
> Looking at my post again, I have a cut and paste error. In "CASE 2"
> ldap.base= have an empty value.
>
> Chris
>
> Christopher Marshall wrote:
>> > I have been attempting to get Jetspeed to talk to the Fedora directory
>> server without success and it looks as though the requests being made by
>> Jetspeed are incorrect. I have configured the the override.properties three
>> different ways and had different results with each. The structure of the
>> LDAP directory is a little different than the sample, as there is dc=com at
>> the top and an ou=jetspeed below it.
>> >
>> > CASE 1 =========================
>> > override.properties
>> >
>> > ldap.url=ldap://localhost:389
>> > ldap.base=dc=com
>> > ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
>> > ldap.password=< password >
>> > ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
>> > ldap.user.filter = (objectclass=person)
>> > ldap.search.scope = 2
>> > ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com
>> > ldap.user.entryPrefix=uid
>> > ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com
>> > ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com
>> >
>> > Jetspeed successfully binds with the ldap.userDn and makes the request
>> >
>> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2
>> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
>> javaSerializedData javaClassName javaFactory javaCodebase
>> javaReferenceAddress javaClassNames javaremotelocation"
>> > RESULT err=0 tag=101 nentries=1 etime=0
>> >
>> > Jetspeed then succesfully binds again with the ldap.userDN and makes the
>> request
>> >
>> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com,dc=com" scope=2
>> filter="(&(objectClass=inetOrgPerson)(&(objectClass=inetOrgPerson)(uid=cmarsh
>> all))) attrs=ALL
>> > RESULT err=32 tag=101 nentries=0 etime=0
>> >
>> > Note the repeat of dc=com,dc=com
>> >
>> > CASE 2 ==========================
>> > override.properties
>> >
>> > ldap.url=ldap://localhost:389
>> > ldap.base=dc=com
>> > ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
>> > ldap.password=< password >
>> > ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
>> > ldap.user.filter = (objectclass=person)
>> > ldap.search.scope = 2
>> > ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com
>> > ldap.user.entryPrefix=uid
>> > ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com
>> > ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com
>> >
>> > Jetspeed successfully binds with the ldap.userDn and makes the request
>> >
>> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2
>> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
>> javaSerializedData javaClassName javaFactory javaCodebase
>> javaReferenceAddress javaClassNames javaremotelocation"
>> > RESULT err=0 tag=101 nentries=1 etime=0
>> >
>> > Jetspeed attempts to bind with
>> >
>> > BIND dn="uid=CMarshall,ou=Peopleou=sevenSeasou=jetspeeddc=com" method=128
>> version=3
>> > RESULT err=32 tag=97 nentries=0 etime=0
>> >
>> > Yes, the commas that should be there are really missing.
>> >
>> > CASE 3 =============================
>> > override.properties
>> >
>> > ldap.url=ldap://localhost:389
>> > ldap.base=dc=com
>> > ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
>> > ldap.password=< password >
>> > ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
>> > ldap.user.filter = (objectclass=person)
>> > ldap.search.scope = 2
>> > ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed
>> > ldap.user.entryPrefix=uid
>> > ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed
>> > ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed
>> >
>> > Jetspeed successfully binds with the ldap.userDn amd makes the request
>> >
>> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed" scope=2
>> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
>> javaSerializedData javaClassName javaFactory javaCodebase
>> javaReferenceAddress javaClassNames javaremotelocation"
>> > RESULT err=32 tag=101 nentries=0 etime=0
>> >
>> > Note that the dc=com has not appended to the end of the search base.
>> >
>> > Suggestions?
>> >
>> > Chris Marshall
>> >
>> >
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: jetspeed-user-unsubscribe@portals.apache.org
> For additional commands, e-mail: jetspeed-user-help@portals.apache.org
>
>
>
Re: LDAP Configuration Problems
Posted by Aysegul Aydin <ay...@yahoo.com>.
Hi,
ldap.user.searchBase property has a bug. Take a look at the jira issue: http://issues.apache.org/jira/browse/JS2-1030 . If you can deal with the source code you can fix your portal yourself (that's what I've done). Check-out the source code of Jetspeed2.2.0 from SVN and fix the class org.apache.jetspeed.security.impl.LdapAuthenticationProvider, method getSearchDomain as this:
private String getSearchDomain()
{
StringBuffer searchDomain = new StringBuffer();
if (!StringUtils.isEmpty(context.getUserSearchBase()))
{
searchDomain.append(context.getUserSearchBase());
}
if (searchDomain.length() == 0)
{
if (!StringUtils.isEmpty(context.getRootContext()))
{
searchDomain.append(context.getRootContext());
}
}
else
{
if (!StringUtils.isEmpty(context.getRootContext()))
{
searchDomain.append("," + context.getRootContext());
}
}
return searchDomain.toString();
}
Otherwise leave the property empty.
Good luck,
Aysegul.
________________________________
From: Christopher Marshall <ch...@avenue100.com>
To: chris@avenue100.com
Cc: jetspeed-user@portals.apache.org
Sent: Tuesday, September 22, 2009 12:41:40 AM
Subject: Re: LDAP Configuration Problems
Looking at my post again, I have a cut and paste error. In "CASE 2" ldap.base= have an empty value.
Chris
Christopher Marshall wrote:
> I have been attempting to get Jetspeed to talk to the Fedora directory server without success and it looks as though the requests being made by Jetspeed are incorrect. I have configured the the override.properties three different ways and had different results with each. The structure of the LDAP directory is a little different than the sample, as there is dc=com at the top and an ou=jetspeed below it.
>
> CASE 1 =========================
> override.properties
>
> ldap.url=ldap://localhost:389
> ldap.base=dc=com
> ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
> ldap.password=< password >
> ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
> ldap.user.filter = (objectclass=person)
> ldap.search.scope = 2
> ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com
> ldap.user.entryPrefix=uid
> ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com
> ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com
>
> Jetspeed successfully binds with the ldap.userDn and makes the request
>
> SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2 filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass javaSerializedData javaClassName javaFactory javaCodebase javaReferenceAddress javaClassNames javaremotelocation"
> RESULT err=0 tag=101 nentries=1 etime=0
>
> Jetspeed then succesfully binds again with the ldap.userDN and makes the request
>
> SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com,dc=com" scope=2 filter="(&(objectClass=inetOrgPerson)(&(objectClass=inetOrgPerson)(uid=cmarshall))) attrs=ALL
> RESULT err=32 tag=101 nentries=0 etime=0
>
> Note the repeat of dc=com,dc=com
>
> CASE 2 ==========================
> override.properties
>
> ldap.url=ldap://localhost:389
> ldap.base=dc=com
> ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
> ldap.password=< password >
> ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
> ldap.user.filter = (objectclass=person)
> ldap.search.scope = 2
> ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com
> ldap.user.entryPrefix=uid
> ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com
> ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com
>
> Jetspeed successfully binds with the ldap.userDn and makes the request
>
> SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2 filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass javaSerializedData javaClassName javaFactory javaCodebase javaReferenceAddress javaClassNames javaremotelocation"
> RESULT err=0 tag=101 nentries=1 etime=0
>
> Jetspeed attempts to bind with
>
> BIND dn="uid=CMarshall,ou=Peopleou=sevenSeasou=jetspeeddc=com" method=128 version=3
> RESULT err=32 tag=97 nentries=0 etime=0
>
> Yes, the commas that should be there are really missing.
>
> CASE 3 =============================
> override.properties
>
> ldap.url=ldap://localhost:389
> ldap.base=dc=com
> ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
> ldap.password=< password >
> ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
> ldap.user.filter = (objectclass=person)
> ldap.search.scope = 2
> ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed
> ldap.user.entryPrefix=uid
> ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed
> ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed
>
> Jetspeed successfully binds with the ldap.userDn amd makes the request
>
> SRCH base="ou=People,ou=sevenSeas,ou=jetspeed" scope=2 filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass javaSerializedData javaClassName javaFactory javaCodebase javaReferenceAddress javaClassNames javaremotelocation"
> RESULT err=32 tag=101 nentries=0 etime=0
>
> Note that the dc=com has not appended to the end of the search base.
>
> Suggestions?
>
> Chris Marshall
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@portals.apache.org
For additional commands, e-mail: jetspeed-user-help@portals.apache.org
Re: LDAP Configuration Problems
Posted by Christopher Marshall <ch...@avenue100.com>.
Looking at my post again, I have a cut and paste error. In "CASE 2"
ldap.base= have an empty value.
Chris
Christopher Marshall wrote:
> I have been attempting to get Jetspeed to talk to the Fedora directory
> server without success and it looks as though the requests being made
> by Jetspeed are incorrect. I have configured the the
> override.properties three different ways and had different results
> with each. The structure of the LDAP directory is a little different
> than the sample, as there is dc=com at the top and an ou=jetspeed
> below it.
>
> CASE 1 =========================
> override.properties
>
> ldap.url=ldap://localhost:389
> ldap.base=dc=com
> ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
> ldap.password=< password >
> ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
> ldap.user.filter = (objectclass=person)
> ldap.search.scope = 2
> ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com
> ldap.user.entryPrefix=uid
> ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com
> ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com
>
> Jetspeed successfully binds with the ldap.userDn and makes the request
>
> SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2
> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
> javaSerializedData javaClassName javaFactory javaCodebase
> javaReferenceAddress javaClassNames javaremotelocation"
> RESULT err=0 tag=101 nentries=1 etime=0
>
> Jetspeed then succesfully binds again with the ldap.userDN and makes
> the request
>
> SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com,dc=com" scope=2
> filter="(&(objectClass=inetOrgPerson)(&(objectClass=inetOrgPerson)(uid=cmarshall)))
> attrs=ALL
> RESULT err=32 tag=101 nentries=0 etime=0
>
> Note the repeat of dc=com,dc=com
>
> CASE 2 ==========================
> override.properties
>
> ldap.url=ldap://localhost:389
> ldap.base=dc=com
> ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
> ldap.password=< password >
> ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
> ldap.user.filter = (objectclass=person)
> ldap.search.scope = 2
> ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com
> ldap.user.entryPrefix=uid
> ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com
> ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com
>
> Jetspeed successfully binds with the ldap.userDn and makes the request
>
> SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2
> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
> javaSerializedData javaClassName javaFactory javaCodebase
> javaReferenceAddress javaClassNames javaremotelocation"
> RESULT err=0 tag=101 nentries=1 etime=0
>
> Jetspeed attempts to bind with
>
> BIND dn="uid=CMarshall,ou=Peopleou=sevenSeasou=jetspeeddc=com"
> method=128 version=3
> RESULT err=32 tag=97 nentries=0 etime=0
>
> Yes, the commas that should be there are really missing.
>
> CASE 3 =============================
> override.properties
>
> ldap.url=ldap://localhost:389
> ldap.base=dc=com
> ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com
> ldap.password=< password >
> ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory
> ldap.user.filter = (objectclass=person)
> ldap.search.scope = 2
> ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed
> ldap.user.entryPrefix=uid
> ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed
> ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed
>
> Jetspeed successfully binds with the ldap.userDn amd makes the request
>
> SRCH base="ou=People,ou=sevenSeas,ou=jetspeed" scope=2
> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass
> javaSerializedData javaClassName javaFactory javaCodebase
> javaReferenceAddress javaClassNames javaremotelocation"
> RESULT err=32 tag=101 nentries=0 etime=0
>
> Note that the dc=com has not appended to the end of the search base.
>
> Suggestions?
>
> Chris Marshall
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@portals.apache.org
For additional commands, e-mail: jetspeed-user-help@portals.apache.org