You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@marmotta.apache.org by Scott Vanderbilt <li...@datagenic.com> on 2013/08/15 02:49:38 UTC
3.0.0 - Cannot Modify Configuration with Security Enabled
Hello.
I've installed marmotta 3.0.0 and can successfully navigate to the admin
interface. However, I am unable to make any changes to the
configuration. Every time I attempt to make a change, I receive a Basic
Authentication challenge. Having not yet configured any users, I attempt
to use the default credentials given on this page
<http://marmotta.incubator.apache.org/platform/security-module.html>
which are 'admin' and 'pass123'. However, these credentials are rejected
each time, and I am unable to proceed any further.
I then attempted to disable the security by manually editing the file
system-config.properties and changing 'security.enabled' to false. After
I did this, I was able to successfully set the password for the 'admin'
user, configure my database (mysql), and make other changes to the
configuration. However, when I re-enabled security (setting
'security.enabled' = true by manually editing file
'system-config.properties') I was then challenged on every subsequent
attempt to change the configuration, and the admin password I had set up
was repeatedly rejected.
So, essentially, I am unable to do any configuration with security enabled.
Also, the "login" link on the top-right corner of the admin page does
nothing. Each time I click it, it seems to make a call to the server,
but the same page is re-loaded, and I do not get a prompt to log in.
Any assistance you can lend in helping me to proceed beyond this point
would be greatly appreciated.
server OS: OpenBSD 5.4-current
JDK: 1.7.0_21
marmotta: v. 3.0.0-incubating WAR (build Thu, 11 Apr 2013)
browser: Firefox 23.0 on Windows 7 (64-bit)
Re: 3.0.0 - Cannot Modify Configuration with Security Enabled
Posted by Scott Vanderbilt <li...@datagenic.com>.
Sebastien:
Thank you for your reply.
I will try your suggested steps and see what happens.
Thanks again.
- Scott
On 8/19/2013 1:40 PM, Sebastian Schaffert wrote:
> Hi Thang and Scott,
>
> I admit that the security feature is still a bit tricky. On a default
> installation, access is only allowed from localhost and does not require
> a login (this is the security profile "simple"). To change the security
> profile to "standard", there are three options to do so:
>
> 1. Log in to the server and use "curl" to set the profile:
>
> curl -X POST -u admin:pass123 -d '["standard"]'
> http://localhost:8080/config/data/security.profile
>
> (not tested, forgive me if I have a spelling mistake, you get the idea....)
>
>
> 2. Disable security, then change profile
>
> This option requires that you temporarily disable the security, change
> the profile to "standard", and enable it again. Afterwards, the system
> should be running properly again.
>
>
> 3. Set the security configuration before setting up the system
>
> This requires to be done before setting up the system, i.e. everything
> empty.
>
> a. create the home directory for Marmotta (e.g. mkdir /home/marmotta)
> b. add a new text file "system-config.properties" and add to it the line
> "security.profile=standard" (e.g. echo "security.profile=standard" >
> /home/marmotta/system-config.properties)
> c. start up the system, setting the MARMOTTA_HOME environment variable
> to the created directory
>
> After these steps the system will be automatically configured to the
> "standard" profile.
>
> Unfortunately, there is currently no easier way to do this, because
> setting the security profile involves more than just setting the
> variable "security.profile" to a different value. When the variable is
> changed through the system, the security rules of the configured profile
> are installed. This also happens on first initialisation, but not later
> when the system is already configured (except if changing through the
> system).
>
> Greetings,
>
> Sebastian
>
>
> 2013/8/17 Thang Chi Duong <svic4ever@gmail.com <ma...@gmail.com>>
>
> Hi,
> I also have the same problem. I want to change the security.profile
> to standard.
> First, I login with the username and password: admin/pass123. After
> logging in successfully, when I try to modify the security.profile
> parameter in the configuration interface of Security, I also receive
> a basic authentication challenge despite the fact that I have logged
> in as admin.
>
> I cannot changed the system-config.properties since I deploy the war
> file as a whole on heroku.
>
> I believe there is a master account here which can make change to
> these configuration. Can you provide that account please or another
> way so I can set the security.profile parameter ?
>
> @Scott: have you tried to add security.profile = standard to
> security-config.properties ? Just my two cents.
>
> Thang
>
>
> On Thu, Aug 15, 2013 at 7:49 AM, Scott Vanderbilt
> <lists@datagenic.com <ma...@datagenic.com>> wrote:
>
> Hello.
>
> I've installed marmotta 3.0.0 and can successfully navigate to
> the admin interface. However, I am unable to make any changes to
> the configuration. Every time I attempt to make a change, I
> receive a Basic Authentication challenge. Having not yet
> configured any users, I attempt to use the default credentials
> given on this page
> <http://marmotta.incubator.__apache.org/platform/security-__module.html
> <http://marmotta.incubator.apache.org/platform/security-module.html>>
> which are 'admin' and 'pass123'. However, these credentials are
> rejected each time, and I am unable to proceed any further.
>
> I then attempted to disable the security by manually editing the
> file system-config.properties and changing 'security.enabled' to
> false. After I did this, I was able to successfully set the
> password for the 'admin' user, configure my database (mysql),
> and make other changes to the configuration. However, when I
> re-enabled security (setting 'security.enabled' = true by
> manually editing file 'system-config.properties') I was then
> challenged on every subsequent attempt to change the
> configuration, and the admin password I had set up was
> repeatedly rejected.
>
> So, essentially, I am unable to do any configuration with
> security enabled.
>
> Also, the "login" link on the top-right corner of the admin page
> does nothing. Each time I click it, it seems to make a call to
> the server, but the same page is re-loaded, and I do not get a
> prompt to log in.
>
> Any assistance you can lend in helping me to proceed beyond this
> point would be greatly appreciated.
>
> server OS: OpenBSD 5.4-current
> JDK: 1.7.0_21
> marmotta: v. 3.0.0-incubating WAR (build Thu, 11 Apr 2013)
> browser: Firefox 23.0 on Windows 7 (64-bit)
>
>
>
Re: 3.0.0 - Cannot Modify Configuration with Security Enabled
Posted by Sebastian Schaffert <se...@gmail.com>.
Hi Thang and Scott,
I admit that the security feature is still a bit tricky. On a default
installation, access is only allowed from localhost and does not require a
login (this is the security profile "simple"). To change the security
profile to "standard", there are three options to do so:
1. Log in to the server and use "curl" to set the profile:
curl -X POST -u admin:pass123 -d '["standard"]'
http://localhost:8080/config/data/security.profile
(not tested, forgive me if I have a spelling mistake, you get the idea....)
2. Disable security, then change profile
This option requires that you temporarily disable the security, change the
profile to "standard", and enable it again. Afterwards, the system should
be running properly again.
3. Set the security configuration before setting up the system
This requires to be done before setting up the system, i.e. everything
empty.
a. create the home directory for Marmotta (e.g. mkdir /home/marmotta)
b. add a new text file "system-config.properties" and add to it the line
"security.profile=standard" (e.g. echo "security.profile=standard" >
/home/marmotta/system-config.properties)
c. start up the system, setting the MARMOTTA_HOME environment variable to
the created directory
After these steps the system will be automatically configured to the
"standard" profile.
Unfortunately, there is currently no easier way to do this, because setting
the security profile involves more than just setting the variable
"security.profile" to a different value. When the variable is changed
through the system, the security rules of the configured profile are
installed. This also happens on first initialisation, but not later when
the system is already configured (except if changing through the system).
Greetings,
Sebastian
2013/8/17 Thang Chi Duong <sv...@gmail.com>
> Hi,
> I also have the same problem. I want to change the security.profile to
> standard.
> First, I login with the username and password: admin/pass123. After
> logging in successfully, when I try to modify the security.profile
> parameter in the configuration interface of Security, I also receive a
> basic authentication challenge despite the fact that I have logged in as
> admin.
>
> I cannot changed the system-config.properties since I deploy the war file
> as a whole on heroku.
>
> I believe there is a master account here which can make change to these
> configuration. Can you provide that account please or another way so I can
> set the security.profile parameter ?
>
> @Scott: have you tried to add security.profile = standard to
> security-config.properties ? Just my two cents.
>
> Thang
>
>
> On Thu, Aug 15, 2013 at 7:49 AM, Scott Vanderbilt <li...@datagenic.com>wrote:
>
>> Hello.
>>
>> I've installed marmotta 3.0.0 and can successfully navigate to the admin
>> interface. However, I am unable to make any changes to the configuration.
>> Every time I attempt to make a change, I receive a Basic Authentication
>> challenge. Having not yet configured any users, I attempt to use the
>> default credentials given on this page <http://marmotta.incubator.**
>> apache.org/platform/security-**module.html<http://marmotta.incubator.apache.org/platform/security-module.html>>
>> which are 'admin' and 'pass123'. However, these credentials are rejected
>> each time, and I am unable to proceed any further.
>>
>> I then attempted to disable the security by manually editing the file
>> system-config.properties and changing 'security.enabled' to false. After I
>> did this, I was able to successfully set the password for the 'admin' user,
>> configure my database (mysql), and make other changes to the configuration.
>> However, when I re-enabled security (setting 'security.enabled' = true by
>> manually editing file 'system-config.properties') I was then challenged on
>> every subsequent attempt to change the configuration, and the admin
>> password I had set up was repeatedly rejected.
>>
>> So, essentially, I am unable to do any configuration with security
>> enabled.
>>
>> Also, the "login" link on the top-right corner of the admin page does
>> nothing. Each time I click it, it seems to make a call to the server, but
>> the same page is re-loaded, and I do not get a prompt to log in.
>>
>> Any assistance you can lend in helping me to proceed beyond this point
>> would be greatly appreciated.
>>
>> server OS: OpenBSD 5.4-current
>> JDK: 1.7.0_21
>> marmotta: v. 3.0.0-incubating WAR (build Thu, 11 Apr 2013)
>> browser: Firefox 23.0 on Windows 7 (64-bit)
>>
>
>
Re: 3.0.0 - Cannot Modify Configuration with Security Enabled
Posted by Thang Chi Duong <sv...@gmail.com>.
Hi,
I also have the same problem. I want to change the security.profile to
standard.
First, I login with the username and password: admin/pass123. After logging
in successfully, when I try to modify the security.profile parameter in the
configuration interface of Security, I also receive a basic authentication
challenge despite the fact that I have logged in as admin.
I cannot changed the system-config.properties since I deploy the war file
as a whole on heroku.
I believe there is a master account here which can make change to these
configuration. Can you provide that account please or another way so I can
set the security.profile parameter ?
@Scott: have you tried to add security.profile = standard to
security-config.properties ? Just my two cents.
Thang
On Thu, Aug 15, 2013 at 7:49 AM, Scott Vanderbilt <li...@datagenic.com>wrote:
> Hello.
>
> I've installed marmotta 3.0.0 and can successfully navigate to the admin
> interface. However, I am unable to make any changes to the configuration.
> Every time I attempt to make a change, I receive a Basic Authentication
> challenge. Having not yet configured any users, I attempt to use the
> default credentials given on this page <http://marmotta.incubator.**
> apache.org/platform/security-**module.html<http://marmotta.incubator.apache.org/platform/security-module.html>>
> which are 'admin' and 'pass123'. However, these credentials are rejected
> each time, and I am unable to proceed any further.
>
> I then attempted to disable the security by manually editing the file
> system-config.properties and changing 'security.enabled' to false. After I
> did this, I was able to successfully set the password for the 'admin' user,
> configure my database (mysql), and make other changes to the configuration.
> However, when I re-enabled security (setting 'security.enabled' = true by
> manually editing file 'system-config.properties') I was then challenged on
> every subsequent attempt to change the configuration, and the admin
> password I had set up was repeatedly rejected.
>
> So, essentially, I am unable to do any configuration with security enabled.
>
> Also, the "login" link on the top-right corner of the admin page does
> nothing. Each time I click it, it seems to make a call to the server, but
> the same page is re-loaded, and I do not get a prompt to log in.
>
> Any assistance you can lend in helping me to proceed beyond this point
> would be greatly appreciated.
>
> server OS: OpenBSD 5.4-current
> JDK: 1.7.0_21
> marmotta: v. 3.0.0-incubating WAR (build Thu, 11 Apr 2013)
> browser: Firefox 23.0 on Windows 7 (64-bit)
>