Empty "nifi users" page.

[DEHAY Aurelien <au...@faurecia.com>]

Hello.

My "nifi users" page is empty, with only the spinner spinning at the bottom of the page.

I've tried a lot of conf, and for now everything work fine, except that. There is nothing in the log, even when I tried to put "debug" for authorization parts in logback.

I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.

My configuration authorizers.xml and the part of user mapping in the nifi.properties is https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24

I've read Pierre Villard blog post, nifi doc and a lot of post in hortonworks site, but I've must I missed something. Any pointer is appreciated.

Thanks.

This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

RE: Empty "nifi users" page.

[DEHAY Aurelien <au...@faurecia.com>]

That’s right I have duplicates, same name and thus same uuid from both sides.

We’re going to deal with it, thanks.

Aurélien.

From: Matt Gilman <ma...@gmail.com>
Sent: jeudi 28 mars 2019 22:06
To: users@nifi.apache.org
Subject: Re: Empty "nifi users" page.

Yes, I believe the issue is that you have a user and a group with the same name. The UUID's are determined deterministically based on the user identity and group name. This is done so that we can ensure the same data model across a cluster. While not ideal, this doesn't present any issue managing them or the policies. However, the UI attempts to present them in a single table using that UUID as an identifier. In this case, they are not unique. We should likely do something to ensure that users and group have unique identifiers regardless if there are name conflicts. I have filed a JIRA for this [1]. If possible, you could work around this by ensuring that your users and groups have unique names.

Matt

[1] https://issues.apache.org/jira/browse/NIFI-6161

On Thu, Mar 28, 2019 at 12:38 PM DEHAY Aurelien <au...@faurecia.com>> wrote:
Well, I can compare a lot of things I don’t really know where to search.

What are to be unique? It’s the UUID (id field) present in users/userGroups endpoints? The identity (short names)?
I may have some duplicated between names between user and groups, I’m going to check that point.

Thanks.

From: Matt Gilman <ma...@gmail.com>>
Sent: mercredi 27 mars 2019 19:32
To: users@nifi.apache.org<ma...@nifi.apache.org>
Subject: Re: Empty "nifi users" page.

Is it possible that you have a user and a group with the same name/identity? Can you compare what is in your users.xml file and what is being loaded from your directory server? To see what's being loaded from your directory server, if your running 1.9.x you should be able to enable debug level logging on

org.apache.nifi.ldap.tenants.LdapUserGroupProvider
Thanks

Matt

On Wed, Mar 27, 2019 at 5:46 AM DEHAY Aurelien <au...@faurecia.com>> wrote:
Thanks for you answer.

Like Bryan and you made me investigate on the browser side, I’ve check cache and dev tools.

Indeed the data are correctly sent to the browser. The users & groups api are correctly called and results are good.

So I suppose it’s something on browser side (tested with FF and chrome with same issue).

I got these errors in the console without guarantee that it’s linked to the issue:

Content Security Policy: « x-frame-options » ignoré en raison de la directive « frame-ancestors ».
CURRENT_SITE:  par01prdedge1.soft.fau:18443/nifi/users KeeperFill-var.js:30:935
uncaught exception: Each data element must implement a unique 'id' property

Thanks.

From: Matt Gilman <ma...@gmail.com>>
Sent: mardi 26 mars 2019 17:49
To: users@nifi.apache.org<ma...@nifi.apache.org>
Subject: Re: Empty "nifi users" page.

Hi.

Could you open up your browsers Developer Tools and check the Console for any errors and look at the Network requests and ensure that they are returning correctly. The behavior your describing indicate one of two things. Either the request is not returning from the server or there is a front end code bug.

We have addressed a couple of issues recently that are scheduled to land in 1.10.0 where users are removed (from LDAP externally) and they are still referenced in NiFi policies or groups. However, I don't think the behavior is exactly how you describe.

Also, are you able to build current master and try that out? If your running into the same problem, it's possible its already addressed.

Thanks

Matt

On Tue, Mar 26, 2019 at 10:29 AM Bryan Bende <bb...@gmail.com>> wrote:
What browser and browser version are you using?

Have you tried clearing your browser cache just to make sure the page
is loading properly?

On Tue, Mar 26, 2019 at 10:21 AM DEHAY Aurelien
<au...@faurecia.com>> wrote:
>
> Hello.
>
> I expect to see at least the local users with associated rights (e.g. content of users.xml and authorizations.xml), I've got 3 local users and a bunch of associated rights with ldap users/groups.
>
> I'll try the search filter, but the list is ok when modifying the policies of objects, I can see groups &users.
>
> Thanks.
>
> -----Original Message-----
> From: Kevin Doran <kd...@apache.org>>
> Sent: samedi 23 mars 2019 18:52
> To: users@nifi.apache.org<ma...@nifi.apache.org>
> Subject: Re: Empty "nifi users" page.
>
> How many users and groups do you expect to sync? Are you able to test your search base and filter are correct using a command line tool such as ldapsearch? I'm not sure if a search filter is required (although it would probably fail with an error if it was), but maybe try setting a "match all" filter such as (uid=*).
>
> Hope this helps,
> Kevin
>
> On Fri, Mar 22, 2019 at 11:08 AM DEHAY Aurelien <au...@faurecia.com>> wrote:
> >
> > Hello.
> >
> >
> >
> > My “nifi users” page is empty, with only the spinner spinning at the bottom of the page.
> >
> >
> >
> > I’ve tried a lot of conf, and for now everything work fine, except that. There is nothing in the log, even when I tried to put “debug” for authorization parts in logback.
> >
> >
> >
> > I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.
> >
> >
> >
> > My configuration authorizers.xml and the part of user mapping in the
> > nifi.properties is
> > https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24
> >
> >
> >
> > I’ve read Pierre Villard blog post, nifi doc and a lot of post in hortonworks site, but I’ve must I missed something. Any pointer is appreciated.
> >
> >
> >
> > Thanks.
> >
> >
> > This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.
>
> This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

Re: Empty "nifi users" page.

["Williams, Jim" <jw...@alertlogic.com>]

Matt,

I think the JIRA you filed may be substantially similar to NIFI-5636 I filed a little while ago.  I'm not sure if there is a process for de-duplication, if they do turn out to be the same?


https://issues.apache.org/jira/browse/NIFI-5636


Warm Regards,
Jim Williams

________________________________
From: Matt Gilman <ma...@gmail.com>
Sent: Thursday, March 28, 2019 4:06 PM
To: users@nifi.apache.org
Subject: Re: Empty "nifi users" page.

Yes, I believe the issue is that you have a user and a group with the same name. The UUID's are determined deterministically based on the user identity and group name. This is done so that we can ensure the same data model across a cluster. While not ideal, this doesn't present any issue managing them or the policies. However, the UI attempts to present them in a single table using that UUID as an identifier. In this case, they are not unique. We should likely do something to ensure that users and group have unique identifiers regardless if there are name conflicts. I have filed a JIRA for this [1]. If possible, you could work around this by ensuring that your users and groups have unique names.

Matt

[1] https://issues.apache.org/jira/browse/NIFI-6161<https://urldefense.proofpoint.com/v2/url?u=https-3A__issues.apache.org_jira_browse_NIFI-2D6161&d=DwMFaQ&c=L_h2OePR2UWWefmqrezxOsP9Uqw55rRfX5bRtw9S4KY&r=8BKCOHGXeuGDgPbW9jE4jktuFFiof_whsQaGaYqyyjs&m=YVIrd7aQ0FmVUuuGw38qpXe2-WluI512N8tPfjKtRao&s=nub_WGPY0erRIWAeNNf-Up6p6V6eSMqp_fAb_F7SQ04&e=>

On Thu, Mar 28, 2019 at 12:38 PM DEHAY Aurelien <au...@faurecia.com>> wrote:
Well, I can compare a lot of things I don’t really know where to search.

What are to be unique? It’s the UUID (id field) present in users/userGroups endpoints? The identity (short names)?
I may have some duplicated between names between user and groups, I’m going to check that point.

Thanks.

From: Matt Gilman <ma...@gmail.com>>
Sent: mercredi 27 mars 2019 19:32
To: users@nifi.apache.org<ma...@nifi.apache.org>
Subject: Re: Empty "nifi users" page.

Is it possible that you have a user and a group with the same name/identity? Can you compare what is in your users.xml file and what is being loaded from your directory server? To see what's being loaded from your directory server, if your running 1.9.x you should be able to enable debug level logging on

org.apache.nifi.ldap.tenants.LdapUserGroupProvider
Thanks

Matt

On Wed, Mar 27, 2019 at 5:46 AM DEHAY Aurelien <au...@faurecia.com>> wrote:
Thanks for you answer.

Like Bryan and you made me investigate on the browser side, I’ve check cache and dev tools.

Indeed the data are correctly sent to the browser. The users & groups api are correctly called and results are good.

So I suppose it’s something on browser side (tested with FF and chrome with same issue).

I got these errors in the console without guarantee that it’s linked to the issue:

Content Security Policy: « x-frame-options » ignoré en raison de la directive « frame-ancestors ».
CURRENT_SITE:  par01prdedge1.soft.fau:18443/nifi/users KeeperFill-var.js:30:935
uncaught exception: Each data element must implement a unique 'id' property

Thanks.

From: Matt Gilman <ma...@gmail.com>>
Sent: mardi 26 mars 2019 17:49
To: users@nifi.apache.org<ma...@nifi.apache.org>
Subject: Re: Empty "nifi users" page.

Hi.

Could you open up your browsers Developer Tools and check the Console for any errors and look at the Network requests and ensure that they are returning correctly. The behavior your describing indicate one of two things. Either the request is not returning from the server or there is a front end code bug.

We have addressed a couple of issues recently that are scheduled to land in 1.10.0 where users are removed (from LDAP externally) and they are still referenced in NiFi policies or groups. However, I don't think the behavior is exactly how you describe.

Also, are you able to build current master and try that out? If your running into the same problem, it's possible its already addressed.

Thanks

Matt

On Tue, Mar 26, 2019 at 10:29 AM Bryan Bende <bb...@gmail.com>> wrote:
What browser and browser version are you using?

Have you tried clearing your browser cache just to make sure the page
is loading properly?

On Tue, Mar 26, 2019 at 10:21 AM DEHAY Aurelien
<au...@faurecia.com>> wrote:
>
> Hello.
>
> I expect to see at least the local users with associated rights (e.g. content of users.xml and authorizations.xml), I've got 3 local users and a bunch of associated rights with ldap users/groups.
>
> I'll try the search filter, but the list is ok when modifying the policies of objects, I can see groups &users.
>
> Thanks.
>
> -----Original Message-----
> From: Kevin Doran <kd...@apache.org>>
> Sent: samedi 23 mars 2019 18:52
> To: users@nifi.apache.org<ma...@nifi.apache.org>
> Subject: Re: Empty "nifi users" page.
>
> How many users and groups do you expect to sync? Are you able to test your search base and filter are correct using a command line tool such as ldapsearch? I'm not sure if a search filter is required (although it would probably fail with an error if it was), but maybe try setting a "match all" filter such as (uid=*).
>
> Hope this helps,
> Kevin
>
> On Fri, Mar 22, 2019 at 11:08 AM DEHAY Aurelien <au...@faurecia.com>> wrote:
> >
> > Hello.
> >
> >
> >
> > My “nifi users” page is empty, with only the spinner spinning at the bottom of the page.
> >
> >
> >
> > I’ve tried a lot of conf, and for now everything work fine, except that. There is nothing in the log, even when I tried to put “debug” for authorization parts in logback.
> >
> >
> >
> > I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.
> >
> >
> >
> > My configuration authorizers.xml and the part of user mapping in the
> > nifi.properties is
> > https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24<https://urldefense.proofpoint.com/v2/url?u=https-3A__gist.github.com_zorel_f76c3924f2b266e8a878397271a54f24&d=DwMFaQ&c=L_h2OePR2UWWefmqrezxOsP9Uqw55rRfX5bRtw9S4KY&r=8BKCOHGXeuGDgPbW9jE4jktuFFiof_whsQaGaYqyyjs&m=YVIrd7aQ0FmVUuuGw38qpXe2-WluI512N8tPfjKtRao&s=SX0ncILUv323BLI17uHcXarHMYuymvxNSgZZWOVDIYU&e=>
> >
> >
> >
> > I’ve read Pierre Villard blog post, nifi doc and a lot of post in hortonworks site, but I’ve must I missed something. Any pointer is appreciated.
> >
> >
> >
> > Thanks.
> >
> >
> > This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.
>
> This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.
Confidentiality Notice | This email and any included attachments may be privileged, confidential and/or otherwise protected from disclosure. Access to this email by anyone other than the intended recipient is unauthorized. If you believe you have received this email in error, please contact the sender immediately and delete all copies. If you are not the intended recipient, you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited.

Re: Empty "nifi users" page.

[Matt Gilman <ma...@gmail.com>]

Yes, I believe the issue is that you have a user and a group with the same
name. The UUID's are determined deterministically based on the user
identity and group name. This is done so that we can ensure the same data
model across a cluster. While not ideal, this doesn't present any issue
managing them or the policies. However, the UI attempts to present them in
a single table using that UUID as an identifier. In this case, they are not
unique. We should likely do something to ensure that users and group have
unique identifiers regardless if there are name conflicts. I have filed a
JIRA for this [1]. If possible, you could work around this by ensuring that
your users and groups have unique names.

Matt

[1] https://issues.apache.org/jira/browse/NIFI-6161

On Thu, Mar 28, 2019 at 12:38 PM DEHAY Aurelien <au...@faurecia.com>
wrote:

> Well, I can compare a lot of things I don’t really know where to search.
>
>
>
> What are to be unique? It’s the UUID (id field) present in
> users/userGroups endpoints? The identity (short names)?
>
> I may have some duplicated between names between user and groups, I’m
> going to check that point.
>
>
>
> Thanks.
>
>
>
> *From:* Matt Gilman <ma...@gmail.com>
> *Sent:* mercredi 27 mars 2019 19:32
> *To:* users@nifi.apache.org
> *Subject:* Re: Empty "nifi users" page.
>
>
>
> Is it possible that you have a user and a group with the same
> name/identity? Can you compare what is in your users.xml file and what is
> being loaded from your directory server? To see what's being loaded from
> your directory server, if your running 1.9.x you should be able to enable
> debug level logging on
>
> org.apache.nifi.ldap.tenants.LdapUserGroupProvider
>
> Thanks
>
>
>
> Matt
>
>
>
> On Wed, Mar 27, 2019 at 5:46 AM DEHAY Aurelien <
> aurelien.dehay@faurecia.com> wrote:
>
> Thanks for you answer.
>
>
>
> Like Bryan and you made me investigate on the browser side, I’ve check
> cache and dev tools.
>
>
>
> Indeed the data are correctly sent to the browser. The users & groups api
> are correctly called and results are good.
>
>
>
> So I suppose it’s something on browser side (tested with FF and chrome
> with same issue).
>
>
>
> I got these errors in the console without guarantee that it’s linked to
> the issue:
>
>
>
> Content Security Policy: « x-frame-options » ignoré en raison de la
> directive « frame-ancestors ».
>
> CURRENT_SITE:  par01prdedge1.soft.fau:18443/nifi/users
> KeeperFill-var.js:30:935
>
> uncaught exception: Each data element must implement a unique 'id' property
>
>
>
> Thanks.
>
>
>
> *From:* Matt Gilman <ma...@gmail.com>
> *Sent:* mardi 26 mars 2019 17:49
> *To:* users@nifi.apache.org
> *Subject:* Re: Empty "nifi users" page.
>
>
>
> Hi.
>
>
>
> Could you open up your browsers Developer Tools and check the Console for
> any errors and look at the Network requests and ensure that they are
> returning correctly. The behavior your describing indicate one of two
> things. Either the request is not returning from the server or there is a
> front end code bug.
>
>
>
> We have addressed a couple of issues recently that are scheduled to land
> in 1.10.0 where users are removed (from LDAP externally) and they are still
> referenced in NiFi policies or groups. However, I don't think the behavior
> is exactly how you describe.
>
>
>
> Also, are you able to build current master and try that out? If your
> running into the same problem, it's possible its already addressed.
>
>
>
> Thanks
>
>
>
> Matt
>
>
>
> On Tue, Mar 26, 2019 at 10:29 AM Bryan Bende <bb...@gmail.com> wrote:
>
> What browser and browser version are you using?
>
> Have you tried clearing your browser cache just to make sure the page
> is loading properly?
>
> On Tue, Mar 26, 2019 at 10:21 AM DEHAY Aurelien
> <au...@faurecia.com> wrote:
> >
> > Hello.
> >
> > I expect to see at least the local users with associated rights (e.g.
> content of users.xml and authorizations.xml), I've got 3 local users and a
> bunch of associated rights with ldap users/groups.
> >
> > I'll try the search filter, but the list is ok when modifying the
> policies of objects, I can see groups &users.
> >
> > Thanks.
> >
> > -----Original Message-----
> > From: Kevin Doran <kd...@apache.org>
> > Sent: samedi 23 mars 2019 18:52
> > To: users@nifi.apache.org
> > Subject: Re: Empty "nifi users" page.
> >
> > How many users and groups do you expect to sync? Are you able to test
> your search base and filter are correct using a command line tool such as
> ldapsearch? I'm not sure if a search filter is required (although it would
> probably fail with an error if it was), but maybe try setting a "match all"
> filter such as (uid=*).
> >
> > Hope this helps,
> > Kevin
> >
> > On Fri, Mar 22, 2019 at 11:08 AM DEHAY Aurelien <
> aurelien.dehay@faurecia.com> wrote:
> > >
> > > Hello.
> > >
> > >
> > >
> > > My “nifi users” page is empty, with only the spinner spinning at the
> bottom of the page.
> > >
> > >
> > >
> > > I’ve tried a lot of conf, and for now everything work fine, except
> that. There is nothing in the log, even when I tried to put “debug” for
> authorization parts in logback.
> > >
> > >
> > >
> > > I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.
> > >
> > >
> > >
> > > My configuration authorizers.xml and the part of user mapping in the
> > > nifi.properties is
> > > https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24
> > >
> > >
> > >
> > > I’ve read Pierre Villard blog post, nifi doc and a lot of post in
> hortonworks site, but I’ve must I missed something. Any pointer is
> appreciated.
> > >
> > >
> > >
> > > Thanks.
> > >
> > >
> > > This electronic transmission (and any attachments thereto) is intended
> solely for the use of the addressee(s). It may contain confidential or
> legally privileged information. If you are not the intended recipient of
> this message, you must delete it immediately and notify the sender. Any
> unauthorized use or disclosure of this message is strictly prohibited.
> Faurecia does not guarantee the integrity of this transmission and shall
> therefore never be liable if the message is altered or falsified nor for
> any virus, interception or damage to your system.
> >
> > This electronic transmission (and any attachments thereto) is intended
> solely for the use of the addressee(s). It may contain confidential or
> legally privileged information. If you are not the intended recipient of
> this message, you must delete it immediately and notify the sender. Any
> unauthorized use or disclosure of this message is strictly prohibited.
> Faurecia does not guarantee the integrity of this transmission and shall
> therefore never be liable if the message is altered or falsified nor for
> any virus, interception or damage to your system.
>
>
> This electronic transmission (and any attachments thereto) is intended
> solely for the use of the addressee(s). It may contain confidential or
> legally privileged information. If you are not the intended recipient of
> this message, you must delete it immediately and notify the sender. Any
> unauthorized use or disclosure of this message is strictly prohibited.
> Faurecia does not guarantee the integrity of this transmission and shall
> therefore never be liable if the message is altered or falsified nor for
> any virus, interception or damage to your system.
>
>
> This electronic transmission (and any attachments thereto) is intended
> solely for the use of the addressee(s). It may contain confidential or
> legally privileged information. If you are not the intended recipient of
> this message, you must delete it immediately and notify the sender. Any
> unauthorized use or disclosure of this message is strictly prohibited.
> Faurecia does not guarantee the integrity of this transmission and shall
> therefore never be liable if the message is altered or falsified nor for
> any virus, interception or damage to your system.
>

RE: Empty "nifi users" page.

[DEHAY Aurelien <au...@faurecia.com>]

Well, I can compare a lot of things I don’t really know where to search.

What are to be unique? It’s the UUID (id field) present in users/userGroups endpoints? The identity (short names)?
I may have some duplicated between names between user and groups, I’m going to check that point.

Thanks.

From: Matt Gilman <ma...@gmail.com>
Sent: mercredi 27 mars 2019 19:32
To: users@nifi.apache.org
Subject: Re: Empty "nifi users" page.

Is it possible that you have a user and a group with the same name/identity? Can you compare what is in your users.xml file and what is being loaded from your directory server? To see what's being loaded from your directory server, if your running 1.9.x you should be able to enable debug level logging on

org.apache.nifi.ldap.tenants.LdapUserGroupProvider
Thanks

Matt

On Wed, Mar 27, 2019 at 5:46 AM DEHAY Aurelien <au...@faurecia.com>> wrote:
Thanks for you answer.

Like Bryan and you made me investigate on the browser side, I’ve check cache and dev tools.

Indeed the data are correctly sent to the browser. The users & groups api are correctly called and results are good.

So I suppose it’s something on browser side (tested with FF and chrome with same issue).

I got these errors in the console without guarantee that it’s linked to the issue:

Content Security Policy: « x-frame-options » ignoré en raison de la directive « frame-ancestors ».
CURRENT_SITE:  par01prdedge1.soft.fau:18443/nifi/users KeeperFill-var.js:30:935
uncaught exception: Each data element must implement a unique 'id' property

Thanks.

From: Matt Gilman <ma...@gmail.com>>
Sent: mardi 26 mars 2019 17:49
To: users@nifi.apache.org<ma...@nifi.apache.org>
Subject: Re: Empty "nifi users" page.

Hi.

Could you open up your browsers Developer Tools and check the Console for any errors and look at the Network requests and ensure that they are returning correctly. The behavior your describing indicate one of two things. Either the request is not returning from the server or there is a front end code bug.

We have addressed a couple of issues recently that are scheduled to land in 1.10.0 where users are removed (from LDAP externally) and they are still referenced in NiFi policies or groups. However, I don't think the behavior is exactly how you describe.

Also, are you able to build current master and try that out? If your running into the same problem, it's possible its already addressed.

Thanks

Matt

On Tue, Mar 26, 2019 at 10:29 AM Bryan Bende <bb...@gmail.com>> wrote:
What browser and browser version are you using?

Have you tried clearing your browser cache just to make sure the page
is loading properly?

On Tue, Mar 26, 2019 at 10:21 AM DEHAY Aurelien
<au...@faurecia.com>> wrote:
>
> Hello.
>
> I expect to see at least the local users with associated rights (e.g. content of users.xml and authorizations.xml), I've got 3 local users and a bunch of associated rights with ldap users/groups.
>
> I'll try the search filter, but the list is ok when modifying the policies of objects, I can see groups &users.
>
> Thanks.
>
> -----Original Message-----
> From: Kevin Doran <kd...@apache.org>>
> Sent: samedi 23 mars 2019 18:52
> To: users@nifi.apache.org<ma...@nifi.apache.org>
> Subject: Re: Empty "nifi users" page.
>
> How many users and groups do you expect to sync? Are you able to test your search base and filter are correct using a command line tool such as ldapsearch? I'm not sure if a search filter is required (although it would probably fail with an error if it was), but maybe try setting a "match all" filter such as (uid=*).
>
> Hope this helps,
> Kevin
>
> On Fri, Mar 22, 2019 at 11:08 AM DEHAY Aurelien <au...@faurecia.com>> wrote:
> >
> > Hello.
> >
> >
> >
> > My “nifi users” page is empty, with only the spinner spinning at the bottom of the page.
> >
> >
> >
> > I’ve tried a lot of conf, and for now everything work fine, except that. There is nothing in the log, even when I tried to put “debug” for authorization parts in logback.
> >
> >
> >
> > I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.
> >
> >
> >
> > My configuration authorizers.xml and the part of user mapping in the
> > nifi.properties is
> > https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24
> >
> >
> >
> > I’ve read Pierre Villard blog post, nifi doc and a lot of post in hortonworks site, but I’ve must I missed something. Any pointer is appreciated.
> >
> >
> >
> > Thanks.
> >
> >
> > This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.
>
> This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

Re: Empty "nifi users" page.

[Matt Gilman <ma...@gmail.com>]

Is it possible that you have a user and a group with the same
name/identity? Can you compare what is in your users.xml file and what is
being loaded from your directory server? To see what's being loaded from
your directory server, if your running 1.9.x you should be able to enable
debug level logging on

org.apache.nifi.ldap.tenants.LdapUserGroupProvider

Thanks

Matt

On Wed, Mar 27, 2019 at 5:46 AM DEHAY Aurelien <au...@faurecia.com>
wrote:

> Thanks for you answer.
>
>
>
> Like Bryan and you made me investigate on the browser side, I’ve check
> cache and dev tools.
>
>
>
> Indeed the data are correctly sent to the browser. The users & groups api
> are correctly called and results are good.
>
>
>
> So I suppose it’s something on browser side (tested with FF and chrome
> with same issue).
>
>
>
> I got these errors in the console without guarantee that it’s linked to
> the issue:
>
>
>
> Content Security Policy: « x-frame-options » ignoré en raison de la
> directive « frame-ancestors ».
>
> CURRENT_SITE:  par01prdedge1.soft.fau:18443/nifi/users
> KeeperFill-var.js:30:935
>
> uncaught exception: Each data element must implement a unique 'id' property
>
>
>
> Thanks.
>
>
>
> *From:* Matt Gilman <ma...@gmail.com>
> *Sent:* mardi 26 mars 2019 17:49
> *To:* users@nifi.apache.org
> *Subject:* Re: Empty "nifi users" page.
>
>
>
> Hi.
>
>
>
> Could you open up your browsers Developer Tools and check the Console for
> any errors and look at the Network requests and ensure that they are
> returning correctly. The behavior your describing indicate one of two
> things. Either the request is not returning from the server or there is a
> front end code bug.
>
>
>
> We have addressed a couple of issues recently that are scheduled to land
> in 1.10.0 where users are removed (from LDAP externally) and they are still
> referenced in NiFi policies or groups. However, I don't think the behavior
> is exactly how you describe.
>
>
>
> Also, are you able to build current master and try that out? If your
> running into the same problem, it's possible its already addressed.
>
>
>
> Thanks
>
>
>
> Matt
>
>
>
> On Tue, Mar 26, 2019 at 10:29 AM Bryan Bende <bb...@gmail.com> wrote:
>
> What browser and browser version are you using?
>
> Have you tried clearing your browser cache just to make sure the page
> is loading properly?
>
> On Tue, Mar 26, 2019 at 10:21 AM DEHAY Aurelien
> <au...@faurecia.com> wrote:
> >
> > Hello.
> >
> > I expect to see at least the local users with associated rights (e.g.
> content of users.xml and authorizations.xml), I've got 3 local users and a
> bunch of associated rights with ldap users/groups.
> >
> > I'll try the search filter, but the list is ok when modifying the
> policies of objects, I can see groups &users.
> >
> > Thanks.
> >
> > -----Original Message-----
> > From: Kevin Doran <kd...@apache.org>
> > Sent: samedi 23 mars 2019 18:52
> > To: users@nifi.apache.org
> > Subject: Re: Empty "nifi users" page.
> >
> > How many users and groups do you expect to sync? Are you able to test
> your search base and filter are correct using a command line tool such as
> ldapsearch? I'm not sure if a search filter is required (although it would
> probably fail with an error if it was), but maybe try setting a "match all"
> filter such as (uid=*).
> >
> > Hope this helps,
> > Kevin
> >
> > On Fri, Mar 22, 2019 at 11:08 AM DEHAY Aurelien <
> aurelien.dehay@faurecia.com> wrote:
> > >
> > > Hello.
> > >
> > >
> > >
> > > My “nifi users” page is empty, with only the spinner spinning at the
> bottom of the page.
> > >
> > >
> > >
> > > I’ve tried a lot of conf, and for now everything work fine, except
> that. There is nothing in the log, even when I tried to put “debug” for
> authorization parts in logback.
> > >
> > >
> > >
> > > I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.
> > >
> > >
> > >
> > > My configuration authorizers.xml and the part of user mapping in the
> > > nifi.properties is
> > > https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24
> > >
> > >
> > >
> > > I’ve read Pierre Villard blog post, nifi doc and a lot of post in
> hortonworks site, but I’ve must I missed something. Any pointer is
> appreciated.
> > >
> > >
> > >
> > > Thanks.
> > >
> > >
> > > This electronic transmission (and any attachments thereto) is intended
> solely for the use of the addressee(s). It may contain confidential or
> legally privileged information. If you are not the intended recipient of
> this message, you must delete it immediately and notify the sender. Any
> unauthorized use or disclosure of this message is strictly prohibited.
> Faurecia does not guarantee the integrity of this transmission and shall
> therefore never be liable if the message is altered or falsified nor for
> any virus, interception or damage to your system.
> >
> > This electronic transmission (and any attachments thereto) is intended
> solely for the use of the addressee(s). It may contain confidential or
> legally privileged information. If you are not the intended recipient of
> this message, you must delete it immediately and notify the sender. Any
> unauthorized use or disclosure of this message is strictly prohibited.
> Faurecia does not guarantee the integrity of this transmission and shall
> therefore never be liable if the message is altered or falsified nor for
> any virus, interception or damage to your system.
>
>
> This electronic transmission (and any attachments thereto) is intended
> solely for the use of the addressee(s). It may contain confidential or
> legally privileged information. If you are not the intended recipient of
> this message, you must delete it immediately and notify the sender. Any
> unauthorized use or disclosure of this message is strictly prohibited.
> Faurecia does not guarantee the integrity of this transmission and shall
> therefore never be liable if the message is altered or falsified nor for
> any virus, interception or damage to your system.
>

RE: Empty "nifi users" page.

[DEHAY Aurelien <au...@faurecia.com>]

Thanks for you answer.

Like Bryan and you made me investigate on the browser side, I’ve check cache and dev tools.

Indeed the data are correctly sent to the browser. The users & groups api are correctly called and results are good.

So I suppose it’s something on browser side (tested with FF and chrome with same issue).

I got these errors in the console without guarantee that it’s linked to the issue:

Content Security Policy: « x-frame-options » ignoré en raison de la directive « frame-ancestors ».
CURRENT_SITE:  par01prdedge1.soft.fau:18443/nifi/users KeeperFill-var.js:30:935
uncaught exception: Each data element must implement a unique 'id' property

Thanks.

From: Matt Gilman <ma...@gmail.com>
Sent: mardi 26 mars 2019 17:49
To: users@nifi.apache.org
Subject: Re: Empty "nifi users" page.

Hi.

Could you open up your browsers Developer Tools and check the Console for any errors and look at the Network requests and ensure that they are returning correctly. The behavior your describing indicate one of two things. Either the request is not returning from the server or there is a front end code bug.

We have addressed a couple of issues recently that are scheduled to land in 1.10.0 where users are removed (from LDAP externally) and they are still referenced in NiFi policies or groups. However, I don't think the behavior is exactly how you describe.

Also, are you able to build current master and try that out? If your running into the same problem, it's possible its already addressed.

Thanks

Matt

On Tue, Mar 26, 2019 at 10:29 AM Bryan Bende <bb...@gmail.com>> wrote:
What browser and browser version are you using?

Have you tried clearing your browser cache just to make sure the page
is loading properly?

On Tue, Mar 26, 2019 at 10:21 AM DEHAY Aurelien
<au...@faurecia.com>> wrote:
>
> Hello.
>
> I expect to see at least the local users with associated rights (e.g. content of users.xml and authorizations.xml), I've got 3 local users and a bunch of associated rights with ldap users/groups.
>
> I'll try the search filter, but the list is ok when modifying the policies of objects, I can see groups &users.
>
> Thanks.
>
> -----Original Message-----
> From: Kevin Doran <kd...@apache.org>>
> Sent: samedi 23 mars 2019 18:52
> To: users@nifi.apache.org<ma...@nifi.apache.org>
> Subject: Re: Empty "nifi users" page.
>
> How many users and groups do you expect to sync? Are you able to test your search base and filter are correct using a command line tool such as ldapsearch? I'm not sure if a search filter is required (although it would probably fail with an error if it was), but maybe try setting a "match all" filter such as (uid=*).
>
> Hope this helps,
> Kevin
>
> On Fri, Mar 22, 2019 at 11:08 AM DEHAY Aurelien <au...@faurecia.com>> wrote:
> >
> > Hello.
> >
> >
> >
> > My “nifi users” page is empty, with only the spinner spinning at the bottom of the page.
> >
> >
> >
> > I’ve tried a lot of conf, and for now everything work fine, except that. There is nothing in the log, even when I tried to put “debug” for authorization parts in logback.
> >
> >
> >
> > I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.
> >
> >
> >
> > My configuration authorizers.xml and the part of user mapping in the
> > nifi.properties is
> > https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24
> >
> >
> >
> > I’ve read Pierre Villard blog post, nifi doc and a lot of post in hortonworks site, but I’ve must I missed something. Any pointer is appreciated.
> >
> >
> >
> > Thanks.
> >
> >
> > This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.
>
> This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

Re: Empty "nifi users" page.

[Matt Gilman <ma...@gmail.com>]

Hi.

Could you open up your browsers Developer Tools and check the Console for
any errors and look at the Network requests and ensure that they are
returning correctly. The behavior your describing indicate one of two
things. Either the request is not returning from the server or there is a
front end code bug.

We have addressed a couple of issues recently that are scheduled to land in
1.10.0 where users are removed (from LDAP externally) and they are still
referenced in NiFi policies or groups. However, I don't think the behavior
is exactly how you describe.

Also, are you able to build current master and try that out? If your
running into the same problem, it's possible its already addressed.

Thanks

Matt

On Tue, Mar 26, 2019 at 10:29 AM Bryan Bende <bb...@gmail.com> wrote:

> What browser and browser version are you using?
>
> Have you tried clearing your browser cache just to make sure the page
> is loading properly?
>
> On Tue, Mar 26, 2019 at 10:21 AM DEHAY Aurelien
> <au...@faurecia.com> wrote:
> >
> > Hello.
> >
> > I expect to see at least the local users with associated rights (e.g.
> content of users.xml and authorizations.xml), I've got 3 local users and a
> bunch of associated rights with ldap users/groups.
> >
> > I'll try the search filter, but the list is ok when modifying the
> policies of objects, I can see groups &users.
> >
> > Thanks.
> >
> > -----Original Message-----
> > From: Kevin Doran <kd...@apache.org>
> > Sent: samedi 23 mars 2019 18:52
> > To: users@nifi.apache.org
> > Subject: Re: Empty "nifi users" page.
> >
> > How many users and groups do you expect to sync? Are you able to test
> your search base and filter are correct using a command line tool such as
> ldapsearch? I'm not sure if a search filter is required (although it would
> probably fail with an error if it was), but maybe try setting a "match all"
> filter such as (uid=*).
> >
> > Hope this helps,
> > Kevin
> >
> > On Fri, Mar 22, 2019 at 11:08 AM DEHAY Aurelien <
> aurelien.dehay@faurecia.com> wrote:
> > >
> > > Hello.
> > >
> > >
> > >
> > > My “nifi users” page is empty, with only the spinner spinning at the
> bottom of the page.
> > >
> > >
> > >
> > > I’ve tried a lot of conf, and for now everything work fine, except
> that. There is nothing in the log, even when I tried to put “debug” for
> authorization parts in logback.
> > >
> > >
> > >
> > > I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.
> > >
> > >
> > >
> > > My configuration authorizers.xml and the part of user mapping in the
> > > nifi.properties is
> > > https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24
> > >
> > >
> > >
> > > I’ve read Pierre Villard blog post, nifi doc and a lot of post in
> hortonworks site, but I’ve must I missed something. Any pointer is
> appreciated.
> > >
> > >
> > >
> > > Thanks.
> > >
> > >
> > > This electronic transmission (and any attachments thereto) is intended
> solely for the use of the addressee(s). It may contain confidential or
> legally privileged information. If you are not the intended recipient of
> this message, you must delete it immediately and notify the sender. Any
> unauthorized use or disclosure of this message is strictly prohibited.
> Faurecia does not guarantee the integrity of this transmission and shall
> therefore never be liable if the message is altered or falsified nor for
> any virus, interception or damage to your system.
> >
> > This electronic transmission (and any attachments thereto) is intended
> solely for the use of the addressee(s). It may contain confidential or
> legally privileged information. If you are not the intended recipient of
> this message, you must delete it immediately and notify the sender. Any
> unauthorized use or disclosure of this message is strictly prohibited.
> Faurecia does not guarantee the integrity of this transmission and shall
> therefore never be liable if the message is altered or falsified nor for
> any virus, interception or damage to your system.
>

Re: Empty "nifi users" page.

[Bryan Bende <bb...@gmail.com>]

What browser and browser version are you using?

Have you tried clearing your browser cache just to make sure the page
is loading properly?

On Tue, Mar 26, 2019 at 10:21 AM DEHAY Aurelien
<au...@faurecia.com> wrote:
>
> Hello.
>
> I expect to see at least the local users with associated rights (e.g. content of users.xml and authorizations.xml), I've got 3 local users and a bunch of associated rights with ldap users/groups.
>
> I'll try the search filter, but the list is ok when modifying the policies of objects, I can see groups &users.
>
> Thanks.
>
> -----Original Message-----
> From: Kevin Doran <kd...@apache.org>
> Sent: samedi 23 mars 2019 18:52
> To: users@nifi.apache.org
> Subject: Re: Empty "nifi users" page.
>
> How many users and groups do you expect to sync? Are you able to test your search base and filter are correct using a command line tool such as ldapsearch? I'm not sure if a search filter is required (although it would probably fail with an error if it was), but maybe try setting a "match all" filter such as (uid=*).
>
> Hope this helps,
> Kevin
>
> On Fri, Mar 22, 2019 at 11:08 AM DEHAY Aurelien <au...@faurecia.com> wrote:
> >
> > Hello.
> >
> >
> >
> > My “nifi users” page is empty, with only the spinner spinning at the bottom of the page.
> >
> >
> >
> > I’ve tried a lot of conf, and for now everything work fine, except that. There is nothing in the log, even when I tried to put “debug” for authorization parts in logback.
> >
> >
> >
> > I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.
> >
> >
> >
> > My configuration authorizers.xml and the part of user mapping in the
> > nifi.properties is
> > https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24
> >
> >
> >
> > I’ve read Pierre Villard blog post, nifi doc and a lot of post in hortonworks site, but I’ve must I missed something. Any pointer is appreciated.
> >
> >
> >
> > Thanks.
> >
> >
> > This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.
>
> This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

RE: Empty "nifi users" page.

[DEHAY Aurelien <au...@faurecia.com>]

Hello.

I expect to see at least the local users with associated rights (e.g. content of users.xml and authorizations.xml), I've got 3 local users and a bunch of associated rights with ldap users/groups.

I'll try the search filter, but the list is ok when modifying the policies of objects, I can see groups &users.

Thanks.

-----Original Message-----
From: Kevin Doran <kd...@apache.org> 
Sent: samedi 23 mars 2019 18:52
To: users@nifi.apache.org
Subject: Re: Empty "nifi users" page.

How many users and groups do you expect to sync? Are you able to test your search base and filter are correct using a command line tool such as ldapsearch? I'm not sure if a search filter is required (although it would probably fail with an error if it was), but maybe try setting a "match all" filter such as (uid=*).

Hope this helps,
Kevin

On Fri, Mar 22, 2019 at 11:08 AM DEHAY Aurelien <au...@faurecia.com> wrote:
>
> Hello.
>
>
>
> My “nifi users” page is empty, with only the spinner spinning at the bottom of the page.
>
>
>
> I’ve tried a lot of conf, and for now everything work fine, except that. There is nothing in the log, even when I tried to put “debug” for authorization parts in logback.
>
>
>
> I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.
>
>
>
> My configuration authorizers.xml and the part of user mapping in the 
> nifi.properties is 
> https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24
>
>
>
> I’ve read Pierre Villard blog post, nifi doc and a lot of post in hortonworks site, but I’ve must I missed something. Any pointer is appreciated.
>
>
>
> Thanks.
>
>
> This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.

Re: Empty "nifi users" page.

[Kevin Doran <kd...@apache.org>]

How many users and groups do you expect to sync? Are you able to test
your search base and filter are correct using a command line tool such
as ldapsearch? I'm not sure if a search filter is required (although
it would probably fail with an error if it was), but maybe try setting
a "match all" filter such as (uid=*).

Hope this helps,
Kevin

On Fri, Mar 22, 2019 at 11:08 AM DEHAY Aurelien
<au...@faurecia.com> wrote:
>
> Hello.
>
>
>
> My “nifi users” page is empty, with only the spinner spinning at the bottom of the page.
>
>
>
> I’ve tried a lot of conf, and for now everything work fine, except that. There is nothing in the log, even when I tried to put “debug” for authorization parts in logback.
>
>
>
> I had the same behavior with 1.7, 1.8, 1.9 and 1.9.1.
>
>
>
> My configuration authorizers.xml and the part of user mapping in the nifi.properties is https://gist.github.com/zorel/f76c3924f2b266e8a878397271a54f24
>
>
>
> I’ve read Pierre Villard blog post, nifi doc and a lot of post in hortonworks site, but I’ve must I missed something. Any pointer is appreciated.
>
>
>
> Thanks.
>
>
> This electronic transmission (and any attachments thereto) is intended solely for the use of the addressee(s). It may contain confidential or legally privileged information. If you are not the intended recipient of this message, you must delete it immediately and notify the sender. Any unauthorized use or disclosure of this message is strictly prohibited.  Faurecia does not guarantee the integrity of this transmission and shall therefore never be liable if the message is altered or falsified nor for any virus, interception or damage to your system.