On Wed, Mar 15, 2017 at 8:56 PM, Douglas Landau <dougl...@westmarine.com> wrote: > That's it, the LDAP authenticator is used as authenticator and you have what > is described on > http://extensions.xwiki.org/xwiki/bin/view/Extension/LDAP/Application/ > when you do to the administration -> LDAP. > >>If you think you configured LDAP authenticator with the right values and >>login still fail then you should do what is explained on >>>http://extensions.xwiki.org/xwiki/bin/view/Extension/LDAP/Authenticator/#HEnableLDAPdebuglog >>and you will have all the details to see why it fails. > > Great! Thanks. Did so. Now I get a whole lot of copies of the 1st message > below: " The provided user is null. We don't try to authenticate, it > probably means the user is in non logged mode."
You are not look in the right place. Authenticators are always called even when you are not yet logged so you get this message when you access the login page. LDAP authenticator just indicate that there is not much it can do here. Look at the big message below: > 2017-03-15 12:42:30,422 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG o.x.c.l.XWikiLDAPConnection - Binding to LDAP server with > credentials login=[cn=sa-douglasl,ou=SystemsEngineering,dc=westmarine,dc=net] > Caused by: com.novell.ldap.LDAPException: Invalid Credentials Looks like the password you indicated in xwiki.authentication.ldap.bind_pass is wrong (since you explicitly indicated a bind_DN you need the corresponding password). > > But I did provide a user, in this line: > xwiki.authentication.ldap.bind_DN=cn=sa-douglasl,ou=SystemsEngineering,dc=westmarine,dc=net > > ...and I see that that line has been seen: > 2017-03-15 12:42:30,422 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG o.x.c.l.XWikiLDAPConnection - Binding to LDAP server with > credentials login=[cn=sa-douglasl,ou=SystemsEngineering,dc=westmarine,dc=net] > 2017-03-15 12:42:30,537 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG x.c.l.XWikiLDAPAuthServiceImpl - Local LDAP authentication failed. > > > Was I suppose to specifiy the/a user on some other line? > Thanks > > ------------------------------------- > 2017-03-15 12:42:30,231 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG x.c.l.XWikiLDAPAuthServiceImpl - The provided user is null. We don't > try to authenticate, it probably means the user is in non logged mode. > 2017-03-15 12:42:30,231 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > TRACE x.c.l.XWikiLDAPAuthServiceImpl - Starting LDAP authentication > 2017-03-15 12:42:30,232 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG o.x.c.l.XWikiLDAPConfig - remoteUserParser: null > 2017-03-15 12:42:30,271 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG o.x.c.l.XWikiLDAPConfig - ldap_group_classes: [groupofnames, > posixgroup, apple-group, groupofuniquenames, dynamicgroup, > groupwisedistributionlist, group, dynamicgroupaux] > 2017-03-15 12:42:30,271 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG o.x.c.l.XWikiLDAPConfig - ldap_group_memberfields: > [uniquemember, memberuid, member] > 2017-03-15 12:42:30,382 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG o.x.c.l.XWikiLDAPConnection - Connection to LDAP server > [pwsdc03.westmarine.net:389] > 2017-03-15 12:42:30,422 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG o.x.c.l.XWikiLDAPConnection - Binding to LDAP server with > credentials login=[cn=sa-douglasl,ou=SystemsEngineering,dc=westmarine,dc=net] > 2017-03-15 12:42:30,537 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG x.c.l.XWikiLDAPAuthServiceImpl - Local LDAP authentication failed. > org.xwiki.contrib.ldap.XWikiLDAPException: Error number 0 in 5: LDAP bind > failed with LDAPException. > at > org.xwiki.contrib.ldap.XWikiLDAPConnection.open(XWikiLDAPConnection.java:227) > at > org.xwiki.contrib.ldap.XWikiLDAPConnection.open(XWikiLDAPConnection.java:155) > at > org.xwiki.contrib.ldap.XWikiLDAPAuthServiceImpl.ldapAuthenticateInContext(XWikiLDAPAuthServiceImpl.java:515) > at > org.xwiki.contrib.ldap.XWikiLDAPAuthServiceImpl.ldapAuthenticate(XWikiLDAPAuthServiceImpl.java:331) > at > org.xwiki.contrib.ldap.XWikiLDAPAuthServiceImpl.authenticate(XWikiLDAPAuthServiceImpl.java:267) > at > com.xpn.xwiki.user.impl.xwiki.MyFormAuthenticator.authenticate(MyFormAuthenticator.java:272) > at > com.xpn.xwiki.user.impl.xwiki.MyFormAuthenticator.processLogin(MyFormAuthenticator.java:192) > at > com.xpn.xwiki.user.impl.xwiki.MyFormAuthenticator.processLogin(MyFormAuthenticator.java:174) > at > com.xpn.xwiki.user.impl.xwiki.XWikiAuthServiceImpl.checkAuth(XWikiAuthServiceImpl.java:239) > at > org.xwiki.contrib.ldap.XWikiLDAPAuthServiceImpl.checkAuth(XWikiLDAPAuthServiceImpl.java:163) > at com.xpn.xwiki.XWiki.checkAuth(XWiki.java:3776) > at > org.xwiki.security.authorization.internal.XWikiCachingRightService.authenticateUser(XWikiCachingRightService.java:242) > at > org.xwiki.security.authorization.internal.XWikiCachingRightService.checkAccess(XWikiCachingRightService.java:272) > at com.xpn.xwiki.XWiki.checkAccess(XWiki.java:3794) > at com.xpn.xwiki.XWiki.prepareDocuments(XWiki.java:4844) > at com.xpn.xwiki.web.XWikiAction.execute(XWikiAction.java:364) > at com.xpn.xwiki.web.XWikiAction.execute(XWikiAction.java:210) > at > org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:425) > at > org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:228) > at > org.apache.struts.action.ActionServlet.process(ActionServlet.java:1913) > at > org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:462) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:707) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) > at > org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:808) > at > org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1669) > at com.xpn.xwiki.web.ActionFilter.doFilter(ActionFilter.java:112) > at > org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652) > at > org.xwiki.wysiwyg.server.filter.ConversionFilter.doFilter(ConversionFilter.java:127) > at > org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652) > at > org.xwiki.container.servlet.filters.internal.SetHTTPHeaderFilter.doFilter(SetHTTPHeaderFilter.java:63) > at > org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652) > at > org.xwiki.container.servlet.filters.internal.SavedRequestRestorerFilter.doFilter(SavedRequestRestorerFilter.java:208) > at > org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652) > at > org.xwiki.container.servlet.filters.internal.SetCharacterEncodingFilter.doFilter(SetCharacterEncodingFilter.java:111) > at > org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652) > at > org.xwiki.resource.servlet.RoutingFilter.doFilter(RoutingFilter.java:136) > at > org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652) > at > org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:585) > at > org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) > at > org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:577) > at > org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:223) > at > org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1127) > at > org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:515) > at > org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:185) > at > org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1061) > at > org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) > at > org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:215) > at > org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:110) > at > org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:97) > at org.eclipse.jetty.server.Server.handle(Server.java:499) > at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:310) > at > org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:257) > at > org.eclipse.jetty.io.AbstractConnection$2.run(AbstractConnection.java:540) > at > org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:635) > at > org.eclipse.jetty.util.thread.QueuedThreadPool$3.run(QueuedThreadPool.java:555) > at java.lang.Thread.run(Thread.java:745) > Caused by: com.novell.ldap.LDAPException: Invalid Credentials > at com.novell.ldap.LDAPResponse.getResultException(Unknown Source) > at com.novell.ldap.LDAPResponse.chkResultCode(Unknown Source) > at com.novell.ldap.LDAPConnection.chkResultCode(Unknown Source) > at com.novell.ldap.LDAPConnection.bind(Unknown Source) > at com.novell.ldap.LDAPConnection.bind(Unknown Source) > at > org.xwiki.contrib.ldap.XWikiLDAPConnection.bind(XWikiLDAPConnection.java:261) > at > org.xwiki.contrib.ldap.XWikiLDAPConnection.open(XWikiLDAPConnection.java:223) > ... 55 common frames omitted > 2017-03-15 12:42:30,538 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG x.c.l.XWikiLDAPAuthServiceImpl - Trying authentication against XWiki DB > 2017-03-15 12:42:30,547 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG x.c.l.XWikiLDAPAuthServiceImpl - LDAP authentication failed for user > [douglasl] > 2017-03-15 12:42:30,547 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/loginsubmit/XWiki/XWikiLogin] > DEBUG x.c.l.XWikiLDAPAuthServiceImpl - XWikiUser: null > 2017-03-15 12:42:30,983 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/get/TourCode/TourJson?xpage=plain&outputSyntax=plain&tourDoc=XWiki.XWikiLogin] > TRACE x.c.l.XWikiLDAPAuthServiceImpl - Starting LDAP authentication > 2017-03-15 12:42:30,984 > [http://dwswiki9.westmarine.net:8080/xwiki/bin/get/TourCode/TourJson?xpage=plain&outputSyntax=plain&tourDoc=XWiki.XWikiLogin] > DEBUG x.c.l.XWikiLDAPAuthServiceImpl - The provided user is null. We don't > try to authenticate, it probably means the user is in non logged mode. > ---------------------------- > > The information contained in this transmission may contain West Marine > proprietary, confidential and/or privileged > information. It is intended only for the use of the person(s) named above. > If you are not the intended recipient, you are > hereby notified that any review, dissemination, distribution or duplication > of this communication is strictly prohibited. > If you are not the intended recipient, please contact the sender by reply > email and destroy all copies of the original > message. To reply to our email administrator directly, please send an email > to netad...@westmarine.com. -- Thomas Mortagne
