+us...@zeppelin.incubator.apache.org On Mon, May 1, 2017 at 6:01 PM, Jaideep Singh <jaideep...@gmail.com> wrote:
> Hello, > > I am not able to load the zeppelin page after redirection from IDP. The > page loads with error 500. > I am using SAML based authentication for securing zeppelin home page URL. > Please find the shiro.ini file as follows: > [main] > ############################################################ > ################ > # PROVIDERS : > ############################################################ > ################ > subjectFactory = io.buji.pac4j.ClientSubjectFactory > securityManager.subjectFactory = $subjectFactory > > facebookClient = org.pac4j.oauth.client.FacebookClient > facebookClient.key = 145278422258960 > facebookClient.secret = be21409ba8f39b5dae2a7de525484da8 > > twitterClient = org.pac4j.oauth.client.TwitterClient > twitterClient.key = CoxUiYwQOSFDReZYdjigBA > twitterClient.secret = 2kAzunH5Btc4gRSaMr7D7MkyoJ5u1VzbOOzE8rBofs > > simpleAuthenticator = org.pac4j.http.credentials.authenticator.test. > SimpleTestUsernamePasswordAuthenticator > > formClient = org.pac4j.http.client.indirect.FormClient > formClient.loginUrl = http://10.11.198.126:8083/loginForm.jsp > formClient.authenticator = $simpleAuthenticator > > basicAuthClient = org.pac4j.http.client.indirect.IndirectBasicAuthClient > basicAuthClient.authenticator = $simpleAuthenticator > > casClient = org.pac4j.cas.client.CasClient > casClient.casLoginUrl = https://casserverpac4j.herokuapp.com > #casClient.gateway=true > > vkClient = org.pac4j.oauth.client.VkClient > vkClient.key = 4224582 > vkClient.secret = nDc4IHTqu8ioFMkHKifq > > saml2Config = org.pac4j.saml.client.SAML2ClientConfiguration > saml2Config.keystorePath = samlKeystore.jks > saml2Config.keystorePassword = pac4j-demo-passwd > saml2Config.privateKeyPassword = pac4j-demo-passwd > saml2Config.identityProviderMetadataPath = metadata-okta.xml > saml2Config.maximumAuthenticationLifetime = 3600 > saml2Config.serviceProviderEntityId = zeppelin > saml2Config.serviceProviderMetadataPath = sp-metadata.xml > > saml2Client = org.pac4j.saml.client.SAML2Client > saml2Client.configuration = $saml2Config > > clients = org.pac4j.core.client.Clients > clients.callbackUrl = http://10.11.198.126:8083/callback > clients.clients = $facebookClient,$twitterClient,$formClient,$ > basicAuthClient,$casClient,$vkClient,$saml2Client > > ############################################################ > ################ > # REALM & FILTERS : > ############################################################ > ################ > > > > clientsRealm = io.buji.pac4j.ClientRealm > #clientsRealm = org.apache.zeppelin.realm.PamRealm > clientsRealm.defaultRoles = ROLE_USER > clientsRealm.clients = $clients > > clientsFilter = io.buji.pac4j.ClientFilter > clientsFilter.clients = $clients > clientsFilter.failureUrl = /error500.jsp > > sessionManager = org.apache.shiro.web.session. > mgt.DefaultWebSessionManager > cacheManager = org.apache.shiro.cache.MemoryConstrainedCacheManager > securityManager.cacheManager = $cacheManager > > securityManager.sessionManager = $sessionManager > securityManager.sessionManager.globalSessionTimeout = 86400000 > > > > facebookRoles = io.buji.pac4j.filter.ClientRolesAuthorizationFilter > facebookRoles.client = $facebookClient > twitterRoles = io.buji.pac4j.filter.ClientRolesAuthorizationFilter > twitterRoles.client = $twitterClient > formRoles = io.buji.pac4j.filter.ClientRolesAuthorizationFilter > formRoles.client = $formClient > basicAuthRoles = io.buji.pac4j.filter.ClientRolesAuthorizationFilter > basicAuthRoles.client = $basicAuthClient > casRoles = io.buji.pac4j.filter.ClientRolesAuthorizationFilter > casRoles.client = $casClient > vkRoles = io.buji.pac4j.filter.ClientRolesAuthorizationFilter > vkRoles.client = $vkClient > saml2Roles = io.buji.pac4j.filter.ClientRolesAuthorizationFilter > saml2Roles.client = $saml2Client > > [roles] > admin = * > > > [urls] > /facebook/** = facebookRoles[ROLE_USER] > /twitter/** = twitterRoles[ROLE_USER] > /form/** = formRoles[ROLE_USER] > /basicauth/** = basicAuthRoles[ROLE_USER] > /cas/** = casRoles[ROLE_USER] > /vk/** = vkRoles[ROLE_USER] > /saml/** = saml2Roles[ROLE_USER] > /callback = clientsFilter > /logout = logout > /** = saml2Roles[ROLE_USER] > /api/version = anon > /api/interpreter/** = authc, roles[admin] > /api/configurations/** = authc, roles[admin] > /api/credential/** = authc, roles[admin] > > > I am attaching the video file for the error coming. > > Thanks, > Jaideep Singh >
