Skip to Content.
Sympa Menu

grouper-dev - Re: [grouper-dev] grouper 2.1.0

Subject: Grouper Developers Forum

List archive

Re: [grouper-dev] grouper 2.1.0


Chronological Thread 
  • From: Jim Fox <>
  • To: James Vuccolo <>
  • Cc: Lynn Garrison <>, Tom Zeller <>, Grouper Dev <>
  • Subject: Re: [grouper-dev] grouper 2.1.0
  • Date: Tue, 14 Feb 2012 13:00:51 -0800 (PST)


It looks like vtldap changed a couple of properties on us. (version 3.3)

Instead of serviceUser and servideCredential use:

edu.vt.middleware.ldap.bindDn=cn=manager,dc=psu,dc=edu
edu.vt.middleware.ldap.bindCredential=a password goes here

(see http://code.google.com/p/vt-middleware/wiki/vtldapProperties)


Jim


On Tue, 14 Feb 2012, James Vuccolo wrote:

Date: Tue, 14 Feb 2012 10:33:53 -0800
From: James Vuccolo
<>
To: Jim Fox
<>
Cc: Lynn Garrison
<>,
Tom Zeller
<>,
Grouper Dev
<>
Subject: Re: [grouper-dev] grouper 2.1.0


# This is the configuration file for vt-ldap.
# See http://code.google.com/p/vt-middleware/wiki/vtldapProperties

edu.vt.middleware.ldap.ldapUrl=ldap://cprdev2.iam.psu.edu:389
edu.vt.middleware.ldap.searchScope=SUBTREE

# All subordinate objects will be deleted during tests !
edu.vt.middleware.ldap.baseDn=dc=psu,dc=edu

# authn if simple
edu.vt.middleware.ldap.serviceUser=cn=manager,dc=psu,dc=edu
edu.vt.middleware.ldap.serviceCredential=a password goes here
edu.vt.middleware.ldap.authtype=simple

# encryption
edu.vt.middleware.ldap.ssl=false
edu.vt.middleware.ldap.tls=false

# pooling options
edu.vt.middleware.ldap.pool.minPoolSize = 2
edu.vt.middleware.ldap.pool.maxPoolSize = 5

# paged results
edu.vt.middleware.ldap.pagedResultsSize=0

# authn for sasl external (certificates)
# edu.vt.middleware.ldap.authtype=EXTERNAL
# edu.vt.middleware.ldap.tls=true
# edu.vt.middleware.ldap.serviceUser=cn=admin.example.edu
# these to use PEM format cert and key
# pemCaFile=/path/to/ca.pem
# pemCertFile=/path/to/cert.pem
# pemKeyFile=/path/to/key.pem

# The following properties are not necessary for the Grouper UI or WS.

# The QuotedDnResultHandler removes quotes from DNs of the form
"CN=quoted/name",DC=edu.
# The FqdnSearchResultHandler makes sure that all ldap dns are fully
qualified.
edu.vt.middleware.ldap.searchResultHandlers=edu.internet2.middleware.psp.ldap.QuotedDnResultHandler,edu.vt.middleware.ldap.handler.FqdnSearchResultHandler

# handle Active Directory groups with a large (>1500) number of members
# see https://bugs.internet2.edu/jira/browse/GRP-335
# see http://code.google.com/p/vt-middleware/wiki/vtldapAD#Range_Attributes
#
edu.vt.middleware.ldap.searchResultHandlers=edu.internet2.middleware.ldappc.util.QuotedDnResultHandler,edu.vt.middleware.ldap.handler.FqdnSearchResultHandler,edu.internet2.middleware.ldappc.util.RangeSearchResultHandler

# Define the group object class for the target ldap directory.
# OpenLDAP, RedHat, 389, ApacheDS, etc.
edu.internet2.middleware.psp.groupObjectClass=groupOfNames
# Active Directory
# edu.internet2.middleware.psp.groupObjectClass=group

# The base DN for groups.
edu.internet2.middleware.psp.groupsBaseDn=ou=groupstest,dc=psu,dc=edu

# The base DN for people.
edu.internet2.middleware.psp.peopleBaseDn=dc=psu,dc=edu

# The base Grouper stem to be provisioned.
edu.internet2.middleware.psp.baseStem=ldaptest

# The ldap DN structure may be either flat or bushy.
# In a flat structure all groups are provisioned under a single base DN
(container ID).
# A flat group's ldap RDN is its Grouper name or displayName.
edu.internet2.middleware.psp.structure=flat
edu.internet2.middleware.psp.cnSourceAttributeID=name

# In a bushy structure groups are provisioned hierarchically, with stems as
branches in the tree.
# A bushy group's RDN is its Grouper extension or displayExtension.
# edu.internet2.middleware.psp.structure=bushy
# edu.internet2.middleware.psp.cnSourceAttributeID=extension

On Feb 14, 2012, at 1:17 PM, Jim Fox wrote:


Could you send the 'ldap.properties' file as well?

Jim


On Tue, 14 Feb 2012, Lynn Garrison wrote:

Date: Tue, 14 Feb 2012 10:14:26 -0800
From: Lynn Garrison
<>
To: Tom Zeller
<>
Cc: Grouper Dev
<>
Subject: Re: [grouper-dev] grouper 2.1.0
Tom,
I made a few modifications to the file I changes the filter
parameters to remove the object class
On Feb 14, 2012, at 12:47 PM, Tom Zeller wrote:
Could you reply with sources.xml attached, please ?

TomZ

On Tue, Feb 14, 2012 at 11:31 AM, Lynn Garrison
<>
wrote:
I installed the pre release of grouper 2.1.0 using the new ldap source
adapter. I can find subject gsh but I am having problems searching for
subjects in the UI.

I get the following error.


Error:

Unable to connect to an entity database.
If you continue to encounter errors, please contact technical support.



Information for the grouper_error.log

Caused by: edu.internet2.middleware.subject.SourceUnavailableException:
null, source: ldap, sql: null
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchHelper(LdapSourceAdapter.java:399)
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchPage(LdapSourceAdapter.java:344)
at
edu.internet2.middleware.grouper.subj.SourcesXmlResolver$6.callLogic(SourcesXmlResolver.java:834)
... 51 more
Caused by: java.lang.NullPointerException
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchHelper(LdapSourceAdapter.java:387)
... 53 more

2012-02-14 12:21:15,929: [TP-Processor8] ERROR
NavExceptionHelper.getMessage(92) - < llg5
EB50391179C2FAA62334B0449A1771CA-0005 c9f7fb7a224e479a822d681d520f729d llg5
ldap > - Missing nav key: Unable to connect to an entity database.
2012-02-14 12:23:16,048: [TP-Processor9] ERROR
LdapSourceAdapter.createSubject(425) - < llg5
EB50391179C2FAA62334B0449A1771CA-0007 c9f7fb7a224e479a822d681d520f729d llg5
ldap > - No value for LDAP attribute "uid". It is Grouper attribute
"SubjectID".
2012-02-14 12:23:16,050: [TP-Processor9] ERROR
GrouperCapableAction.execute(298) - < llg5
EB50391179C2FAA62334B0449A1771CA-0007 c9f7fb7a224e479a822d681d520f729d llg5
ldap > - edu.internet2.middleware.subject.SourceUnavailableException:
Exception with source: ldap, on query: 'llg5'
at
edu.internet2.middleware.grouper.subj.SourcesXmlResolver.findPage(SourcesXmlResolver.java:642)
at
edu.internet2.middleware.grouper.subj.CachingResolver.findPage(CachingResolver.java:483)
at
edu.internet2.middleware.grouper.subj.ValidatingResolver.findPage(ValidatingResolver.java:232)
at
edu.internet2.middleware.grouper.SubjectFinder.findPage(SubjectFinder.java:1298)
at
edu.internet2.middleware.grouper.ui.actions.DoSearchSubjectsAction.grouperExecute(DoSearchSubjectsAction.java:185)
at
edu.internet2.middleware.grouper.ui.actions.GrouperCapableAction$1.callback(GrouperCapableAction.java:217)
at
edu.internet2.middleware.grouper.internal.dao.hib3.Hib3TransactionDAO$1.callback(Hib3TransactionDAO.java:51)
at
edu.internet2.middleware.grouper.hibernate.HibernateSession.callbackHibernateSession(HibernateSession.java:500)
at
edu.internet2.middleware.grouper.internal.dao.hib3.Hib3TransactionDAO.transactionCallback(Hib3TransactionDAO.java:41)
at
edu.internet2.middleware.grouper.hibernate.GrouperTransaction.callbackGrouperTransaction(GrouperTransaction.java:72)
at
edu.internet2.middleware.grouper.hibernate.GrouperTransaction.callbackGrouperTransaction(GrouperTransaction.java:91)
at
edu.internet2.middleware.grouper.ui.actions.GrouperCapableAction.grouperTransactionExecute(GrouperCapableAction.java:214)
at
edu.internet2.middleware.grouper.ui.actions.GrouperCapableAction.execute(GrouperCapableAction.java:279)
at
org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:424)
at
org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:226)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1164)
at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:415)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
edu.internet2.middleware.grouper.ui.LoginCheckFilter$1.callback(LoginCheckFilter.java:173)
at
edu.internet2.middleware.grouper.GrouperSession.callbackGrouperSession(GrouperSession.java:645)
at
edu.internet2.middleware.grouper.ui.LoginCheckFilter.doFilter(LoginCheckFilter.java:168)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
edu.internet2.middleware.grouper.ui.ErrorFilter.doFilter(ErrorFilter.java:132)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
edu.internet2.middleware.grouper.ui.GrouperUiFilter.doFilter(GrouperUiFilter.java:804)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:219)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:470)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:298)
at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:190)
at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:291)
at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:776)
at
org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:705)
at
org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:898)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:690)
at java.lang.Thread.run(Thread.java:662)
Caused by: edu.internet2.middleware.subject.SourceUnavailableException:
null, source: ldap, sql: null
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchHelper(LdapSourceAdapter.java:399)
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchPage(LdapSourceAdapter.java:344)
at
edu.internet2.middleware.grouper.subj.SourcesXmlResolver.findPage(SourcesXmlResolver.java:608)
... 45 more
Caused by: java.lang.NullPointerException
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchHelper(LdapSourceAdapter.java:387)
... 47 more

2012-02-14 12:23:16,050: [TP-Processor9] ERROR
NavExceptionHelper.getMessage(92) - < llg5
EB50391179C2FAA62334B0449A1771CA-0007 c9f7fb7a224e479a822d681d520f729d llg5
ldap > - Missing nav key: Unable to connect to an entity database.


Any suggestions?

Thanks
Lynn


Lynn

--
James "Jimmy" Vuccolo,

Technical Manager, Identity and Access Management
The Pennsylvania State University
215B Computer Building, University Park, PA 16802
Office: 814-865-5635
http://www.personal.psu.edu/jvuccolo/



Archive powered by MHonArc 2.6.16.

Top of Page