grouper-dev - Re: [grouper-dev] grouper 2.1.0
Subject: Grouper Developers Forum
List archive
- From: Jim Fox <>
- To: Lynn Garrison <>
- Cc: James Vuccolo <>, Tom Zeller <>, Grouper Dev <>
- Subject: Re: [grouper-dev] grouper 2.1.0
- Date: Tue, 14 Feb 2012 13:42:22 -0800 (PST)
I didn't see that part about gsh working and grouper not. Are you sure
you have your ldap.properties where grouper can find it. It looks like grouper UI doesn't have ldap.properties in its classpath.
Jim
On Tue, 14 Feb 2012, Lynn Garrison wrote:
Date: Tue, 14 Feb 2012 13:38:15 -0800
From: Lynn Garrison
<>
To: Jim Fox
<>
Cc: James Vuccolo
<>,
Tom Zeller
<>,
Grouper Dev
<>
Subject: Re: [grouper-dev] grouper 2.1.0
Jim, Tom,
I made the changes in the ldap.properties file and experienced the same
problem. Does gsh access ldap differently than the UI? I have no problem
using a findSubject with gsh.
gsh 2% subj=findSubject("llg5")
subject: id='llg5' type='person' source='ldap' name='LYNN GARRISON'
Here is the tail end of the grouper_error.log message.
at java.lang.Thread.run(Thread.java:662)
Caused by: edu.internet2.middleware.subject.SourceUnavailableException: null,
source: ldap, sql: null
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchHelper(LdapSourceAdapter.java:399)
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchPage(LdapSourceAdapter.java:344)
at
edu.internet2.middleware.grouper.subj.SourcesXmlResolver$6.callLogic(SourcesXmlResolver.java:834)
... 51 more
Caused by: java.lang.NullPointerException
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchHelper(LdapSourceAdapter.java:387)
... 53 more
We are going to be calling it a day soon. Let me know if there is anything
that you would like us to try first thing in the morning.
Lynn
On Feb 14, 2012, at 4:00 PM, Jim Fox wrote:
It looks like vtldap changed a couple of properties on us. (version 3.3)
Instead of serviceUser and servideCredential use:
edu.vt.middleware.ldap.bindDn=cn=manager,dc=psu,dc=edu
edu.vt.middleware.ldap.bindCredential=a password goes here
(see http://code.google.com/p/vt-middleware/wiki/vtldapProperties)
Jim
On Tue, 14 Feb 2012, James Vuccolo wrote:
Date: Tue, 14 Feb 2012 10:33:53 -0800
From: James Vuccolo
<>
To: Jim Fox
<>
Cc: Lynn Garrison
<>,
Tom Zeller
<>,
Grouper Dev
<>
Subject: Re: [grouper-dev] grouper 2.1.0
# This is the configuration file for vt-ldap.
# See http://code.google.com/p/vt-middleware/wiki/vtldapProperties
edu.vt.middleware.ldap.ldapUrl=ldap://cprdev2.iam.psu.edu:389
edu.vt.middleware.ldap.searchScope=SUBTREE
# All subordinate objects will be deleted during tests !
edu.vt.middleware.ldap.baseDn=dc=psu,dc=edu
# authn if simple
edu.vt.middleware.ldap.serviceUser=cn=manager,dc=psu,dc=edu
edu.vt.middleware.ldap.serviceCredential=a password goes here
edu.vt.middleware.ldap.authtype=simple
# encryption
edu.vt.middleware.ldap.ssl=false
edu.vt.middleware.ldap.tls=false
# pooling options
edu.vt.middleware.ldap.pool.minPoolSize = 2
edu.vt.middleware.ldap.pool.maxPoolSize = 5
# paged results
edu.vt.middleware.ldap.pagedResultsSize=0
# authn for sasl external (certificates)
# edu.vt.middleware.ldap.authtype=EXTERNAL
# edu.vt.middleware.ldap.tls=true
# edu.vt.middleware.ldap.serviceUser=cn=admin.example.edu
# these to use PEM format cert and key
# pemCaFile=/path/to/ca.pem
# pemCertFile=/path/to/cert.pem
# pemKeyFile=/path/to/key.pem
# The following properties are not necessary for the Grouper UI or WS.
# The QuotedDnResultHandler removes quotes from DNs of the form
"CN=quoted/name",DC=edu.
# The FqdnSearchResultHandler makes sure that all ldap dns are fully
qualified.
edu.vt.middleware.ldap.searchResultHandlers=edu.internet2.middleware.psp.ldap.QuotedDnResultHandler,edu.vt.middleware.ldap.handler.FqdnSearchResultHandler
# handle Active Directory groups with a large (>1500) number of members
# see https://bugs.internet2.edu/jira/browse/GRP-335
# see http://code.google.com/p/vt-middleware/wiki/vtldapAD#Range_Attributes
#
edu.vt.middleware.ldap.searchResultHandlers=edu.internet2.middleware.ldappc.util.QuotedDnResultHandler,edu.vt.middleware.ldap.handler.FqdnSearchResultHandler,edu.internet2.middleware.ldappc.util.RangeSearchResultHandler
# Define the group object class for the target ldap directory.
# OpenLDAP, RedHat, 389, ApacheDS, etc.
edu.internet2.middleware.psp.groupObjectClass=groupOfNames
# Active Directory
# edu.internet2.middleware.psp.groupObjectClass=group
# The base DN for groups.
edu.internet2.middleware.psp.groupsBaseDn=ou=groupstest,dc=psu,dc=edu
# The base DN for people.
edu.internet2.middleware.psp.peopleBaseDn=dc=psu,dc=edu
# The base Grouper stem to be provisioned.
edu.internet2.middleware.psp.baseStem=ldaptest
# The ldap DN structure may be either flat or bushy.
# In a flat structure all groups are provisioned under a single base DN
(container ID).
# A flat group's ldap RDN is its Grouper name or displayName.
edu.internet2.middleware.psp.structure=flat
edu.internet2.middleware.psp.cnSourceAttributeID=name
# In a bushy structure groups are provisioned hierarchically, with stems as
branches in the tree.
# A bushy group's RDN is its Grouper extension or displayExtension.
# edu.internet2.middleware.psp.structure=bushy
# edu.internet2.middleware.psp.cnSourceAttributeID=extension
On Feb 14, 2012, at 1:17 PM, Jim Fox wrote:
Could you send the 'ldap.properties' file as well?
Jim
On Tue, 14 Feb 2012, Lynn Garrison wrote:
Date: Tue, 14 Feb 2012 10:14:26 -0800
From: Lynn Garrison
<>
To: Tom Zeller
<>
Cc: Grouper Dev
<>
Subject: Re: [grouper-dev] grouper 2.1.0
Tom,
I made a few modifications to the file I changes the filter parameters
to remove the object class
On Feb 14, 2012, at 12:47 PM, Tom Zeller wrote:
Could you reply with sources.xml attached, please ?Lynn
TomZ
On Tue, Feb 14, 2012 at 11:31 AM, Lynn Garrison
<>
wrote:
I installed the pre release of grouper 2.1.0 using the new ldap source
adapter. I can find subject gsh but I am having problems searching for
subjects in the UI.
I get the following error.
Error:
Unable to connect to an entity database.
If you continue to encounter errors, please contact technical support.
Information for the grouper_error.log
Caused by: edu.internet2.middleware.subject.SourceUnavailableException:
null, source: ldap, sql: null
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchHelper(LdapSourceAdapter.java:399)
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchPage(LdapSourceAdapter.java:344)
at
edu.internet2.middleware.grouper.subj.SourcesXmlResolver$6.callLogic(SourcesXmlResolver.java:834)
... 51 more
Caused by: java.lang.NullPointerException
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchHelper(LdapSourceAdapter.java:387)
... 53 more
2012-02-14 12:21:15,929: [TP-Processor8] ERROR
NavExceptionHelper.getMessage(92) - < llg5
EB50391179C2FAA62334B0449A1771CA-0005 c9f7fb7a224e479a822d681d520f729d llg5
ldap > - Missing nav key: Unable to connect to an entity database.
2012-02-14 12:23:16,048: [TP-Processor9] ERROR
LdapSourceAdapter.createSubject(425) - < llg5
EB50391179C2FAA62334B0449A1771CA-0007 c9f7fb7a224e479a822d681d520f729d llg5
ldap > - No value for LDAP attribute "uid". It is Grouper attribute
"SubjectID".
2012-02-14 12:23:16,050: [TP-Processor9] ERROR
GrouperCapableAction.execute(298) - < llg5
EB50391179C2FAA62334B0449A1771CA-0007 c9f7fb7a224e479a822d681d520f729d llg5
ldap > - edu.internet2.middleware.subject.SourceUnavailableException:
Exception with source: ldap, on query: 'llg5'
at
edu.internet2.middleware.grouper.subj.SourcesXmlResolver.findPage(SourcesXmlResolver.java:642)
at
edu.internet2.middleware.grouper.subj.CachingResolver.findPage(CachingResolver.java:483)
at
edu.internet2.middleware.grouper.subj.ValidatingResolver.findPage(ValidatingResolver.java:232)
at
edu.internet2.middleware.grouper.SubjectFinder.findPage(SubjectFinder.java:1298)
at
edu.internet2.middleware.grouper.ui.actions.DoSearchSubjectsAction.grouperExecute(DoSearchSubjectsAction.java:185)
at
edu.internet2.middleware.grouper.ui.actions.GrouperCapableAction$1.callback(GrouperCapableAction.java:217)
at
edu.internet2.middleware.grouper.internal.dao.hib3.Hib3TransactionDAO$1.callback(Hib3TransactionDAO.java:51)
at
edu.internet2.middleware.grouper.hibernate.HibernateSession.callbackHibernateSession(HibernateSession.java:500)
at
edu.internet2.middleware.grouper.internal.dao.hib3.Hib3TransactionDAO.transactionCallback(Hib3TransactionDAO.java:41)
at
edu.internet2.middleware.grouper.hibernate.GrouperTransaction.callbackGrouperTransaction(GrouperTransaction.java:72)
at
edu.internet2.middleware.grouper.hibernate.GrouperTransaction.callbackGrouperTransaction(GrouperTransaction.java:91)
at
edu.internet2.middleware.grouper.ui.actions.GrouperCapableAction.grouperTransactionExecute(GrouperCapableAction.java:214)
at
edu.internet2.middleware.grouper.ui.actions.GrouperCapableAction.execute(GrouperCapableAction.java:279)
at
org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:424)
at
org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:226)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1164)
at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:415)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:637)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
edu.internet2.middleware.grouper.ui.LoginCheckFilter$1.callback(LoginCheckFilter.java:173)
at
edu.internet2.middleware.grouper.GrouperSession.callbackGrouperSession(GrouperSession.java:645)
at
edu.internet2.middleware.grouper.ui.LoginCheckFilter.doFilter(LoginCheckFilter.java:168)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
edu.internet2.middleware.grouper.ui.ErrorFilter.doFilter(ErrorFilter.java:132)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
edu.internet2.middleware.grouper.ui.GrouperUiFilter.doFilter(GrouperUiFilter.java:804)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:219)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:470)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:298)
at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:190)
at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:291)
at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:776)
at
org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:705)
at
org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:898)
at
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:690)
at java.lang.Thread.run(Thread.java:662)
Caused by: edu.internet2.middleware.subject.SourceUnavailableException:
null, source: ldap, sql: null
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchHelper(LdapSourceAdapter.java:399)
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchPage(LdapSourceAdapter.java:344)
at
edu.internet2.middleware.grouper.subj.SourcesXmlResolver.findPage(SourcesXmlResolver.java:608)
... 45 more
Caused by: java.lang.NullPointerException
at
edu.internet2.middleware.subject.provider.LdapSourceAdapter.searchHelper(LdapSourceAdapter.java:387)
... 47 more
2012-02-14 12:23:16,050: [TP-Processor9] ERROR
NavExceptionHelper.getMessage(92) - < llg5
EB50391179C2FAA62334B0449A1771CA-0007 c9f7fb7a224e479a822d681d520f729d llg5
ldap > - Missing nav key: Unable to connect to an entity database.
Any suggestions?
Thanks
Lynn
--
James "Jimmy" Vuccolo,
Technical Manager, Identity and Access Management
The Pennsylvania State University
215B Computer Building, University Park, PA 16802
Office: 814-865-5635
http://www.personal.psu.edu/jvuccolo/
- [grouper-dev] grouper 2.1.0, Lynn Garrison, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Tom Zeller, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Jim Fox, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Lynn Garrison, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Lynn Garrison, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Jim Fox, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, James Vuccolo, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Jim Fox, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Lynn Garrison, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Jim Fox, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Lynn Garrison, 02/15/2012
- Re: [grouper-dev] grouper 2.1.0, Jim Fox, 02/15/2012
- Re: [grouper-dev] grouper 2.1.0, James Vuccolo, 02/15/2012
- Re: [grouper-dev] grouper 2.1.0, Jim Fox, 02/15/2012
- Re: [grouper-dev] grouper 2.1.0, James Vuccolo, 02/15/2012
- Re: [grouper-dev] grouper 2.1.0, Lynn Garrison, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Lynn Garrison, 02/15/2012
- Re: [grouper-dev] grouper 2.1.0, Jim Fox, 02/15/2012
- Re: [grouper-dev] grouper 2.1.0, Lynn Garrison, 02/15/2012
- Re: [grouper-dev] grouper 2.1.0, Jim Fox, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, James Vuccolo, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Jim Fox, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Jim Fox, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, Tom Zeller, 02/14/2012
- Re: [grouper-dev] grouper 2.1.0, James Vuccolo, 02/14/2012
Archive powered by MHonArc 2.6.16.