activemq-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Claus Ibsen <claus.ib...@gmail.com>
Subject Re: LDAP (OpenDS 2.2.1) configuration
Date Thu, 18 Oct 2012 04:18:22 GMT
Hi

Have you tried with the ActiveMQ 5.7.0 release?


On Wed, Oct 17, 2012 at 2:09 AM, Sean K <sk92129@gmail.com> wrote:
> Hi,
> I am working with the documentation on the activemq site for
> configuring the LDAP.
>
> http://activemq.apache.org/security.html  -- almost everything is
> copied verbatim except for hostnames and there were a few parameters
> that were not writable by the current bean so I remove them -- for
> example the writeAttributePrefix.
>
> I am using apache activemq-5.6.0 which is running on ubuntu.
>
> It is trying to connect to the opends 2.2.1 running on a Windows 7
> machine.   I imported the ldif into the openDS through the admin
> console so that these dc and ou would match.
>
> I start up the activemq broker -- all is fine.
> When I start the producer to send messages to the broker, then errors
> occur (on bottom)
>
> In the producer log, there is some indicator -- about an option key
> being expected at line 40, which I dont see how.
>
> I also attached the login.config file.
>
> Any ideas anyone?
>
>       <plugins>
>                 <jaasAuthenticationPlugin configuration="LdapConfiguration" />
>
>                 <authorizationPlugin>
>                         <map>
>
>
>                           <bean
> xmlns="http://www.springframework.org/schema/beans"
> id="lDAPAuthorizationMap"
>
> class="org.apache.activemq.security.LDAPAuthorizationMap">
>
>                               <property name="initialContextFactory"
> value="com.sun.jndi.ldap.LdapCtxFactory"/>
>                               <property name="connectionURL"
> value="ldap://WSW710119:389"/>
>                               <property name="authentication" value="simple"/>
>                               <property name="connectionUsername"
> value="cn=mqbroker,ou=Services,dc=acme,dc=com"/>
>                               <property name="connectionPassword"
> value="password"/>
>                               <property name="connectionProtocol" value="s"/>
>                               <property name="topicSearchSubtreeBool"
> value="true" />
>
>
>                               <property name="queueSearchSubtreeBool"
> value="true"/>
>                               <property name="adminBase" value="(cn=admin)"/>
>                               <property name="adminAttribute" value="member"/>
>                               <property name="readBase" value="(cn=read)"/>
>                               <property name="readAttribute" value="member"/>
>                               <property name="writeBase" value="(cn=write)"/>
>                               <property name="writeAttribute" value="member"/>
>                            </bean>
>                         </map>
>                 </authorizationPlugin>
>
>
>         </plugins>
>
>
> And the contents of login.conf :
>
>
> LdapConfiguration {
>
>   org.apache.activemq.jaas.LDAPLoginModule required
>
>   debug=true
>
>   initialContextFactory=com.sun.jndi.ldap.LdapCtxFactory
>
>   connectionURL="ldap://WSW710119:389"
>
>   connectionUsername="cn=mqbroker,ou=Services,dc=acme,dc=com"
>
>   connectionPassword=password
>
>   connectionProtocol=s
>
>   authentication=simple
>
>   userBase="ou=User,ou=ActiveMQ,ou=systems,dc=acme,dc=com"
>
>   userRoleName=dummyUserRoleName
>
>   userSearchMatching="(uid={0})"
>
>   userSearchSubtree=false
>
>   roleBase="ou=Groups,ou=ActiveMQ,ou=systems,dc=acme,dc=com"
>
>   roleName=cn
>
>   roleSearchMatching="(member=uid={1})"
>
>   roleSearchSubtree=true
>
> };
>
>
> <<<< this is the broker logs>>>>>
> 2012-10-16 16:57:16,098 | WARN  | Failed to add Connection
> ID:centos-test1.foo.com-43128-1350431835402-1:2, reason:
> java.lang.SecurityException: User name [null] or password is invalid.
> | org.apache.activemq.broker.TransportConnection | ActiveMQ Transport:
> ssl:///127.0.0.1:44983
> 2012-10-16 16:57:16,100 | WARN  | Failed to add Connection
> ID:centos-test1.foo.com-43128-1350431835402-1:3, reason:
> java.lang.SecurityException: User name [null] or password is invalid.
> | org.apache.activemq.broker.TransportConnection | ActiveMQ Transport:
> ssl:///127.0.0.1:44982
> 2012-10-16 16:57:16,108 | WARN  | Failed to add Connection
> ID:centos-test1.foo.com-43128-1350431835402-1:1, reason:
> java.lang.SecurityException: User name [null] or password is invalid.
> | org.apache.activemq.broker.TransportConnection | ActiveMQ Transport:
> ssl:///127.0.0.1:44981
> 2012-10-16 16:57:16,152 | WARN  | Transport Connection to:
> tcp://127.0.0.1:44982 failed: java.io.EOFException |
> org.apache.activemq.broker.TransportConnection.Transport | ActiveMQ
> Transport: ssl:///127.0.0.1:44982
> 2012-10-16 16:57:16,171 | WARN  | Transport Connection to:
> tcp://127.0.0.1:44983 failed: java.io.EOFException |
> org.apache.activemq.broker.TransportConnection.Transport | ActiveMQ
> Transport: ssl:///127.0.0.1:44983
> 2012-10-16 16:57:16,180 | WARN  | Transport Connection to:
> tcp://127.0.0.1:44981 failed: java.io.EOFException |
> org.apache.activemq.broker.TransportConnection.Transport | ActiveMQ
> Transport: ssl:///127.0.0.1:44981
> 2012-10-16 16:57:16,613 | WARN  | Failed to add Connection
> ID:centos-test1.foo.com-43128-1350431835402-1:4, reason:
> java.lang.SecurityException: User name [null] or password is invalid.
> | org.apache.activemq.broker.TransportConnection | ActiveMQ Transport:
> ssl:///127.0.0.1:44984
> 2012-10-16 16:57:16,632 | WARN  | Transport Connection to:
> tcp://127.0.0.1:44984 failed: java.io.EOFException |
> org.apache.activemq.broker.TransportConnection.Transport | ActiveMQ
> Transport: ssl:///127.0.0.1:44984
> 2012-10-16 16:57:17,585 | WARN  | Failed to add Connection
> ID:centos-test1.foo.com-43128-1350431835402-1:5, reason:
> java.lang.SecurityException: User name [null] or password is invalid.
> | org.apache.activemq.broker.TransportConnection | ActiveMQ Transport:
> ssl:///127.0.0.1:44985
>
>
> <<<<this is the error that come back through the producer >>>>>>
> ]. Caused by: [org.quartz.JobExecutionException -
> org.springframework.jms.UncategorizedJmsException: Uncategorized
> exception occured during JMS processing; nested exception is
> javax.jms.JMSException: User name [null] or password is invalid.]
>  INFO [DefaultQuartzScheduler-camel-1_Worker-3] (JobRunShell.java:221)
> - Job DEFAULT.quartz-endpoint1 threw a JobExecutionException:
> org.quartz.JobExecutionException:
> org.springframework.jms.UncategorizedJmsException: Uncategorized
> exception occured during JMS processing; nested exception is
> javax.jms.JMSException: User name [null] or password is invalid. [See
> nested exception: org.springframework.jms.UncategorizedJmsException:
> Uncategorized exception occured during JMS processing; nested
> exception is javax.jms.JMSException: User name [null] or password is
> invalid.]
>         at org.apache.camel.component.quartz.QuartzEndpoint.onJobExecute(QuartzEndpoint.java:117)
>         at org.apache.camel.component.quartz.CamelJob.execute(CamelJob.java:54)
>         at org.quartz.core.JobRunShell.run(JobRunShell.java:216)
>         at org.quartz.simpl.SimpleThreadPool$WorkerThread.run(SimpleThreadPool.java:549)
> Caused by: org.springframework.jms.UncategorizedJmsException:
> Uncategorized exception occured during JMS processing; nested
> exception is javax.jms.JMSException: User name [null] or password is
> invalid.
>         at org.springframework.jms.support.JmsUtils.convertJmsAccessException(JmsUtils.java:316)
>         at org.springframework.jms.support.JmsAccessor.convertJmsAccessException(JmsAccessor.java:168)
>         at org.springframework.jms.core.JmsTemplate.execute(JmsTemplate.java:469)
>         at org.apache.camel.component.jms.JmsConfiguration$CamelJmsTemplate.send(JmsConfiguration.java:187)
>         at org.apache.camel.component.jms.JmsProducer.doSend(JmsProducer.java:387)
>         at org.apache.camel.component.jms.JmsProducer.processInOnly(JmsProducer.java:341)
>         at org.apache.camel.component.jms.JmsProducer.process(JmsProducer.java:132)
>         at org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:73)
>         at org.apache.camel.processor.SendProcessor$2.doInAsyncProducer(SendProcessor.java:120)
>         at org.apache.camel.impl.ProducerCache.doInAsyncProducer(ProducerCache.java:292)
>         at org.apache.camel.processor.SendProcessor.process(SendProcessor.java:115)
>         at org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:73)
>         at org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:99)
>         at org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:90)
>         at org.apache.camel.management.InstrumentationProcessor.process(InstrumentationProcessor.java:73)
>         at org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:73)
>         at org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:99)
>         at org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:90)
>         at org.apache.camel.processor.interceptor.TraceInterceptor.process(TraceInterceptor.java:91)
>         at org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:73)
>         at org.apache.camel.processor.RedeliveryErrorHandler.processErrorHandler(RedeliveryErrorHandler.java:330)
>         at org.apache.camel.processor.RedeliveryErrorHandler.process(RedeliveryErrorHandler.java:220)
>         at org.apache.camel.processor.RouteContextProcessor.processNext(RouteContextProcessor.java:45)
>         at org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:90)
>         at org.apache.camel.processor.interceptor.DefaultChannel.process(DefaultChannel.java:303)
>         at org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:73)
>         at org.apache.camel.processor.Pipeline.process(Pipeline.java:117)
>         at org.apache.camel.processor.Pipeline.process(Pipeline.java:80)
>         at org.apache.camel.processor.RouteContextProcessor.processNext(RouteContextProcessor.java:45)
>         at org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:90)
>         at org.apache.camel.processor.UnitOfWorkProcessor.processAsync(UnitOfWorkProcessor.java:150)
>         at org.apache.camel.processor.UnitOfWorkProcessor.process(UnitOfWorkProcessor.java:117)
>         at org.apache.camel.processor.RouteInflightRepositoryProcessor.processNext(RouteInflightRepositoryProcessor.java:48)
>         at org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:90)
>         at org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:73)
>         at org.apache.camel.processor.DelegateAsyncProcessor.processNext(DelegateAsyncProcessor.java:99)
>         at org.apache.camel.processor.DelegateAsyncProcessor.process(DelegateAsyncProcessor.java:90)
>         at org.apache.camel.management.InstrumentationProcessor.process(InstrumentationProcessor.java:73)
>         at org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:73)
>         at org.apache.camel.processor.loadbalancer.QueueLoadBalancer.process(QueueLoadBalancer.java:44)
>         at org.apache.camel.util.AsyncProcessorHelper.process(AsyncProcessorHelper.java:99)
>         at org.apache.camel.processor.loadbalancer.QueueLoadBalancer.process(QueueLoadBalancer.java:71)
>         at org.apache.camel.component.quartz.QuartzEndpoint.onJobExecute(QuartzEndpoint.java:113)
>         ... 3 more
> Caused by: javax.jms.JMSException: User name [null] or password is invalid.
>         at org.apache.activemq.util.JMSExceptionSupport.create(JMSExceptionSupport.java:49)
>         at org.apache.activemq.ActiveMQConnection.syncSendPacket(ActiveMQConnection.java:1362)
>         at org.apache.activemq.ActiveMQConnection.ensureConnectionInfoSent(ActiveMQConnection.java:1466)
>         at org.apache.activemq.ActiveMQConnection.createSession(ActiveMQConnection.java:308)
>         at org.springframework.jms.support.JmsAccessor.createSession(JmsAccessor.java:196)
>         at org.springframework.jms.core.JmsTemplate.execute(JmsTemplate.java:457)
>         ... 43 more
> Caused by: java.lang.SecurityException: User name [null] or password is invalid.
>         at org.apache.activemq.security.JaasAuthenticationBroker.addConnection(JaasAuthenticationBroker.java:83)
>         at org.apache.activemq.broker.BrokerFilter.addConnection(BrokerFilter.java:85)
>         at org.apache.activemq.broker.MutableBrokerFilter.addConnection(MutableBrokerFilter.java:91)
>         at org.apache.activemq.broker.TransportConnection.processAddConnection(TransportConnection.java:715)
>         at org.apache.activemq.broker.jmx.ManagedTransportConnection.processAddConnection(ManagedTransportConnection.java:79)
>         at org.apache.activemq.command.ConnectionInfo.visit(ConnectionInfo.java:139)
>         at org.apache.activemq.broker.TransportConnection.service(TransportConnection.java:292)
>         at org.apache.activemq.broker.TransportConnection$1.onCommand(TransportConnection.java:150)
>         at org.apache.activemq.transport.MutexTransport.onCommand(MutexTransport.java:50)
>         at org.apache.activemq.transport.WireFormatNegotiator.onCommand(WireFormatNegotiator.java:113)
>         at org.apache.activemq.transport.AbstractInactivityMonitor.onCommand(AbstractInactivityMonitor.java:229)
>         at org.apache.activemq.transport.TransportSupport.doConsume(TransportSupport.java:83)
>         at org.apache.activemq.transport.tcp.SslTransport.doConsume(SslTransport.java:91)
>         at org.apache.activemq.transport.tcp.TcpTransport.doRun(TcpTransport.java:222)
>         at org.apache.activemq.transport.tcp.TcpTransport.run(TcpTransport.java:204)
>         at java.lang.Thread.run(Thread.java:662)
> Caused by: java.lang.SecurityException: Configuration Error:
>         Line 40: expected [option key]
>         at com.sun.security.auth.login.ConfigFile.<init>(ConfigFile.java:93)
>         at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
>         at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
>         at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
>         at java.lang.reflect.Constructor.newInstance(Constructor.java:513)
>         at java.lang.Class.newInstance0(Class.java:355)
>         at java.lang.Class.newInstance(Class.java:308)
>         at javax.security.auth.login.Configuration$3.run(Configuration.java:247)
>         at java.security.AccessController.doPrivileged(Native Method)
>         at javax.security.auth.login.Configuration.getConfiguration(Configuration.java:242)
>         at javax.security.auth.login.LoginContext$1.run(LoginContext.java:237)
>         at java.security.AccessController.doPrivileged(Native Method)
>         at javax.security.auth.login.LoginContext.init(LoginContext.java:234)
>         at javax.security.auth.login.LoginContext.<init>(LoginContext.java:403)
>         at org.apache.activemq.security.JaasAuthenticationBroker.addConnection(JaasAuthenticationBroker.java:75)
>         ... 15 more
> Caused by: java.io.IOException: Configuration Error:
>         Line 40: expected [option key]
>         at com.sun.security.auth.login.ConfigFile.match(ConfigFile.java:520)
>         at com.sun.security.auth.login.ConfigFile.parseLoginEntry(ConfigFile.java:406)
>         at com.sun.security.auth.login.ConfigFile.readConfig(ConfigFile.java:350)
>         at com.sun.security.auth.login.ConfigFile.init(ConfigFile.java:262)
>         at com.sun.security.auth.login.ConfigFile.init(ConfigFile.java:202)
>         at com.sun.security.auth.login.ConfigFile.<init>(ConfigFile.java:91)
>         ... 29 more



-- 
Claus Ibsen
-----------------
Red Hat, Inc.
FuseSource is now part of Red Hat
Email: cibsen@redhat.com
Web: http://fusesource.com
Twitter: davsclaus
Blog: http://davsclaus.com
Author of Camel in Action: http://www.manning.com/ibsen

Mime
View raw message