Return-Path: Delivered-To: apmail-maven-continuum-users-archive@www.apache.org Received: (qmail 52547 invoked from network); 1 Oct 2007 13:45:19 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 1 Oct 2007 13:45:19 -0000 Received: (qmail 56493 invoked by uid 500); 1 Oct 2007 13:45:00 -0000 Delivered-To: apmail-maven-continuum-users-archive@maven.apache.org Received: (qmail 56472 invoked by uid 500); 1 Oct 2007 13:45:00 -0000 Mailing-List: contact continuum-users-help@maven.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: continuum-users@maven.apache.org Delivered-To: mailing list continuum-users@maven.apache.org Received: (qmail 56421 invoked by uid 99); 1 Oct 2007 13:45:00 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 01 Oct 2007 06:45:00 -0700 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of BMADSEN@cerner.com designates 159.140.213.228 as permitted sender) Received: from [159.140.213.228] (HELO mail01.cerner.com) (159.140.213.228) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 01 Oct 2007 13:45:00 +0000 Received: from msbhwhq03.northamerica.cerner.net (msbhwhq03.cerner.com [10.160.16.183]) by mail01.cerner.com (8.13.8/8.13.8) with ESMTP id l91Dhc9J001129 for ; Mon, 1 Oct 2007 08:43:39 -0500 Received: from MSMBWHQ11.northamerica.cerner.net ([10.160.16.13]) by msbhwhq03.northamerica.cerner.net with Microsoft SMTPSVC(6.0.3790.1830); Mon, 1 Oct 2007 08:43:39 -0500 X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Subject: RE: 1.1-beta-3 LDAP Date: Mon, 1 Oct 2007 08:43:13 -0500 Message-ID: <019B28766FF9414187CDE72AF4393C3E03C7CC38@MSMBWHQ11.northamerica.cerner.net> In-Reply-To: <46FE12BC.7090109@venisse.net> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: 1.1-beta-3 LDAP Thread-Index: AcgCdpIQ8TNKSr4URYmQd01ywETyCABuXVqg References: <019B28766FF9414187CDE72AF4393C3E03C7C8BC@MSMBWHQ11.northamerica.cerner.net> <46FE12BC.7090109@venisse.net> From: "Madsen,Bryan" To: X-OriginalArrivalTime: 01 Oct 2007 13:43:39.0010 (UTC) FILETIME=[127C3E20:01C80431] X-Proofpoint-Virus-Version: vendor=fsecure engine=4.65.5502:2.3.11,1.2.37,4.0.164 definitions=2007-10-01_02:2007-09-30,2007-10-01,2007-10-01 signatures=0 X-Virus-Checked: Checked by ClamAV on apache.org We do not allow guest accounts on our LDAP server. If I remove the = 'redback.default.guest' configuration I see this exception below. Is = there a way to bypass that? I would like all users with an LDAP sign-on to be considered a = registered user once signed in and then administer their access rights = at that point. 69711 [SocketListener0-1] ERROR = com.opensymphony.webwork.dispatcher.DispatcherUtils - Could not find = action Caught Exception while registering Interceptor class = redbackEnvironmentCheckInterceptor - Class: = org.codehaus.plexus.redback.xwork.checks.security.GuestUserEnvironmentChe= ck File: GuestUserEnvironmentCheck.java Method: validateEnvironment Line: 100 - = org/codehaus/plexus/redback/xwork/checks/security/GuestUserEnvironmentChe= ck.java:100:-1 at = org.codehaus.plexus.xwork.PlexusObjectFactory.buildInterceptor(PlexusObje= ctFactory.java:152) at = com.opensymphony.xwork.config.providers.InterceptorBuilder.constructInter= ceptorReference(InterceptorBuilder.java:56) at = com.opensymphony.xwork.config.providers.XmlConfigurationProvider.lookupIn= terceptorReference(XmlConfigurationProvider.java:701) at = com.opensymphony.xwork.config.providers.XmlConfigurationProvider.loadInte= rceptorStack(XmlConfigurationProvider.java:568) at = com.opensymphony.xwork.config.providers.XmlConfigurationProvider.loadInte= rceptorStacks(XmlConfigurationProvider.java:581) at = com.opensymphony.xwork.config.providers.XmlConfigurationProvider.loadInte= rceptors(XmlConfigurationProvider.java:602) at = com.opensymphony.xwork.config.providers.XmlConfigurationProvider.addPacka= ge(XmlConfigurationProvider.java:204) at = com.opensymphony.xwork.config.providers.XmlConfigurationProvider.loadConf= igurationFile(XmlConfigurationProvider.java:675) at = com.opensymphony.xwork.config.providers.XmlConfigurationProvider.loadConf= igurationFile(XmlConfigurationProvider.java:678) at = com.opensymphony.xwork.config.providers.XmlConfigurationProvider.init(Xml= ConfigurationProvider.java:91) at = com.opensymphony.xwork.config.impl.DefaultConfiguration.reload(DefaultCon= figuration.java:86) at = com.opensymphony.xwork.config.ConfigurationManager.getConfiguration(Confi= gurationManager.java:55) at = com.opensymphony.xwork.DefaultActionProxy.(DefaultActionProxy.java:= 60) at = com.opensymphony.xwork.DefaultActionProxyFactory.createActionProxy(Defaul= tActionProxyFactory.java:46) at = com.opensymphony.webwork.dispatcher.DispatcherUtils.serviceAction(Dispatc= herUtils.java:264) at = com.opensymphony.webwork.dispatcher.FilterDispatcher.doFilter(FilterDispa= tcher.java:202) at = org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebA= pplicationHandler.java:821) at = com.opensymphony.module.sitemesh.filter.PageFilter.parsePage(PageFilter.j= ava:118) at = com.opensymphony.module.sitemesh.filter.PageFilter.doFilter(PageFilter.ja= va:52) at = org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebA= pplicationHandler.java:821) at = com.opensymphony.webwork.dispatcher.ActionContextCleanUp.doFilter(ActionC= ontextCleanUp.java:88) at = org.mortbay.jetty.servlet.WebApplicationHandler$CachedChain.doFilter(WebA= pplicationHandler.java:821) at = org.mortbay.jetty.servlet.WebApplicationHandler.dispatch(WebApplicationHa= ndler.java:471) at = org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:568) at org.mortbay.http.HttpContext.handle(HttpContext.java:1530) at = org.mortbay.jetty.servlet.WebApplicationContext.handle(WebApplicationCont= ext.java:633) at org.mortbay.http.HttpContext.handle(HttpContext.java:1482) at org.mortbay.http.HttpServer.service(HttpServer.java:909) at org.mortbay.http.HttpConnection.service(HttpConnection.java:816) at org.mortbay.http.HttpConnection.handleNext(HttpConnection.java:982) at org.mortbay.http.HttpConnection.handle(HttpConnection.java:833) at = org.mortbay.http.SocketListener.handleConnection(SocketListener.java:244)= at org.mortbay.util.ThreadedServer.handle(ThreadedServer.java:357) at org.mortbay.util.ThreadPool$PoolThread.run(ThreadPool.java:534) Caused by: java.lang.NullPointerException at = org.codehaus.plexus.redback.xwork.checks.security.GuestUserEnvironmentChe= ck.validateEnvironment(GuestUserEnvironmentCheck.java:100) at = org.codehaus.plexus.redback.xwork.interceptor.EnvironmentCheckInterceptor= .init(EnvironmentCheckInterceptor.java:77) at = org.codehaus.plexus.xwork.PlexusObjectFactory.buildInterceptor(PlexusObje= ctFactory.java:119) ... 33 more -----Original Message----- From: Emmanuel Venisse [mailto:emmanuel@venisse.net]=20 Sent: Saturday, September 29, 2007 3:54 AM To: continuum-users@maven.apache.org Subject: Re: 1.1-beta-3 LDAP Madsen,Bryan a =E9crit : > I trudged through configuring LDAP and am now able to log on with my > sign on and password. I think I still have some configuration related > issues that need to be addressed.=20 >=20 > When I access the server and am not logged in I have full admin = rights. > This applies to anyone. >=20 > When I log in it seems I am the administrator since I logged in the > first time. Another person I work with logged in and has the ability = to > see nothing. Right now the moral of the story is don't login and you = can > do anything. >=20 > When I go to the Users screen no users are displayed and the only = thing > I can do is look at the User List and Roles Matrix report. How do I > configure access control for users signed in through LDAP? >=20 > In the security.properties file I added the following config: >=20 > # LDAP setup > user.manager.impl=3Dldap > ldap.bind.authenticator.enabled=3Dtrue > redback.default.admin=3Dmyusername > redback.default.guest=3Dmyusername > security.policy.password.expiration.enabled=3Dfalse=09 >=20 > What is the purpose of redback.default.admin and = redback.default.guest? Jesse know well but I think if guest =3D admin =3D myusername so guest = is an admin > If I omitted those configs the server crashes on startup. I used my > personnel username for admin and guest since I don't see the purpose = of > these configurations and that seemed to work. >=20 > In my situation I would like to have any user login with LDAP and > default to guest access and then configure specific users for more > advanced rights. Is this supposed to be handled through the Users = screen > or some other location? >=20 > Any help would be appreciated. >=20 > Bryan >=20 >=20 > ---------------------------------------------------------------------- > CONFIDENTIALITY NOTICE This message and any included attachments are = from Cerner Corporation and are intended only for the addressee. The = information contained in this message is confidential and may constitute = inside or non-public information under international, federal, or state = securities laws. Unauthorized forwarding, printing, copying, = distribution, or use of such information is strictly prohibited and may = be unlawful. If you are not the addressee, please promptly delete this = message and notify the sender of the delivery error by e-mail or you may = call Cerner's corporate offices in Kansas City, Missouri, U.S.A at (+1) = (816)221-1024.