guacamole-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rodrigo Gonçalves (JIRA) <j...@apache.org>
Subject [jira] [Commented] (GUACAMOLE-358) CAS Authentication issue handling sessions
Date Mon, 07 Aug 2017 17:59:00 GMT

    [ https://issues.apache.org/jira/browse/GUACAMOLE-358?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16116946#comment-16116946
] 

Rodrigo Gonçalves commented on GUACAMOLE-358:
---------------------------------------------

Hi Nick,

I've double checked and they are exactly the same (that large number is a unique identifier
we use for each user internally):


{noformat}
10:39:55.952 [http-nio-8080-exec-9] INFO  o.a.g.r.auth.AuthenticationService - User "100000000281061"
successfully authenticated from xxx.xxx.xxx.xxx.

mysql> select * from guacamole_user where username='100000000281061';
+---------+-----------------+----------------------------------+---------------+---------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+-----------+---------------+--------------+---------------------+
| user_id | username        | password_hash                    | password_salt | password_date
      | disabled | expired | access_window_start | access_window_end | valid_from | valid_until
| timezone | full_name | email_address | organization | organizational_role |
+---------+-----------------+----------------------------------+---------------+---------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+-----------+---------------+--------------+---------------------+
|       2 | 100000000281061 | -                                | NULL          | 2017-08-02
00:00:00 |        0 |       0 | NULL                | NULL              | NULL       | NULL
       | NULL     | NULL      | NULL          | NULL         | NULL                |
+---------+-----------------+----------------------------------+---------------+---------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+-----------+---------------+--------------+---------------------+
1 row in set (0.00 sec)

mysql> select * from guacamole_user_permission where affected_user_id = 2;
+---------+------------------+------------+
| user_id | affected_user_id | permission |
+---------+------------------+------------+
|       1 |                2 | UPDATE     |
|       1 |                2 | ADMINISTER |
+---------+------------------+------------+
{noformat}

But I still have no access to settings or to create/change connections.

Kind regards,


> CAS Authentication issue handling sessions
> ------------------------------------------
>
>                 Key: GUACAMOLE-358
>                 URL: https://issues.apache.org/jira/browse/GUACAMOLE-358
>             Project: Guacamole
>          Issue Type: Bug
>          Components: guacamole-auth-cas, guacamole-auth-jdbc
>    Affects Versions: 0.9.13-incubating
>         Environment: Ubuntu Xenial 16.04, Tomcat 8, dedicated. Enviroment built using
the script from https://www.chasewright.com/guacamole-with-mysql-on-ubuntu/
>            Reporter: Rodrigo Gonçalves
>            Assignee: Nick Couchman
>
> After activating CAS authentication and being able to login, can't access the setttings
interface. It stays with the running gear and nothing is shown.
> On the browser console the following messages are show:
> http://xxx:8080/guacamole/api/session/data/cas/users/100000000281061?token=116AF1455BF7D95621229E33C66D5C633636EE4BEC12FF859EE6E6F3E604FF9A
404 (Not Found)
> http://xxx:8080/guacamole/api/session/data/cas/self/permissions?token=116AF1455BF7D95621229E33C66D5C633636EE4BEC12FF859EE6E6F3E604FF9A
404 (Not Found)
> Looking at the request, the following data is returned:
> {quote}{"message":"Session not associated with authentication provider \"cas\".","translatableMessage":{"key":"Session
not associated with authentication provider \"cas\".","variables":null},"statusCode":null,"expected":null,"type":"NOT_FOUND"}{quote}
> Already included records in tables guacamole_user and guacamole_user_permission to configure
the logged in user with 'ADMINISTER' permission but no success.
> {quote}mysql> select * from guacamole_user_permission;
> +---------+------------------+------------+
> | user_id | affected_user_id | permission |
> +---------+------------------+------------+
> |       1 |                1 | READ       |
> |       1 |                1 | UPDATE     |
> |       1 |                1 | ADMINISTER |
> |       1 |                2 | ADMINISTER |
> +---------+------------------+------------+
> 4 rows in set (0.00 sec)
> mysql> select * from guacamole_user
>     -> ;
> +---------+-----------------+----------------------------------+----------------------------------+---------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+-----------+---------------+--------------+---------------------+
> | user_id | username        | password_hash                    | password_salt      
             | password_date       | disabled | expired | access_window_start | access_window_end
| valid_from | valid_until | timezone | full_name | email_address | organization | organizational_role
|
> +---------+-----------------+----------------------------------+----------------------------------+---------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+-----------+---------------+--------------+---------------------+
> |       1 | guacadmin       | ▒E▒}IN;▒$▒▒▒u▒Ul▒▒,-}▒c;▒J)▒A`
            | ▒$▒▒▒+%(▒▒▒zy▒B▒▒`d▒iųw▒▒"d               | 2017-08-02
11:33:00 |        0 |       0 | NULL                | NULL              | NULL       | NULL
       | NULL     | NULL      | NULL          | NULL         | NULL                |
> |       2 | xxxxxxxx | -                                | NULL                      
      | 2017-08-02 00:00:00 |        0 |       0 | NULL                | NULL            
 | NULL       | NULL        | NULL     | NULL      | NULL          | NULL         | NULL 
              |
> +---------+-----------------+----------------------------------+----------------------------------+---------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+-----------+---------------+--------------+---------------------+{quote}



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message