nifi-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Andy LoPresto <alopre...@apache.org>
Subject Re: Trouble with the LDAP Authentication Provider
Date Fri, 13 May 2016 22:59:48 GMT
Thanks Ricky. I’ll set up a demo environment with 0.6.1 and LDAP/Kerberos authentication
locally and see if I can reproduce. Probably get back to you Monday?

Andy LoPresto
alopresto@apache.org
alopresto.apache@gmail.com
PGP Fingerprint: 70EC B3E5 98A6 5A3F D3C4  BACE 3C6E F65B 2F7D EF69

> On May 13, 2016, at 1:47 PM, Ricky Saltzer <ricky@cloudera.com> wrote:
> 
> Hey Andy -
> 
> The full log file, nifi.properties, and authority-providers in the
> following gists. Obviously I've replaced some values in the
> authority-providers with fake data for security reasons.
> 
> *Log:*
> https://gist.githubusercontent.com/rickysaltzer/a645f18a4b3d8bacd16d57cd093f8997/raw/08f78789b66a4d7094629699af7f408870b2c0da/gistfile1.txt
<https://gist.githubusercontent.com/rickysaltzer/a645f18a4b3d8bacd16d57cd093f8997/raw/08f78789b66a4d7094629699af7f408870b2c0da/gistfile1.txt>
> 
> *Authority: *
> https://gist.githubusercontent.com/rickysaltzer/b6db60311ea9e3abb94ac183e1c02a59/raw/a75b348ea9515acf0d7bbe0a936972c9b6cb38fe/gistfile1.txt
<https://gist.githubusercontent.com/rickysaltzer/b6db60311ea9e3abb94ac183e1c02a59/raw/a75b348ea9515acf0d7bbe0a936972c9b6cb38fe/gistfile1.txt>
> 
> *Properties:*
> https://gist.githubusercontent.com/rickysaltzer/3b29f430d0d1b6361a7ff097e8fcea6a/raw/28bb328fc01ed5256b41bfb324341c083f6fa354/gistfile1.txt
<https://gist.githubusercontent.com/rickysaltzer/3b29f430d0d1b6361a7ff097e8fcea6a/raw/28bb328fc01ed5256b41bfb324341c083f6fa354/gistfile1.txt>
> 
> On Fri, May 13, 2016 at 10:55 AM, Andy LoPresto <alopresto@apache.org <mailto:alopresto@apache.org>>
> wrote:
> 
>> Hi Ricky,
>> 
>> Can you provide the contents of logs/nifi-app.log as well to see if there
>> is anything relevant to this exception? The code where this is failing
>> attempts to deserialize the XML into one of a number of classes
>> implementing the AuthorityProvider interface via the factory. Are you sure
>> the XML is valid and complete, and that the provider identifier is also
>> specified in nifi.properties?
>> 
>> Andy LoPresto
>> alopresto@apache.org <mailto:alopresto@apache.org>
>> *alopresto.apache@gmail.com <mailto:alopresto.apache@gmail.com> <alopresto.apache@gmail.com
<mailto:alopresto.apache@gmail.com>>*
>> PGP Fingerprint: 70EC B3E5 98A6 5A3F D3C4  BACE 3C6E F65B 2F7D EF69
>> 
>> On May 12, 2016, at 2:26 PM, Ricky Saltzer <ricky@cloudera.com> wrote:
>> 
>> Using the following provider on 0.6.1, I'm faced with a ClassCastException.
>> It might also be worth noting that I face the same exception when
>> attempting to us the KerberosProvider option.
>> 
>> *Provider:*
>> <provider>
>>   <identifier>ldap-provider</identifier>
>>   <class>org.apache.nifi.ldap.LdapProvider</class>
>>   <property name="Authentication Strategy">SIMPLE</property>
>> 
>>   <property name="Manager DN">dethklok\toki</property>
>>   <property name="Manager Password">bananasticker</property>
>> 
>>   <property name="TLS - Keystore"></property>
>>   <property name="TLS - Keystore Password"></property>
>>   <property name="TLS - Keystore Type"></property>
>>   <property name="TLS - Truststore"></property>
>>   <property name="TLS - Truststore Password"></property>
>>   <property name="TLS - Truststore Type"></property>
>>   <property name="TLS - Client Auth"></property>
>>   <property name="TLS - Protocol"></property>
>>   <property name="TLS - Shutdown Gracefully"></property>
>> 
>>   <property name="Referral Strategy">FOLLOW</property>
>>   <property name="Connect Timeout">10 secs</property>
>>   <property name="Read Timeout">10 secs</property>
>> 
>>   <property name="Url">ldap://ldap.metalocalypse.com</property>
>>   <property name="User Search
>> Base">CN=Users,DC=metalocalypse,DC=local</property>
>>   <property name="User Search Filter">foo</property>
>> 
>>   <property name="Authentication Expiration">12 hours</property>
>> </provider>
>> 
>> *Exception:*
>> Caused by: java.lang.ClassCastException: class
>> org.apache.nifi.ldap.LdapProvider
>>       at java.lang.Class.asSubclass(Class.java:3208) ~[na:1.7.0_79]
>>       at
>> 
>> org.apache.nifi.authorization.AuthorityProviderFactoryBean.createAuthorityProvider(AuthorityProviderFactoryBean.java:173)
>> ~[na:na]
>>       at
>> 
>> org.apache.nifi.authorization.AuthorityProviderFactoryBean.getObject(AuthorityProviderFactoryBean.java:111)
>> ~[na:na]
>>       at
>> 
>> org.springframework.beans.factory.support.FactoryBeanRegistrySupport.doGetObjectFromFactoryBean(FactoryBeanRegistrySupport.java:168)
>> ~[na:na]
>>       ... 75 common frames omitted
>> 
>> 
>> 
> 
> 
> --
> Ricky Saltzer
> http://www.cloudera.com <http://www.cloudera.com/>

Mime
View raw message