[rt-users] Issues configuring RT::Authen::ExternalAuth

Carlos J. Velez-Rivera cvelez at ckcomputingpr.com
Mon Apr 28 15:17:11 EDT 2008


On Thursday 24 April 2008 08:56:48 Carlos J. Velez-Rivera wrote:
> On Thursday 24 April 2008 04:09:10 Mike Peachey wrote:
> > Carlos J. Velez-Rivera wrote:
> > > Hello Mike,
> > > 
> > > 	Thanks for your answer.  Sorry for the delay in getting back to you.  I had to take care of a fire... Here is the RT_SiteConfig.pm file.  I thought it could be related to a bad filter...
> > > 
> > > Thanks in advance for any pointers you might have!
> > > Carlos
> > 
> > Since you're not using LDAP groups to determine access, remove the group 
> > and group_attr lines from ExternalSettings, then run it again and 
> > provide the debug log for what heppens.
> > 
> 
> 	Made the change cleaned up the mason files and restarted apache just in case.  It appears as though the same thing is happening.  Here's the log.  I also tried taking out the d_filter parameter in a separate try and there was no change.
> 
> [Thu Apr 24 12:46:39 2008] [warning]: Transaction->Create couldn't, as you didn't specify an object type and id (/usr/share/request-tracker3.6/lib/RT/Record.pm:1466)
> [Thu Apr 24 12:46:39 2008] [debug]: RT::User::IsExternalPassword Trying External authentication (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:52)
> [Thu Apr 24 12:46:39 2008] [debug]: Attempting to use external auth service: My_LDAP (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:63)
> [Thu Apr 24 12:46:40 2008] [debug]: LDAP Search ===  Base: ou=people,dc=upr,dc=edu == Filter: (&(uid=carlos.velez99)(objectclass=*)) == Attrs: dn (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:185)
> [Thu Apr 24 12:46:40 2008] [debug]: Found LDAP DN: uid=carlos.velez99,ou=people,dc=upr,dc=edu (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:217)
> [Thu Apr 24 12:46:40 2008] [info]: RT::User::IsExternalPassword External Auth OK ( My_LDAP ): carlos.velez99 (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:281)
> [Thu Apr 24 12:46:40 2008] [debug]: RT::User::IsPassword External auth SUCCEEDED (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:360)
> [Thu Apr 24 12:46:40 2008] [debug]: RT::User::CanonicalizeUserInfo called by RT::User /usr/share/request-tracker3.6/lib/RT/User_Overlay.pm 190 with: Disabled: 0, EmailAddress: , Gecos: carlos.velez99, Name: carlos.velez99, Privileged: 0 (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:400)
> [Thu Apr 24 12:46:40 2008] [debug]: Attempting to get user info using this external service: My_LDAP (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:408)
> [Thu Apr 24 12:46:40 2008] [debug]: Attempting to use this canonicalization key: Name (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:417)
> [Thu Apr 24 12:46:40 2008] [debug]: LDAP Search ===  Base: ou=people,dc=upr,dc=edu == Filter: (&(objectclass=*)(uid=carlos.velez99)) == Attrs: ,displayName,,eduPersonPrincipalName,uid,,,,,uid,eduPersonOrgDN,uid (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:538)
> [Thu Apr 24 12:46:40 2008] [info]: RT::User::LookupExternalUserInfo : Returning:  Address1: , City: , Country: , EmailAddress: carlos.velez99 at upr.edu, ExternalAuthId: carlos.velez99, Gecos: carlos.velez99, Name: carlos.velez99, Organization: cn=Mayaguez,ou=people,dc=upr,dc=edu, RealName: Carlos J. Velez-Rivera, State: , WorkPhone: , Zip:  (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:703)
> [Thu Apr 24 12:46:40 2008] [info]: RT::User::CanonicalizeUserInfo returning Address1: , City: , Country: , Disabled: 0, EmailAddress: carlos.velez99 at upr.edu, ExternalAuthId: carlos.velez99, Gecos: carlos.velez99, Name: carlos.velez99, Organization: cn=Mayaguez,ou=people,dc=upr,dc=edu, Privileged: 0, RealName: Carlos J. Velez-Rivera, State: , WorkPhone: , Zip:  (/usr/local/share/request-tracker3.6/lib/RT/User_Vendor.pm:444)
> [Thu Apr 24 12:46:41 2008] [info]: Autocreated authenticated user carlos.velez99 (  ) (/usr/share/request-tracker3.6/html/Callbacks/ExternalAuth/autohandler/Auth:50)
> 
> 

Hello:  Do you have any pointers as to what in the Perl code I should look into in order to debug this issue?  Where does the module look for the user name of the new account?  Is it ExternalAuthId? Do you have any suspects you recommend I check?

I am trying to avoid having to create a separate webapp to handle self service...  We have about 100,000 accounts for students in the University.

Thanks much!
-- 
Carlos J. Velez-Rivera

Manager
CK Computing Corporation
cvelez at ckcomputingpr.com
Voice: (787)464-1182
Fax: 866-910-4798



More information about the rt-users mailing list