[rt-users] Help - RT4.2.7 Authen::ExternalAuth via, OpenLDAP

William Clarke wclarke at simons-rock.edu
Tue Oct 7 11:46:57 EDT 2014


Ouch, I apologize I missed that. I was initially using .23 release but 
then later installed the latest dev .23_01 in hopes all my problems 
would vanish. Well just reinstalled .23 just now and the logs I'm seeing 
might be a little more interesting to us all. Oh and it really helps 
when I add the following as you suggested, I didn't leave that out 
intentionally....

Set( $ExternalInfoPriority, ["My_LDAP"] );

External Auth is working like a charm now.... so THANK YOU KEVIN!!!!!

[3298] [Tue Oct  7 15:40:07 2014] [debug]: Attempting to use external 
auth service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:371)
[3298] [Tue Oct  7 15:40:07 2014] [debug]: Calling UserExists with 
$username (wclarke) and $service (My_LDAP) 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:412)
[3298] [Tue Oct  7 15:40:07 2014] [debug]: UserExists params:
username: wclarke , service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:437)
[3298] [Tue Oct  7 15:40:07 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(objectClass=*)(uid=wclarke)) == 
Attrs: mail,uid 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:467)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: 
RT::Authen::ExternalAuth::CanonicalizeUserInfo called by 
RT::Authen::ExternalAuth 
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm 
860 with: Disabled: , EmailAddress: , Gecos: wclarke, Name: wclarke, 
Privileged: 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:757)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Attempting to get user info 
using this external service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:765)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Attempting to use this 
canonicalization key: Name 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:779)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(objectClass=*)(uid=wclarke)) == 
Attrs: mail,uid 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:355)
[3298] [Tue Oct  7 15:40:08 2014] [info]: 
RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Disabled: , 
EmailAddress: wclarke at simons-rock.edu, Gecos: wclarke, Name: wclarke, 
Privileged: , RealName: 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:843)
[3298] [Tue Oct  7 15:40:08 2014] [info]: Autocreated external user 
wclarke ( 22 ) 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:439)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Loading new user ( wclarke ) 
into current session 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:445)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Password validation required 
for service - Executing... 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:462)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Trying external auth service: 
My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:151)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(uid=wclarke)(objectClass=*)) == 
Attrs: dn 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:184)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Found LDAP DN: 
uid=wclarke,ou=People,dc=simons-rock,dc=edu 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:218)
[3298] [Tue Oct  7 15:40:08 2014] [info]: 
RT::Authen::ExternalAuth::LDAP::GetAuth External Auth OK ( My_LDAP ): 
wclarke 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:299)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: LDAP password validation 
result: 1 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:641)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Password Validation Check 
Result:  1 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:466)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Authentication successful. 
Now updating user information and attempting login. 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:486)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: UserExists params:
username: wclarke , service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:437)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(objectClass=*)(uid=wclarke)) == 
Attrs: mail,uid 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:467)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: UserExists params:
username: wclarke , service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:437)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(objectClass=*)(uid=wclarke)) == 
Attrs: mail,uid 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:467)
[3298] [Tue Oct  7 15:40:08 2014] [warning]: Use of uninitialized value 
$d_filter in string eq at 
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm 
line 523. 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:523)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: No d_filter specified for 
this LDAP service ( My_LDAP ), so considering all users enabled 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:527)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: 
RT::Authen::ExternalAuth::CanonicalizeUserInfo called by 
RT::Authen::ExternalAuth 
/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm 
860 with: Name: wclarke 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:757)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Attempting to get user info 
using this external service: My_LDAP 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:765)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Attempting to use this 
canonicalization key: Name 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:779)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: LDAP Search === Base: 
dc=simons-rock,dc=edu == Filter: (&(objectClass=*)(uid=wclarke)) == 
Attrs: mail,uid 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/LDAP.pm:355)
[3298] [Tue Oct  7 15:40:08 2014] [info]: 
RT::Authen::ExternalAuth::CanonicalizeUserInfo returning EmailAddress: 
wclarke at simons-rock.edu, Name: wclarke, RealName: 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:843)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: UPDATED user ( wclarke ) from 
External Service 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:614)
[3298] [Tue Oct  7 15:40:08 2014] [info]: Successful login for wclarke 
from 10.30.2.210 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:526)
[3298] [Tue Oct  7 15:40:08 2014] [debug]: Autohandler called 
ExternalAuth. Response: (1, Successful login) 
(/opt/rt4/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:16)


William Clarke
ITS System Administrator
Bard College at Simon's Rock
84 Alford Road
Great Barrington, MA  01230
(413) 528-7428 (voice)
(413) 528-7405 (fax)
wclarke at simons-rock.edu

On 10/7/2014 10:46 AM, Kevin Falcone wrote:
> On Mon, Oct 06, 2014 at 02:34:40PM -0400, William Clarke wrote:
>> RT 4.2.7 and RT-Authen-ExternalAuth-0.23
> 0.23 or 0.23_01 the dev release?
>
> Your log points to line 491
>
>> [29370] [Mon Oct  6 18:20:02 2014] [error]: Couldn't create user wclarke: Could
>> not set user info (/opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/
>> ExternalAuth.pm:491)
> But line 491 of 0.23 is blank
>
> https://github.com/bestpractical/rt-authen-externalauth/blob/5a3a85c36f2e0abc43a0b0483b6e01e4d390ec54/lib/RT/Authen/ExternalAuth.pm#L491
>
> Line 491 of 0.23_01 has an error message there
>
> https://github.com/bestpractical/rt-authen-externalauth/blob/master/lib/RT/Authen/ExternalAuth.pm#L491
>
> So, let's nail down what you're actually running, since you may just
> have tripped a bug in 0.23_01 if that's what you have installed.
>
>
> BTW - is there a reason you've only configured Auth and not Info?
> That's probably making it very hard for RT to create the user, since
> it can't go fetch any info.
>
> -kevin
>
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20141007/b488d03b/attachment.htm>


More information about the rt-users mailing list