[jira] [Commented] (KYLIN-5754) SAML and LDAP Issue

Wed, 17 Apr 2024 08:22:03 -0700 


    [ 
https://issues.apache.org/jira/browse/KYLIN-5754?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17838251#comment-17838251
 ] 

dennis lucero commented on KYLIN-5754:
--------------------------------------

[~pfzhan]  i have attached the logs.

> SAML and LDAP Issue
> -------------------
>
>                 Key: KYLIN-5754
>                 URL: https://issues.apache.org/jira/browse/KYLIN-5754
>             Project: Kylin
>          Issue Type: Bug
>            Reporter: dennis lucero
>            Priority: Blocker
>         Attachments: kylin-ldap.txt, kylin-saml-login.txt, kylin-saml.txt, 
> openldap-ldap.txt, openldap-saml.txt
>
>
> When i activate LDAP with the following Config am able to access the admin 
> account.
>  
> {color:#569cd6}kylin.security.ldap.user-search-base{color}{color:#cccccc}={color}{color:#569cd6}ou{color}{color:#cccccc}=People,{color}{color:#569cd6}dc{color}{color:#cccccc}=datasymphony,{color}{color:#569cd6}dc{color}{color:#cccccc}=ddns,{color}{color:#569cd6}dc{color}{color:#cccccc}=net{color}
> {color:#569cd6}kylin.security.ldap.user-search-pattern{color}{color:#cccccc}=(&({color}{color:#569cd6}cn{color}{color:#cccccc}=\{0})){color}
> {color:#569cd6}kylin.security.ldap.user-group-search-base{color}{color:#cccccc}={color}{color:#569cd6}ou{color}{color:#cccccc}=Groups,{color}{color:#569cd6}dc{color}{color:#cccccc}=datasymphony,{color}{color:#569cd6}dc{color}{color:#cccccc}=ddns,{color}{color:#569cd6}dc{color}{color:#cccccc}=net{color}
> {color:#569cd6}group-search-filter{color}{color:#cccccc}=(|({color}{color:#569cd6}member{color}{color:#cccccc}=\{0})({color}{color:#569cd6}memberUid{color}{color:#cccccc}=\{1})){color}
>  
> But with the same config if i change profile to saml it doesnt loginto just 
> say user or password invalid. thisis my saml config
> {color:#569cd6}kylin.security.saml.metadata-entity-base-url{color}{color:#cccccc}=https://kylin.datasymphony.com/kylin{color}
> {color:#569cd6}kylin.security.saml.context-scheme{color}{color:#cccccc}=https{color}
> {color:#569cd6}kylin.security.saml.context-server-name{color}{color:#cccccc}=kylin.datasymphony.com{color}
> {color:#569cd6}kylin.security.saml.context-server-port{color}{color:#cccccc}=443{color}
> {color:#569cd6}kylin.security.saml.context-path{color}{color:#cccccc}=/kylin{color}
>  
> Am using wso2 as the dientity server, when i login it takes me to the 
> identity server login but when i autorize and go back to kylin it just show 
> kylin login page. been stuck on this for a while now i need help. thanks



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to