[ https://issues.apache.org/jira/browse/GUACAMOLE-358?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16116957#comment-16116957 ]
Nick Couchman commented on GUACAMOLE-358: ----------------------------------------- Please read the Permissions section of the JDBC Authentication page in the Guacamole manual very carefully: http://guacamole.incubator.apache.org/doc/gug/jdbc-auth.html Among other things, you'll find that: * The guacamole_system_permission table is used for overall permissions on the Guacamole system. * The guacamole_user_permission table is used for granting permissions to users on user accounts in the system (the ability for one user to modify another user's properties). * The guacamole_connection_permission table is used for granting connection-related permissions. >From what you posted above, I only see entries for the >guacamole_user_permission table - which is not going to grant you the ability >to create/change connections or administer the system. > CAS Authentication issue handling sessions > ------------------------------------------ > > Key: GUACAMOLE-358 > URL: https://issues.apache.org/jira/browse/GUACAMOLE-358 > Project: Guacamole > Issue Type: Bug > Components: guacamole-auth-cas, guacamole-auth-jdbc > Affects Versions: 0.9.13-incubating > Environment: Ubuntu Xenial 16.04, Tomcat 8, dedicated. Enviroment > built using the script from > https://www.chasewright.com/guacamole-with-mysql-on-ubuntu/ > Reporter: Rodrigo Gonçalves > Assignee: Nick Couchman > > After activating CAS authentication and being able to login, can't access the > setttings interface. It stays with the running gear and nothing is shown. > On the browser console the following messages are show: > http://xxx:8080/guacamole/api/session/data/cas/users/100000000281061?token=116AF1455BF7D95621229E33C66D5C633636EE4BEC12FF859EE6E6F3E604FF9A > 404 (Not Found) > http://xxx:8080/guacamole/api/session/data/cas/self/permissions?token=116AF1455BF7D95621229E33C66D5C633636EE4BEC12FF859EE6E6F3E604FF9A > 404 (Not Found) > Looking at the request, the following data is returned: > {quote}{"message":"Session not associated with authentication provider > \"cas\".","translatableMessage":{"key":"Session not associated with > authentication provider > \"cas\".","variables":null},"statusCode":null,"expected":null,"type":"NOT_FOUND"}{quote} > Already included records in tables guacamole_user and > guacamole_user_permission to configure the logged in user with 'ADMINISTER' > permission but no success. > {quote}mysql> select * from guacamole_user_permission; > +---------+------------------+------------+ > | user_id | affected_user_id | permission | > +---------+------------------+------------+ > | 1 | 1 | READ | > | 1 | 1 | UPDATE | > | 1 | 1 | ADMINISTER | > | 1 | 2 | ADMINISTER | > +---------+------------------+------------+ > 4 rows in set (0.00 sec) > mysql> select * from guacamole_user > -> ; > +---------+-----------------+----------------------------------+----------------------------------+---------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+-----------+---------------+--------------+---------------------+ > | user_id | username | password_hash | > password_salt | password_date | disabled | expired | > access_window_start | access_window_end | valid_from | valid_until | timezone > | full_name | email_address | organization | organizational_role | > +---------+-----------------+----------------------------------+----------------------------------+---------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+-----------+---------------+--------------+---------------------+ > | 1 | guacadmin | ▒E▒}IN;▒$▒▒▒u▒Ul▒▒,-}▒c;▒J)▒A` | > ▒$▒▒▒+%(▒▒▒zy▒B▒▒`d▒iųw▒▒"d | 2017-08-02 11:33:00 | 0 | > 0 | NULL | NULL | NULL | NULL | > NULL | NULL | NULL | NULL | NULL | > | 2 | xxxxxxxx | - | NULL > | 2017-08-02 00:00:00 | 0 | 0 | NULL > | NULL | NULL | NULL | NULL | NULL | NULL > | NULL | NULL | > +---------+-----------------+----------------------------------+----------------------------------+---------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+-----------+---------------+--------------+---------------------+{quote} -- This message was sent by Atlassian JIRA (v6.4.14#64029)