[
https://issues.apache.org/jira/browse/KYLIN-5421?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Yaguang Jia updated KYLIN-5421:
-------------------------------
Attachment: KYLIN-5421 LDAP user authentication exception.pdf
> LDAP user authentication exception
> ----------------------------------
>
> Key: KYLIN-5421
> URL: https://issues.apache.org/jira/browse/KYLIN-5421
> Project: Kylin
> Issue Type: Bug
> Affects Versions: 5.0-alpha
> Reporter: Yaguang Jia
> Assignee: Yaguang Jia
> Priority: Critical
> Fix For: 5.0-alpha
>
> Attachments: KYLIN-5421 LDAP user authentication exception.pdf
>
>
> {code:java}
> 2022-09-23T11:03:27,056 DEBUG [http-nio-7070-exec-39]
> security.LdapAuthenticationProvider : Authenticated userName: joycwang
> 22022-09-23T11:03:27,056 DEBUG [http-nio-7070-exec-39]
> interceptor.ProjectInfoParser : Parsed project FinancialCube from request
> /kylin/api/query/tables_and_columns
> 32022-09-23T11:03:27,057 INFO [FinancialCube] [http-nio-7070-exec-102]
> service.LdapUserGroupService : Get all groups size: 3
> 42022-09-23T11:03:27,059 DEBUG [FinancialCube] [http-nio-7070-exec-39]
> security.KylinAclPermissionEvaluator : Checking permission 'ADMINISTRATION'
> for object 'org.springframework.security.acls.domain.ObjectIdentityImpl[Type:
> org.apache.kylin.metadata.project.ProjectInstance; Identifier:
> fd51850e-a3e7-8693-ca50-8c1877b4810a]'
> 52022-09-23T11:03:27,059 DEBUG [FinancialCube] [http-nio-7070-exec-39]
> security.KylinAclPermissionEvaluator : Returning false - no ACLs apply for
> this principal
> 62022-09-23T11:03:27,059 DEBUG [FinancialCube] [http-nio-7070-exec-39]
> security.KylinAclPermissionEvaluator : Checking permission 'MANAGEMENT' for
> object 'org.springframework.security.acls.domain.ObjectIdentityImpl[Type:
> org.apache.kylin.metadata.project.ProjectInstance; Identifier:
> fd51850e-a3e7-8693-ca50-8c1877b4810a]'
> 72022-09-23T11:03:27,060 DEBUG [FinancialCube] [http-nio-7070-exec-39]
> security.KylinAclPermissionEvaluator : Returning false - no ACLs apply for
> this principal
> 82022-09-23T11:03:27,060 DEBUG [FinancialCube] [http-nio-7070-exec-39]
> security.KylinAclPermissionEvaluator : Checking permission 'OPERATION' for
> object 'org.springframework.security.acls.domain.ObjectIdentityImpl[Type:
> org.apache.kylin.metadata.project.ProjectInstance; Identifier:
> fd51850e-a3e7-8693-ca50-8c1877b4810a]'
> 92022-09-23T11:03:27,060 DEBUG [FinancialCube] [http-nio-7070-exec-39]
> security.KylinAclPermissionEvaluator : Returning false - no ACLs apply for
> this principal
> 102022-09-23T11:03:27,060 DEBUG [FinancialCube] [http-nio-7070-exec-39]
> security.KylinAclPermissionEvaluator : Checking permission 'READ' for object
> 'org.springframework.security.acls.domain.ObjectIdentityImpl[Type:
> org.apache.kylin.metadata.project.ProjectInstance; Identifier:
> fd51850e-a3e7-8693-ca50-8c1877b4810a]'
> 112022-09-23T11:03:27,060 DEBUG [FinancialCube] [http-nio-7070-exec-39]
> security.KylinAclPermissionEvaluator : Returning false - no ACLs apply for
> this principal
> 12...
> 132022-09-23T11:03:27,060 ERROR [FinancialCube] [http-nio-7070-exec-39]
> controller.NQueryController :
> 14org.springframework.security.access.AccessDeniedException: Access is denied
> 15 at
> org.springframework.security.access.vote.AffirmativeBased.decide(AffirmativeBased.java:73)
> ~[spring-security-core-5.6.5.jar:5.6.5]
> 16 at
> org.springframework.security.access.intercept.AbstractSecurityInterceptor.attemptAuthorization(AbstractSecurityInterceptor.java:239)
> {code}
> The above exception occurred during the permission verification
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
