Craige McWhirter <mailto:[email protected]>
August 25, 2016 at 7:36 PM
...and I discover that my "From:" is being re-written outbound. I use the
address [email protected] for OpenStackID.
--
Craige McWhirter
M: +61 4685 91819
W: https://mcwhirter.com.au/
GNUSocial: https://social.mcwhirter.io/craige
_______________________________________________
OpenStack-Infra mailing list
[email protected]
http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-infra
Craige McWhirter <mailto:[email protected]>
August 25, 2016 at 7:29 PM
On Thu, Aug 25, 2016 at 08:43:25AM -0300, Sebastian Marcet wrote:
Craige
all i see on production environment
is this exception
[2016-08-25 06:00:52] dev.WARNING: * CheckPointService - exception :<<
Authentication Exception : member craige mcwhirter com au does not exists!
>> - IP Address: 101.162.51.242 [] []
i verified db and its true your user does not exists
are you trying to get log with that user?
No, I'm using the address this email is from. I did use that one initially as
it was the address I once used. I have since been using this address.
lets try to test with production env for now ....
also lets try a minimal config for the mod_auth_openid
<Location />
AuthType OpenID
require valid-user
AuthOpenIDSingleIdP [1]https://openstackid.org/
</Location>
Switched back to this original configuration. Unfortunately, no love.
also which is the flow that are u seeing ( in the case that you are using
a valid user )
should be somehting like that:
you got redirect to [2]https://openstackid.org/accounts/user/login
I get to this OK. I enter my valid, current credentials but do not reach the
next stage in your work flow. Phabricator reports "There has been an error
while attempting to authenticate." and prompts me to choose another provider.
enter your credentials, and if they are valid
then you should get this url
[3]https://openstackid.org/accounts/user/consent
and after your consent you should be redirected to you origin domain
in case that you dont have any valid account on production site
please create one here
[4]https://www.openstack.org/join/register
let me know
I'm currently trying to work out what Phabricator thinks the actual problem is.
If you have any clues from the OpenStackID side, they'd be greatly appreciated.
--
Craige McWhirter
M: +61 4685 91819
W: https://mcwhirter.com.au/
GNUSocial: https://social.mcwhirter.io/craige
Sebastian Marcet <mailto:[email protected]>
August 25, 2016 at 6:43 AM
Craige
all i see on production environment
is this exception
[2016-08-25 06:00:52] dev.WARNING: * CheckPointService - exception :
<< Authentication Exception : member craige mcwhirter com au does not
exists! >> - IP Address: 101.162.51.242 [] []
i verified db and its true your user does not exists
are you trying to get log with that user?
lets try to test with production env for now ....
also lets try a minimal config for the mod_auth_openid
<Location />
AuthType OpenID
require valid-user
AuthOpenIDSingleIdP https://openstackid.org/
</Location>
also which is the flow that are u seeing ( in the case that you are
using a valid user )
should be somehting like that:
you got redirect to https://openstackid.org/accounts/user/login
enter your credentials, and if they are valid
then you should get this url
https://openstackid.org/accounts/user/consent
and after your consent you should be redirected to you origin domain
in case that you dont have any valid account on production site
please create one here
https://www.openstack.org/join/register
let me know
regards
Sebastian
Craige McWhirter <mailto:[email protected]>
August 25, 2016 at 1:44 AM
I switched to using a hostname with a valid TLD and I can now get to both
OpenStackID and -dev, so yay, much progress there.
However that's where it comes to halt.
I do not have an account on OpenStackID-dev and all links to create
one / reset
password take me to OpenStackID.
My attempt to login via OpenStackID returns:
"There has been an error while attempting to authenticate."
I'm currently using a config that is, apart form the URLs, precisely
what you
recommended.
Anything interesting in the logs on your end?
Thanks again Sebastian!
--
Craige McWhirter
M: +61 4685 91819
W: https://mcwhirter.com.au/
GNUSocial: https://social.mcwhirter.io/craige
Sebastian Marcet <mailto:[email protected]>
August 24, 2016 at 6:56 PM
Craige
there u have the problem
*ServerName 192.168.99.10 *
you are not using a valid TLD domain, we are validating that
(https://www.icann.org/resources/pages/tlds-2012-02-25-en)
change it to something liken test.domain.com <http://test.domain.com>
or something like that
u need to specify some valid TLD for your server name
( its a security measure that we have in place , on dev and
production, change and let me know how its goes)
regards
