Re: [uportal-dev] uPortal 3.0 and ldap authentication

2008-05-09 Thread Jen Bourey 
OK, I finally managed to set up a up2.6 install against the same LDAP
source, and it worked fine.  There do seem to be a new properties in up3's
ldap connection.  Also, the URL seems to be of the form ldap:port/basePath,
rather than ldap:port.

New props:

java.naming.ldap.version=3,
org.springframework.ldap.base.path=cn=Users, dc=unicon, dc=net,
java.naming.factory.object=org.springframework.ldap.core.support.DefaultDirObjectFactory


- Jen



On Tue, May 6, 2008 at 10:49 AM, Jen Bourey <[EMAIL PROTECTED]>
wrote:

> Unfortunately, no, I don't have a uPortal 2 configuration.
>
> Thanks for the documentation on the caching contexts!  That all makes
> sense.
>
> - Jen
>
>
>
> On Tue, May 6, 2008 at 10:42 AM, Eric Dalquist <
> [EMAIL PROTECTED]> wrote:
>
>>  Hrm,
>>
>> Some good questions, I did a little testing with LDAP but I don't have
>> much in the way of services to test against. Do you have a functional
>> uPortal 2 ldap config we could look at to try and figure out where the
>> problem is?
>>
>> As for why those classes are gone,
>> http://ja-sig.org/wiki/display/UPC/uPortal+3+API+Changes documents them
>> as they should be used via chaining with the CacheSecurityContext.
>>
>> -Eric
>>
>> Jen Bourey wrote:
>>
>> Hi all,
>>
>> I've been having some trouble getting LDAP authentication to an Active
>> Directory server working in uPortal 3.0.  I've been able to configure the
>> packaged CAS instance to successfully authenticate against the AD server
>> using LDAP with simple authentication, and I can also get uPortal to grab
>> person directory information from this AD server.  I was hoping that since
>> I'd already done the configuration in ldapContext.xml to allow the person
>> directory lookup to happen, all I'd need to do to enable portal
>> authentication to the AD server would be to add the following line to
>> security.properties:
>>
>>
>> root.ldap=org.jasig.portal.security.provider.SimpleLdapSecurityContextFactory
>>
>> Currently, this leads to the following stack trace in the portal log:
>>
>> ERROR [TP-Processor23] provider.SimpleLdapSecurityContext.[] May/06
>> 06:34:18 - SimpleLdapSecurityContext: LDAP Error with user: myusername;
>> javax.naming.NameNotFoundException: [LDAP: error code 32 - 208D:
>> NameErr: DSID-031001BD, problem 2001 (NO_OBJECT), data 0, best match of
>> :
>> 'CN=Users,DC=unicon,DC=net'
>> [EMAIL PROTECTED]; remaining name 'cn=Users, dc=unicon, dc=net'
>> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3010)
>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2931)
>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2737)
>> at com.sun.jndi.ldap.LdapCtx.searchAux(LdapCtx.java:1808)
>> at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1731)
>> at
>> com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirContext.java:368)
>> at
>> com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:338)
>> at
>> com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:321)
>> at
>> javax.naming.directory.InitialDirContext.search(InitialDirContext.java:248)
>> at
>> org.jasig.portal.security.provider.SimpleLdapSecurityContext.authenticate(SimpleLdapSecurityContext.java:133)
>> at
>> org.jasig.portal.security.provider.ChainingSecurityContext.authenticate(ChainingSecurityContext.java:87)
>> at
>> org.jasig.portal.security.provider.UnionSecurityContext.authenticate(UnionSecurityContext.java:33)
>> at
>> org.jasig.portal.services.Authentication.authenticate(Authentication.java:83)
>> at org.jasig.portal.LoginServlet.service(LoginServlet.java:140)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188)
>> at
>> edu.yale.its.tp.cas.client.filter.StaticCasReceiptCacherFilter.doFilter(StaticCasReceiptCacherFilter.java:67)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:215)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188)
>> at
>> edu.yale.its.tp.cas.client.filter.CASValidateFilter.doFilter(CASValidateFilter.java:337)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:215)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188)
>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:210)
>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:174)
>> at
>> org.apache.catalina.core.StandardHostValve.inv

Re: [uportal-dev] proposing Anthony Colebourne as a portlet project committer

2008-05-09 Thread Anthony Colebourne 
Thank you everybody for your vote of confidence  :-)

-- Anthony.

Jen Bourey wrote:
> Hi all,
> 
> I'd like to propose making Anthony Colebourne a committer for the
> portlet projects.  He's written some excellent adapters for Oracle
> Calendar and Blackboard Vista for the calendar portlet project.  He's
> also had some great input and fixes for the core calendar portlet code. 
> I'd love for him to be able to continue to easily contribute code, as
> well as keep his contributed code up to date.
> 
> I'm CC'ing the uportal dev list, since I believe at the current moment
> the portlet and uportal subversion spaces share a committer list.
> 
> - Jen
> 
> -- 
> 
> You are currently subscribed to uportal-dev@lists.ja-sig.org as: [EMAIL 
> PROTECTED]
> To unsubscribe, change settings or access archives, see 
> http://www.ja-sig.org/wiki/display/JSG/uportal-dev

-- 
You are currently subscribed to uportal-dev@lists.ja-sig.org as: [EMAIL 
PROTECTED]
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/uportal-dev