Re: [xwiki-users] Solved: Problem Global User in Subwiki

2016-09-18 Thread Tobias Kirchhofer 
It turned out that if you have global user via LDAP ldap, support in
sub-wikis has to be set off.

This can be achieved by opening this link and editing the ldap object:

https://DOMAIN/xwiki/wiki/SUBWIKI/edit/XWiki/XWikiPreferences?editor=object

Set "ldap" to "no".

This is a bit obscure from our point of view. Maybe someone has a reason?

Now the expected behaviour is there. Global user can log in to each sub-wiki
as a global user. It does nt matter if local user for sub-wiki is activated.



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Solved-Problem-Global-User-in-Subwiki-tp7601243p7601252.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Problem Global User in Subwiki

2016-09-17 Thread Tobias Kirchhofer 
The installation is fresh. No user in the subwiki.

I suspect login at the subwiki cannot authenticate to the Home wiki (global
ldap user) and so it fails locally because only global user are allowed. If
i switch to "allow global and local user" in the subwiki then a local user
is created (!) when i try to login.

?



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Problem-Global-User-in-Subwiki-tp7601243p7601247.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

[xwiki-users] Problem Global User in Subwiki

2016-09-16 Thread Tobias Kirchhofer 
We experience a strange behaviour with version 8.2.1 which was not there with
Version 7.4.2:

- Subwiki (allows only global user)
- Login at Home-Wiki
- Navigate to Subwiki
- Logout at Subwiki
- Login at Subwiki

Error message: You are not allowed ...

- Logout
- Login at Home Wiki
- Works

Changing "allow local user and global user" in subwiki does not change
anything expect that a local user is created. The local user can login
(correct permissions provided).

Same configuration in 7.4.2 works as expected.

How can we achieve global user login to subwikis?




--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Problem-Global-User-in-Subwiki-tp7601243.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Login cookie validation hash mismatch! Cookies have been tampered with

2016-04-09 Thread Tobias Kirchhofer 
Solved the issue with this:

The LDAP object of XWiki.XWikiPreferences must be manually switched off with
the hidden flag which is available here:

https://wiki.fra.shift.agency/xwiki/wiki/SUBWIKI/edit/XWiki/XWikiPreferences?editor=object




--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Login-cookie-validation-hash-mismatch-Cookies-have-been-tampered-with-tp7598282p7598898.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Login cookie validation hash mismatch! Cookies have been tampered with

2016-03-10 Thread Tobias Kirchhofer 
We are talking about an internal network with defined status. XWiki worked
for month for us - but now the user have this problem. Is there something in
the database about the sessions which probably went wrong? 



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Login-cookie-validation-hash-mismatch-Cookies-have-been-tampered-with-tp7598282p7598406.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Login cookie validation hash mismatch! Cookies have been tampered with

2016-03-09 Thread Tobias Kirchhofer 
Thanks - indeed we had our time securing tomcat, XWiki with nginx but it
worked finally. We investigated everything with Developer Tools - no
http-requests are observable.





--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Login-cookie-validation-hash-mismatch-Cookies-have-been-tampered-with-tp7598282p7598398.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Login cookie validation hash mismatch! Cookies have been tampered with

2016-03-09 Thread Tobias Kirchhofer 
Our XWiki is running as a Intranet in a LAN. Outside users need VPN access.

The IP-Address is not changing during a session.

We played around with xwiki.authentication.protection - no change.
xwiki.authentication.protection=none is no option because passwords in the
cookie are not encrypted anymore. Anyway we tried it with no success.

We changed xwiki.authentication.validationKey and
xwiki.authentication.encryptionKey hoping solving the issue. Deleting all
old cookies - no change.

A pity! 

 



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Login-cookie-validation-hash-mismatch-Cookies-have-been-tampered-with-tp7598282p7598397.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Login cookie validation hash mismatch! Cookies have been tampered with

2016-03-09 Thread Tobias Kirchhofer 
This is the message which appears after 30 minutes:

 

"You do not have permission to view the document or to perform that action."

The we have to actively logout and close the browser window. By opening a
new window and navigating to the wiki we can login again.

Our developers say this is most likely a bug in the application. How can we
debug this one?





--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Login-cookie-validation-hash-mismatch-Cookies-have-been-tampered-with-tp7598282p7598389.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Login cookie validation hash mismatch! Cookies have been tampered with

2016-03-07 Thread Tobias Kirchhofer 
Uh, feel a bit shy about my post and broach the subject again - is there
anyone who could give us a hint where to search? Increasing the session
limit to a longer period just delays the effect. Our user would be delighted
... :)



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Login-cookie-validation-hash-mismatch-Cookies-have-been-tampered-with-tp7598282p7598358.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

[xwiki-users] Login cookie validation hash mismatch! Cookies have been tampered with

2016-03-03 Thread Tobias Kirchhofer 
We set up a new Box with a fresh install of a 7.4.1 version. While
configuring and testing (permissions) everything all was perfect and clean.
Then we migrated the pages from the old wiki (also 7.4.1 - we wanted a fresh
install) - precisely only content pages, nothing else. Then we switched the
IP for the old domain and all of our LDAP user populated the new wiki, one
by one. 

Since the fresh start all users experience the trouble that after the end of
the tomcat session (30 minutes) a re-login is required. After re-login a
XWiki message appears "you do not have the appropriate rights" (or similar).
Deletion of the cookie ~or closing the browser window and login again
reestablishes normal functions until the tomcat session is over again.

catalina.out: 2016-03-03 11:55:26,813
[https://wiki.sub.domain/xwiki/bin/view/Main/] WARN 
u.i.x.MyPersistentLoginManager - Login cookie validation hash mismatch!
Cookies have been tampered with

Research in this forum did bring up discussions about the mess from 2010 and
bevor without any valuable pointers.

We updated to 7.4.2 without any change for the situation.

The site ist secure with a nginx proxy.

Any ideas?



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Login-cookie-validation-hash-mismatch-Cookies-have-been-tampered-with-tp7598282.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] [Solved] Moving Apps within a minute to another Xwiki-Installation

2016-03-03 Thread Tobias Kirchhofer 
This problem could be solved by editing the App in the new XWiki instance
until the end. Then it appeared again.



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Solved-Moving-Apps-within-a-minute-to-another-Xwiki-Installation-tp7598152p7598280.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

[xwiki-users] Moving Apps within a minute to another Xwiki-Installation

2016-02-28 Thread Tobias Kirchhofer 
We try to move two Apps Within A Minute to another xwiki installation. The
files import properly but no icon appears on the left site under
applications. How can we achieve that the Apps Within A Minute will appear
as a real application and not only as pages.

Thank you!  



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Moving-Apps-within-a-minute-to-another-Xwiki-Installation-tp7598152.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

[xwiki-users] CKEditor fails with Umlaute

2016-02-25 Thread Tobias Kirchhofer 
With version 1.2. CKEditor converts Umlaute (äöü) to their HTML equivalents
by saving the document.

 





--
View this message in context: 
http://xwiki.475771.n2.nabble.com/CKEditor-fails-with-Umlaute-tp7598132.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Errors in Catalina.log

2015-12-22 Thread Tobias Kirchhofer 
I am facing the same problem - did you solve it?



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Errors-in-Catalina-log-tp7596965p7597300.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Irritating problems with rights

2015-11-17 Thread Tobias Kirchhofer 
We came from 7.1.

Meanwhile we solved the issue by restoring the Main-Wiki database from
backup. We store our data in subwikis,  the main Wiki is just a welcome page
and holds the user (ldap). After restore from backup the permission system
worked like before also in subwikis. The rights settings here and there were
the same before and after.

Probably some weird side effect from migration.

We use XWiki as an Intranet - no free registration.

Tell me if we can support further with this issue.  



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/XWiki-7-3-Irritating-problems-with-rights-tp7596882p7596886.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Irritating problems with rights

2015-11-17 Thread Tobias Kirchhofer 
What i can provide is the status quo which is working

https://cargo.shift.agency/data/public/xwiki

We don't have an instance with a non working status, sorry.



--
View this message in context: 
http://xwiki.475771.n2.nabble.com/XWiki-7-3-Irritating-problems-with-rights-tp7596882p7596889.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Private Wiki vs Login Page

2015-06-12 Thread Tobias Kirchhofer 
Meanwhile we solved the issue:

- No view permissions for XWikiGuest on wiki level
- Edit startpage.vm:


#if ($xcontext.user != 'XWiki.XWikiGuest')
#if($displayMainMenu)
div id=menuview
#template(menus_view.vm)
/div
#end
#end

- Some more minor tweaks in login.vm

What is left are six errors in the browser debug window:

Failed to load resource: the server responded with a status of 401
(Unauthorized)
http://wiki.fra.shift.agency/xwiki/bin/login/XWiki/XWikiLogin?srid=N214sE8S…%2Fbin%2Fssx%2FAnnotationCode%2FSettings%3Flanguage%3Dde%26srid%3DN214sE8S
Failed to load resource: the server responded with a status of 401
(Unauthorized)
http://wiki.fra.shift.agency/xwiki/bin/login/XWiki/XWikiLogin?srid=4Y4kLi2D…i%2Fbin%2Fjsx%2FCKEditor%2FEditMenuEntry%3Flanguage%3Dde%26srid%3D4Y4kLi2D
Failed to load resource: the server responded with a status of 401
(Unauthorized)
http://wiki.fra.shift.agency/xwiki/bin/login/XWiki/XWikiLogin?srid=lMahZtTx…ki%2Fbin%2Fjsx%2FAnnotationCode%2FScript%3Flanguage%3Dde%26srid%3DlMahZtTx
Failed to load resource: the server responded with a status of 401
(Unauthorized)
http://wiki.fra.shift.agency/xwiki/bin/login/XWiki/XWikiLogin?srid=bQAoWhzJ…%2Fbin%2Fjsx%2FAnnotationCode%2FSettings%3Flanguage%3Dde%26srid%3DbQAoWhzJ
Failed to load resource: the server responded with a status of 401
(Unauthorized)
http://wiki.fra.shift.agency/xwiki/bin/login/XWiki/XWikiLogin?srid=OV83gKnm…iki%2Fbin%2Fssx%2FAnnotationCode%2FStyle%3Flanguage%3Dde%26srid%3DOV83gKnm
Failed to load resource: the server responded with a status of 401
(Unauthorized)
http://wiki.fra.shift.agency/xwiki/bin/login/XWiki/XWikiLogin?srid=N214sE8S…%2Fbin%2Fssx%2FAnnotationCode%2FSettings%3Flanguage%3Dde%26srid%3DN214sE8S
Failed to load resource: the server responded with a status of 401
(Unauthorized)

I think we have to write our one login page without ressources from inside
the wiki.

What do you think?

Thanks again for your very valuable support!

Tobias
 




--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Private-Wiki-vs-Login-Page-tp7595071p7595130.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

[xwiki-users] Private Wiki vs Login Page

2015-06-09 Thread Tobias Kirchhofer 
Hi together,

we try to achieve this scenario:

- Private Wiki as a collaborative Intranet
- Real restricted mode: only logged in user can see content

We black-checked wiki rights for non registered users. So far so good,
they don't see content unless they logged in as a valid user.

What is not working properly is the login page. Logo is broken, and a couple
of errors in browsers debug window: Failed to load resource: the server
responded with a status of 401 (Unauthorized)

Of course our unregistered user does not have the rights to access
ressources - so how can we achieve a proper clean and error free login page?

Do we miss a basic concept in xwiki? Extensive reserach does not bring any
satisfying strategies...

XWiki-Version 7.1-rc-1




--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Private-Wiki-vs-Login-Page-tp7595071.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] Private Wiki vs Login Page

2015-06-09 Thread Tobias Kirchhofer 

Vincent, thanks for the reply,

is it like adding this ominous XWikiGuest user and manage permissions 
for all spaces and pages?? Could you give me a deeper insight, a small 
howto?


 Tobias

On 9 Jun 2015, at 18:52, vinc...@massol.net wrote:


Hi Tobias,

On 9 Jun 2015 at 18:45:45, Tobias Kirchhofer 
(tob...@kirchhofer.net(mailto:tob...@kirchhofer.net)) wrote:



Hi together,

we try to achieve this scenario:

- Private Wiki as a collaborative Intranet
- Real restricted mode: only logged in user can see content

We black-checked wiki rights for non registered users. So far so 
good,

they don't see content unless they logged in as a valid user.

What is not working properly is the login page. Logo is broken, and a 
couple
of errors in browsers debug window: Failed to load resource: the 
server

responded with a status of 401 (Unauthorized)

Of course our unregistered user does not have the rights to access
ressources - so how can we achieve a proper clean and error free 
login page?


Do we miss a basic concept in xwiki? Extensive reserach does not 
bring any

satisfying strategies...

XWiki-Version 7.1-rc-1


Could this thread 
help: http://markmail.org/message/iqsw5cppmb3nxtqe ?


Thanks
-Vincent


--
Tobias Kirchhofer
tob...@kirchhofer.net

___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

[xwiki-users] Problem with https and Wysiwyg editor

2015-06-04 Thread Tobias Kirchhofer 
Hello, this is my first post - giving xwiki a try, looks impressive so far!

We configured nginx proxy to serve content via https. So far it works - but
the Wysiwyg editor is not showing up. Browser console:

Refused to display
'https://domain.tld/xwiki/resources/js/xwiki/wysiwyg/xwe/80DB5BBFEFE78302EDB4B91D4C0450C9.cache.html'
in a frame because it set 'X-Frame-Options' to 'DENY'.

xwiki.cfg should be fine:
xwiki.url.protocol=https

Any idea someone?





--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Problem-with-https-and-Wysiwyg-editor-tp7594979.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] [Solved] Re: Problem with https and Wysiwyg editor

2015-06-04 Thread Tobias Kirchhofer 
Fix:
add_header X-Frame-Options SAMEORIGIN;




--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Problem-with-https-and-Wysiwyg-editor-tp7594979p7594983.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

[xwiki-users] [Solved] Re: Problem with https and Wysiwyg editor

2015-06-04 Thread Tobias Kirchhofer 
Thanks vor listening - and sorry for posting a bit to early :) Solved it by
adjusting nginx - we used a secured config from another project with this
line: 

Fix:




--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Problem-with-https-and-Wysiwyg-editor-tp7594979p7594980.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users

Re: [xwiki-users] [Solved] Problem with https and Wysiwyg editor

2015-06-04 Thread Tobias Kirchhofer 
The Forum filters special tags out (raw) when sending direct emails  :)

On 4 Jun 2015, at 14:56, vmassol [via XWiki] wrote:

 line:  
   
 Fix:   
   

 hmmm… can’t see much ;) 

-- 
Tobias Kirchhofer
tob...@kirchhofer.net



signature.asc (548 bytes) 
http://xwiki.475771.n2.nabble.com/attachment/7594987/0/signature.asc




--
View this message in context: 
http://xwiki.475771.n2.nabble.com/Re-Solved-Problem-with-https-and-Wysiwyg-editor-tp7594987.html
Sent from the XWiki- Users mailing list archive at Nabble.com.
___
users mailing list
users@xwiki.org
http://lists.xwiki.org/mailman/listinfo/users