Re: [xwiki-users] LDAP users authentication
Hi Sergiu, The link that is displayed is : http://IPaddr:8080/xwiki/bin/login/XWiki/XWikiLogin?srid=leMZxkWI I try to give you all information : My virtual Wiki has a space called PVCS. There is special rights handeling in it : - In the users tab, i changed nothing - In the groups tab, i gave the green check to all functions for a group called PVCSAdmin, i changed nothing for the XWikiAdminGroup and for XWikiAllGroup i gave the access (green check) to View and Comment only (other function have the red stop sign) If i go to the WebHome page of the space without login, it opens the previous given link. Once logged, i can see my page. FYI, the link to the virtual wiki login page is : http://IPaddr:8080/xwiki/wiki/technicalwiki/login/XWiki/XWikiLogin?xredirect=http%3A%2F%2FIPaddr%3A8080%2Fxwiki%2Fwiki%2Ftechnicalwiki%2Fview%2FMain%2F Hope it helps -Message d'origine- De : users-boun...@xwiki.org [mailto:users-boun...@xwiki.org] De la part de Sergiu Dumitriu Envoyé : lundi 27 avril 2009 17:06 À : XWiki Users Objet : Re: [xwiki-users] LDAP users authentication PERINAUD Christophe wrote: Hi, No, there's no reason for this. A possible explanation: - The link followed was somehow wrong, pointing to a non-existing wiki. Given to another user (that has already connect in), the link works I'm not saying that the link is wrong, but that it got wrong somewhere in the process: bad copy/paste in the mail, bad copy/paste in the browser, etc. - This normally redirects to the main wiki to a page explaining that this wiki does not exist. The wiki exists. After login the message is that the user has no right to view the page Can you tell me what was the name of the page that was displayed to the user? The one from the main wiki. - The administration menu could only appear if the rights on your main wiki are wrongly set. I'd advise you revise your rights, since this is a potential security issue. But in this case why after deleting local profile on the main wiki and asking the user to connect on the virtual wiki, everything goes fine (able to see and no admin rights) ? I did not change rights before deleting. This is normal behavior. Connecting to a local wiki is just that, connecting to a local wiki, there's no relation to the main wiki and its rights. The fact that the first time the user ended up on the main wiki is an exceptional case, which must be investigated. Ignore the normal behavior, it is working fine. Debug the main wiki rights issue. I checked the rights space and the rights page and there is no restriction. On the main wiki, only unregistered users have restriction (no edition) There's no reason why visiting a local wiki should redirect to the global one, except the one that I stated above. Try logging in on the main wiki, to see what's happening. Try using that user's account on both the global and local wiki. -- Sergiu Dumitriu http://purl.org/net/sergiu/ ___ users mailing list users@xwiki.org http://lists.xwiki.org/mailman/listinfo/users This e-mail is intended only for the addressee named above. It does not bind the sender, except in the case of an existing written convention with the addressee. This e-mail may contain material that is confidential and privileged for the sole use of the intended recipient. Any review, reliance or distribution by others or forwarding without express permission is strictly prohibited and may be unlawful. If you are not the intended recipient, please contact the sender and delete all copies. While reasonable precautions have been taken to ensure that this e-mail and any attachments are free from any computer virus or similar defect, no liability will be accepted in that respect. Anyone accessing this e-mail must take their own precautions as to security and virus protection. KBL European Private Bankers S.A., 43 boulevard Royal L-2955 Luxembourg, R.C.S. Luxembourg B 6395, T (352) 47 97 1 ___ users mailing list users@xwiki.org http://lists.xwiki.org/mailman/listinfo/users
[xwiki-users] LDAP users authentication
Hello, I have a strange thing in my wiki farm. I sent to a user (that never used any wiki) a link to a page in one of my virtual wikis. The first thing he is able to see is a login window on the main wiki (even if there is no access restriction on the page) After log in the system he comes back on the page with a message saying he has no right to access the page but the administrate menu is available (and he is not one of the administrators). In the local users of the virtual wiki i am not able to see him. In the global i can (i guess that's ok as he logged in the main wiki) I went on the main wiki, i deleted his local profile and asked him to go on the main page of the virtual wiki and click on the login link (of the virtual wiki). He is now able to see the page discussed previously and no more administrate menu is displayed (everything is fine) Is there any restriction about the method users have to connect and identify them the first time ? Christophe Périnaud Windows Server 2003 SP2 in a VMWare instance Oracle 10g Java 1.6.0_12 Xwiki 1.8 from the pack Jetty/HSQL This e-mail is intended only for the addressee named above. It does not bind the sender, except in the case of an existing written convention with the addressee. This e-mail may contain material that is confidential and privileged for the sole use of the intended recipient. Any review, reliance or distribution by others or forwarding without express permission is strictly prohibited and may be unlawful. If you are not the intended recipient, please contact the sender and delete all copies. While reasonable precautions have been taken to ensure that this e-mail and any attachments are free from any computer virus or similar defect, no liability will be accepted in that respect. Anyone accessing this e-mail must take their own precautions as to security and virus protection. KBL European Private Bankers S.A., 43 boulevard Royal L-2955 Luxembourg, R.C.S. Luxembourg B 6395, T (352) 47 97 1 ___ users mailing list users@xwiki.org http://lists.xwiki.org/mailman/listinfo/users
Re: [xwiki-users] LDAP users authentication
PERINAUD Christophe wrote: Hello, I have a strange thing in my wiki farm. I sent to a user (that never used any wiki) a link to a page in one of my virtual wikis. The first thing he is able to see is a login window on the main wiki (even if there is no access restriction on the page) After log in the system he comes back on the page with a message saying he has no right to access the page but the administrate menu is available (and he is not one of the administrators). In the local users of the virtual wiki i am not able to see him. In the global i can (i guess that's ok as he logged in the main wiki) I went on the main wiki, i deleted his local profile and asked him to go on the main page of the virtual wiki and click on the login link (of the virtual wiki). He is now able to see the page discussed previously and no more administrate menu is displayed (everything is fine) Is there any restriction about the method users have to connect and identify them the first time ? No, there's no reason for this. A possible explanation: - The link followed was somehow wrong, pointing to a non-existing wiki. - This normally redirects to the main wiki to a page explaining that this wiki does not exist. - The administration menu could only appear if the rights on your main wiki are wrongly set. I'd advise you revise your rights, since this is a potential security issue. -- Sergiu Dumitriu http://purl.org/net/sergiu/ ___ users mailing list users@xwiki.org http://lists.xwiki.org/mailman/listinfo/users
Re: [xwiki-users] LDAP users authentication
Hi, No, there's no reason for this. A possible explanation: - The link followed was somehow wrong, pointing to a non-existing wiki. Given to another user (that has already connect in), the link works - This normally redirects to the main wiki to a page explaining that this wiki does not exist. The wiki exists. After login the message is that the user has no right to view the page - The administration menu could only appear if the rights on your main wiki are wrongly set. I'd advise you revise your rights, since this is a potential security issue. But in this case why after deleting local profile on the main wiki and asking the user to connect on the virtual wiki, everything goes fine (able to see and no admin rights) ? I did not change rights before deleting. I checked the rights space and the rights page and there is no restriction. On the main wiki, only unregistered users have restriction (no edition) This e-mail is intended only for the addressee named above. It does not bind the sender, except in the case of an existing written convention with the addressee. This e-mail may contain material that is confidential and privileged for the sole use of the intended recipient. Any review, reliance or distribution by others or forwarding without express permission is strictly prohibited and may be unlawful. If you are not the intended recipient, please contact the sender and delete all copies. While reasonable precautions have been taken to ensure that this e-mail and any attachments are free from any computer virus or similar defect, no liability will be accepted in that respect. Anyone accessing this e-mail must take their own precautions as to security and virus protection. KBL European Private Bankers S.A., 43 boulevard Royal L-2955 Luxembourg, R.C.S. Luxembourg B 6395, T (352) 47 97 1 ___ users mailing list users@xwiki.org http://lists.xwiki.org/mailman/listinfo/users
Re: [xwiki-users] LDAP users authentication
PERINAUD Christophe wrote: Hi, No, there's no reason for this. A possible explanation: - The link followed was somehow wrong, pointing to a non-existing wiki. Given to another user (that has already connect in), the link works I'm not saying that the link is wrong, but that it got wrong somewhere in the process: bad copy/paste in the mail, bad copy/paste in the browser, etc. - This normally redirects to the main wiki to a page explaining that this wiki does not exist. The wiki exists. After login the message is that the user has no right to view the page Can you tell me what was the name of the page that was displayed to the user? The one from the main wiki. - The administration menu could only appear if the rights on your main wiki are wrongly set. I'd advise you revise your rights, since this is a potential security issue. But in this case why after deleting local profile on the main wiki and asking the user to connect on the virtual wiki, everything goes fine (able to see and no admin rights) ? I did not change rights before deleting. This is normal behavior. Connecting to a local wiki is just that, connecting to a local wiki, there's no relation to the main wiki and its rights. The fact that the first time the user ended up on the main wiki is an exceptional case, which must be investigated. Ignore the normal behavior, it is working fine. Debug the main wiki rights issue. I checked the rights space and the rights page and there is no restriction. On the main wiki, only unregistered users have restriction (no edition) There's no reason why visiting a local wiki should redirect to the global one, except the one that I stated above. Try logging in on the main wiki, to see what's happening. Try using that user's account on both the global and local wiki. -- Sergiu Dumitriu http://purl.org/net/sergiu/ ___ users mailing list users@xwiki.org http://lists.xwiki.org/mailman/listinfo/users
