Bug 961531 - LDAP auth configuration is not working with latest code
LDAP auth configuration is not working with latest code
Status: CLOSED NOTABUG
Product: Red Hat Satellite 6
Classification: Red Hat
Component: Content Management (Show other bugs)
Nightly
Unspecified Unspecified
unspecified Severity high (vote)
: Unspecified
: --
Assigned To: Katello Bug Bin
Katello QA List
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2013-05-09 16:26 EDT by Og Maciel
Modified: 2013-05-10 13:30 EDT (History)
1 user (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2013-05-10 13:30:45 EDT
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Og Maciel 2013-05-09 16:26:44 EDT
Description of problem:

Configuring katello to use free ipa for authentication via katello-configure as per https://fedorahosted.org/katello/wiki/LDAP I noticed that I was not able to authenticate using both UI and CLI

Version-Release number of selected component (if applicable):
* openldap-2.4.23-26.el6.x86_64
* python-ldap-2.3.10-1.el6.x86_64
* apr-util-ldap-1.3.9-3.el6_0.1.x86_64
* ruby193-rubygem-net-ldap-0.2.2-6.el6.noarch
* ruby193-rubygem-ldap_fluff-0.1.3-4.el6.noarch
* candlepin-0.8.6-1.el6.noarch
* candlepin-selinux-0.8.6-1.el6.noarch
* candlepin-tomcat6-0.8.6-1.el6.noarch
* elasticsearch-0.19.9-7.el6.noarch
* katello-1.4.2-1.git.222.82e7958.el6.noarch
* katello-all-1.4.2-1.git.222.82e7958.el6.noarch
* katello-certs-tools-1.4.2-1.el6.noarch
* katello-cli-1.4.2-1.git.39.6fb67c1.el6.noarch
* katello-cli-common-1.4.2-1.git.39.6fb67c1.el6.noarch
* katello-common-1.4.2-1.git.222.82e7958.el6.noarch
* katello-configure-1.4.3-1.el6.noarch
* katello-glue-candlepin-1.4.2-1.git.222.82e7958.el6.noarch
* katello-glue-elasticsearch-1.4.2-1.git.222.82e7958.el6.noarch
* katello-glue-pulp-1.4.2-1.git.222.82e7958.el6.noarch
* Katello-Katello-Installation-RegisterRHNClassic-1.1-3.noarch
* Katello-Katello-Sanity-ImportKeys-1.2-1.noarch
* katello-repos-1.4.2-1.el6.noarch
* katello-selinux-1.4.3-1.git.3.ce8227b.el6.noarch
* pulp-rpm-plugins-2.1.1-0.10.beta.el6.noarch
* pulp-selinux-2.1.1-0.10.beta.el6.noarch
* pulp-server-2.1.1-0.10.beta.el6.noarch

How reproducible:


Steps to Reproduce:
1. Configure katello to use free ipa as per documentation using katello-configure plus arguments
2. Try to login in to the web ui or cli using a valid ldap user
3.
  
Actual results:

  # katello -u admin -p *** org list
  Invalid credentials

Expected results:


Additional info:

# cd /usr/share/katello/
# scl enable ruby193 'rails console'
/opt/rh/ruby193/root/usr/share/rubygems/rubygems/custom_require.rb:36:in `require': iconv will be deprecated in the future, use String#encode instead.
WARNING: Nokogiri was built against LibXML version 2.9.0, but has dynamically loaded 2.7.6
/opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/source.rb:574:in `rescue in load_spec_files': git://github.com/ruport/ruport.git (at master) is not checked out. Please run `bundle install` (Bundler::GitError)
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/source.rb:572:in `load_spec_files'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/source.rb:372:in `local_specs'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/source.rb:557:in `specs'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/definition.rb:430:in `block in converge_locked_specs'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/definition.rb:419:in `each'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/definition.rb:419:in `converge_locked_specs'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/definition.rb:180:in `resolve'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/definition.rb:127:in `specs'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/definition.rb:172:in `specs_for'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler/runtime.rb:11:in `setup'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler.rb:114:in `setup'
	from /opt/rh/ruby193/root/usr/share/gems/gems/bundler-1.1.4/lib/bundler.rb:119:in `require'
	from /usr/share/katello/config/environments/development.rb:34:in `block in <top (required)>'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/railtie/configurable.rb:24:in `class_eval'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/railtie/configurable.rb:24:in `configure'
	from /usr/share/katello/config/environments/development.rb:1:in `<top (required)>'
	from /opt/rh/ruby193/root/usr/share/rubygems/rubygems/custom_require.rb:36:in `require'
	from /opt/rh/ruby193/root/usr/share/rubygems/rubygems/custom_require.rb:36:in `require'
	from /opt/rh/ruby193/root/usr/share/gems/gems/activesupport-3.2.8/lib/active_support/dependencies.rb:251:in `block in require'
	from /opt/rh/ruby193/root/usr/share/gems/gems/activesupport-3.2.8/lib/active_support/dependencies.rb:236:in `load_dependency'
	from /opt/rh/ruby193/root/usr/share/gems/gems/activesupport-3.2.8/lib/active_support/dependencies.rb:251:in `require'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/engine.rb:571:in `block in <class:Engine>'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/initializable.rb:30:in `instance_exec'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/initializable.rb:30:in `run'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/initializable.rb:55:in `block in run_initializers'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/initializable.rb:54:in `each'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/initializable.rb:54:in `run_initializers'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/application.rb:136:in `initialize!'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/railtie/configurable.rb:30:in `method_missing'
	from /usr/share/katello/config/environment.rb:5:in `<top (required)>'
	from /opt/rh/ruby193/root/usr/share/rubygems/rubygems/custom_require.rb:36:in `require'
	from /opt/rh/ruby193/root/usr/share/rubygems/rubygems/custom_require.rb:36:in `require'
	from /opt/rh/ruby193/root/usr/share/gems/gems/activesupport-3.2.8/lib/active_support/dependencies.rb:251:in `block in require'
	from /opt/rh/ruby193/root/usr/share/gems/gems/activesupport-3.2.8/lib/active_support/dependencies.rb:236:in `load_dependency'
	from /opt/rh/ruby193/root/usr/share/gems/gems/activesupport-3.2.8/lib/active_support/dependencies.rb:251:in `require'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/application.rb:103:in `require_environment!'
	from /opt/rh/ruby193/root/usr/share/gems/gems/railties-3.2.8/lib/rails/commands.rb:40:in `<top (required)>'
	from /opt/rh/ruby193/root/usr/share/rubygems/rubygems/custom_require.rb:36:in `require'
	from /opt/rh/ruby193/root/usr/share/rubygems/rubygems/custom_require.rb:36:in `require'
	from script/rails:50:in `<main>'



also

[ERROR 2013-05-09 15:34:56 pulp_rest  #9986] RestClient.post "https://SERVER/pulp/api/v2/users/", "{\"login\":\"admin\",\"name\":\"admin\",\"password\":\"aWenOTyS7PfZqrw2\"}", "Accept"=>"application/json", "Accept-Encoding"=>"gzip, deflate", "Authorization"=>"OAuth oauth_body_hash=\"2jmj7l5rSw0yVb%2FvlWAYkK%2FYBwk%3D\", oauth_consumer_key=\"katello\", oauth_nonce=\"97joqiYkVqymq5m2yKRyyiTV8rvJxgumFfKDkgLo\", oauth_signature=\"76Pym2YdP437WezKDrY9%2FedWRsk%3D\", oauth_signature_method=\"HMAC-SHA1\", oauth_timestamp=\"1368128096\", oauth_version=\"1.0\"", "Content-Length"=>"62", "Content-Type"=>"application/json", "pulp-user"=>"admin"
 | \n# => 409 Conflict | application/json 191 bytes
 |
[ WARN 2013-05-09 15:56:14 app de5b676734340c3bc7f724d45cf861eb #11251] Request is unauthenticated_api for ::1
[ WARN 2013-05-09 15:57:04 app  #11276] Request is unauthenticated_api for ::1
[ WARN 2013-05-09 16:18:09 app  #11299] Request is unauthenticated_api for ::1
[ WARN 2013-05-09 16:18:19 app  #11322] Request is unauthenticated_api for ::1
[ WARN 2013-05-09 16:23:38 app  #11345] Request is unauthenticated_api for ::1
Comment 2 Og Maciel 2013-05-09 16:55:44 EDT
/usr/share/katello/Gemfile.in:

gem 'ldap_fluff', '>= 0.1.7'


0.1.3 is installed though :/
Comment 3 Og Maciel 2013-05-10 13:30:45 EDT
After a lot of investigation seems that this was a DNS issue form my end.

* apr-util-ldap-1.3.9-3.el6_0.1.x86_64
* candlepin-0.8.6-1.el6.noarch
* candlepin-selinux-0.8.6-1.el6.noarch
* candlepin-tomcat6-0.8.6-1.el6.noarch
* elasticsearch-0.19.9-7.el6.noarch
* katello-1.4.2-1.git.296.fb52d4c.el6.noarch
* katello-all-1.4.2-1.git.296.fb52d4c.el6.noarch
* katello-candlepin-cert-key-pair-1.0-1.noarch
* katello-certs-tools-1.4.2-1.el6.noarch
* katello-cli-1.4.2-1.git.43.81cff0b.el6.noarch
* katello-cli-common-1.4.2-1.git.43.81cff0b.el6.noarch
* katello-common-1.4.2-1.git.296.fb52d4c.el6.noarch
* katello-configure-1.4.3-1.git.10.7818db8.el6.noarch
* katello-glue-candlepin-1.4.2-1.git.296.fb52d4c.el6.noarch
* katello-glue-elasticsearch-1.4.2-1.git.296.fb52d4c.el6.noarch
* katello-glue-pulp-1.4.2-1.git.296.fb52d4c.el6.noarch
* Katello-Katello-Installation-RegisterRHNClassic-1.1-3.noarch
* Katello-Katello-Sanity-ImportKeys-1.2-1.noarch
* katello-qpid-broker-key-pair-1.0-1.noarch
* katello-qpid-client-key-pair-1.0-1.noarch
* katello-repos-1.4.2-1.el6.noarch
* katello-selinux-1.4.3-1.git.3.ce8227b.el6.noarch
* openldap-2.4.23-31.el6.x86_64
* openldap-devel-2.4.23-31.el6.x86_64
* pulp-rpm-plugins-2.1.1-0.10.beta.el6.noarch
* pulp-selinux-2.1.1-0.10.beta.el6.noarch
* pulp-server-2.1.1-0.10.beta.el6.noarch
* python-ldap-2.3.10-1.el6.x86_64
* ruby193-rubygem-ldap_fluff-0.1.3-4.el6.noarch
* ruby193-rubygem-net-ldap-0.2.2-6.el6.noarch

Note You need to log in before you can comment on or make changes to this bug.