[GitHub] [druid] soumyajose0784 opened a new issue #9304: Coordinator fails in LDAPCredentialsValidator :must specify a trustStorePath

GitBox Mon, 03 Feb 2020 04:02:22 -0800

soumyajose0784 opened a new issue #9304: Coordinator fails in 
LDAPCredentialsValidator :must specify a trustStorePath
URL: https://github.com/apache/druid/issues/9304
 
 
   ### Affected Version
   
   Affected version is 0.17.0
   
   ### Description
   
   After enabling LDAP authentication, with SSL enabled LDAP 
url(ldaps://<hostname>:636),  coordinator fails with following error
   
   2020-02-03T11:59:34,295 ERROR [qtp744507749-175] 
org.apache.druid.security.basic.authentication.validator.LDAPCredentialsValidator
 - Exception during user lookup
   javax.naming.CommunicationException: <hostname>:636
           at com.sun.jndi.ldap.Connection.<init>(Connection.java:228) 
~[?:1.8.0_232]
           at com.sun.jndi.ldap.LdapClient.<init>(LdapClient.java:137) 
~[?:1.8.0_232]
           at com.sun.jndi.ldap.LdapClient.getInstance(LdapClient.java:1609) 
~[?:1.8.0_232]
           at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2749) 
~[?:1.8.0_232]
           at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:319) ~[?:1.8.0_232]
           at 
com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:192) 
~[?:1.8.0_232]
           at 
com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:210) 
~[?:1.8.0_232]
           at 
com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:153) 
~[?:1.8.0_232]
           at 
com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:83) 
~[?:1.8.0_232]
           at 
javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:684) 
~[?:1.8.0_232]
           at 
javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:313) 
~[?:1.8.0_232]
           at javax.naming.InitialContext.init(InitialContext.java:244) 
~[?:1.8.0_232]
           at javax.naming.InitialContext.<init>(InitialContext.java:216) 
~[?:1.8.0_232]
           at 
javax.naming.directory.InitialDirContext.<init>(InitialDirContext.java:101) 
~[?:1.8.0_232]
           at 
org.apache.druid.security.basic.authentication.validator.LDAPCredentialsValidator.validateCredentials(LDAPCredentialsValidator.java:143)
 [druid-basic-security-0.17.0.jar:0.17.0]
           at 
org.apache.druid.security.basic.authentication.BasicHTTPAuthenticator$BasicHTTPAuthenticationFilter.doFilter(BasicHTTPAuthenticator.java:201)
 [druid-basic-security-0.17.0.jar:0.17.0]
           at 
org.apache.druid.server.security.AuthenticationWrappingFilter.doFilter(AuthenticationWrappingFilter.java:59)
 [druid-server-0.17.0.jar:0.17.0]
           at 
org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1642)
 [jetty-servlet-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.apache.druid.server.security.SecuritySanityCheckFilter.doFilter(SecuritySanityCheckFilter.java:86)
 [druid-server-0.17.0.jar:0.17.0]
           at 
org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1642)
 [jetty-servlet-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:533) 
[jetty-servlet-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:255)
 [jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1595)
 [jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:255)
 [jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1340)
 [jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:203)
 [jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:473) 
[jetty-servlet-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1564)
 [jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:201)
 [jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1242)
 [jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:144) 
[jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.handler.gzip.GzipHandler.handle(GzipHandler.java:740) 
[jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.handler.HandlerList.handle(HandlerList.java:61) 
[jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:132) 
[jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at org.eclipse.jetty.server.Server.handle(Server.java:503) 
[jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:364) 
[jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:260) 
[jetty-server-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:305)
 [jetty-io-9.4.12.v20180830.jar:9.4.12.v20180830]
           at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103) 
[jetty-io-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.io.ssl.SslConnection$DecryptedEndPoint.onFillable(SslConnection.java:411)
 [jetty-io-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.io.ssl.SslConnection.onFillable(SslConnection.java:305) 
[jetty-io-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.io.ssl.SslConnection$2.succeeded(SslConnection.java:159) 
[jetty-io-9.4.12.v20180830.jar:9.4.12.v20180830]
           at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103) 
[jetty-io-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:118) 
[jetty-io-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:333)
 [jetty-util-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:310)
 [jetty-util-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:168)
 [jetty-util-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:126)
 [jetty-util-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:366)
 [jetty-util-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:765)
 [jetty-util-9.4.12.v20180830.jar:9.4.12.v20180830]
           at 
org.eclipse.jetty.util.thread.QueuedThreadPool$2.run(QueuedThreadPool.java:683) 
[jetty-util-9.4.12.v20180830.jar:9.4.12.v20180830]
           at java.lang.Thread.run(Thread.java:748) [?:1.8.0_232]
   Caused by: java.lang.NullPointerException: must specify a trustStorePath
           at 
com.google.common.base.Preconditions.checkNotNull(Preconditions.java:229) 
~[guava-16.0.1.jar:?]
           at 
org.apache.druid.server.security.TLSUtils$ClientSSLContextBuilder.build(TLSUtils.java:146)
 ~[druid-server-0.17.0.jar:0.17.0]
           at 
org.apache.druid.security.basic.BasicSecuritySSLSocketFactory.<init>(BasicSecuritySSLSocketFactory.java:60)
 ~[druid-basic-security-0.17.0.jar:0.17.0]
           at 
org.apache.druid.security.basic.BasicSecuritySSLSocketFactory.getDefault(BasicSecuritySSLSocketFactory.java:67)
 ~[druid-basic-security-0.17.0.jar:0.17.0]
           at sun.reflect.GeneratedMethodAccessor20.invoke(Unknown Source) 
~[?:?]
           at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 ~[?:1.8.0_232]
           at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_232]
           at com.sun.jndi.ldap.Connection.createSocket(Connection.java:296) 
~[?:1.8.0_232]
           at com.sun.jndi.ldap.Connection.<init>(Connection.java:215) 
~[?:1.8.0_232]
           ... 51 more


----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
[email protected]


With regards,
Apache Git Services

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[GitHub] [druid] soumyajose0784 opened a new issue #9304: Coordinator fails in LDAPCredentialsValidator :must specify a trustStorePath

Reply via email to