[jira] [Closed] (KNOX-1629) LDAP group filter with Active Directory not working

Kevin Risden (JIRA) Mon, 26 Nov 2018 16:19:21 -0800


     [ 
https://issues.apache.org/jira/browse/KNOX-1629?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Kevin Risden closed KNOX-1629.
------------------------------

> LDAP group filter with Active Directory not working
> ---------------------------------------------------
>
>                 Key: KNOX-1629
>                 URL: https://issues.apache.org/jira/browse/KNOX-1629
>             Project: Apache Knox
>          Issue Type: Bug
>          Components: Release
>    Affects Versions: 1.1.0
>            Reporter: Raja Marimuthu
>            Priority: Major
>
> I am having issue in configuring LDAP group filter  to search the user under 
> specific group,   my topology configuration looks like below :
> Need to search only  under m_powerusers group.
> <param name="main.ldapRealm.userSearchBase" value="dc=ds,dc=nb,dc=com"/> 
> <param name="main.ldapRealm.userSearchFilter" 
> value="(&amp;(objectclass=*)(memberOf=cn=m_powerusers,OU=Applications,OU=Groups,DC=ds,DC=nb,DC=com))"/>
>  <param name="main.ldapRealm.userObjectClass" value="person"/> <param> 
> <name>main.ldapRealm.userSearchAttributeName</name> 
> <value>sAMAccountName</value> </param>
>  
>  
> Error :
> 018-11-26 21:44:31,180 DEBUG ldap.JndiLdapContextFactory 
> (JndiLdapContextFactory.java:getLdapContext(488)) - Initializing LDAP context 
> using URL [ldap://34.200.217.1:389] and principal [cn=Raja 
> M,ou=nb,dc=ds,dc=nb,dc=com] with pooling enabled 2018-11-26 21:44:31,182 
> DEBUG knox.gateway (KnoxLdapRealm.java:getUserDn(718)) - Searching from 
> dc=ds,dc=nb,dc=com where 
> (&(objectclass=*)(memberOf=cn=m_powerusers,OU=Applications,OU=Groups,DC=ds,DC=nb,DC=com))
>  scope subtree 2018-11-26 21:44:31,184 INFO knox.gateway 
> (KnoxLdapRealm.java:getUserDn(724)) - Computed userDn: 
> CN=Len,OU=US02P01,OU=mmc_users,DC=ds,DC=nb,DC=com using ldapSearch for 
> principal: adam 2018-11-26 21:44:31,185 DEBUG servlet.AdviceFilter 
> (AdviceFilter.java:cleanup(194)) - Filter execution resulted in an unexpected 
> Exception (not IOException or ServletException as the Filter API recommends). 
> Wrapping in ServletException and propagating. 2018-11-26 21:44:31,186 ERROR 
> knox.gateway (AbstractGatewayFilter.java:doFilter(66)) - Failed to execute 
> filter: javax.servlet.ServletException: java.lang.NullPointerException 
> javax.servlet.ServletException: java.lang.NullPointerException at 
> org.apache.shiro.web.servlet.AdviceFilter.cleanup(AdviceFilter.java:196) at 
> org.apache.shiro.web.filter.authc.AuthenticatingFilter.cleanup(AuthenticatingFilter.java:155)
>  at 
> org.apache.shiro.web.servlet.AdviceFilter.doFilterInternal(AdviceFilter.java:148)
>  at 
> org.apache.shiro.web.servlet.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:125)
>  at 
> org.apache.shiro.web.servlet.ProxiedFilterChain.doFilter(ProxiedFilterChain.java:66)
>  at 
> org.apache.shiro.web.servlet.AbstractShiroFilter.executeChain(AbstractShiroFilter.java:449)
>  at 
> org.apache.shiro.web.servlet.AbstractShiroFilter$1.call(AbstractShiroFilter.java:365)
>  at 
> org.apache.shiro.subject.support.SubjectCallable.doCall(SubjectCallable.java:90)
>  at 
> org.apache.shiro.subject.support.SubjectCallable.call(SubjectCallable.java:83)
>  at 
> org.apache.shiro.subject.support.DelegatingSubject.execute(DelegatingSubject.java:383)
>  at 
> org.apache.shiro.web.servlet.AbstractShiroFilter.doFilterInternal(AbstractShiroFilter.java:362)
>  at 
> org.apache.shiro.web.servlet.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:125)
>  at 
> org.apache.knox.gateway.GatewayFilter$Holder.doFilter(GatewayFilter.java:372) 
> at 
> org.apache.knox.gateway.GatewayFilter$Chain.doFilter(GatewayFilter.java:272) 
> at 
> org.apache.knox.gateway.filter.ResponseCookieFilter.doFilter(ResponseCookieFilter.java:50)
>  at 
> org.apache.knox.gateway.filter.AbstractGatewayFilter.doFilter(AbstractGatewayFilter.java:61)
>  at 
> org.apache.knox.gateway.GatewayFilter$Holder.doFilter(GatewayFilter.java:372) 
> at 
> org.apache.knox.gateway.GatewayFilter$Chain.doFilter(GatewayFilter.java:272) 
> at 
> org.apache.knox.gateway.filter.XForwardedHeaderFilter.doFilter(XForwardedHeaderFilter.java:30)
>  at 
> org.apache.knox.gateway.filter.AbstractGatewayFilter.doFilter(AbstractGatewayFilter.java:61)
>  at 
> org.apache.knox.gateway.GatewayFilter$Holder.doFilter(GatewayFilter.java:372) 
> at 
> org.apache.knox.gateway.GatewayFilter$Chain.doFilter(GatewayFilter.java:272) 
> at org.apache.knox.gateway.GatewayFilter.doFilter(GatewayFilter.java:171) at 
> org.apache.knox.gateway.GatewayFilter.doFilter(GatewayFilter.java:94) at 
> org.apache.knox.gateway.GatewayServlet.service(GatewayServlet.java:141) at 
> org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:812) at 
> org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1669)
>  at 
> org.eclipse.jetty.websocket.server.WebSocketUpgradeFilter.doFilter(WebSocketUpgradeFilter.java:201)
>  at 
> org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
>  at 
> org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:585) at 
> org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) 
> at 
> org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:577) 
> at 
> org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:223)
>  at 
> org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1127)
>  at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:515) 
> at 
> org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:185)
>  at 
> org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1061)
>  at 
> org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) 
> at 
> org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:215)
>  at 
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:97)
>  at org.apache.knox.gateway.trace.TraceHandler.handle(TraceHandler.java:51) 
> at 
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:97)
>  at 
> org.apache.knox.gateway.filter.CorrelationHandler.handle(CorrelationHandler.java:41)
>  at org.eclipse.jetty.servlets.gzip.GzipHandler.handle(GzipHandler.java:479) 
> at 
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:97)
>  at 
> org.apache.knox.gateway.filter.PortMappingHelperHandler.handle(PortMappingHelperHandler.java:152)
>  at 
> org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:110)
>  at 
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:97)
>  at org.eclipse.jetty.server.Server.handle(Server.java:499) at 
> org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:311) at 
> org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:258) 
> at org.eclipse.jetty.io.AbstractConnection$2.run(AbstractConnection.java:544) 
> at 
> org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:635)
>  at 
> org.eclipse.jetty.util.thread.QueuedThreadPool$3.run(QueuedThreadPool.java:555)
>  at java.lang.Thread.run(Thread.java:748) Caused by: 
> java.lang.NullPointerException
>  



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Closed] (KNOX-1629) LDAP group filter with Active Directory not working

Reply via email to