On Mon, Jan 30, 2023 at 05:06:08PM -0800, Patrick Rynhart wrote: > We are on DSpace 5.8 and have always used internal (i.e > PasswordAuthentication) until now. I've tried enabling LDAP based auth as > follows: > > 1. In /opt/dspace/config/modules/authentication.cfg set: > > plugin.sequence.org.dspace.authenticate.AuthenticationMethod = \ > org.dspace.authenticate.LDAPAuthentication > > 2. Configured /opt/dspace/config/modules/authentication-ldap.cfg as follows: > > enable = true > autoregister = true > provider_url = ldap://130.123.96.53:389/ > id_field = cn > object_context = ou=clients,dc=massey,dc=ac,dc=nz > search_context = ou=clients,dc=massey,dc=ac,dc=nz > email_field = mail > surname_field = sn > givenname_field = givenName > search.anonymous = false > search.user = cn=ITS LDAP read-only > agent,ou=System,ou=Clients,dc=massey,dc=ac,dc=nz > search.password = <<REDACTED>> > > When I log onto our Dspace site with URL /ldap-login then I get the branded > LDAP page, but as soon as I submit I get the traceback provided below. > > Using Wireshark, I can see that the DSpace server isn't trying to connect > to our LDAP server. However if (on the same server) I make use of the OS > command line utility "ldapsearch" then an LDAP bind and query is > successful, i.e. > > ldapsearch -x -h tur-ldap.massey.ac.nz -b dc=massey,dc=ac,dc=nz will > succeed.
A good test.
> Can someone help me to narrow down the fault ? Am I possibly missing a JAR
> ?
>
> java.lang.NullPointerException at
> org.dspace.authenticate.LDAPAuthentication$SpeakerToLDAP.getDNOfUser(LDAPAuthentication.java:405)
>
The line appears to be:
ldap_search_scope_value = Integer.parseInt(ldap_search_scope.trim());
and I see no value for 'search.scope' above. I can't find any place
where this property is given a default value, so that would explain
the NPE.
--
Mark H. Wood
Lead Technology Analyst
University Library
Indiana University - Purdue University Indianapolis
755 W. Michigan Street
Indianapolis, IN 46202
317-274-0749
www.ulib.iupui.edu
--
All messages to this mailing list should adhere to the Code of Conduct:
https://www.lyrasis.org/about/Pages/Code-of-Conduct.aspx
---
You received this message because you are subscribed to the Google Groups
"DSpace Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/dspace-community/Y9kib5a4AN0JDe9w%40IUPUI.Edu.
signature.asc
Description: PGP signature
