Ping? Any idea?
Stefan
Stefan Monnier [2025-09-23 01:18:48] wrote:
>> - The doc says:
>>
>> All users of FreedomBox can use Nextcloud.
>> To perform administrative actions, use the "nextcloud-admin" user
>> after setting a password here.
>>
>> but after installing NextCloud when my FB user tries to use NC it
>> first gets prompted for a username and password and using the FB
>> username+password fails. Does that mean FB does not support "single
>> sign on" for NC? Then what does "All users of FreedomBox can use
>> Nextcloud"? Or is it supposed to work and I'm just bumping into
>> a bug/misconfiguration?
>
> Hmm... maybe this is actually a problem in the LDAP setup.
> I now notice that Plinth has been spewing a lot of errors in my logs
> (and is using a lot of CPU resources)
>
> Sep 23 01:14:54 FBOX /usr/bin/plinth[1378985]: Running regular setup.
> Sep 23 01:14:54 FBOX /usr/bin/plinth[1378985]: Running setup for apps,
> essential - False, selected apps - ['users', 'cockpit', 'privacy', 'sharing',
> 'syncthing', 'bepasty', 'tor']
> Sep 23 01:14:54 FBOX /usr/bin/plinth[1378985]: Operation: users: Updating
> app: added
> Sep 23 01:14:54 FBOX /usr/bin/plinth[1378985]: Operation: users: Updating
> app: running
> Sep 23 01:14:54 FBOX /usr/bin/plinth[1378985]: Setup run: users
> Sep 23 01:14:54 FBOX /usr/bin/plinth[1378985]: # plinth..update()
> Sep 23 01:14:54 FBOX sudo[1445407]: plinth : PWD=/ ; USER=root ;
> COMMAND=/usr/share/plinth/actions/actions plinth update --write-fd 25
> Sep 23 01:14:54 FBOX sudo[1445407]: pam_unix(sudo:session): session
> opened for user root(uid=0) by (uid=133)
> Sep 23 01:15:00 FBOX sudo[1445407]: pam_unix(sudo:session): session
> closed for user root
> Sep 23 01:15:00 FBOX /usr/bin/plinth[1378985]: #
> plinth..is_package_manager_busy()
> Sep 23 01:15:00 FBOX sudo[1445431]: plinth : PWD=/ ; USER=root ;
> COMMAND=/usr/share/plinth/actions/actions plinth is_package_manager_busy
> --write-fd 25
> Sep 23 01:15:01 FBOX sudo[1445431]: pam_unix(sudo:session): session
> opened for user root(uid=0) by (uid=133)
> Sep 23 01:15:02 FBOX sudo[1445431]: pam_unix(sudo:session): session
> closed for user root
> Sep 23 01:15:05 FBOX /usr/bin/plinth[1378985]: App users does not need
> force upgrade
> Sep 23 01:15:16 FBOX /usr/bin/plinth[1378985]: #
> plinth..is_package_manager_busy()
> Sep 23 01:15:16 FBOX sudo[1445453]: plinth : PWD=/ ; USER=root ;
> COMMAND=/usr/share/plinth/actions/actions plinth is_package_manager_busy
> --write-fd 25
> Sep 23 01:15:16 FBOX sudo[1445453]: pam_unix(sudo:session): session
> opened for user root(uid=0) by (uid=133)
> Sep 23 01:15:17 FBOX sudo[1445453]: pam_unix(sudo:session): session
> closed for user root
> Sep 23 01:15:17 FBOX /usr/bin/plinth[1378985]: Running install for app -
> users, packages - ['ldapscripts', 'ldap-utils', 'libnss-ldapd',
> 'libpam-ldapd', 'nslcd', 'samba-common-bin', 'slapd', 'tdb-tools']
> Sep 23 01:15:17 FBOX /usr/bin/plinth[1378985]: # plinth..update()
> Sep 23 01:15:17 FBOX sudo[1445459]: plinth : PWD=/ ; USER=root ;
> COMMAND=/usr/share/plinth/actions/actions plinth update --write-fd 25
> Sep 23 01:15:17 FBOX sudo[1445459]: pam_unix(sudo:session): session
> opened for user root(uid=0) by (uid=133)
> Sep 23 01:15:24 FBOX sudo[1445459]: pam_unix(sudo:session): session
> closed for user root
> Sep 23 01:15:24 FBOX /usr/bin/plinth[1378985]: #
> plinth..install(app_id="users", packages=["ldapscripts", "ldap-utils",
> "libnss-ldapd", "libpam-ldapd", "nslcd", "samba-common-bin", "slapd",
> "tdb-tools"], skip_recommends=false, force_configuration=null,
> reinstall=false, force_missing_configuration=false)
> Sep 23 01:15:24 FBOX sudo[1445482]: plinth : PWD=/ ; USER=root ;
> COMMAND=/usr/share/plinth/actions/actions plinth install --write-fd 25
> Sep 23 01:15:24 FBOX sudo[1445482]: pam_unix(sudo:session): session
> opened for user root(uid=0) by (uid=133)
> Sep 23 01:15:26 FBOX /usr/share/plinth/actions/actions[1445485]:
> Initialized apps - names, dynamicdns, diagnostics, datetime, help, security,
> apache, sso, snapshot, firewall, avahi, letsencrypt, storage, power,
> networks, ssh, first_boot, backups, users, api, config, cockpit, upgrades,
> privacy, infinoted, ikiwiki, shaarli, jsxc, zoph, email, sogo, tiddlywiki,
> featherwiki, shadowsocksserver, coturn, ejabberd, ttrss, sharing, searx,
> gitweb, syncthing, wireguard, bepasty, pagekite, deluge, gnome, mumble,
> radicale, openvpn, kiwix, janus, bind, minetest, torproxy, tor, performance,
> calibre, transmission, nextcloud, rssbridge, shadowsocks, mediawiki,
> roundcube, matrixsynapse, privoxy, minidlna, miniflux, wordpress, quassel,
> samba
> Sep 23 01:15:27 FBOX runuser[1445513]: pam_unix(runuser:session): session
> opened for user debian-security-support(uid=122) by (uid=0)
> Sep 23 01:15:27 FBOX runuser[1445513]: pam_unix(runuser:session): session
> closed for user debian-security-support
> Sep 23 01:15:27 FBOX runuser[1445540]: pam_unix(runuser:session): session
> opened for user debian-security-support(uid=122) by (uid=0)
> Sep 23 01:15:29 FBOX runuser[1445540]: pam_unix(runuser:session): session
> closed for user debian-security-support
> Sep 23 01:15:29 FBOX runuser[1445993]: pam_unix(runuser:session): session
> opened for user debian-security-support(uid=122) by (uid=0)
> Sep 23 01:15:29 FBOX runuser[1445993]: pam_unix(runuser:session): session
> closed for user debian-security-support
> Sep 23 01:15:38 FBOX sudo[1445482]: pam_unix(sudo:session): session
> closed for user root
> Sep 23 01:15:40 FBOX /usr/bin/plinth[1378985]: #
> plinth..dropin_is_valid("users",
> "/etc/apache2/includes/freedombox-auth-ldap.conf", false,
> unlink_invalid=true)
> Sep 23 01:15:40 FBOX sudo[1446056]: plinth : PWD=/ ; USER=root ;
> COMMAND=/usr/share/plinth/actions/actions plinth dropin_is_valid --write-fd 25
> Sep 23 01:15:40 FBOX sudo[1446056]: pam_unix(sudo:session): session
> opened for user root(uid=0) by (uid=133)
> Sep 23 01:15:41 FBOX sudo[1446056]: pam_unix(sudo:session): session
> closed for user root
> Sep 23 01:15:41 FBOX /usr/bin/plinth[1378985]: # users..setup()
> Sep 23 01:15:41 FBOX sudo[1446060]: plinth : PWD=/ ; USER=root ;
> COMMAND=/usr/share/plinth/actions/actions users setup --write-fd 25
> Sep 23 01:15:41 FBOX sudo[1446060]: pam_unix(sudo:session): session
> opened for user root(uid=0) by (uid=133)
> Sep 23 01:16:08 FBOX sudo[1446060]: pam_unix(sudo:session): session
> closed for user root
> Sep 23 01:16:08 FBOX /usr/bin/plinth[1378985]: Error running action
> users..setup(): CalledProcessError(53, ["ldapadd", "-Q", "-Y", "EXTERNAL",
> "-H", "ldapi:///"])
> Stderr:
> ║ debconf: unable to
> initialize frontend: Dialog
> ║ debconf: (Dialog
> frontend will not work on a dumb terminal, an emacs shell buffer, or without
> a controlling terminal.)
> ║ debconf: falling back
> to frontend: Readline
> ║ debconf: unable to
> initialize frontend: Readline
> ║ debconf: (This
> frontend requires a controlling tty.)
> ║ debconf: falling back
> to frontend: Teletype
> ║ debconf: unable to
> initialize frontend: Teletype
> ║ debconf: (This
> frontend requires a controlling tty.)
> ║ debconf: falling back
> to frontend: Noninteractive
> ║ Use of uninitialized
> value $item in hash element at /usr/share/perl5/Debconf/DbDriver/File.pm line
> 89, <__ANONIO__> chunk 1.
> ║ Use of uninitialized
> value $item in hash element at /usr/share/perl5/Debconf/DbDriver/File.pm line
> 89, <__ANONIO__> chunk 1.
> ║ Use of uninitialized
> value $item in hash element at /usr/share/perl5/Debconf/DbDriver/File.pm line
> 89, <__ANONIO__> chunk 1.
> ║ Use of uninitialized
> value $item in hash element at /usr/share/perl5/Debconf/DbDriver/File.pm line
> 89, <__ANONIO__> chunk 1.
> ║ debconf: DbDriver
> "_ENV_stack": unable to save changes to: libnss-ldapd/nsswitch
> ║ Synchronizing state of
> slapd.service with SysV service script with
> /usr/lib/systemd/systemd-sysv-install.
> ║ Executing:
> /usr/lib/systemd/systemd-sysv-install enable slapd
> ║ Synchronizing state of
> nslcd.service with SysV service script with
> /usr/lib/systemd/systemd-sysv-install.
> ║ Executing:
> /usr/lib/systemd/systemd-sysv-install enable nslcd
> ║ ldap_add: Server is
> unwilling to perform (53)
> ║ additional
> info: no global superior knowledge
> Action traceback:
> ╞ File
> "/usr/lib/python3/dist-packages/plinth/actions.py", line 398, in
> _privileged_call
> ╞ return_values =
> func(*arguments['args'], **arguments['kwargs'])
> ╞ File
> "/usr/lib/python3/dist-packages/plinth/modules/users/privileged.py", line 77,
> in setup
> ╞
> _configure_ldap_structure()
> ╞
> ~~~~~~~~~~~~~~~~~~~~~~~~~^^
> ╞ File
> "/usr/lib/python3/dist-packages/plinth/modules/users/privileged.py", line
> 138, in _configure_ldap_structure
> ╞
> _create_organizational_unit('users')
> ╞
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^
> ╞ File
> "/usr/lib/python3/dist-packages/plinth/modules/users/privileged.py", line
> 159, in _create_organizational_unit
> ╞
> subprocess.run(['ldapadd', '-Q', '-Y', 'EXTERNAL', '-H', 'ldapi:///'],
> ╞
> ~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> ╞
> input=input.encode(), stdout=subprocess.DEVNULL,
> ╞
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> ╞
> check=True)
> ╞
> ^^^^^^^^^^^
> ╞ File
> "/usr/lib/python3.13/subprocess.py", line 577, in run
> ╞ raise
> CalledProcessError(retcode, process.args,
> ╞
> output=stdout, stderr=stderr)
> Sep 23 01:16:08 FBOX /usr/bin/plinth[1378985]: Setup completed: users:
> Error updating app: {exception} Command '['ldapadd', '-Q', '-Y', 'EXTERNAL',
> '-H', 'ldapi:///']' returned non-zero exit status 53.
> Sep 23 01:16:08 FBOX /usr/bin/plinth[1378985]: Error running setup -
> Command '['ldapadd', '-Q', '-Y', 'EXTERNAL', '-H', 'ldapi:///']' returned
> non-zero exit status 53.
> Sep 23 01:16:08 FBOX /usr/bin/plinth[1378985]: Unable to complete setup:
> Command '['ldapadd', '-Q', '-Y', 'EXTERNAL', '-H', 'ldapi:///']' returned
> non-zero exit status 53.
> Sep 23 01:16:08 FBOX /usr/bin/plinth[1378985]: Will try again in 10
> seconds
>
> Any idea what's going on and how to fix it?
>
>
> Stefan
_______________________________________________
Freedombox-discuss mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/freedombox-discuss
