Hello everybody!
I try to configure Active Directory authentication on our local instance. So
far, I got the authentication to work using direct binding. I have these
options in the auth_conf.xml :
<allow-register>No</allow-register>
<auto-register>Yes</auto-register>
<server>ldap:/REDACTED /</server>
<bind-user>{username}@REDACTED</bind-user>
<bind-password>{password}</bind-password>
<continue-on-failure>False</continue-on-failure>
<auto-register-username>{sAMAccountName}</auto-register-username>
<login-use-username>True</login-use-username>
<auto-register-email>{mail}</auto-register-email>
Paster.log:
galaxy.auth.providers.ldap_ad DEBUG 2015-09-03 11:26:20,158 LDAP authenticate:
whoami is u:REDACTED\GagnonY
galaxy.auth.providers.ldap_ad DEBUG 2015-09-03 11:26:20,159 LDAP authentication
successful
However, the authentication module does not seem to be able to fetch
information from LDAP to auto register
With these settings, I get the debug message in galaxy when I try to log in :
URL: http://localhost:8080/user/login?use_panels=False
File
'/home/galaxy/galaxy_app/galaxy/eggs/WebError-0.8a-py2.6.egg/weberror/evalexception/middleware.py',
line 364 in respond
app_iter = self.application(environ, detect_start_response)
File
'/home/galaxy/galaxy_app/galaxy/eggs/Paste-1.7.5.1-py2.6.egg/paste/recursive.py',
line 84 in __call__
return self.application(environ, start_response)
File
'/home/galaxy/galaxy_app/galaxy/eggs/Paste-1.7.5.1-py2.6.egg/paste/httpexceptions.py',
line 633 in __call__
return self.application(environ, start_response)
File '/home/galaxy/galaxy_app/galaxy/lib/galaxy/web/framework/base.py', line
133 in __call__
return self.handle_request( environ, start_response )
File '/home/galaxy/galaxy_app/galaxy/lib/galaxy/web/framework/base.py', line
191 in handle_request
body = method( trans, **kwargs )
File
'/home/galaxy/galaxy_app/galaxy/lib/galaxy/webapps/galaxy/controllers/user.py',
line 482 in login
message, status, user, success = self.__validate_login( trans, **kwd )
File
'/home/galaxy/galaxy_app/galaxy/lib/galaxy/webapps/galaxy/controllers/user.py',
line 524 in __validate_login
autoreg = trans.app.auth_manager.check_auto_registration(trans, login,
password)
File '/home/galaxy/galaxy_app/galaxy/lib/galaxy/auth/__init__.py', line 100 in
check_auto_registration
auth_result, auto_email, auto_username = provider.authenticate(email,
username, password, options)
File '/home/galaxy/galaxy_app/galaxy/lib/galaxy/auth/providers/ldap_ad.py',
line 177 in authenticate
_get_subs(options, 'auto-register-email', params),
File '/home/galaxy/galaxy_app/galaxy/lib/galaxy/auth/providers/ldap_ad.py',
line 19 in _get_subs
return str(d[k]).format(**params)
KeyError: 'mail'
So for some reason, the module cannot fetch the mail field from AD. If I try
to bypass this by putting a harcoded email, same issue occurs with
sAMAccountName field. Did anybody encounter this before?
Thanks in advance for the help.
Yves Gagnon
___________________________________________________________
Please keep all replies on the list by using "reply all"
in your mail client. To manage your subscriptions to this
and other Galaxy lists, please use the interface at:
https://lists.galaxyproject.org/
To search Galaxy mailing lists use the unified search at:
http://galaxyproject.org/search/mailinglists/
