Hello!
When I try to login to OpenCA's web interface with the role as CA Operator
(username: admin password: mypasswordissecret)
I get redirected to myhost.com/cgi-bin/pki/ca/ca?redir=1
And in stderr.log its no error!
But in the XML cache log file it shows this:
OpenCA::XML::Cache> Wed Oct 15 14:40:37 2008 UTC message:
OpenCA::XML::Cache> Error 200: Server: Entity does not exist (filename:
/usr/local/etc/openca/access_control/ca.xml, xpath:
/access_control/login/loginpromp/0).
How can I fix this?
(Contect of ca.xml)
--------------------------------
cat //usr/local/etc/openca/access_control/ca.xml
<openca>
<access_control>
<channel>
<type>mod_ssl</type>
<protocol>.*</protocol>
<source>.*</source>
<asymmetric_cipher>.*</asymmetric_cipher>
<asymmetric_keylength>0</asymmetric_keylength>
<symmetric_cipher>.*</symmetric_cipher>
<symmetric_keylength>0</symmetric_keylength>
</channel>
<login>
<type>passwd</type>
<!--
x509-base login:
<type>x509</type>
<chain>/usr/local/var/openca/crypto/chain</chain>
passwd login:
<type>passwd</type>
<database>internal</database>
<passwd>
<user>
<name>root</name>
<algorithm>sha1</algorithm>
<digest>3Hbp8MAAbo+RngxRXGbbujmC94U</digest>
<role>CA Operator</role>
</user>
<user>...</user>
...
</passwd>
no authentication:
<type>none</type>
-->
<database>internal</database>
<passwd>
<!--
the initial user root has the passphrase root
you can use the script openca-digest to create the
passphrases
if you want to add another user simply create a second user
structure
<user>...</user>
-->
<user>
<name>admin</name>
<algorithm>sha1</algorithm>
<digest>sha1password-for-admin-WORKING :-)</digest>
<role>CA Operator</role>
</user>
</passwd>
</login>
<acl_config>
<acl>yes</acl>
<list>/usr/local/etc/openca/rbac/acl.xml</list>
<command_dir>/usr/local/etc/openca/rbac/cmds</command_dir>
<module_id>0</module_id>
<map_role>yes</map_role>
<map_operation>yes</map_operation>
</acl_config>
</access_control>
<token_config_file>/usr/local/etc/openca/token.xml</token_config_file>
</openca>
Its some sort of xpath error with the XML_cache :/
All things are set to be owned by the webserver and so on.
Any solutions?
---------------------------------------------------------
Sincerly,
Pontus Engblom
[EMAIL PROTECTED]
DigiSSL Inc
http://www.digissl.eu/
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________
Openca-Users mailing list
Openca-Users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openca-users
