On Tue, Oct 7, 2008 at 1:06 PM, Art Yeung <[EMAIL PROTECTED]> wrote: > > > > Thomas Mortagne wrote: >> >> See http://markmail.org/message/jlsqhlrk2d3kwyrx >> >> On Tue, Oct 7, 2008 at 9:34 AM, Art Yeung <[EMAIL PROTECTED]> >> wrote: >>> >>> Hi All, >>> >>> I have a XWiki on version 1.5.1 and recently upgraded to 1.6.13286 with >>> LDAP >>> integrated for Authentication. In both versions, I have turned DEBUG on >>> and >>> noticed there are LDAP connections on not only when users login but on >>> "every" action, even just naviation from one spacec to another. >>> >>> I would thought LDAP call will only be made during the login process? or >>> is >>> there anything I missed in the config? >>> >>> Here are the debug messages when I do my test by clicking on a link to a >>> Space. I have also attach the LDAP config as well. >>> >>> Thanks a lot! >>> =================================== >>> 08:22:32,069 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> ldap.XWikiLDAPConnection - Connecting to LDAP using SSL >>> 08:22:32,507 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> LDAP.XWikiLDAPAuthServiceImpl - Found user dn with the user object: >>> cn=MY_LDAP_ID,ou=People,dc=mydc,dc=net >>> 08:22:32,702 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> LDAP.XWikiLDAPAuthServiceImpl - LDAP attributes will be used to update >>> XWiki attributes. >>> 08:22:32,703 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> ldap.XWikiLDAPConfig - Ready to create user from LDAP with >>> fields >>> last_name=sn,first_name=givenName,fullname=fullName,email=mail,ldap_dn=dn >>> 08:22:32,810 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> LDAP.XWikiLDAPAuthServiceImpl - Updating existing user with >>> LDAPattribues >>> located at cn=MY_LDAP_ID,ou=People,dc=mydc,dc=net >>> 08:22:32,811 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> ldap.XWikiLDAPConfig - Ready to create user from LDAP with >>> fields >>> last_name=sn,first_name=givenName,fullname=fullName,email=mail,ldap_dn=dn >>> 08:22:33,115 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> ldap.XWikiLDAPConnection - Connecting to LDAP using SSL >>> 08:22:33,564 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> LDAP.XWikiLDAPAuthServiceImpl - Found user dn with the user object: >>> null >>> 08:22:33,565 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> ldap.XWikiLDAPConfig - Ready to create user from LDAP with >>> fields >>> last_name=sn,first_name=givenName,fullname=fullName,email=mail,ldap_dn=dn >>> 08:22:33,566 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> ldap.XWikiLDAPUtils - Searching for the user in LDAP: >>> user:MY_LDAP_ID base: query:(cn=MY_LDAP_ID) uid:cn >>> 08:22:33,865 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> LDAP.XWikiLDAPAuthServiceImpl - LDAP attributes will be used to update >>> XWiki attributes. >>> 08:22:33,865 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> LDAP.XWikiLDAPAuthServiceImpl - Updating existing user with >>> LDAPattribues >>> located at cn=MY_LDAP_ID,ou=People,dc=mydc,dc=net >>> 08:22:33,866 [http://myhost/xwiki/bin/view/Admin/] [TP-Processor7] DEBUG >>> ldap.XWikiLDAPConfig - Ready to create user from LDAP with >>> fields >>> last_name=sn,first_name=givenName,fullname=fullName,email=mail,ldap_dn=dn >>> [WARNING] Deprecated usage of method [com.xpn.xwiki.api.XWiki.split] in >>> [EMAIL PROTECTED],36 >>> 08:22:34,989 >>> [http://myhost/xwiki/bin/view/Admin/?xpage=xpart&vm=commentsinline.vm] >>> [TP-Processor7] DEBUG ldap.XWikiLDAPConnection -Connecting to LDAP >>> using SSL >>> 08:22:35,548 >>> [http://myhost/xwiki/bin/view/Admin/?xpage=xpart&vm=commentsinline.vm] >>> [TP-Processor7] DEBUG LDAP.XWikiLDAPAuthServiceImpl -Found user dn with >>> the user object: cn=MY_LDAP_ID,ou=People,dc=mydc,dc=net >>> 08:22:35,743 >>> [http://myhost/xwiki/bin/view/Admin/?xpage=xpart&vm=commentsinline.vm] >>> [TP-Processor7] DEBUG LDAP.XWikiLDAPAuthServiceImpl -LDAP attributes >>> will >>> be used to update XWiki attributes. >>> 08:22:35,744 >>> [http://myhost/xwiki/bin/view/Admin/?xpage=xpart&vm=commentsinline.vm] >>> [TP-Processor7] DEBUG ldap.XWikiLDAPConfig -Ready to create >>> user >>> from LDAP with fields >>> last_name=sn,first_name=givenName,fullname=fullName,email=mail,ldap_dn=dn >>> 08:22:35,848 >>> [http://myhost/xwiki/bin/view/Admin/?xpage=xpart&vm=commentsinline.vm] >>> [TP-Processor7] DEBUG LDAP.XWikiLDAPAuthServiceImpl -Updating existing >>> user with LDAP attribues located at >>> cn=MY_LDAP_ID,ou=People,dc=mydc,dc=net >>> 08:22:35,849 >>> [http://myhost/xwiki/bin/view/Admin/?xpage=xpart&vm=commentsinline.vm] >>> [TP-Processor7] DEBUG ldap.XWikiLDAPConfig -Ready to create >>> user >>> from LDAP with fields >>> last_name=sn,first_name=givenName,fullname=fullName,email=mail,ldap_dn=dn >>> >>> =================================== >>> >>> xwiki.authentication.authclass=com.xpn.xwiki.user.impl.LDAP.XWikiLDAPAuthServiceImpl >>> xwiki.authentication.ldap.base_DN=ou=People,dc=mydc,dc=net >>> xwiki.authentication.ldap.bind_DN=cn=xwikiAdmin, ou=myou, ou=myou2, >>> ou=Applications, dc=mydc, dc=net >>> xwiki.authentication.ldap.bind_pass=mypassword >>> xwiki.authentication.ldap.fields_mapping=last_name=sn,first_name=givenName,fullname=fullName,email=mail,ldap_dn=dn >>> xwiki.authentication.ldap.group_classes=group,groupOfNames,groupOfUniqueNames,dynamicGroup,dynamicGroupAux,groupWiseDistributionList >>> xwiki.authentication.ldap.group_memberfields=member,uniqueMember >>> xwiki.authentication.ldap.mode_group_sync=always >>> xwiki.authentication.ldap.port=636 >>> xwiki.authentication.ldap.server=1.2.3.4 >>> xwiki.authentication.ldap.ssl.keystore=wiki_keystore.jks >>> xwiki.authentication.ldap.ssl.secure_provider=com.sun.net.ssl.internal.ssl.Provider >>> xwiki.authentication.ldap.ssl=1 >>> xwiki.authentication.ldap.trylocal=1 >>> xwiki.authentication.ldap.update_user=1 >>> xwiki.authentication.ldap.validate_password=0 >>> xwiki.authentication.ldap=1 >>> >>> =================================== >>> >>> -- >>> View this message in context: >>> http://n2.nabble.com/Unexpected-LDAP-Connection-Issue-tp1302910p1302910.html >>> Sent from the XWiki- Users mailing list archive at Nabble.com. >>> >>> _______________________________________________ >>> users mailing list >>> [email protected] >>> http://lists.xwiki.org/mailman/listinfo/users >>> >> >> >> >> -- >> Thomas Mortagne >> _______________________________________________ >> users mailing list >> [email protected] >> http://lists.xwiki.org/mailman/listinfo/users >> >> > > > Just saw the post, thanks a lot. > > However, why is that necessary? Thanks
There is no good reason for that, it's just the way general authentication is working currently and it has to be improved. The jira issue I pointed is one solution for LDAP authentication.. > > -- > View this message in context: > http://n2.nabble.com/Unexpected-LDAP-Connection-Issue-tp1302910p1303254.html > Sent from the XWiki- Users mailing list archive at Nabble.com. > > _______________________________________________ > users mailing list > [email protected] > http://lists.xwiki.org/mailman/listinfo/users > -- Thomas Mortagne _______________________________________________ users mailing list [email protected] http://lists.xwiki.org/mailman/listinfo/users
