Question

我正在尝试使用orbeon-auth servlet设置身份验证ising orbeon 4.7-CE并且在访问auth对话框时遇到了一些麻烦。自从我使用orbeon以来，已经很长一段时间了，而且我在一些事情上有点生疏。我最后一次使用Resin servlet容器，而这次我使用的tomcat6对我来说有点新鲜。

目的是用一个JRADIUS替换orbeon-auth servlet，该用户将根据我们的RADIUS服务授权用户。

当我尝试运行我的应用时，我得到的只是一个未经授权的页面＆＃34;出现。在尝试使用orbeon-auth时，它看起来好像失败了。我已经突出显示了我认为日志中的错误。

我在tomcat6中设置了一个虚拟主机，下面调用https://xforms.york.ac.uk/orbeon/console-reg/是适当的配置位和日志输出。如果有人能指出我正确的方向，我将感激不尽。

RGDS 亚历

配置和记录： -

<Host name="xforms.york.ac.uk" appBase ="xformapps"
        unpackWARs="false" autoDeploy="true"
        xmlValidation="false" xmlNamespaceAware="false">

 <Context path="/orbeon" docBase="orbeon" reloadable="false" override="true" crossContext="true">
           <Valve className="org.apache.catalina.authenticator.BasicAuthenticator"
                               changeSessionIdOnAuthentication="false"/>
           <Parameter override="false" 
              name="oxf.resources.priority.0" 
              value="org.orbeon.oxf.resources.FilesystemResourceManagerFactory"/>
           <Parameter override="false" 
              name="oxf.resources.priority.0.oxf.resources.filesystem.sandbox-directory" 
              value="/usr/share/tomcat6/orbeon/resources"/>

           <Resource name="jdbc/freeradius" auth="Container" type="javax.sql.DataSource"
              initialSize="3" maxActive="10" maxIdle="20" maxWait="30000"
              driverClassName="com.mysql.jdbc.Driver"
              poolPreparedStatements="true"
              validationQuery="select 1 from dual"
              testOnBorrow="true"
              username="xxxxx password="yyyy" 
              useInformationSchema="true"
              url="jdbc:mysql://a.b.c.d:3306/freeradius?noAccessToProcedureBodies=true"/>
       </Context>
       <Context path="/orbeon-auth" docBase="orbeon-auth" reloadable="false" override="false" crossContext="true">
       </Context>

然后在orbeon properties-local.xml中我有

   <property as="xs:string" name="oxf.http.ssl.hostname-verifier" value="allow-all"/>
    <property as="xs:anyURI" name="oxf.url-rewriting.service.base-uri" value="http://xforms.york.ac.uk/orbeon"/>
    <property as="xs:anyURI" name="oxf.fr.persistence.exist.uri" value="http://xforms.york.ac.uk/orbeon/fr/service/exist"/>
    <property as="xs:anyURI" name="oxf.fr.persistence.exist.exist-uri" value="htts://xforms.york.ac.uk/orbeon/exist/rest/db/orbeon/fr"/>
    <property as="xs:anyURI" processor-name="oxf:page-flow" name="authorizer" value="/orbeon-auth"/>
    <property as="xs:string" processor-name="oxf:page-flow" name="page-public-methods" value="HEAD"/>

在orbeon-auth / web.xml中我得到了 ..... 控制台注册 /控制台-REG / orbeon服务其他一切 / BASIC orbeon服务

我在Catalina.out中看到的是

15-Oct-2014 16:22:44 org.apache.catalina.authenticator.AuthenticatorBase invoke FINE: Security checking request GET /orbeon/console-reg/
15-Oct-2014 16:22:44 org.apache.catalina.realm.RealmBase findSecurityConstraints FINE:   No applicable constraints defined
15-Oct-2014 16:22:44 org.apache.catalina.authenticator.AuthenticatorBase invoke FINE:  Not subject to any constraint
15-Oct-2014 16:22:46 org.apache.catalina.authenticator.AuthenticatorBase invoke FINE: Security checking request GET /orbeon-auth/console-reg/
15-Oct-2014 16:22:46 org.apache.catalina.realm.RealmBase findSecurityConstraints FINE:   Checking constraint 'SecurityConstraint[Console Reg]' against GET /console-reg/ --> true
15-Oct-2014 16:22:46 org.apache.catalina.realm.RealmBase findSecurityConstraints FINE:   Checking constraint 'SecurityConstraint[Everything else]' against GET /console-reg/ --> true
15-Oct-2014 16:22:46 org.apache.catalina.realm.RealmBase findSecurityConstraints FINE:   Checking constraint 'SecurityConstraint[Console Reg]' against GET /console-reg/ --> true
15-Oct-2014 16:22:46 org.apache.catalina.realm.RealmBase findSecurityConstraints FINE:   Checking constraint 'SecurityConstraint[Everything else]' against GET /console-reg/ --> true
15-Oct-2014 16:22:46 org.apache.catalina.authenticator.AuthenticatorBase invoke FINE:  Calling hasUserDataPermission()
15-Oct-2014 16:22:46 org.apache.catalina.realm.RealmBase hasUserDataPermission FINE:   User data constraint has no restrictions
**15-Oct-2014 16:22:46 org.apache.catalina.authenticator.AuthenticatorBase invoke FINE:  Calling authenticate()
 15-Oct-2014 16:22:46 org.apache.catalina.authenticator.AuthenticatorBase invoke FINE:  Failed authenticate() test**
15-Oct-2014 16:22:46 org.apache.catalina.authenticator.AuthenticatorBase invoke FINE: Security checking request GET /orbeon/fr/style/bootstrap/css/bootstrap.css

我在orbeon.log中看到的是

2014-10-15 16:29:58,184 INFO  ProcessorService  - /console-reg/ - Received request
2014-10-15 16:30:00,317 INFO  PageFlowControllerProcessor  - unauthorized {controller: "oxf:/app /console-reg/page-flow.xml", method: "GET", path: "/console-reg/", status-code: "403"}
2014-10-15 16:30:00,324 INFO  PageFlowControllerProcessor  - unauthorized {controller: "oxf:/page-flow.xml", method: "GET", path: "/console-reg/", status-code: "403"}

使用orbeon-auth时遇到麻烦

0 个答案: