Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
4,296,486
Community Members
 
Community Events
165
Community Groups

Apache2, Crowd OpenID Authentication with Directory based LDAP issue with Git/Gerrit.

Hi Team,

This is regarding apache2, Crowd OpenID authentication with Delegated Directory based LDAP issue with Git/Gerrit.

My Environment details:

Operating system: Ubuntu 12.4 LTS – 64 bit.
Apache2 Version
Server version: Apache/2.2.22 (Ubuntu)
Server built:   Mar  5 2015 18:10:14
Crowd Version - Atlassian Crowd Version: 2.8.2

Problem description:-

I have configured Crowd OpenID authentication with Delegated directory type Microsoft Active Directory with our LDAP settings and provided necessary permissions to crowd-openid-server settings and to our git/gerrit server.

Currently my (gerrit.config) file has below settings to access our git/gerrit portal.

 [auth]
  type = OPENID_SSO
  openIdSsoUrl = http://100.101.102.103:8095/openidserver/
  logoutUrl = http:// 100.101.102.103:8095/gerrit_logout.html


But when tried access my gerrit portal, front end shows sign in button once I clicked that the authentication not forwarding to crowd page to enter my login-id and password. It remains on local host itself(means remains in gerrit portal itself).

Note: we have two servers: one for Git/Gerrit & another one for Crowd.

So kindly advise me to fix the same.


Thanks,
Mohan

2 answers

Hi, Once i click the "Signin" button it shows below error. Provider is not supported, or was incorrectly entered. -Mohan

Hi Team, Gerrit Log shows following msg, [2015-05-29 12:29:41,679] INFO org.eclipse.jetty.server.ServerConnector : Started ServerConnector@53e74514{HTTP/1.1}{0.0.0.0:8080} [2015-05-29 12:29:41,680] INFO org.eclipse.jetty.server.Server : Started @8987ms [2015-05-29 12:29:41,682] INFO com.google.gerrit.pgm.Daemon : Gerrit Code Review 2.10.2 ready [2015-05-29 12:30:01,605] ERROR com.google.gerrit.httpd.auth.openid.OpenIdServiceImpl : Cannot discover OpenID http://100.101.102.103:8095/openidserver/op org.openid4java.discovery.yadis.YadisException: 0x706: GET failed on http://100.101.102.103:8095/openidserver/op : 404 at org.openid4java.discovery.yadis.YadisResolver.retrieveXrdsLocation(YadisResolver.java:411) at org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:252) at org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:232) at org.openid4java.discovery.yadis.YadisResolver.discover(YadisResolver.java:166) at org.openid4java.discovery.Discovery.discover(Discovery.java:147) at org.openid4java.discovery.Discovery.discover(Discovery.java:129) at org.openid4java.consumer.ConsumerManager.discover(ConsumerManager.java:538) at com.google.gerrit.httpd.auth.openid.OpenIdServiceImpl.init(OpenIdServiceImpl.java:525) at com.google.gerrit.httpd.auth.openid.OpenIdServiceImpl.discover(OpenIdServiceImpl.java:152) at com.google.gerrit.httpd.auth.openid.LoginForm.discover(LoginForm.java:165) at com.google.gerrit.httpd.auth.openid.LoginForm.doGet(LoginForm.java:114) at javax.servlet.http.HttpServlet.service(HttpServlet.java:618) at javax.servlet.http.HttpServlet.service(HttpServlet.java:725) at com.google.inject.servlet.ServletDefinition.doServiceImpl(ServletDefinition.java:279) at com.google.inject.servlet.ServletDefinition.doService(ServletDefinition.java:269) at com.google.inject.servlet.ServletDefinition.service(ServletDefinition.java:180) at com.google.inject.servlet.ManagedServletPipeline.service(ManagedServletPipeline.java:91) at com.google.inject.servlet.FilterChainInvocation.doFilter(FilterChainInvocation.java:85) at com.google.gwtexpui.server.CacheControlFilter.doFilter(CacheControlFilter.java:70) at com.google.inject.servlet.FilterChainInvocation.doFilter(FilterChainInvocation.java:82) at com.google.gerrit.httpd.RunAsFilter.doFilter(RunAsFilter.java:113) at com.google.inject.servlet.FilterChainInvocation.doFilter(FilterChainInvocation.java:82) at com.google.gerrit.httpd.AllRequestFilter$FilterProxy$1.doFilter(AllRequestFilter.java:64) at com.google.gerrit.httpd.AllRequestFilter$FilterProxy.doFilter(AllRequestFilter.java:57) at com.google.inject.servlet.FilterChainInvocation.doFilter(FilterChainInvocation.java:82) at com.google.gerrit.httpd.RequestContextFilter.doFilter(RequestContextFilter.java:75) at com.google.inject.servlet.FilterChainInvocation.doFilter(FilterChainInvocation.java:82) at com.google.inject.servlet.ManagedFilterPipeline.dispatch(ManagedFilterPipeline.java:119) at com.google.inject.servlet.GuiceFilter$1.call(GuiceFilter.java:133) at com.google.inject.servlet.GuiceFilter$1.call(GuiceFilter.java:130) at com.google.inject.servlet.GuiceFilter$Context.call(GuiceFilter.java:203) at com.google.inject.servlet.GuiceFilter.doFilter(GuiceFilter.java:130) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1636) at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:564) at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:219) at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1111) at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:498) at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:183) at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1045) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:98) at org.eclipse.jetty.server.Server.handle(Server.java:461) at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:284) at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:244) at org.eclipse.jetty.io.AbstractConnection$2.run(AbstractConnection.java:534) at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:607) at org.eclipse.jetty.util.thread.QueuedThreadPool$3.run(QueuedThreadPool.java:536) at java.lang.Thread.run(Thread.java:745) Thanks, Mohan

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Posted in Jira Service Management

Jira Service Management Documentation Opportunities

Hello everyone, Hope everyone is safe! A few months ago we posted an article sharing all the new articles and documentation that we, the AMER Jira Service Management team created. As mentioned ...

320 views 0 10
Join discussion

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you