crowd - apache http server authentication integration problem

Hi,

I would like to use crowd as authenticaiton backend server integrating with apache http server as http authenticaiton mechanishm. I've followed document below;

https://confluence.atlassian.com/display/CROWD/Integrating+Crowd+with+Apache

I'm getting this error;

[error] CrowdAuth: Failed to authenticate application.

- configuration;

<Directory "/var/www/">
  AuthName crowd
  AuthType Basic
  PerlAuthenHandler Apache::CrowdAuth
  PerlSetVar CrowdAppName XXX
  PerlSetVar CrowdAppPassword XXX
  PerlSetVar CrowdSOAPURL http://crowd.domain.com:8095/crowd/services/SecurityServer
  PerlSetVar CrowdCacheEnabled on
  PerlSetVar CrowdCacheLocation /tmp/CrowdAuth
  PerlSetVar CrowdCacheExpiry 300
  require valid-user
</Directory>

what did i check;

- application name and password correct, i also try with another application name and password it works with restfull api.

- i have checked remote ip configuration, i'm sure i added server's real external ip.

- i got tcpdump on the crowd server, it's below;

09:56:22.769876 IP xx.54627 > crowd.xxx.com.8095: Flags [P.], seq 2995895305:2995896539, ack 2611274641, win 281, options [nop,nop,TS val 254446793 ecr
 3787739752], length 1234
E...0.@.;...6H..
6"..c.....      ........+......
.*....RhPOST /crowd/services/SecurityServer HTTP/1.1
TE: deflate,gzip;q=0.3
Connection: TE, close
Accept: text/xml
Accept: multipart/*
Accept: application/soap
Host: crowd.domain.com:8095
User-Agent: SOAP::Lite/Perl/0.714
Content-Length: 933
Content-Type: text/xml; charset=utf-8
SOAPAction: ""
<?xml version="1.0" encoding="UTF-8"?>
<soap:Envelope
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
    xmlns:xsd="http://www.w3.org/2001/XMLSchema"
    soap:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"
    xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/">
  <soap:Body>
    <namesp1:authenticateApplication xmlns:namesp1="urn:SecurityServer">
      <in0>
        <credential xmlns="http://authentication.integration.crowd.atlassian.com">
          <credential xsi:type="xsd:string">XXX</credential>
        </credential>
        <name xmlns="http://authentication.integration.crowd.atlassian.com" xsi:type="xsd:string">XXX</name>
        <validationFactors xmlns="http://authentication.integration.crowd.atlassian.com" xsi:nil="true" />
              </in0>
    </namesp1:authenticateApplication>
  </soap:Body>
</soap:Envelope>

- at the crowd server, the application is active.

- crowd url is correct, when i try with with curl, it works;

http://crowd.domain.com:8095/crowd/services/SecurityServer

[Invalid SOAP request.]

Could anyone help me to solve the problem.

Thanks.

1 answer

1 accepted

I see your Apache settings are a bit differente than the example in our site, have you tried with the example configuration in step 4?

<Directory "/var/mysite/">
.
.
.
  AuthName "Atlassian Crowd"
  AuthType Basic
  AuthBasicProvider crowd
 
  CrowdAppName myappname
  CrowdAppPassword mypassword
  CrowdURL http://localhost:8095/crowd/
 
  Require valid-user
.
.
.
</Directory>

Cheers

The configuration that you referred is for the 2.x version of Crowd-Apache Connector and it doesn't support ubuntu 12.04. As document says, i've used Crowd-Apache 1.4 Connector, documanted below;

https://confluence.atlassian.com/display/CROWD020/Integrating+Crowd+with+Apache

Am i wrong?


"This document is for the 2.x version of Crowd-Apache Connector, if you can't find an compatible version of the 2.x Subversion Connector for your O/S in the table below then refer to the 1.4 version of the Crowd-Apache Connector."

I'm pretty sure I've tested apache connector 2.0 with newer versions of Ubuntu, I believe our docs are outdated. I've opened this request to review this information: https://jira.atlassian.com/browse/CWD-3963

In the meantime, if you have a test server, you may want to test apache connector 2.0.

Cheers

Thank you Tiago. Using documentation i've easily configured 2.0.

Cheers.

I'm glad to hear that, if you thing this question was answered satisfactorily, you may accept the answer, this will increase its visibility and may help others in the future.

Cheers

Suggest an answer

Log in or Sign up to answer
Atlassian Community Anniversary

Happy Anniversary, Atlassian Community!

This community is celebrating its one-year anniversary and Atlassian co-founder Mike Cannon-Brookes has all the feels.

Read more
Community showcase
Published Feb 27, 2018 in Crowd

The Crowd team is looking for feedback on Server & Data Center customers' identity strategies!

Do you own more than one Server or Data Center product? Do you have challenges provisioning users across your Atlassian products? Are you spending a lot of time integrating each Atlassian product wit...

1,062 views 6 14
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you