Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Interests
See all
Community resources
Top groups
Explore all groups
Community resources

Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Get started Tell me more
Atlassian Community about banner
4,359,720
Community Members
 
Community Events
168
Community Groups

running JIRA + Crowd as Docker-Containers - Login at JIRA is possible but shown as not synchron

Edited
IP.org - Webmaster
IP.org - Webmaster Apr 29, 2021

Hello together,

 

we are running Crowd + Confluence + Jira (Core+Software+ServiceManagement) as Docker-Containers.

Login at all Applications works via Users administrated via Crowd and is shown correctly at Confluence (= last login + synchronised).

The Login at Jira works via Users administraded via Crowd too - but is not shown correctly at Jira (> last login = never + never synchronised or last time of sync. = technical fieldnames and not date/time).

Any help would be great!01 - nie angemeldet.png02 - noch nie synchronisiert.png03 - Ausgabe letztmalig synchronisiert mit technischen Feldbezeichnungen statt Startzeit und Dauer als Zeitangabe.png04 - Crowd - user - kann sich angeblich bei keiner Anwendung anmelden.png

= admin-user exists as member of all needed groups, but is not visible under "the user can authenticate with the following applications" ... while login at all Applications works

05 - installierte Anwendungen.png06 - user wird bei allen Anwendungen ausgewiesen.png07 - user gehört allen gewünschten Gruppen an.png

Answer
Watch
Like Be the first to like this
395 views

1 answer

0 votes
Gonchik Tsymzhitov
Gonchik Tsymzhitov Community Leader Apr 29, 2021

Hi @IP.org - Webmaster 

did you try to put into the debug mode for next package com.atlassian.crowd ? 

then you can see what's happened during authentication

View More Comments
IP.org - Webmaster
IP.org - Webmaster May 01, 2021

At first - many thanks for your response!

 

The only tool we used in this context until today is the Log-Analyzer - but - without any useful hint/s.

 

If thinking about the debug mode ... I have a problem how to enable it via docker.

Like
Like
Gonchik Tsymzhitov
Gonchik Tsymzhitov Community Leader May 01, 2021

Could you log int into container and then double check in {jira_home}/logs/atlassian-jira.log, please?

docker exec -it <CONTAINER_ID> /bin/sh
Like
IP.org - Webmaster
IP.org - Webmaster May 14, 2021 • edited

Please excuse my delayed response.

We do not find any helpful hint inside atlassian-jira.log and also it seems to be not possible to insert the full Log-Content into this community-dialogue.

Like
IP.org - Webmaster
IP.org - Webmaster May 14, 2021 • edited

It seems, that the User-Directory at Crowd is write-protected when trying to access from Jira.

Otherwhise i am absolutely shure that while setup I allowed read+write according to that User-Directory. Now it is not editable. Also deleting + fresh setup brings that connection not to work.

Like
IP.org - Webmaster
IP.org - Webmaster May 14, 2021

2021-05-01 17:06:25,005+0000 Caesium-1-1 ERROR ServiceRunner [c.a.crowd.directory.DbCachingDirectoryPoller] Error occurred while refreshing the cache for directory [ 10100 ].
com.querydsl.core.QueryException: Caught PSQLException for insert into public.cwd_synchronisation_status (directory_id, sync_start, sync_status, status_parameters, id)
values (?, ?, ?, ?, ?)
at com.querydsl.sql.DefaultSQLExceptionTranslator.translate(DefaultSQLExceptionTranslator.java:50)
at com.querydsl.sql.Configuration.translate(Configuration.java:459)
at com.querydsl.sql.dml.SQLInsertClause.execute(SQLInsertClause.java:445)
at com.atlassian.jira.database.IdGeneratingSQLInsertClause.executeWithId(IdGeneratingSQLInsertClause.java:71)
at com.atlassian.jira.crowd.embedded.ofbiz.OfBizDirectorySynchronisationStatusDao.lambda$add$1(OfBizDirectorySynchronisationStatusDao.java:70)
at com.atlassian.jira.database.DefaultQueryDslAccessor.lambda$executeQuery$0(DefaultQueryDslAccessor.java:68)
at com.atlassian.jira.database.DatabaseAccessorImpl.lambda$runInTransaction$0(DatabaseAccessorImpl.java:105)
at com.atlassian.jira.database.DatabaseAccessorImpl.executeQuery(DatabaseAccessorImpl.java:74)
at com.atlassian.jira.database.DatabaseAccessorImpl.runInTransaction(DatabaseAccessorImpl.java:100)
at com.atlassian.jira.database.DefaultQueryDslAccessor.executeQuery(DefaultQueryDslAccessor.java:67)
at com.atlassian.jira.crowd.embedded.ofbiz.OfBizDirectorySynchronisationStatusDao.add(OfBizDirectorySynchronisationStatusDao.java:67)
at com.atlassian.crowd.manager.directory.InDatabaseDirectorySynchronisationInformationStore.syncStarted(InDatabaseDirectorySynchronisationInformationStore.java:120)
at com.atlassian.crowd.manager.directory.SynchronisationStatusManagerImpl.syncStarted(SynchronisationStatusManagerImpl.java:53)
at com.atlassian.crowd.manager.directory.DirectorySynchroniserImpl.synchronise(DirectorySynchroniserImpl.java:78)
at com.atlassian.crowd.directory.DbCachingDirectoryPoller.pollChanges(DbCachingDirectoryPoller.java:45)
at com.atlassian.crowd.manager.directory.monitor.poller.DirectoryPollerJobRunner.runJob(DirectoryPollerJobRunner.java:92)
at com.atlassian.scheduler.core.JobLauncher.runJob(JobLauncher.java:134)
at com.atlassian.scheduler.core.JobLauncher.launchAndBuildResponse(JobLauncher.java:106)
at com.atlassian.scheduler.core.JobLauncher.launch(JobLauncher.java:90)
at com.atlassian.scheduler.caesium.impl.CaesiumSchedulerService.launchJob(CaesiumSchedulerService.java:435)
at com.atlassian.scheduler.caesium.impl.CaesiumSchedulerService.executeClusteredJob(CaesiumSchedulerService.java:430)
at com.atlassian.scheduler.caesium.impl.CaesiumSchedulerService.executeClusteredJobWithRecoveryGuard(CaesiumSchedulerService.java:454)
at com.atlassian.scheduler.caesium.impl.CaesiumSchedulerService.executeQueuedJob(CaesiumSchedulerService.java:382)
at com.atlassian.scheduler.caesium.impl.SchedulerQueueWorker.executeJob(SchedulerQueueWorker.java:66)
at com.atlassian.scheduler.caesium.impl.SchedulerQueueWorker.executeNextJob(SchedulerQueueWorker.java:60)
at com.atlassian.scheduler.caesium.impl.SchedulerQueueWorker.run(SchedulerQueueWorker.java:35)
at java.lang.Thread.run(Thread.java:748)
Caused by: org.postgresql.util.PSQLException: ERROR: could not read block 0 in file "base/16389/27664": read only 0 of 8192 bytes
at org.postgresql.core.v3.QueryExecutorImpl.receiveErrorResponse(QueryExecutorImpl.java:2553)
at org.postgresql.core.v3.QueryExecutorImpl.processResults(QueryExecutorImpl.java:2285)
at org.postgresql.core.v3.QueryExecutorImpl.execute(QueryExecutorImpl.java:323)
at org.postgresql.jdbc.PgStatement.executeInternal(PgStatement.java:473)
at org.postgresql.jdbc.PgStatement.execute(PgStatement.java:393)
at org.postgresql.jdbc.PgPreparedStatement.executeUpdate(PgPreparedStatement.java:130)
at org.apache.commons.dbcp2.DelegatingPreparedStatement.executeUpdate(DelegatingPreparedStatement.java:98)
at org.apache.commons.dbcp2.DelegatingPreparedStatement.executeUpdate(DelegatingPreparedStatement.java:98)
at com.atlassian.jira.ofbiz.sql.PreparedStatementWrapper.executeUpdate(PreparedStatementWrapper.java:47)
at com.atlassian.jira.diagnostic.connection.DiagnosticPreparedStatement.lambda$executeUpdate$7(DiagnosticPreparedStatement.java:69)
at com.atlassian.diagnostics.internal.platform.monitor.db.DefaultDatabaseDiagnosticsCollector.recordExecutionTime(DefaultDatabaseDiagnosticsCollector.java:70)
at com.atlassian.jira.diagnostic.connection.DatabaseDiagnosticsCollectorDelegate.recordExecutionTime(DatabaseDiagnosticsCollectorDelegate.java:55)
at com.atlassian.jira.diagnostic.connection.DiagnosticPreparedStatement.executeUpdate(DiagnosticPreparedStatement.java:69)
at com.querydsl.sql.dml.SQLInsertClause.execute(SQLInsertClause.java:423)
... 24 more

Like
IP.org - Webmaster
IP.org - Webmaster May 14, 2021

2021-05-01 16:55:25,985+0000 http-nio-8080-exec-8 ERROR st******.a********* 1015x785x1 17rhz48 92.196.192.141,192.168.178.25 /secure/admin/WebSudoAuthenticate.jspa [c.a.j.security.login.LoginStoreImpl] com.atlassian.crowd.exception.ApplicationPermissionException: Not allowed to update user attributes 'st******.a*********' in directory 'Crowd'.
com.atlassian.crowd.exception.OperationNotPermittedException: com.atlassian.crowd.exception.ApplicationPermissionException: Not allowed to update user attributes 'st******.a*********' in directory 'Crowd'.
at com.atlassian.crowd.embedded.core.CrowdServiceImpl.setUserAttribute(CrowdServiceImpl.java:335)
at com.atlassian.crowd.embedded.core.CrowdServiceImpl.setUserAttribute(CrowdServiceImpl.java:324)
at com.atlassian.jira.security.login.LoginStoreImpl.setLong(LoginStoreImpl.java:132)
at com.atlassian.jira.security.login.LoginStoreImpl.updateLastLoginTime(LoginStoreImpl.java:109)
at com.atlassian.jira.security.login.LoginStoreImpl.recordLoginAttempt(LoginStoreImpl.java:49)
at com.atlassian.jira.security.login.RecoveryLoginStore.recordLoginAttempt(RecoveryLoginStore.java:60)
at com.atlassian.jira.security.login.LoginManagerImpl.recordLoginAttempt(LoginManagerImpl.java:340)
at com.atlassian.jira.security.login.LoginManagerImpl.authenticateWithoutElevatedCheck(LoginManagerImpl.java:205)
at com.atlassian.jira.web.action.admin.WebSudoAuthenticate.doValidation(WebSudoAuthenticate.java:125)

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira Core
Jira Core Server
TAGS
Community showcase
Sharon Tan
Sharon Tan
Published in Jira

Online AMA this week: Your project management questions answered by Jira Design Lead James Rotanson

We know that great teams require amazing project management chops. It's no surprise that great teams who use Jira have strong project managers, effective workflows, and secrets that bring planning ...

164 views 1 6
Read article

Atlassian Community Events

See all events