RunaWFE Free / Discussion / Help: LDAP in runawfe 4.1.2

Teophilo Manin - 2015-05-07

Runawfe installed 4.1.2 and it works perfectly jboss 7.1.1 and the URL http: // localhost: 8080 \ wfe. Able to create and connect a postgresql datasource successfully. Now you need to connect users from an LDAP server that possess this functional runawfe. I saw various topics on ldap.importer.sh which is part of adminkit. I noticed that in runawfe the site, this binary distribution I installed, does not have such of the adminkit 4.1.2. I wonder where I can find or can use the 4.2.0? and other questions concerning the use of this ldap-importer.sh, how do I proceed step-by-step connection to my ldap in version 4.1.2 runawfe? I thank you.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Gaston Arango Acosta - 2015-05-08

Hi, Im also in the same situation, Runa Wfe Server 4.1.1 JBoss7 under redhat enterprise Linux 7.

Server loaded with standalone.xml profile, step by step configuration according to documentation. created dir wfe.custom in /opt/wfe-4.1.1/standalone/ with the wfe.custom.system.properties file inside and the following parameters

authentication.domain.name = ldap
authentication.ldap.server.url = ldap://192.168.97.203
authentication.ldap.userName.format = ${username}
ldap.connection.provider.url = ldap://192.168.97.203/ou=People,dc=enkeli,dc=it

Error from JBoss:

11:55:32,424 WARN [ru.runa.wfe.security.logic.LDAPLogic] (timerFactory) Synchronization is disabled.

I have some doubts about this, something is missing in the configuration because in the documentation only show a few parameters for ldap, Or there is another files related to Runa Authentication ? for ldap for example needed to load an ldap module. Please help

PostgreSQL works fine Config file -> wfe.custom.database.properties

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Gaston Arango Acosta - 2015-05-13

OK, Firts of all i really need help to make this app work. right now this is what im doing or trying to do

/opt/wfe/standalone/wfe.custom

wfe.custom.system.context.xml
<beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:aop="http://www.springframework.org/schema/aop" xmlns:tx="http://www.springframework.org/schema/tx" xmlns:jee="http://www.springframework.org/schema/jee" xmlns:context="http://www.springframework.org/schema/context" xmlns:task="http://www.springframework.org/schema/task" xsi:schemaLocation=" http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.0.xsd http://www.springframework.org/schema/jee http://www.springframework.org/schema/jee/spring-jee-2.5.xsd http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-2.5.xsd http://www.springframework.org/schema/task http://www.springframework.org/schema/task/spring-task-3.0.xsd">
<bean id="loginModuleConfiguration" class="ru.runa.wfe.security.auth.LoginModuleConfiguration">
<property name="loginModuleClassNames">
<list>
<value>ru.runa.wfe.security.auth.InternalDBPasswordLoginModule</value>
<value>ru.runa.wfe.security.auth.LdapLoginModule</value> <value>ru.runa.wfe.security.auth.PrincipalLoginModule</value>
</list>
</property>
</bean>
</beans>

2 - wfe.custom.system.properties - File to specify ldap params

authentication.domain.name=enkeli
authentication.ldap.server.url=ldap://ds.enkeli.it
authentication.ldap.userName.format=${username}
ldap.synchronizer.enabled=false

Still without results please any help is preciated

Thanks

Last edit: Dofs 2015-05-15

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Dofs - 2015-05-14

Hi. In RunaWFE these are 2 things concerning LDAP: users synchronization and authentication which can be configured independently from each other.

LDAP users synchronization before version 4.0.4 were available only in adminkit (ldap-importer.sh). Since version 4.0.4 it is integrated with server but not enabled by default.
Configure it with wfe.custom.system.properties as follows:
ldap.synchronizer.enabled = true
ldap.connection.provider.url = ldap://ds.arango.it
ldap.connection.principal = USER
ldap.connection.password = PASSWORD
ldap.synchronizer.ou = ou=People,dc=etecsa,dc=cu
ldap.synchronizer.create.executors = true
Periodic execution will synchronize users with LDAP. "Synchronization is disabled" message should be disallowed from log.
Source code: ru.runa.wfe.security.logic.LDAPLogic

If you prefer to use adminkit you can use it from http://sourceforge.net/projects/runawfe/files/SRC%20and%20BIN%20files/4.2.0RC/RunaWFE%20Server/RunaWFE_AdminKit.4.2.0RC.zip/download (you only need to change version in conf/wfe.custom.ejb.properties and it should work with server version 4.1.2).

LDAP authentication allows users to login in RunaWFE with passwords from LDAP. Note that corresponding user must exist in RunaWFE.
Enable login module by extending wfe.custom.system.context.xml as described above (try to set ru.runa.wfe.security.auth.LdapLoginModule at first place).
Configure it with wfe.custom.system.properties as follows:
authentication.domain.name = ARANGO
authentication.ldap.server.url = ldap://ds.arango.it
authentication.ldap.userName.format = ${username}
Source code: ru.runa.wfe.security.auth.LdapLoginModule
Now try to login.

In case of errors please post stack trace here.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Teophilo Manin - 2015-05-15

That's my system.properties

authentication.domain.name = teste.com
authentication.ldap.server.url = ldap: //xx.xx.xx.xx
ldap.connection.provider.url = ldap: //xx.xx.xx.xx/dc=dominio
ldap.connection.principal = cn = admin, dc = domain
ldap.connection.password = PAASWORD
ldap.synchronizer.enabled = true
ldap.synchronizer.create.executors = true

Appears in rune performers the link "Synchronize with LDAP", click on a user created already have an account on my LDAP server and apparently presents no mistake, but do not go with this user. The error after that user authentication is:

at ru.runa.wfe.security.auth.InternalDBPasswordLoginModule.login (InternalDBPasswordLoginModule.java:51) [wfe-core-4.2.0RC.jar: 4.2.0RC - $ {} svn.revision]
at ru.runa.wfe.security.auth.LoginModuleBase.login (LoginModuleBase.java:46) [wfe-core-4.2.0RC.jar: 4.2.0RC - $ {} svn.revision]
at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method) [rt.jar: 1.7.0_75]
at sun.reflect.NativeMethodAccessorImpl.invoke (NativeMethodAccessorImpl.java:57) [rt.jar: 1.7.0_75]
at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43) [rt.jar: 1.7.0_75]
at java.lang.reflect.Method.invoke (Method.java:606) [rt.jar: 1.7.0_75]
at javax.security.auth.login.LoginContext.invoke (LoginContext.java:762) [rt.jar: 1.7.0_75]
javax.security.auth.login.LoginContext.access at $ 000 (LoginContext.java:203) [rt.jar: 1.7.0_75]
javax.security.auth.login.LoginContext at $ 4.run (LoginContext.java:690) [rt.jar: 1.7.0_75]
javax.security.auth.login.LoginContext at $ 4.run (LoginContext.java:688) [rt.jar: 1.7.0_75]
at java.security.AccessController.doPrivileged (Native Method) [rt.jar: 1.7.0_75]
at javax.security.auth.login.LoginContext.invokePriv (LoginContext.java:687) [rt.jar: 1.7.0_75]
at javax.security.auth.login.LoginContext.login (LoginContext.java:595) [rt.jar: 1.7.0_75]
at ru.runa.wfe.security.logic.AuthenticationLogic.authenticate (AuthenticationLogic.java:75) [wfe-core-4.2.0RC.jar: 4.2.0RC - $ {} svn.revision]
at ru.runa.wfe.security.logic.AuthenticationLogic.authenticate (AuthenticationLogic.java:65) [wfe-core-4.2.0RC.jar: 4.2.0RC - $ {} svn.revision]
at ru.runa.wfe.service.impl.AuthenticationServiceBean.authenticateByLoginPassword(AuthenticationServiceBean.java:86) [Wfe-service-4.2.0RC.jar:]
at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method) [rt.jar: 1.7.0_75]
at sun.reflect.NativeMethodAccessorImpl.invoke (NativeMethodAccessorImpl.java:57) [rt.jar: 1.7.0_75]
at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43) [rt.jar: 1.7.0_75]
at java.lang.reflect.Method.invoke (Method.java:606) [rt.jar: 1.7.0_75]
at org.jboss.as.ee.component.ManagedReferenceMethodInterceptorFactory$ManagedReferenceMethodInterceptor.processInvocation(ManagedReferenceMethodInterceptorFactory.java:72) [Jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
org.jboss.invocation.InterceptorContext at $ Invocation.proceed (InterceptorContext.java:374) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at ru.runa.wfe.service.interceptors.EjbTransactionSupport.invokeWithRetry(EjbTransactionSupport.java:67) [Wfe-service-4.2.0RC.jar:]
at ru.runa.wfe.service.interceptors.EjbTransactionSupport.process (EjbTransactionSupport.java:46) [wfe-service-4.2.0RC.jar:]
at sun.reflect.GeneratedMethodAccessor627.invoke (Unknown Source) [: 1.7.0_75]
at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43) [rt.jar: 1.7.0_75]
at java.lang.reflect.Method.invoke (Method.java:606) [rt.jar: 1.7.0_75]
at org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123) [Jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
org.jboss.invocation.InterceptorContext at $ Invocation.proceed (InterceptorContext.java:374) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at ru.runa.wfe.service.interceptors.PerformanceSimpleObserver.process(PerformanceSimpleObserver.java:15) [Wfe-service-4.2.0RC.jar:]
at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method) [rt.jar: 1.7.0_75]
at sun.reflect.NativeMethodAccessorImpl.invoke (NativeMethodAccessorImpl.java:57) [rt.jar: 1.7.0_75]
at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43) [rt.jar: 1.7.0_75]
at java.lang.reflect.Method.invoke (Method.java:606) [rt.jar: 1.7.0_75]
at org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123) [Jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
org.jboss.invocation.InterceptorContext at $ Invocation.proceed (InterceptorContext.java:374) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at ru.runa.wfe.service.interceptors.EjbExceptionSupport.process (EjbExceptionSupport.java:46) [wfe-service-4.2.0RC.jar:]
at sun.reflect.GeneratedMethodAccessor621.invoke (Unknown Source) [: 1.7.0_75]
at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43) [rt.jar: 1.7.0_75]
at java.lang.reflect.Method.invoke (Method.java:606) [rt.jar: 1.7.0_75]
at org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123) [Jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.invocation.WeavedInterceptor.processInvocation (WeavedInterceptor.java:53) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.ee.component.interceptors.UserInterceptorFactory$1.processInvocation(UserInterceptorFactory.java:36) [Jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.jpa.interceptor.SBInvocationInterceptor.processInvocation(SBInvocationInterceptor.java:47)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.ejb3.tx.EjbBMTInterceptor.handleInvocation (EjbBMTInterceptor.java:105) [jboss-as-ejb3-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.as.ejb3.tx.BMTInterceptor.processInvocation (BMTInterceptor.java:56) [jboss-as-ejb3-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.invocation.InitialInterceptor.processInvocation (InitialInterceptor.java:21) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.invocation.ChainedInterceptor.processInvocation (ChainedInterceptor.java:61) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.ee.component.interceptors.ComponentDispatcherInterceptor.processInvocation(ComponentDispatcherInterceptor.java:53) [Jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.ejb3.component.pool.PooledInstanceInterceptor.processInvocation(PooledInstanceInterceptor.java:51) [Jboss-as-ejb3-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.ejb3.component.interceptors.CurrentInvocationContextInterceptor.processInvocation(CurrentInvocationContextInterceptor.java:41) [Jboss-as-ejb3-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.ejb3.component.interceptors.LoggingInterceptor.processInvocation(LoggingInterceptor.java:59) [Jboss-as-ejb3-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.ee.component.NamespaceContextInterceptor.processInvocation(NamespaceContextInterceptor.java:50) [Jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.ejb3.component.interceptors.AdditionalSetupInterceptor.processInvocation(AdditionalSetupInterceptor.java:32) [Jboss-as-ejb3-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.ee.component.TCCLInterceptor.processInvocation (TCCLInterceptor.java:45) [jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.invocation.ChainedInterceptor.processInvocation (ChainedInterceptor.java:61) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
org.jboss.as.ee.component.ViewService at $ View.invoke (ViewService.java:165) [jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
org.jboss.as.ee.component.ViewDescription at $ 1.processInvocation (ViewDescription.java:173) [jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.invocation.ChainedInterceptor.processInvocation (ChainedInterceptor.java:61) [jboss-invocation-1.1.1.Final.jar: 1.1.1.Final]
at org.jboss.as.ee.component.ProxyInvocationHandler.invoke (ProxyInvocationHandler.java:72) [jboss-as-ee-7.1.1.Final.jar: 7.1.1.Final]
at ru.runa.wfe.service.decl.AuthenticationServiceLocal $$$ view338.authenticateByLoginPassword (Unknown Source) [wfe-service-4.2.0RC.jar:]
at ru.runa.wfe.service.delegate.AuthenticationServiceDelegate.authenticateByLoginPassword(AuthenticationServiceDelegate.java:45) [Wfe-service-4.2.0RC.jar:]
at ru.runa.af.web.action.LoginAction.execute (LoginAction.java:53)
at org.apache.struts.action.RequestProcessor.processActionPerform (RequestProcessor.java:425)
at org.apache.struts.action.RequestProcessor.process (RequestProcessor.java:228)
at ru.runa.common.web.UTF8RequestProcessor.process (UTF8RequestProcessor.java:41)
at org.apache.struts.action.ActionServlet.process (ActionServlet.java:1913)
at org.apache.struts.action.ActionServlet.doPost (ActionServlet.java:462)
at javax.servlet.http.HttpServlet.service (HttpServlet.java:754) [jboss-servlet-api_3.0_spec-1.0.0.Final.jar: 1.0.0.Final]
at javax.servlet.http.HttpServlet.service (HttpServlet.java:847) [jboss-servlet-api_3.0_spec-1.0.0.Final.jar: 1.0.0.Final]
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:329)
at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:248)
at ru.runa.common.web.filter.XSSFilter.doFilter (XSSFilter.java:18)
at ru.runa.common.web.filter.HTTPFilterBase.doFilter (HTTPFilterBase.java:50)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:248)
at ru.runa.common.web.filter.HTTPSessionFilter.doFilter (HTTPSessionFilter.java:49)
at ru.runa.common.web.filter.HTTPFilterBase.doFilter (HTTPFilterBase.java:50)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:248)
at ru.runa.af.web.filter.NTLMFilter.doFilter (NTLMFilter.java:54)
at ru.runa.common.web.filter.HTTPFilterBase.doFilter (HTTPFilterBase.java:50)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:248)
at net.bull.javamelody.MonitoringFilter.doFilter (MonitoringFilter.java:206) [JavaMelody-core-1.44.0.jar: 1.44.0]
at net.bull.javamelody.MonitoringFilter.doFilter (MonitoringFilter.java:179) [JavaMelody-core-1.44.0.jar: 1.44.0]
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:248)
at org.apache.catalina.core.StandardWrapperValve.invoke (StandardWrapperValve.java:275)
at org.apache.catalina.core.StandardContextValve.invoke (StandardContextValve.java:161)
at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153)
at org.apache.catalina.core.StandardHostValve.invoke (StandardHostValve.java:155)
at org.apache.catalina.valves.ErrorReportValve.invoke (ErrorReportValve.java:102)
at org.apache.catalina.core.StandardEngineValve.invoke (StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service (CoyoteAdapter.java:368)
at org.apache.coyote.http11.Http11Processor.process (Http11Processor.java:877)
org.apache.coyote.http11.Http11Protocol at $ Http11ConnectionHandler.process (Http11Protocol.java:671)
org.apache.tomcat.util.net.JIoEndpoint at $ Worker.run (JIoEndpoint.java:930)
at java.lang.Thread.run (Thread.java:745) [rt.jar: 1.7.0_75]

10: 24: 01.805 WARN [ru.runa.wfe.service.interceptors.EjbExceptionSupport] (http - 0.0.0.0-8080-1) ejb call ru.runa.wfe.security.AuthenticationException: javax.security.auth.login .LoginException: java.lang.NullPointerException
at java.util.Hashtable.put (Hashtable.java:514)
at ru.runa.wfe.security.auth.LdapLoginModule.initialize (LdapLoginModule.java:57)
at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke (NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke (Method.java:606)
at javax.security.auth.login.LoginContext.invoke (LoginContext.java:744)
javax.security.auth.login.LoginContext.access at $ 000 (LoginContext.java:203)
javax.security.auth.login.LoginContext at $ 4.run (LoginContext.java:690)
javax.security.auth.login.LoginContext at $ 4.run (LoginContext.java:688)
at java.security.AccessController.doPrivileged (Native Method)
at javax.security.auth.login.LoginContext.invokePriv (LoginContext.java:687)
at javax.security.auth.login.LoginContext.login (LoginContext.java:595)
at ru.runa.wfe.security.logic.AuthenticationLogic.authenticate (AuthenticationLogic.java:75)
at ru.runa.wfe.security.logic.AuthenticationLogic.authenticate (AuthenticationLogic.java:65)
at ru.runa.wfe.service.impl.AuthenticationServiceBean.authenticateByLoginPassword(AuthenticationServiceBean.java:86)
at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke (NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke (Method.java:606)
at org.jboss.as.ee.component.ManagedReferenceMethodInterceptorFactory$ManagedReferenceMethodInterceptor.processInvocation(ManagedReferenceMethodInterceptorFactory.java:72)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
org.jboss.invocation.InterceptorContext at $ Invocation.proceed (InterceptorContext.java:374)
at ru.runa.wfe.service.interceptors.EjbTransactionSupport.invokeWithRetry(EjbTransactionSupport.java:67)
at ru.runa.wfe.service.interceptors.EjbTransactionSupport.process (EjbTransactionSupport.java:46)
at sun.reflect.GeneratedMethodAccessor627.invoke (Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke (Method.java:606)
at org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
org.jboss.invocation.InterceptorContext at $ Invocation.proceed (InterceptorContext.java:374)
at ru.runa.wfe.service.interceptors.PerformanceSimpleObserver.process(PerformanceSimpleObserver.java:15)
at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke (NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke (Method.java:606)
at org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
org.jboss.invocation.InterceptorContext at $ Invocation.proceed (InterceptorContext.java:374)
at ru.runa.wfe.service.interceptors.EjbExceptionSupport.process (EjbExceptionSupport.java:46)
at sun.reflect.GeneratedMethodAccessor621.invoke (Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke (Method.java:606)
at org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.invocation.WeavedInterceptor.processInvocation (WeavedInterceptor.java:53)
at org.jboss.as.ee.component.interceptors.UserInterceptorFactory$1.processInvocation(UserInterceptorFactory.java:36)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.as.jpa.interceptor.SBInvocationInterceptor.processInvocation(SBInvocationInterceptor.java:47)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.as.ejb3.tx.EjbBMTInterceptor.handleInvocation (EjbBMTInterceptor.java:105)
at org.jboss.as.ejb3.tx.BMTInterceptor.processInvocation (BMTInterceptor.java:56)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.invocation.InitialInterceptor.processInvocation (InitialInterceptor.java:21)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.invocation.ChainedInterceptor.processInvocation (ChainedInterceptor.java:61)
at org.jboss.as.ee.component.interceptors.ComponentDispatcherInterceptor.processInvocation(ComponentDispatcherInterceptor.java:53)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.as.ejb3.component.pool.PooledInstanceInterceptor.processInvocation(PooledInstanceInterceptor.java:51)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.as.ejb3.component.interceptors.CurrentInvocationContextInterceptor.processInvocation(CurrentInvocationContextInterceptor.java:41)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.as.ejb3.component.interceptors.LoggingInterceptor.processInvocation(LoggingInterceptor.java:59)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.as.ee.component.NamespaceContextInterceptor.processInvocation(NamespaceContextInterceptor.java:50)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.as.ejb3.component.interceptors.AdditionalSetupInterceptor.processInvocation(AdditionalSetupInterceptor.java:32)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.as.ee.component.TCCLInterceptor.processInvocation (TCCLInterceptor.java:45)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.invocation.ChainedInterceptor.processInvocation (ChainedInterceptor.java:61)
org.jboss.as.ee.component.ViewService at $ View.invoke (ViewService.java:165)
org.jboss.as.ee.component.ViewDescription at $ 1.processInvocation (ViewDescription.java:173)
at org.jboss.invocation.InterceptorContext.proceed (InterceptorContext.java:288)
at org.jboss.invocation.ChainedInterceptor.processInvocation (ChainedInterceptor.java:61)
at org.jboss.as.ee.component.ProxyInvocationHandler.invoke (ProxyInvocationHandler.java:72)
at ru.runa.wfe.service.decl.AuthenticationServiceLocal $$$ view338.authenticateByLoginPassword (Unknown Source)
at ru.runa.wfe.service.delegate.AuthenticationServiceDelegate.authenticateByLoginPassword(AuthenticationServiceDelegate.java:45)
at ru.runa.af.web.action.LoginAction.execute (LoginAction.java:53)
at org.apache.struts.action.RequestProcessor.processActionPerform (RequestProcessor.java:425)
at org.apache.struts.action.RequestProcessor.process (RequestProcessor.java:228)
at ru.runa.common.web.UTF8RequestProcessor.process (UTF8RequestProcessor.java:41)
at org.apache.struts.action.ActionServlet.process (ActionServlet.java:1913)
at org.apache.struts.action.ActionServlet.doPost (ActionServlet.java:462)
at javax.servlet.http.HttpServlet.service (HttpServlet.java:754)
at javax.servlet.http.HttpServlet.service (HttpServlet.java:847)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:329)
at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:248)
at ru.runa.common.web.filter.XSSFilter.doFilter (XSSFilter.java:18)
at ru.runa.common.web.filter.HTTPFilterBase.doFilter (HTTPFilterBase.java:50)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:248)
at ru.runa.common.web.filter.HTTPSessionFilter.doFilter (HTTPSessionFilter.java:49)
at ru.runa.common.web.filter.HTTPFilterBase.doFilter (HTTPFilterBase.java:50)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:248)
at ru.runa.af.web.filter.NTLMFilter.doFilter (NTLMFilter.java:54)
at ru.runa.common.web.filter.HTTPFilterBase.doFilter (HTTPFilterBase.java:50)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:248)
at net.bull.javamelody.MonitoringFilter.doFilter (MonitoringFilter.java:206)
at net.bull.javamelody.MonitoringFilter.doFilter (MonitoringFilter.java:179)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:248)
at org.apache.catalina.core.StandardWrapperValve.invoke (StandardWrapperValve.java:275)
at org.apache.catalina.core.StandardContextValve.invoke (StandardContextValve.java:161)
at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153)
at org.apache.catalina.core.StandardHostValve.invoke (StandardHostValve.java:155)
at org.apache.catalina.valves.ErrorReportValve.invoke (ErrorReportValve.java:102)
at org.apache.catalina.core.StandardEngineValve.invoke (StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service (CoyoteAdapter.java:368)
at org.apache.coyote.http11.Http11Processor.process (Http11Processor.java:877)
org.apache.coyote.http11.Http11Protocol at $ Http11ConnectionHandler.process (Http11Protocol.java:671)
org.apache.tomcat.util.net.JIoEndpoint at $ Worker.run (JIoEndpoint.java:930)
at java.lang.Thread.run (Thread.java:745)

10: 24: 42.749 INFO [ru.runa.wfe.security.logic.LDAPLogic] (timerFactory) Synchronization mode: user and group relations only
10: 26: 17.862 INFO [ru.runa.wfe.security.logic.LDAPLogic] (timerFactory) Synchronization mode: user and group relations only
10: 26: 17.864 INFO [ru.runa.wfe.user.cache.ExecutorCacheCtrl] (timerFactory) Cache initializing
10: 26: 17.898 INFO [ru.runa.wfe.commons.cache.EhcacheHelper] (timerFactory) EHCache manager loaded and will be used in WFE caches.
10: 26: 17.899 INFO [ru.runa.wfe.user.cache.ExecutorCacheCtrl] (timerFactory) Cache is initialized
10: 27: 41.215 INFO [ru.runa.wfe.security.logic.LDAPLogic] (timerFactory) Synchronization mode: user and group relations only
10: 32: 11.450 INFO [ru.runa.wfe.security.logic.LDAPLogic] (timerFactory) Synchronization mode: user and group relations only
10: 32: 54.780 INFO [ru.runa.wfe.task.cache.TaskCacheCtrl] (http - 0.0.0.0-8080-1) Cache initializing
10: 32: 54.781 INFO [ru.runa.wfe.task.cache.TaskCacheCtrl] (http - 0.0.0.0-8080-1) Cache is initialized
10: 32: 54.781 INFO [ru.runa.wfe.ss.cache.SubstitutionCacheCtrl] (http - 0.0.0.0-8080-1) Cache initializing
10: 32: 54.787 INFO [ru.runa.wfe.ss.cache.SubstitutionCacheCtrl] (http - 0.0.0.0-8080-1) Cache is initialized
10: 33: 01.075 INFO [org.springframework.beans.factory.annotation.AutowiredAnnotationBeanPostProcessor] (http - 0.0.0.0-8080-5) JSR-330 'javax.inject.Inject' annotation found and supported for autowiring

What am I doing wrong if my LDAP server works perfect?

Last edit: Dofs 2015-05-15

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Gaston Arango Acosta - 2015-05-15

Hi Again, this is mi config file some users created in executors and members of Administrators but still no login from ldap:

1 - wfe.custom.system.properties

authentication.domain.name = enkeli
authentication.ldap.server.url = ldap://ds.enkeli.it
authentication.ldap.userName.format = uid=${username},ou=People,dc=${domain.name},dc=it

2 - wfe.custom.system.context.xml
<beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:aop="http://www.springframework.org/schema/aop" xmlns:tx="http://www.springframework.org/schema/tx" xmlns:jee="http://www.springframework.org/schema/jee" xmlns:context="http://www.springframework.org/schema/context" xmlns:task="http://www.springframework.org/schema/task" xsi:schemaLocation=" http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.0.xsd http://www.springframework.org/schema/jee http://www.springframework.org/schema/jee/spring-jee-2.5.xsd http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-2.5.xsd http://www.springframework.org/schema/task http://www.springframework.org/schema/task/spring-task-3.0.xsd">
<bean id="loginModuleConfiguration" class="ru.runa.wfe.security.auth.LoginModuleConfiguration">
<property name="loginModuleClassNames">
<list>
<value>ru.runa.wfe.security.auth.LdapLoginModule</value> <value>ru.runa.wfe.security.auth.InternalDBPasswordLoginModule</value> <value>ru.runa.wfe.security.auth.PrincipalLoginModule</value>
</list>
</property>
</bean>

</beans>

I added all the xml stuff because if i dont the server initialization fails and not deployed

This is the error im getting:

11:57:15,350 WARN [ru.runa.wfe.service.interceptors.EjbExceptionSupport] (http--0.0.0.0-80-1) ejb call ru.runa.wfe.security.AuthenticationException: javax.security.auth.login.LoginException: java.lang.NullPointerException
at java.util.Hashtable.put(Hashtable.java:514)
at ru.runa.wfe.security.auth.LdapLoginModule.initialize(LdapLoginModule.java:57)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:744)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:203)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:690)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:688)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:687)
at javax.security.auth.login.LoginContext.login(LoginContext.java:595)
at ru.runa.wfe.security.logic.AuthenticationLogic.authenticate(AuthenticationLogic.java:71)
at ru.runa.wfe.security.logic.AuthenticationLogic.authenticate(AuthenticationLogic.java:65)
at ru.runa.wfe.service.impl.AuthenticationServiceBean.authenticateByLoginPassword(AuthenticationServiceBean.java:86)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at org.jboss.as.ee.component.ManagedReferenceMethodInterceptorFactory$ManagedReferenceMethodInterceptor.processInvocation(ManagedReferenceMethodInterceptorFactory.java:72)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.invocation.InterceptorContext$Invocation.proceed(InterceptorContext.java:374)
at ru.runa.wfe.service.interceptors.EjbTransactionSupport.invokeWithRetry(EjbTransactionSupport.java:67)
at ru.runa.wfe.service.interceptors.EjbTransactionSupport.process(EjbTransactionSupport.java:46)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.invocation.InterceptorContext$Invocation.proceed(InterceptorContext.java:374)
at ru.runa.wfe.service.interceptors.PerformanceSimpleObserver.process(PerformanceSimpleObserver.java:15)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.invocation.InterceptorContext$Invocation.proceed(InterceptorContext.java:374)
at ru.runa.wfe.service.interceptors.EjbExceptionSupport.process(EjbExceptionSupport.java:42)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.invocation.WeavedInterceptor.processInvocation(WeavedInterceptor.java:53)
at org.jboss.as.ee.component.interceptors.UserInterceptorFactory$1.processInvocation(UserInterceptorFactory.java:36)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.as.jpa.interceptor.SBInvocationInterceptor.processInvocation(SBInvocationInterceptor.java:47)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.as.ejb3.tx.EjbBMTInterceptor.handleInvocation(EjbBMTInterceptor.java:105)
at org.jboss.as.ejb3.tx.BMTInterceptor.processInvocation(BMTInterceptor.java:56)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.invocation.InitialInterceptor.processInvocation(InitialInterceptor.java:21)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61)
at org.jboss.as.ee.component.interceptors.ComponentDispatcherInterceptor.processInvocation(ComponentDispatcherInterceptor.java:53)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.as.ejb3.component.pool.PooledInstanceInterceptor.processInvocation(PooledInstanceInterceptor.java:51)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.as.ejb3.component.interceptors.CurrentInvocationContextInterceptor.processInvocation(CurrentInvocationContextInterceptor.java:41)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.as.ejb3.component.interceptors.LoggingInterceptor.processInvocation(LoggingInterceptor.java:59)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.as.ee.component.NamespaceContextInterceptor.processInvocation(NamespaceContextInterceptor.java:50)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.as.ejb3.component.interceptors.AdditionalSetupInterceptor.processInvocation(AdditionalSetupInterceptor.java:32)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.as.ee.component.TCCLInterceptor.processInvocation(TCCLInterceptor.java:45)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61)
at org.jboss.as.ee.component.ViewService$View.invoke(ViewService.java:165)
at org.jboss.as.ee.component.ViewDescription$1.processInvocation(ViewDescription.java:173)
at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)
at org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61)
at org.jboss.as.ee.component.ProxyInvocationHandler.invoke(ProxyInvocationHandler.java:72)
at ru.runa.wfe.service.decl.AuthenticationServiceLocal$$$view36.authenticateByLoginPassword(Unknown Source)
at ru.runa.wfe.service.delegate.AuthenticationServiceDelegate.authenticateByLoginPassword(AuthenticationServiceDelegate.java:45)
at ru.runa.af.web.action.LoginAction.execute(LoginAction.java:53)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:425)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:228)
at ru.runa.common.web.UTF8RequestProcessor.process(UTF8RequestProcessor.java:41)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1913)
at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:462)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:754)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:847)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:329)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)
at ru.runa.common.web.filter.XSSFilter.doFilter(XSSFilter.java:18)
at ru.runa.common.web.filter.HTTPFilterBase.doFilter(HTTPFilterBase.java:50)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)
at ru.runa.common.web.filter.HTTPSessionFilter.doFilter(HTTPSessionFilter.java:49)
at ru.runa.common.web.filter.HTTPFilterBase.doFilter(HTTPFilterBase.java:50)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)
at ru.runa.af.web.filter.NTLMFilter.doFilter(NTLMFilter.java:54)
at ru.runa.common.web.filter.HTTPFilterBase.doFilter(HTTPFilterBase.java:50)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)
at net.bull.javamelody.MonitoringFilter.doFilter(MonitoringFilter.java:206)
at net.bull.javamelody.MonitoringFilter.doFilter(MonitoringFilter.java:179)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:275)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161)
at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:877)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:671)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930)
at java.lang.Thread.run(Thread.java:745)

11:57:16,705 WARN [org.apache.struts.util.PropertyMessageResources] (http--0.0.0.0-80-1) Resource struts_en_US.properties Not Found.
11:57:16,707 WARN [org.apache.struts.util.PropertyMessageResources] (http--0.0.0.0-80-1) Resource struts_en.properties Not Found.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Gaston Arango Acosta - 2015-05-15

I dont use sync options because i dont really need this, I dont want to import all my ldap users to Runa . I just need authentication options. My idea is create the executor in Runa manually but using the ldap password for auth and still dont work even with this config.

MD5 Auth is no the method i uso in my ldap, we use SIMPLE and uid is the key value for the ldap users so this chain supose to be valid for me
authentication.ldap.userName.format =uid=${username},ou=People,dc=${domain.name},dc=cu

Last edit: Gaston Arango Acosta 2015-05-15

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Dofs - 2015-05-15

So synchronization is configured correctly.
In authentication there is bug. I reproduced NullPointerException.
Version 4.1.3 is a bug fix release for 4.1.2: https://sourceforge.net/p/runawfe/code/HEAD/tree/RunaWFE-4.x/branches/v4.1.3/
I fixed it there and build jboss7 binary for you:
https://dl.dropboxusercontent.com/u/23653977/runawfe/v4.1.3/runawfe.ear
You can replace your in jboss/standalone/deployments and check it.
Your configuration seems correct.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Gaston Arango Acosta - 2015-05-15

Thanks a lot Dofs, it works perfect with the .ear Hope this where useful for other users. it was for me Thanks a lot again.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Teophilo Manin - 2015-05-19

Friends, I am using runawfe 4.1.0 with jboss 7

To be able to authenticate in my LDAP, not to synchronize accounts, but to authenticate existing users on my LDAP, I edited the following entries in wfe-core.jar in system.properties file located here:

authentication.domain.name = 60bec.eb
authentication.ldap.server.url = ldap: //10.83.11.18
authentication.ldap.userName.format = uid = admin, ou = People, dc = 60bec, dc = b

In LDAP settings entry

ldap.connection.provider.url = ldap: //10.83.11.18/cn=admin,dc=60bec,dc=eb
ldap.connection.principal = cn = admin, ou = People, dc = 60bec, dc = b
ldap.connection.password = admin password
ldap.synchronizer.enabled = false

Still I put the <value> ru.runa.wfe.security.auth.LdapLoginModule at the top of the entry system.context.xml file also located in wfe-core.jar

The question is whether this is the correct procedure or have to edit another file?

I thank you.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Dofs - 2015-05-19

Hi.
You can edit property files in runawfe.ear but there is another mechanism exists: http://runawfe.org/doc/ServerConfigurationGuide#OverrideProperties
So you can just override default settings.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Gaston Arango Acosta - 2015-06-04

Hi, i will explain the foolproof steps to connect RunaWFE with LDAP for version 4.1.3 (Valid for Linux and Windows) Tested. 100% Works

1 - Fisrt of all if u re not running version 4.1.3 dl and install or u can donwload this file https://dl.dropboxusercontent.com/u/23653977/runawfe/v4.1.3/runawfe.ear and copy to

S.O Windows -> standalone\deployments\deployments

S.O Linux -> Example: /opt/wfe-4/standalone/deployments

2 - Again inside standalone folder create a new one called wfe.custom and create inside 2 files wfe.custom.system.context.xml, wfe.custom.system.properties this twoo files are for override system properties.

http://runawfe.org/doc/ServerConfigurationGuide#OverrideProperties -> read first

3 - edit this files

custom.system.context.xml
<beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:aop="http://www.springframework.org/schema/aop" xmlns:tx="http://www.springframework.org/schema/tx" xmlns:jee="http://www.springframework.org/schema/jee" xmlns:context="http://www.springframework.org/schema/context" xmlns:task="http://www.springframework.org/schema/task" xsi:schemaLocation=" http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.0.xsd http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.0.xsd http://www.springframework.org/schema/jee http://www.springframework.org/schema/jee/spring-jee-2.5.xsd http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-2.5.xsd http://www.springframework.org/schema/task http://www.springframework.org/schema/task/spring-task-3.0.xsd">
<bean id="loginModuleConfiguration" class="ru.runa.wfe.security.auth.LoginModuleConfiguration"> <property name="loginModuleClassNames"> <list> <value>ru.runa.wfe.security.auth.InternalDBPasswordLoginModule</value> <value>ru.runa.wfe.security.auth.LdapLoginModule</value> <value>ru.runa.wfe.security.auth.PrincipalLoginModule</value> </list> </property> </bean>

</beans>

The bean LoginModuleConfiguration must be like this because by default ru.runa.wfe.security.auth.InternalDBPasswordLoginModule line comes commented
This is very important because u re giving to system the mechanism to login.

2 - and the most important wfe.custom.system.properties this is the file where you tell to runa the place to aprovisioning your LDAP Servers

wfe.custom.system.properties

Ok here you need to code 3 fundamental pillars

authentication.domain.name
authentication.ldap.server.url
authentication.ldap.userName.format

All the other properties like ldap synchronization are optional. Set this parameters according to your organization network topology.

Example

authentication.domain.name = company
authentication.ldap.server.url = ldap://ds.company.net -> the ldap:// is mandatory and i put a dns record to my ds server.I use Fedora Directory Servers (ds) but if u have only one ldap server put your server ip.

authentication.ldap.userName.format = uid=${username},ou=People,dc=company,dc=net

Note: This is the UserName Format to send the binds to ldap if u use uid this is the most common way ldap works this config will work.

there is others ways like:

How to map the user id entered by the user to that passed through to LDAP.

Supported placeholders are: ${username} (user login), ${domain.name} (as specified in property 'authentication.domain.name')

Examples

AD (default) ${domain.name}\${username}

AD UPN ${username}@company_domain

AD DN cn=${username},ou=xyz,dc=company_domain

OpenLDAP simple uid=${username},ou=People,dc=${domain.name},dc=com

OpenLDAP DIGEST-MD5 ${username}

Hell Yeah Runa WFE is awesome, the app is powerfull

I hope this post be helpful for all of u guys

Best Regards
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

LDAP in runawfe 4.1.2

is low code bpm platform, which is easy to install and easy to use

Forums

Help

LDAP in runawfe 4.1.2

How to map the user id entered by the user to that passed through to LDAP.

Examples

AD (default) ${domain.name}\${username}

AD UPN ${username}@company_domain

AD DN cn=${username},ou=xyz,dc=company_domain

OpenLDAP simple uid=${username},ou=People,dc=${domain.name},dc=com

OpenLDAP DIGEST-MD5 ${username}

LDAP in runawfe 4.1.2

is low code bpm platform, which is easy to install and easy to use

Forums

Help

LDAP in runawfe 4.1.2 document.SUBSCRIPTION_OPTIONS = { "thing": "topic", "subscribed": false, "url": "subscribe", "icon": { "css": "fa fa-envelope-o" } };

How to map the user id entered by the user to that passed through to LDAP.

Supported placeholders are: ${username} (user login), ${domain.name} (as specified in property 'authentication.domain.name')

Examples

AD (default) ${domain.name}\${username}

AD UPN ${username}@company_domain

AD DN cn=${username},ou=xyz,dc=company_domain

OpenLDAP simple uid=${username},ou=People,dc=${domain.name},dc=com

OpenLDAP DIGEST-MD5 ${username}

LDAP in runawfe 4.1.2