Menu
▾
▴
sandweb-users
|
From: Eric S. <er...@re...> - 2003-07-10 21:49:24
|
Hi All, sorry in advance for the long post.
Following the instructions to unpack & install the sandweb 1.0rc2 tarball on
redhat 8.0 pro on a dual P4 server, I run:
perl Makefile.PL (no errors)
make (no errors)
make test
on that last command, I get the following output:
*****************************************************
[root@deathstar sandweb]# make test
PERL_DL_NONLAZY=1 /usr/bin/perl "-MExtUtils::Command::MM" "-e"
"test_harness(0,
'blib/lib', 'blib/arch')" t/*.t
t/auth..........ok
t/file..........ok
t/repository....ok 8/190+1 records in
0+1 records out
Can't call method "debug" without a package or object reference at
/usr/local/src/sandweb/blib/lib/SandWeb/Repository/cvs.pm line 2603.
t/repository....dubious
Test returned status 29 (wstat 7424, 0x1d00)
DIED. FAILED tests 9-19
Failed 11/19 tests, 42.11% okay
Failed Test Stat Wstat Total Fail Failed List of Failed
-------------------------------------------------------------------------------
t/repository.t 29 7424 19 11 57.89% 9-19
Failed 1/3 test scripts, 66.67% okay. 11/30 subtests failed, 63.33% okay.
make: *** [test_dynamic] Error 2
********************************************************
I tried commenting out this line ($log->debug ...... ), but the error showed
up at many other locations with similar $log->debug calls seemingly without
end.
I have the following perl packages installed:
perl-Parse-Yapp-1.05-26
perl-libxml-perl-0.07-25
perl-XML-Grove-0.46alpha-21
perl-NKF-1.71-7
mod_perl-1.99_05-3
perl-5.8.0-55
perl-CPAN-1.61-55
perl-DBI-1.30-1
perl-DateManip-5.40-27
perl-HTML-Parser-3.26-14
perl-URI-1.21-3
perl-XML-Parser-2.31-12
perl-XML-Dumper-0.4-22
perl-libxml-enno-1.02-25
perl-XML-Twig-3.05-3
perl-File-MMagic-1.15-2
perl-Text-Kakasi-1.05-2
perl-CGI-2.81-55
perl-Digest-SHA1-2.01-6
perl-Net-DNS-0.26-2
perl-DBD-MySQL-2.1017-3
perl-Filter-1.28-9
perl-HTML-Tagset-3.03-25
perl-libwww-perl-5.65-2
perl-XML-Encoding-1.01-20
perl-Crypt-SSLeay-0.45-2
perl-Digest-HMAC-1.0
Any ideas?
Thanks,
Eric
|
|
From: Rob H. <ro...@ro...> - 2003-07-10 22:06:44
|
On Thu, Jul 10, 2003 at 03:48:55PM -0600, Eric Swenson wrote: > Can't call method "debug" without a package or object reference at > /usr/local/src/sandweb/blib/lib/SandWeb/Repository/cvs.pm line 2603. > t/repository....dubious > Test returned status 29 (wstat 7424, 0x1d00) > DIED. FAILED tests 9-19 Hello, We're ready to do another RC release off the release-1_0-branch in CVS, can you do a "cvs co -r release-1_0-branch sandweb" from our anoncvs server and see if it works? Or, you can just wait a day or two and rc3 will come out. It'd be cool if you can test it from CVS though, just to make sure we don't release rc3 with a bug.. Thanks, Rob |
|
From: Eric S. <er...@re...> - 2003-07-14 17:58:33
|
Interesting, I couldn't run that command you suggested (even with my $CVSROOT setup properly), but I could run: cvs -z3 -d:pserver:ano...@cv...:/cvsroot/sandweb co sandweb In any case, make test came up with fewer errors, while the RC3 release seemed to work just fine this morning. BTW, I'm running Apache2, and I'd like to be able to just use mod_auth_ldap to authenticate users against my central ldap directory. Do you have any idea on whether I should go down the path of mod_auth_ldap, or will I need extra information in sandweb that will require hacking the code? Thanks, Eric On Thursday 10 July 2003 16:17, Rob Helmer wrote: > On Thu, Jul 10, 2003 at 03:48:55PM -0600, Eric Swenson wrote: > > Can't call method "debug" without a package or object reference at > > /usr/local/src/sandweb/blib/lib/SandWeb/Repository/cvs.pm line 2603. > > t/repository....dubious > > Test returned status 29 (wstat 7424, 0x1d00) > > DIED. FAILED tests 9-19 > > Hello, > > > We're ready to do another RC release off the release-1_0-branch in CVS, > can you do a "cvs co -r release-1_0-branch sandweb" from our anoncvs > server and see if it works? > > Or, you can just wait a day or two and rc3 will come out. It'd be cool > if you can test it from CVS though, just to make sure we don't release > rc3 with a bug.. > > > > Thanks, > Rob |
|
From: Eric S. <er...@re...> - 2003-07-14 23:09:32
|
Allright,
1) Added Unix.pm and applied the patch successfully, and now I'm getting:
*******************************
[eric@deathstar sandweb]# make test
PERL_DL_NONLAZY=1 /usr/bin/perl "-MExtUtils::Command::MM" "-e"
"test_harness(0,
'blib/lib', 'blib/arch')" t/*.t
t/auth..........ok 2/3dd: opening `t/var/users/foo/passwd': No such file or
directory
# Failed test 3 in t/auth.t at line 29
t/auth..........FAILED test 3
Failed 1/3 tests, 66.67% okay
t/file..........ok
t/repository....ok 8/190+1 records in
0+1 records out
t/repository....ok 11/190+1 records in
0+1 records out
t/repository....ok
Failed Test Stat Wstat Total Fail Failed List of Failed
-------------------------------------------------------------------------------
t/auth.t 3 1 33.33% 3
Failed 1/3 test scripts, 66.67% okay. 1/30 subtests failed, 96.67% okay.
make: *** [test_dynamic] Error 29
*****************************************
Make install seemed to work ok.
2) The group patch added the block in sandweb.cgi to do the toolbar right
before $image_dir is defined. I moved the following line of code on line
1408 in my patched sandweb.cgi up above that new block of code:
my $image_dir = $config->{'webserver'}->{'image_dir'};
3) I can't seem to logon, still... this may be related to the auth system
looking in the wrong location for the user_dirs, which I have set to
/usr/local/sandweb/share/users (and confirmed in sandweb.cfg), but I'm
getting the following logfile when I try to login:
LOG: Invalid login attempt, username: null
LOG: Invalid login attempt, username: reiuser
LOG: reiuser logged on.
LOG: reiuser logged on.
ERROR: Unable to write to file
'/var/www/sandweb/share/users/reiuser/.user.cfg': Permission denied
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
LOG: reiuser logged on.
LOG: reiuser logged on.
LOG: Invalid login attempt, username: eric
Anyway, I trield creating user directories there and make sure they were
writable by the apache user, but still no go.
4) You're sure awfully helpful. Is there a book on Amazon that I can toss
your way? =-)
Thanks,
Eric
On Monday 14 July 2003 15:31, you wrote:
> Ok, you asked for it :)
>
> On Mon, Jul 14, 2003 at 02:00:31PM -0600, Eric Swenson wrote:
> > On Monday 14 July 2003 13:36, you wrote:
> > > On Mon, Jul 14, 2003 at 12:36:10PM -0600, Eric Swenson wrote:
> > > > On Monday 14 July 2003 12:23, you wrote:
> >
> > Full PAM support is probably overkill for this, then, if you have it
> > working against ssh. I'd love to try out the unix auth + group patches
> > and see how that works out... any patches hanging around there for a
> > read-only default user?
>
> The attached patch and files do both.
>
> Please note that this patch totally disables the SandWeb "FlatFile"
> password in $data_dir/passwd (where $data_dir is set in sandweb.cfg).
>
> IMPORTANT - this patch currently just disables parts of the UI, if the
> user does HTTP POSTs with the right commands, they can do whatever
> they want!! It's totally insecure; it just prevents users from hurting
> themselves.
>
> However, since SandWeb is a client there's no way to do irreperable
> damage to the repository, they can just check in a bunch of garbage
> and screw with their own sandbox.
>
> These issues are being addressed on the trunk, currently it's just
> a UI plug there too.
>
> One thing I highly recommend - always use SSH method for repositories,
> even if the CVS repo is on the same box as SandWeb. Otherwise, all
> user's checkins will appear to be from the Apache user, and also
> it's less of a security risk (if someone exploits a bug in Apache
> or SandWeb, they can overwrite your repository if you use local repo
> method..).
>
> You'll want to drop Unix.pm into lib/SandWeb/Auth/ and "make install".
>
> For each user you want to enable, you must do the following (where
> "username" is the name of your desired user, variables refer to
> sandweb.cfg settings):
>
> * mkdir $users_dir/username
> * chown $www_user $users_dir/username
>
> For the groups stuff, put the attached "group" file into $data_dir, and
> add users to it. These group names are hardcoded for now, this is what
> they do :
>
> all: this is what you see in the current version of sandweb. all
> CVS/file ops.
>
> simple: only the basic CVS ops, all file ops
>
> read-only: only read-only CVS commands, all file ops
>
> If the user is NOT in a group, they get no toolbar ( the toolbar is the
> piece of HTML in the sandbox_menu that shows file ops and the CVS
> pulldown ).
>
>
>
> Thanks,
> Rob
|
|
From: Rob H. <ro...@ro...> - 2003-07-15 18:50:30
|
On Mon, Jul 14, 2003 at 05:09:20PM -0600, Eric Swenson wrote:
> Allright,
>
> 1) Added Unix.pm and applied the patch successfully, and now I'm getting:
> *******************************
> t/auth.t 3 1 33.33% 3
> Failed 1/3 test scripts, 66.67% okay. 1/30 subtests failed, 96.67% okay.
> make: *** [test_dynamic] Error 29
> *****************************************
That's ok, this patch is pretty raw. There isn't a test for Unix auth
yet.
BTW, just for anyone reading the sandweb-users list, this is an
experimental patch we're trying to get working. You shouldn't have this
much trouble with the latest RC :)
> 2) The group patch added the block in sandweb.cgi to do the toolbar right
> before $image_dir is defined. I moved the following line of code on line
> 1408 in my patched sandweb.cgi up above that new block of code:
>
> my $image_dir = $config->{'webserver'}->{'image_dir'};
Hmm.. that's weird. I'll check my version again, but mine seems to be
working ok. Were you not getting images in the toolbar?
> 3) I can't seem to logon, still... this may be related to the auth system
> looking in the wrong location for the user_dirs, which I have set to
> /usr/local/sandweb/share/users (and confirmed in sandweb.cfg), but I'm
> getting the following logfile when I try to login:
>
> LOG: Invalid login attempt, username: null
> LOG: Invalid login attempt, username: reiuser
> LOG: reiuser logged on.
> LOG: reiuser logged on.
> ERROR: Unable to write to file
> '/var/www/sandweb/share/users/reiuser/.user.cfg': Permission denied
> ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> LOG: reiuser logged on.
> LOG: reiuser logged on.
> LOG: Invalid login attempt, username: eric
>
> Anyway, I trield creating user directories there and make sure they were
> writable by the apache user, but still no go.
Yeah, you have to create that dir by hand.. Interesting that it's saying
"reiuser logged on", seems to indicate that it's working. Dunno why
you're getting two logs of everything.
Do you know about the debug setting in sandweb.cfg ? It sends extra
debug output to the browser and to the log file; if it's still not
working try with debug on and send the output.
You sure /var/www/sandweb/share/users/reiuser/ exists and is writable by
the Apache user? That should be all there is to it. Does .user.cfg exist
in that directory?
BTW "/var/www/sandweb/share" isn't a good place to have the users stuff;
there are things in there you definitely don't want browsable. The
default of "/usr/local/share" is more secure.
> 4) You're sure awfully helpful. Is there a book on Amazon that I can toss
> your way? =-)
Heh.. oh, I don't know. I get alot of enjoyment from this stuff,
although I have been wanting to get the next Dune book I haven't read (Heretics
of Dune). I'd prefer a used copy, since I am really into recycling/reuse. I've
been using the library alot lately but their selection isn't always so
hot.
Thanks,
Rob
|
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X