Re: [Unity-idm-discuss] Using UNICORE with Unity

[Alvaro A. <alv...@tu...>]

Hi Bern,

when I add the authenticator to the endpoint like this:

...
unityServer.core.authenticators.6.authenticatorName=ldapZIH
unityServer.core.authenticators.6.authenticatorType=ldap with web-password
unityServer.core.authenticators.6.verificatorConfigurationFile=conf/authenticators/ldap-zih.properties
unityServer.core.authenticators.6.retrievalConfigurationFile=conf/authenticators/passwordRetrieval.json
...
unityServer.core.endpoints.4.endpointType=SAMLUnicoreSoapIdP
unityServer.core.endpoints.4.endpointConfigurationFile=conf/endpoints/saml-webidp.properties
unityServer.core.endpoints.4.contextPath=/unicore-soapidp
unityServer.core.endpoints.4.endpointRealm=defaultRealm
unityServer.core.endpoints.4.endpointName=UNITY UNICORE SOAP SAML service
unityServer.core.endpoints.4.endpointAuthenticators=pwdWS;certWS;ldapZIH


I get the following error:

------------------
2015-11-30 10:12:07,007 [main] FATAL unity.server.EngineInitialization  
- Can't load endpoints which are configured
java.lang.NullPointerException
         at 
pl.edu.icm.unity.engine.EndpointManagementImpl.deployInt(EndpointManagementImpl.java:128)
         at 
pl.edu.icm.unity.engine.EndpointManagementImpl.deploy(EndpointManagementImpl.java:97)
         at 
pl.edu.icm.unity.engine.internal.EngineInitialization.loadEndpointsFromConfiguration(EngineInitialization.java:768)
         at 
pl.edu.icm.unity.engine.internal.EngineInitialization.initializeEndpoints(EngineInitialization.java:721)
         at 
pl.edu.icm.unity.engine.internal.EngineInitialization.initializeDatabaseContents(EngineInitialization.java:351)
         at 
pl.edu.icm.unity.engine.internal.EngineInitialization.start(EngineInitialization.java:209)
         at 
org.springframework.context.support.DefaultLifecycleProcessor.doStart(DefaultLifecycleProcessor.java:173)
         at 
org.springframework.context.support.DefaultLifecycleProcessor.access$200(DefaultLifecycleProcessor.java:51)
         at 
org.springframework.context.support.DefaultLifecycleProcessor$LifecycleGroup.start(DefaultLifecycleProcessor.java:346)
         at 
org.springframework.context.support.DefaultLifecycleProcessor.startBeans(DefaultLifecycleProcessor.java:149)
         at 
org.springframework.context.support.DefaultLifecycleProcessor.onRefresh(DefaultLifecycleProcessor.java:112)
         at 
org.springframework.context.support.AbstractApplicationContext.finishRefresh(AbstractApplicationContext.java:770)
         at 
org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:483)
         at 
pl.edu.icm.unity.server.UnityApplication.run(UnityApplication.java:49)
         at 
pl.edu.icm.unity.server.UnityApplication.main(UnityApplication.java:58)
2015-11-30 10:12:07,010 [main] WARN 
org.springframework.context.support.ClassPathXmlApplicationContext - 
Exception encountered during context initialization - cancelling refresh 
attempt
org.springframework.context.ApplicationContextException: Failed to start 
bean 'pl.edu.icm.unity.engine.internal.EngineInitialization#0'; nested 
exception is pl.edu.icm.unity.exceptions.InternalException: Can't load 
endpoints which are configured
         at 
org.springframework.context.support.DefaultLifecycleProcessor.doStart(DefaultLifecycleProcessor.java:176)
         at 
org.springframework.context.support.DefaultLifecycleProcessor.access$200(DefaultLifecycleProcessor.java:51)
         at 
org.springframework.context.support.DefaultLifecycleProcessor$LifecycleGroup.start(DefaultLifecycleProcessor.java:346)
         at 
org.springframework.context.support.DefaultLifecycleProcessor.startBeans(DefaultLifecycleProcessor.java:149)
         at 
org.springframework.context.support.DefaultLifecycleProcessor.onRefresh(DefaultLifecycleProcessor.java:112)
         at 
org.springframework.context.support.AbstractApplicationContext.finishRefresh(AbstractApplicationContext.java:770)
         at 
org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:483)
         at 
pl.edu.icm.unity.server.UnityApplication.run(UnityApplication.java:49)
         at 
pl.edu.icm.unity.server.UnityApplication.main(UnityApplication.java:58)
Caused by: pl.edu.icm.unity.exceptions.InternalException: Can't load 
endpoints which are configured
         at 
pl.edu.icm.unity.engine.internal.EngineInitialization.initializeEndpoints(EngineInitialization.java:725)
         at 
pl.edu.icm.unity.engine.internal.EngineInitialization.initializeDatabaseContents(EngineInitialization.java:351)
         at 
pl.edu.icm.unity.engine.internal.EngineInitialization.start(EngineInitialization.java:209)
         at 
org.springframework.context.support.DefaultLifecycleProcessor.doStart(DefaultLifecycleProcessor.java:173)
         ... 8 more
Caused by: java.lang.NullPointerException
         at 
pl.edu.icm.unity.engine.EndpointManagementImpl.deployInt(EndpointManagementImpl.java:128)
         at 
pl.edu.icm.unity.engine.EndpointManagementImpl.deploy(EndpointManagementImpl.java:97)
         at 
pl.edu.icm.unity.engine.internal.EngineInitialization.loadEndpointsFromConfiguration(EngineInitialization.java:768)
         at 
pl.edu.icm.unity.engine.internal.EngineInitialization.initializeEndpoints(EngineInitialization.java:721)
         ... 11 more
-----------------


do you know what's wrong with that?

I can add the authenticator to the SAMLUnicoreWebIdP endpoint without 
problem, but that's not what I need.

Thanks
Alvaro






On 11/30/2015 09:59 AM, Bernd Schuller wrote:
> hi,
>
> did you add the LDAP authenticator to the unicore-soapidp endpoint?
>
> If yes, try debug logging on Unity and/or UNICORE/X to find out more...
>
>
> Best regards,
> Bernd.
>
> On 30.11.2015 09:51, Alvaro Aguilera wrote:
>> Hello,
>>
>> I'm trying to get Unicore use Unity to validate users using our LDAP
>> server and could use a little help from someone with experience on this.
>> Until now I have set up a Unity server and created a simple
>> authenticator for LDAP (code below), as well as the corresponding
>> translation profile (also below).
>> The dry test of the TP seems to be working well
>>
>> I also added the certificate of the Unity server to Unicore's assertion
>> issuers and granted access to the LDAP users in the XUUDB.
>>
>> However, I'm still unable to login to Unicore using the rich client with
>> the Unity option.
>>
>> Any hints about what I'm missing or doing wrong?
>>
>> Thanks!
>> Alvaro
>>
>>
>> ------------------------------
>>
>>
>> *wsrflite.xml (both for registry & unicore/x)
>>
>> *<property name="container.security.trustedAssertionIssuers.type"
>> value="directory" />
>> <property
>> name="container.security.trustedAssertionIssuers.directoryLocations.1"
>> value="/home/somepath.../unity..pem" />
>>
>>
>> *uas.conf*
>>
>> container.security.rest.authentication.order=FILE UNITY
>> container.security.rest.authentication.UNITY.class=eu.unicore.services.rest.security.UnitySAMLAuthenticator
>> container.security.rest.authentication.UNITY.address=https://unity.zih.tu-dresden.de:2443/unicore-soapidp/saml2unicoreidp-soap/AuthenticationService
>> container.security.rest.authentication.UNITY.validate=true
>>
>>
>> *Authenticator*
> [...]
>>
>> *Translation Profile (LDAP-Test)*
>>
> [...]
>
>
> ------------------------------------------------------------------------------------------------
> ------------------------------------------------------------------------------------------------
> Forschungszentrum Juelich GmbH
> 52425 Juelich
> Sitz der Gesellschaft: Juelich
> Eingetragen im Handelsregister des Amtsgerichts Dueren Nr. HR B 3498
> Vorsitzender des Aufsichtsrats: MinDir Dr. Karl Eugen Huthmacher
> Geschaeftsfuehrung: Prof. Dr.-Ing. Wolfgang Marquardt (Vorsitzender),
> Karsten Beneke (stellv. Vorsitzender), Prof. Dr.-Ing. Harald Bolt,
> Prof. Dr. Sebastian M. Schmidt
> ------------------------------------------------------------------------------------------------
> ------------------------------------------------------------------------------------------------
>
>
> ------------------------------------------------------------------------------
> Go from Idea to Many App Stores Faster with Intel(R) XDK
> Give your users amazing mobile app experiences with Intel(R) XDK.
> Use one codebase in this all-in-one HTML5 development environment.
> Design, debug & build mobile apps & 2D/3D high-impact games for multiple OSs.
> http://pubads.g.doubleclick.net/gampad/clk?id=254741551&iu=/4140
> _______________________________________________
> Unity-idm-discuss mailing list
> Uni...@li...
> https://lists.sourceforge.net/lists/listinfo/unity-idm-discuss


-- 
Dipl.-Inf. Alvaro Aguilera
Wissenschaftlicher Mitarbeiter

Technische Universität Dresden
Zentrum für Informationsdienste und Hochleistungsrechnen
Verteiltes und Datenintensives Rechnen

Büro:   Falkenbrunnen, Raum 256
         Chemnitzer Straße 46b
         01187 Dresden
Tel:    +49 (351) 463 33491
Email:  alv...@tu...
Web:    http://www.tu-dresden.de/zih

OTR-Fingerprint:
9CD3BC97 ACFB7430 D084BA9D 4BEB1775 4B0BA9F1