<div dir="ltr">Sorry...My setting is error....<br><br>PythonOption WebCert /root/genca/certs/kojiweb.pem -> PythonOption WebCert /root/genca/kojiweb.pem<br><br>but...another messages is feeback..<br><br><pre>Mod_python error: "PythonHandler mod_python.publisher"<br>
<br>Traceback (most recent call last):<br><br> File "/usr/lib/python2.4/site-packages/mod_python/apache.py", line 299, in HandlerDispatch<br> result = object(req)<br><br> File "/usr/lib/python2.4/site-packages/mod_python/publisher.py", line 213, in handler<br>
published = publish_object(req, object)<br><br> File "/usr/lib/python2.4/site-packages/mod_python/publisher.py", line 412, in publish_object<br> return publish_object(req,util.apply_fs_data(object, req.form, req=req))<br>
<br> File "/usr/lib/python2.4/site-packages/mod_python/util.py", line 439, in apply_fs_data<br> return object(**args)<br><br> File "/usr/share/koji-web/scripts/index.py", line 144, in login<br> if not _sslLogin(req, session, username):<br>
<br> File "/usr/share/koji-web/scripts/index.py", line 56, in _sslLogin<br> proxyuser=username)<br><br> File "__init__.py", line 1233, in ssl_login<br><br> File "__init__.py", line 1278, in callMethod<br>
<br> File "__init__.py", line 1304, in _callMethod<br><br>AuthError: /C=TW/ST=Taiwan/O=OSSII/CN=<a href="http://web.ossii.com.tw/emailAddress=kevin.lin@ossii.com.tw">web.ossii.com.tw/emailAddress=kevin.lin@ossii.com.tw</a> is not authorized to login other users<br>
</pre><br><br><br><div class="gmail_quote">2008/7/18 Linul <<a href="mailto:kevin.linul@gmail.com">kevin.linul@gmail.com</a>>:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div dir="ltr">Hi..<br><br>I have already setup my koji-cli、 kojid、koji-hub、koji-web、kojira, and test ok,but still have a problem,it is web UI login<br><br>I have already import the cert. when I login the Web UI, the messages is:<br>
<pre>Mod_python error: "PythonHandler mod_python.publisher"<br><br>Traceback (most recent call last):<br><br> File "/usr/lib/python2.4/site-packages/mod_python/apache.py", line 299, in HandlerDispatch<br>
result = object(req)<br><br> File "/usr/lib/python2.4/site-packages/mod_python/publisher.py", line 213, in handler<br> published = publish_object(req, object)<br><br> File "/usr/lib/python2.4/site-packages/mod_python/publisher.py", line 412, in publish_object<br>
return publish_object(req,util.apply_fs_data(object, req.form, req=req))<br><br> File "/usr/lib/python2.4/site-packages/mod_python/util.py", line 439, in apply_fs_data<br> return object(**args)<br><br> File "/usr/share/koji-web/scripts/index.py", line 144, in login<br>
if not _sslLogin(req, session, username):<br><br> File "/usr/share/koji-web/scripts/index.py", line 56, in _sslLogin<br> proxyuser=username)<br><br> File "__init__.py", line 1232, in ssl_login<br>
<br> File "XMLRPCServerProxy.py", line 74, in __init__<br><br> File "SSLCommon.py", line 38, in CreateSSLContext<br><br>StandardError: /root/genca/certs/kojiweb.pem does not exist or is not readable<br>
</pre>My kojiweb.conf:<br><br> PythonDebug On<br> PythonOption KojiHubURL <a href="http://koji.ossii.com.tw/kojihub" target="_blank">http://koji.ossii.com.tw/kojihub</a><br> PythonOption KojiWebURL <a href="http://koji.ossii.com.tw/koji" target="_blank">http://koji.ossii.com.tw/koji</a><br>
PythonOption KojiPackagesURL <a href="http://koji.ossii.com.tw/koji/packages" target="_blank">http://koji.ossii.com.tw/koji/packages</a><br> #PythonOption WebPrincipal koji/<a href="mailto:kevin.lin@ossii.com.tw" target="_blank">kevin.lin@ossii.com.tw</a><br>
#PythonOption WebKeytab /etc/httpd.keytab<br> #PythonOption WebCCache /var/tmp/kojiweb.ccache<br> PythonOption WebCert /root/genca/certs/kojiweb.pem<br> PythonOption ClientCA /root/genca/koji_ca_cert.crt<br>
PythonOption KojiHubCA /root/genca/koji_ca_cert.crt<br>
<br>My web user is "admin", and have a record in postgresql, also can user koji instruction as normal.<br><br>and I create the web cert step is:<br><br><pre>openssl pkcs12 -export -inkey certs/admin.key -in certs/admin.crt -CAfile koji_ca_cert.crt \<br>
-out certs/admin_browser_cert.p12<br></pre><br>thanks..<br><br clear="all"><br>-- <br>=============================================================================<br>林毓能 <br>Linul<br>RedHat Certified Engineer<br><br>TsLG網路工作室:<a href="http://www.tslg.idv.tw" target="_blank">http://www.tslg.idv.tw</a><br>
TsLG城市午後:<a href="http://blog.tslg.idv.tw" target="_blank">http://blog.tslg.idv.tw</a><br>Linul攝影紀實:<a href="http://photo.tslg.idv.tw" target="_blank">http://photo.tslg.idv.tw</a><br>手機:0939797462<br>E-mail : <a href="mailto:kevin.linul@gmail.com" target="_blank">kevin.linul@gmail.com</a>; <a href="mailto:linul@tslg.idv.tw" target="_blank">linul@tslg.idv.tw</a><br>
=============================================================================
</div>
</blockquote></div><br><br clear="all"><br>-- <br>=============================================================================<br>林毓能 <br>Linul<br>RedHat Certified Engineer<br><br>TsLG網路工作室:<a href="http://www.tslg.idv.tw">http://www.tslg.idv.tw</a><br>
TsLG城市午後:<a href="http://blog.tslg.idv.tw">http://blog.tslg.idv.tw</a><br>Linul攝影紀實:<a href="http://photo.tslg.idv.tw">http://photo.tslg.idv.tw</a><br>手機:0939797462<br>E-mail : <a href="mailto:kevin.linul@gmail.com">kevin.linul@gmail.com</a>; <a href="mailto:linul@tslg.idv.tw">linul@tslg.idv.tw</a><br>
=============================================================================
</div>