[Freeipa-users] FreeIPA + Ipsilon

Luca Tartarini ltartarini90 at gmail.com
Wed Aug 6 15:20:39 UTC 2014 

Hi,

Thanks for the replies. I updated the line with:

plugins_by_name = dict((p.name, p) for p in self._site[FACILITY]['enabled'])

and it works (the installation is completed succesfully).

But now when I try to connect to:

 https://myidp.example.com/idp

or I try to configure ipsilon-client (ipsilon-client-install ...) I got
HTTP 500 Internal Error (with ipsilon background). I put "debug = True"
in /etc/ipsilon/idp/ipsilon.conf and I got this (in
/var/log/httpd/error_log):

[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  Available
providers: ['saml2']
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] idp
storage path: /var/lib/ipsilon/idp/saml2
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] idp
metadata file: metadata.xml
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] idp
storage path: /var/lib/ipsilon/idp/saml2
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] idp key
file: /var/lib/ipsilon/idp/saml2/idp.key
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] idp
storage path: /var/lib/ipsilon/idp/saml2
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] idp
certificate file: /var/lib/ipsilon/idp/saml2/idp.pem
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  IdP Provider
registered: saml2
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] enabled:
1
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  IdP Provider
enabled: saml2
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  Admin login
plugin: krb
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  Admin login
plugin: pam
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [pam] username
text: Username
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [pam] password
text: Password
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [pam] service
name: remote
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [pam] help text:
Insert your Username and Password and then submit.
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  Admin login
plugin: testauth
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [testauth]
username text: Username
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [testauth]
password text: Password
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [testauth] help
text: Insert your Username and Password and then submit.
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  Admin provider
plugin: saml2
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] default
allowed nameids: ['persistent', 'transient', 'email', 'kerberos', 'x509']
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] idp
metadata file: metadata.xml
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] default
email domain: example.com
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] idp
certificate file: /var/lib/ipsilon/idp/saml2/idp.pem
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] allow
self registration: True
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] idp key
file: /var/lib/ipsilon/idp/saml2/idp.key
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] idp
storage path: /var/lib/ipsilon/idp/saml2
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  [saml2] default
nameid: persistent
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  Traceback (most
recent call last):
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/CherryPy-3.5.0-py2.6.egg/cherrypy/_cprequest.py",
line 104, in run
[Wed Aug 06 16:22:09 2014] [error]     hook()
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/CherryPy-3.5.0-py2.6.egg/cherrypy/_cprequest.py",
line 63, in __call__
[Wed Aug 06 16:22:09 2014] [error]     return self.callback(**self.kwargs)
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/ipsilon/util/page.py", line 37, in protect
[Wed Aug 06 16:22:09 2014] [error]     UserSession().remote_login()
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/ipsilon/util/user.py", line 103, in
__init__
[Wed Aug 06 16:22:09 2014] [error]     self.user = self.get_data('user',
'name')
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/ipsilon/util/user.py", line 147, in
get_data
[Wed Aug 06 16:22:09 2014] [error]     if facility not in cherrypy.session:
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/CherryPy-3.5.0-py2.6.egg/cherrypy/__init__.py",
line 258, in __contains__
[Wed Aug 06 16:22:09 2014] [error]     return key in child
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/CherryPy-3.5.0-py2.6.egg/cherrypy/lib/sessions.py",
line 335, in __contains__
[Wed Aug 06 16:22:09 2014] [error]     self.load()
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/CherryPy-3.5.0-py2.6.egg/cherrypy/lib/sessions.py",
line 268, in load
[Wed Aug 06 16:22:09 2014] [error]     data = self._load()
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/CherryPy-3.5.0-py2.6.egg/cherrypy/lib/sessions.py",
line 497, in _load
[Wed Aug 06 16:22:09 2014] [error]     assert self.locked, ("The session
load without being locked.  "
[Wed Aug 06 16:22:09 2014] [error] AssertionError: The session load without
being locked.  Check your tools' priority levels.
[Wed Aug 06 16:22:09 2014] [error]
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09] HTTP
[Wed Aug 06 16:22:09 2014] [error] Request Headers:
[Wed Aug 06 16:22:09 2014] [error]   COOKIE:
__utma=203412483.1716219377.1393273532.1393273532.1398882487.2;
__utmz=203412483.1398882487.2.2.utmcsr=google|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided);
_ga=GA1.2.1716219377.1393273532;
session_id=0942ebacef3fbcf8f9b21605013b5dfa1454bc93
[Wed Aug 06 16:22:09 2014] [error]   ACCEPT-LANGUAGE:
it-IT,it;q=0.8,en-US;q=0.6,en;q=0.4,fr;q=0.2
[Wed Aug 06 16:22:09 2014] [error]   USER-AGENT: Mozilla/5.0 (X11; Linux
x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.132
Safari/537.36
[Wed Aug 06 16:22:09 2014] [error]   CONNECTION: keep-alive
[Wed Aug 06 16:22:09 2014] [error]   Remote-Addr: 128.141.28.32
[Wed Aug 06 16:22:09 2014] [error]   HOST: ltartari3.cern.ch
[Wed Aug 06 16:22:09 2014] [error]   CACHE-CONTROL: max-age=0
[Wed Aug 06 16:22:09 2014] [error]   ACCEPT:
text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
[Wed Aug 06 16:22:09 2014] [error]   ACCEPT-ENCODING: gzip,deflate,sdch
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09] HTTP Traceback
(most recent call last):
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/CherryPy-3.5.0-py2.6.egg/cherrypy/_cprequest.py",
line 667, in respond
[Wed Aug 06 16:22:09 2014] [error]     self.hooks.run('before_handler')
[Wed Aug 06 16:22:09 2014] [error]   File
"/usr/lib/python2.6/site-packages/CherryPy-3.5.0-py2.6.egg/cherrypy/_cprequest.py",
line 114, in run
[Wed Aug 06 16:22:09 2014] [error]     raise exc
[Wed Aug 06 16:22:09 2014] [error] AssertionError: The session load without
being locked.  Check your tools' priority levels.
[Wed Aug 06 16:22:09 2014] [error]
[Wed Aug 06 16:22:09 2014] [error] [06/Aug/2014:16:22:09]  ['500 Internal
Server Error', 'The server encountered an unexpected condition which
prevented it from fulfilling the request.', 'Traceback (most recent call
last):\\n  File
"/usr/lib/python2.6/site-packages/CherryPy-3.5.0-py2.6.egg/cherrypy/_cprequest.py",
line 667, in respond\\n    self.hooks.run(\\'before_handler\\')\\n  File
"/usr/lib/python2.6/site-packages/CherryPy-3.5.0-py2.6.egg/cherrypy/_cprequest.py",
line 114, in run\\n    raise exc\\nAssertionError: The session load without
being locked.  Check your tools\\' priority levels.\\n', '3.5.0']

and obviously "GET /idp/ HTTP/1.1" 500 1054 in /var/log/httpd/access_log

Cherrypy bug?

Thanks.

Luca Tartarini





2014-08-05 20:33 GMT+02:00 Petr Viktorin <pviktori at redhat.com>:

> On 08/05/2014 07:48 PM, Simo Sorce wrote:
>
>> On Tue, 2014-08-05 at 17:47 +0200, Luca Tartarini wrote:
>>
> [...]
>
>  with HTTP 500 Internal Server Error ("GET /idp HTTP/1.1" 500 619)
>>>
>>> The line is this one (in
>>> /usr/lib/python2.6/site-packages/ipsilon/admin/login.py):
>>>
>>> plugins_by_name = {p.name: p for p in self._site[FACILITY]['enabled']}
>>>
>>
>> Uhmm python 2.6, I think it does not support dict comprehension.
>> You can replace this line with:
>> dict([p.name, p for p in self._site[FACILITY]['enabled']])
>>
>
>
> dict((p.name, p) for p in self._site[FACILITY]['enabled'])
>
>
> (You need the parens around (p.name, p))
>
> --
> Petrł
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20140806/34ccb078/attachment.htm>

More information about the Freeipa-users mailing list