<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=utf-8">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<p>Hi there,</p>
<p>is there any tips you may share?</p>
<p>Cheers,</p>
<p>A.<br>
</p>
<div class="moz-forward-container">-------- Forwarded Message
--------
<table class="moz-email-headers-table" border="0" cellpadding="0"
cellspacing="0">
<tbody>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">Subject:
</th>
<td>Re: [librecat-dev] LDAP, Logging and more</td>
</tr>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">Date: </th>
<td>Tue, 9 Aug 2016 12:14:14 +0200</td>
</tr>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">From: </th>
<td>Arash Samadi <a class="moz-txt-link-rfc2396E" href="mailto:samadi@sub.uni-goettingen.de"><samadi@sub.uni-goettingen.de></a></td>
</tr>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">Reply-To:
</th>
<td><a class="moz-txt-link-abbreviated" href="mailto:samadi@sub.uni-goettingen.de">samadi@sub.uni-goettingen.de</a></td>
</tr>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">Organization:
</th>
<td>State- and University's Library, Gerog-August University
of Goettingen</td>
</tr>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">To: </th>
<td><a class="moz-txt-link-abbreviated" href="mailto:librecat-dev@lists.uni-bielefeld.de">librecat-dev@lists.uni-bielefeld.de</a>
<a class="moz-txt-link-rfc2396E" href="mailto:librecat-dev@lists.uni-bielefeld.de"><librecat-dev@lists.uni-bielefeld.de></a>,
<a class="moz-txt-link-abbreviated" href="mailto:Nicolas.Franck@UGent.be">Nicolas.Franck@UGent.be</a></td>
</tr>
<tr>
<th align="RIGHT" nowrap="nowrap" valign="BASELINE">CC: </th>
<td>Patrick Hochstenbach
<a class="moz-txt-link-rfc2396E" href="mailto:Patrick.Hochstenbach@UGent.be"><Patrick.Hochstenbach@UGent.be></a></td>
</tr>
</tbody>
</table>
<br>
<br>
<meta http-equiv="content-type" content="text/html; charset=utf-8">
<p>Hi,</p>
<p>allright, thank you for the feed back. Here is what I have
done:</p>
<p>1. I've changed the settings in log4perl.conf like this:</p>
<p><tt>l</tt><tt>og4perl.category.LibreCat::Auth=DEBUG,LOGFILE</tt><tt><br>
</tt><tt>log4perl.category.LibreCat::FileStore=DEBUG,LOGFILE</tt><tt><br>
</tt><tt>log4perl.category.LibreCat::Worker=DEBUG,LOGFILE</tt><tt><br>
</tt><tt><br>
</tt><tt>log4perl.appender.LOGFILE=Log::Log4perl::Appender::File</tt><tt><br>
</tt><tt>log4perl.appender.LOGFILE.filename=/srv/LibreCat/logs/librecat.log</tt><tt><br>
</tt><tt>log4perl.appender.LOGFILE.mode=append</tt><tt><br>
</tt><tt>log4perl.appender.LOGFILE.layout=PatternLayout</tt><tt><br>
</tt><tt>log4perl.appender.LOGFILE.layout.ConversionPattern=%d
[%P] - %c[%L] : %m%n</tt><tt><br>
</tt><tt><br>
</tt></p>
<p>Still, the only log what I get is something after the
successful login and nothing more! I would like to know how to
change that?</p>
<p>2. I thought of something, shouldn't I add the LDAP
authentication to the 'uers:' section in 'catmandu.local.yml' as
well? And if so, how exactly should I do that? Is something like
this correct?</p>
<p><tt>- host: ug-sub-s1.sub.uni-goettingen.de</tt><tt><br>
</tt><tt> username_attr: cn</tt><br>
</p>
<p>3. I've tried using 'bin/authentication_admin.pl' as well. I
only get one usage syntax message:</p>
<p>usage: bin/authentication_admin.pl [--package=MODULE]
[[--param=...]] login at bin/authentication_admin.pl line 44.</p>
<p>So, I've tried something like this:</p>
<p>$ bin/authentication_admin.pl --package=LibreCat::Auth::LDAP
--param host=ug-sub-s1.sub.uni-goettingen.de base=****
password=***
auth_base=cn=%s,ou=Benutzer,dc=sub,dc=uni-goettingen,dc=de<br>
</p>
Well, I get another error saying the auth_base is missing! Any
ideas?<br>
<br>
Cheers,<br>
A.<br>
<br>
PS> BTW, in new build you've removed 'Catmandu::CrossRef'. As
per Péter's suggestion we can remove it from 'cpanfile', but don't
we need it anymore?<br>
<br>
<div class="moz-cite-prefix">On 09.08.2016 08:30, Patrick
Hochstenbach wrote:<br>
</div>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<style type="text/css" style="display:none">#mid_1470724258639_58826_UGent_be p { margin-top: 0px; margin-bottom: 0px; }
</style>
<p>Still in vacation here. But you can use a command line tool to
test the authentication setup:<br>
</p>
<p><br>
</p>
<p> $ bin/authentication_admin.pl<br>
</p>
<p><br>
</p>
<p>There are very many options when doing a LDAP authentication.
Every institution can have local variations. If the code doesn't
provide a stack trace, then the code is ok, but the
authentication handshakes don't provide the desired results.<br>
</p>
<p><br>
</p>
<p>With the authentical_admin you have at least a Perl program you
can run through a debugger and see which step doesn't provide
the desired result. We based the code on what Bielefeld or Ghent
University does with LDAP (both use a somewhat different
strategy).<br>
</p>
<p><br>
</p>
<p>Cheers and till later<br>
</p>
<p>Patrick<br>
</p>
<p><br>
</p>
<div style="color: rgb(33, 33, 33);">
<hr tabindex="-1" style="display:inline-block; width:98%">
<div id="divRplyFwdMsg" dir="ltr"><font style="font-size:11pt"
color="#000000" face="Calibri, sans-serif"><b>From:</b> <a
moz-do-not-send="true" class="moz-txt-link-abbreviated"
href="mailto:librecat-dev-bounces@lists.uni-bielefeld.de">librecat-dev-bounces@lists.uni-bielefeld.de</a>
<a moz-do-not-send="true" class="moz-txt-link-rfc2396E"
href="mailto:librecat-dev-bounces@lists.uni-bielefeld.de"><librecat-dev-bounces@lists.uni-bielefeld.de></a>
on behalf of Arash Samadi <a moz-do-not-send="true"
class="moz-txt-link-rfc2396E"
href="mailto:samadi@sub.uni-goettingen.de"><samadi@sub.uni-goettingen.de></a><br>
<b>Sent:</b> Monday, August 8, 2016 2:16 PM<br>
<b>To:</b> <a moz-do-not-send="true"
class="moz-txt-link-abbreviated"
href="mailto:librecat-dev@lists.uni-bielefeld.de">librecat-dev@lists.uni-bielefeld.de</a><br>
<b>Subject:</b> [librecat-dev] LDAP</font>
<div> </div>
</div>
<div>
<p>Hi there, hope you had a great vacation or maybe you still
enjoying it ;)</p>
<p>Anyways, I replaced the info based on our own
LDP-Configuration in 'catmandu.local.yml', but probably
missing something, because it is not working. I would really
appreciate your input:</p>
<p> - package: LibreCat::Auth::LDAP<br>
options:<br>
host: 'ug-sub-s1.sub.uni-goettingen.de'<br>
base: '************'<br>
password: '****************'<br>
auth_base:
'cn=%s,ou=Benutzer,dc=sub,dc=uni-goettingen,dc=de'<br>
search_filter: '(cn=%s)'<br>
search_base:
'OU=Benutzer,DC=sub,DC=uni-goettingen,DC=de'<br>
search_attr: 'cn'<br>
</p>
Cheers,<br>
A.<br>
<br>
<div class="moz-signature">-- <br>
<div id="Signiture" style="font-size:11pt">
<p><strong>Arash Samadi</strong><br>
Digitale Biblothek, Bibliotheksysteme (BIS)</p>
<p>Georg-August-Universität Göttingen<br>
Niedersächsische Staats- und Universitätsbibliothek<br>
D-37073 Göttingen</p>
<p>Platz der Göttinger Sieben 1 (Zentralbibliothek, LRC,
Raum 2.19)</p>
<p>Tel: +49 39-20726<br>
m@il: <a moz-do-not-send="true"
href="mailto:samadi@sub.uni-goettingen.de">samadi@sub.uni-goettingen.de</a><br>
www: <a moz-do-not-send="true"
href="http://www.sub.uni-goettingen.de">http://www.sub.uni-goettingen.de</a></p>
</div>
</div>
</div>
</div>
<br>
<div class="moz-signature">-- <br>
<div id="Signiture" style="font-size: 11pt;">
<p><strong>Arash Samadi</strong><br>
Digitale Biblothek, Bibliotheksysteme (BIS)</p>
<p>Georg-August-Universität Göttingen<br>
Niedersächsische Staats- und Universitätsbibliothek<br>
D-37073 Göttingen</p>
<p>Platz der Göttinger Sieben 1 (Zentralbibliothek, LRC, Raum
2.19)</p>
<p>Tel: +49 39-20726<br>
m@il: <a moz-do-not-send="true"
href="mailto:samadi@sub.uni-goettingen.de">samadi@sub.uni-goettingen.de</a><br>
www: <a moz-do-not-send="true"
href="http://www.sub.uni-goettingen.de">http://www.sub.uni-goettingen.de</a></p>
</div>
</div>
</div>
</body>
</html>