Never mind!
after turning on the extended tracing and debugging, i have found the following idiotic error :)
ProxyDNs = "C=US/ST=Ohio/O=redsleeve/OU=kojiweb/CN=armel6n1.thewebwillow.com"
Do not put quotes around the configuration! and be sure to include the "/" at the beginning.
ProxyDNs = /C=US/ST=Ohio/O=redsleeve/OU=kojiweb/CN=armel6n1.thewebwillow.com
Seems i am my own worst enemy here!
-------- Original Message --------
Subject: Kojio SSL AUTH
From: <webwillow@xxxxxxxxxxxxxxxx>
Date: Sun, November 13, 2011 10:17 am
To: "linuxarmcross" <cross-distro@xxxxxxxxxxxxxxxx>, "fedoraarm"
<arm@xxxxxxxxxxxxxxxxxxxxxxx>
Can anyone provide some insight to why i might be getting the following error when logging into the web interface via ssl certificate with koji?I have done the config as perkoji hub config## the client username is the common name of the subject of their client certificate
DNUsernameComponent = CN
## separate multiple DNs with |
ProxyDNs = "C=US/ST=Ohio/O=redsleeve/OU=kojiweb/CN=armel6n1.thewebwillow.com"operating system is as follows[root@armel6n1 certs]# uname -a
Linux armel6n1 3.0.4 #1 PREEMPT Sun Oct 23 22:16:13 EDT 2011 armv5tel armv5tel armv5tel GNU/Linux
[root@armel6n1 certs]# cat /etc/redhat-release
Red Hat Enterprise Linux release 6.1 (Santiago)Koji is built from the latest gitkoji-hub-1.6.0-1.el6.noarch
koji-web-1.6.0-1.el6.noarch
koji-1.6.0-1.el6.noarchTraceback (most recent call last):
File "/usr/share/koji-web/lib/kojiweb/publisher.py", line 17, in publish_object
return old_publish_object(req, object)
File "/usr/lib/python2.6/site-packages/mod_python/publisher.py", line 425, in publish_object
return publish_object(req,util.apply_fs_data(object, req.form, req=req))
File "/usr/lib/python2.6/site-packages/mod_python/util.py", line 554, in apply_fs_data
return object(**args)
File "/usr/share/koji-web/scripts/index.py", line 185, in login
if not _sslLogin(req, session, username):
File "/usr/share/koji-web/scripts/index.py", line 71, in _sslLogin
proxyuser=username)
File "/usr/lib/python2.6/site-packages/koji/__init__.py", line 1674, in ssl_login
sinfo = self.callMethod('sslLogin', proxyuser)
File "/usr/lib/python2.6/site-packages/koji/__init__.py", line 1719, in callMethod
return self._callMethod(name, args, opts)
File "/usr/lib/python2.6/site-packages/koji/__init__.py", line 1764, in _callMethod
raise err
AuthError: Traceback (most recent call last):
File "/usr/share/koji-hub/kojixmlrpc.py", line 193, in _marshaled_dispatch
response = self._dispatch(method, params)
File "/usr/share/koji-hub/kojixmlrpc.py", line 256, in _dispatch
ret = func(*params,**opts)
File "/usr/lib/python2.6/site-packages/koji/auth.py", line 675, in sslLogin
return context.session.sslLogin(*args, **opts)
File "/usr/lib/python2.6/site-packages/koji/auth.py", line 397, in sslLogin
raise koji.AuthError, '%s is not authorized to login other users' % client_dn
AuthError: /C=US/ST=Ohio/O=redsleeve/OU=kojiweb/CN=armel6n1.thewebwillow.com is not authorized to login other users
_______________________________________________ arm mailing list arm@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/arm
