Hi Nicke,
no. You indeed need no quotes.
The interesting line is
ValueError(“No JSON object could be decoded”)
I.e. the url you requested, did not respond as expected.
Can you see this /validate/check request in the Audit log in the web UI?
What does it say there?
Kind regards
CorneliusAm Mittwoch, den 10.06.2015, 04:34 -0700 schrieb Nicke:
Yeah, you are right, access right errors. Am a little tired so did not
pay attention enough.So here is the output now,
Jun 10 12:57:50 files mod_wsgi: Reading configuration
https://auth.example.com, localhost, False
Jun 10 12:57:50 files mod_wsgi: Authentication with
https://auth.example.com, localhost, False
Jun 10 12:57:50 files mod_wsgi: requests < 1.0
Jun 10 12:57:50 files mod_wsgi: Traceback (most recent call
last):#012 File “/usr/share/pyshared/privacyidea_apache.py”, line 75,
in check_password#012 json_response = response.json()#012 File
“/usr/lib/python2.7/dist-packages/requests/models.py”, line 741, in
json#012 return json.loads(self.text, **kwargs)#012 File
“/usr/lib/python2.7/json/init.py”, line 338, in loads#012
return _default_decoder.decode(s)#012 File
“/usr/lib/python2.7/json/decoder.py”, line 366, in decode#012 obj,
end = self.raw_decode(s, idx=_w(s, 0).end())#012 File
“/usr/lib/python2.7/json/decoder.py”, line 384, in raw_decode#012
raise ValueError(“No JSON object could be decoded”)#012ValueError: No
JSON object could be decodedWhen having privacyidea = “https://auth.example.com”
in /etc/privacyidea/apache.conf
mod_wsgi (pid=4865): Exception occurred processing WSGI script
‘/usr/share/pyshared/privacyidea_apache.py’.
Traceback (most recent call last):
File “/usr/share/pyshared/privacyidea_apache.py”, line 72, in
check_password
verify=SSLVERIFY)
File “/usr/lib/python2.7/dist-packages/requests/api.py”, line 88,
in post
return request(‘post’, url, data=data, **kwargs)
File “/usr/lib/python2.7/dist-packages/requests/api.py”, line 44,
in request
return session.request(method=method, url=url, **kwargs)
File “/usr/lib/python2.7/dist-packages/requests/sessions.py”, line
455, in request
resp = self.send(prep, **send_kwargs)
File “/usr/lib/python2.7/dist-packages/requests/sessions.py”, line
553, in send
adapter = self.get_adapter(url=request.url)
File “/usr/lib/python2.7/dist-packages/requests/sessions.py”, line
598, in get_adapter
raise InvalidSchema(“No connection adapters were found for ‘%s’”
% url)
InvalidSchema: No connection adapters were found for
‘“https://auth.example.com”/validate/check’mod_wsgi (pid=4865): Exception occurred processing WSGI script
‘/usr/share/pyshared/privacyidea_apache.py’., referer:
https://subdomain.example.com/
Traceback (most recent call last):, referer:
https://subdomain.example.com/
File “/usr/share/pyshared/privacyidea_apache.py”, line 72, in
check_password, referer: https://subdomain.example.com/
verify=SSLVERIFY), referer: https://subdomain.example.com/
File “/usr/lib/python2.7/dist-packages/requests/api.py”, line 88,
in post, referer: https://subdomain.example.com/
return request(‘post’, url, data=data, **kwargs), referer:
https://subdomain.example.com/
File “/usr/lib/python2.7/dist-packages/requests/api.py”, line 44,
in request, referer: https://subdomain.example.com/
return session.request(method=method, url=url, **kwargs),
referer: https://subdomain.example.com/
File “/usr/lib/python2.7/dist-packages/requests/sessions.py”, line
455, in request, referer: https://subdomain.example.com/
resp = self.send(prep, **send_kwargs), referer:
https://subdomain.example.com/
File “/usr/lib/python2.7/dist-packages/requests/sessions.py”, line
553, in send, referer: https://subdomain.example.com/
adapter = self.get_adapter(url=request.url), referer:
https://subdomain.example.com/
File “/usr/lib/python2.7/dist-packages/requests/sessions.py”, line
598, in get_adapter, referer: https://subdomain.example.com/
raise InvalidSchema(“No connection adapters were found for ‘%s’”
% url), referer: https://subdomain.example.com/
InvalidSchema: No connection adapters were found for
‘“https://auth.example.com”/validate/check’, referer:
https://subdomain.example.com/When having privacyidea = https://auth.example.com
in /etc/privacyidea/apache.confmod_wsgi (pid=4865): Exception occurred processing WSGI script
‘/usr/share/pyshared/privacyidea_apache.py’.
Traceback (most recent call last):
File “/usr/share/pyshared/privacyidea_apache.py”, line 83, in
check_password
if json_response.get(“result”, {}).get(“value”):
AttributeError: ‘function’ object has no attribute ‘get’mod_wsgi (pid=4865): Exception occurred processing WSGI script
‘/usr/share/pyshared/privacyidea_apache.py’., referer:
https://subdomain.example.com/
Traceback (most recent call last):, referer:
https://subdomain.example.com/
File “/usr/share/pyshared/privacyidea_apache.py”, line 83, in
check_password, referer: https://subdomain.example.com/
if json_response.get(“result”, {}).get(“value”):, referer:
https://subdomain.example.com/
AttributeError: ‘function’ object has no attribute ‘get’, referer:
https://subdomain.example.com/Den onsdag 10 juni 2015 kl. 12:48:34 UTC+2 skrev Cornelius Kölbel:
Hi,please check the access right of /usr/share/pyshared/privacyidea_apache.py The apache user should be able to read it. Should be 644. Kind regards Cornelius Am Mittwoch, den 10.06.2015, 03:15 -0700 schrieb Nicke: > Am running Ubuntu 14.04.2 on the client machine having > privacyidea-apache-client installed, this is called > "subdomain.example.com". > Authentication server is another host running the same system. This > machine is called "auth.example.com". > > > Here is the only output with your new file, > [Wed Jun 10 12:12:19.064834 2015] [:error] [pid 4728:tid > 139652069586688] (13)Permission denied: [client > 2a02:xxx:0:10:cccc:97fc:6f52:b703:36240] mod_wsgi (pid=4728, > process='', application=''): Call to fopen() failed for > '/usr/share/pyshared/privacyidea_apache.py'. > [Wed Jun 10 12:12:19.250990 2015] [:error] [pid 4728:tid > 139652052801280] (13)Permission denied: [client > 2a02:xxx:0:10:cccc:97fc:6f52:b703:36241] mod_wsgi (pid=4728, > process='', application=''): Call to fopen() failed for > '/usr/share/pyshared/privacyidea_apache.py'., referer: > https://subdomain.example.com/ > > > > Den onsdag 10 juni 2015 kl. 12:02:52 UTC+2 skrev Cornelius Kölbel: > Hi, > > I am sorry. On what system are you running? > (I would like to try running request 2.x) > > Probably there is an exception where it should not be. > Could you please use the attached file, restart apache and > take a look > at the syslog again. > > Thx and kind regards > Cornelius > > Am Mittwoch, den 10.06.2015, 02:41 -0700 schrieb Nicke: > > Hi > > 1) > > Before it was > > [DEFAULT] > > redis = "localhost" > > privacyidea = "https://auth.example.com" > > sslverify = False > > > > > > But that created exceptions so I changed that to > > [DEFAULT] > > redis = localhost > > privacyidea = https://auth.example.com > > sslverify = False > > > > > > 2) > > Se above > > > > > > 3) > > It contains > > mod_wsgi: requests < 1.0 > > > > > > > > Den onsdag 10 juni 2015 kl. 11:31:30 UTC+2 skrev Cornelius > Kölbel: > > Hi Nicke, > > > > 1.) what did you remove? I did not get it in the > formatting. > > > > 2.) How does your /etc/privacyidea/apache.conf looks > like, > > now? > > > > 3.) Does you /var/log/syslog contain > > > > "request > 1.0" > > > > or > > > > "request < 1.0" > > > > > > Kind regards > > Cornelius > > > > Am Mittwoch, den 10.06.2015, 02:18 -0700 schrieb > Nicke: > > > You are right, it does work now. I do not know > what I did > > wrong last > > > time I tried. > > > > > > > > > The file /etc/privacyidea/apache.conf contains " > on redis > > and > > > privacyidea value. In apache error file it > complains (error) > > about > > > this so I had to remove it. > > > Anway, I still can not get this to work, I get > > > > > > > > > mod_wsgi (pid=4105): Exception occurred > processing WSGI > > script > > > '/usr/share/pyshared/privacyidea_apache.py'. > > > Traceback (most recent call last): > > > File > "/usr/share/pyshared/privacyidea_apache.py", line > > 81, in > > > check_password > > > if json_response.get("result", > {}).get("value"): > > > AttributeError: 'function' object has no > attribute 'get' > > > mod_wsgi (pid=4105): Exception occurred > processing WSGI > > script > > > '/usr/share/pyshared/privacyidea_apache.py'., > referer: > > > https://subdomain.example.com/ > > > Traceback (most recent call last):, referer: > > > https://subdomain.example.com/ > > > File > "/usr/share/pyshared/privacyidea_apache.py", line > > 81, in > > > check_password, referer: > https://subdomain.example.com/ > > > if json_response.get("result", > {}).get("value"):, > > referer: > > > https://subdomain.example.com/ > > > AttributeError: 'function' object has no > attribute 'get', > > referer: > > > https://subdomain.example.com/ > > > > > > > > > > > > > > > > > > > > > Den onsdag 10 juni 2015 kl. 10:43:28 UTC +2 skrev > Cornelius > > Kölbel: > > > Hi Nicke, > > > > > > it does. > > > Did you run an apt-get update? > > > > > > Kind regards > > > Cornelius > > > > > > Am Mittwoch, den 10.06.2015, 01:30 -0700 schrieb > > Nicke: > > > > For me to be able to test this it would > be good > > if > > > > privacyidea-apache-client exist in the > dev > > repository on > > > launchpad. > > > > > > > > > > > > add-apt-repository > > ppa:privacyidea/privacyidea-dev > > > > apt-get update > > > > apt-get install > privacyidea-apache-client > > > > .. does not work on Ubuntu 14.04 > because > > > privacyidea-apache-client is > > > > missing. > > > > -- > > > > You received this message because you > are > > subscribed to the > > > Google > > > > Groups "privacyidea" group. > > > > To unsubscribe from this group and stop > receiving > > emails > > > from it, send > > > > an email to > privacyidea...@googlegroups.com. > > > > To post to this group, send email to > > > priva...@googlegroups.com. > > > > To view this discussion on the web > visit > > > > > > > > > > https://groups.google.com/d/msgid/privacyidea/ac3b3d13-3fed-4d19-98f8-cd038d5d4ceb%40googlegroups.com. > > > > For more options, visit > > https://groups.google.com/d/optout. > > > > > > -- > > > Cornelius Kölbel > > > corneliu...@netknights.it > > > +49 151 2960 1417 > > > > > > NetKnights GmbH > > > http://www.netknights.it > > > Landgraf-Karl-Str. 19, 34131 Kassel, > Germany > > > Tel: +49 561 3166797, Fax: +49 561 > 3166798 > > > > > > Amtsgericht Kassel, HRB 16405 > > > Geschäftsführer: Cornelius Kölbel > > > > > > > > > -- > > > You received this message because you are > subscribed to the > > Google > > > Groups "privacyidea" group. > > > To unsubscribe from this group and stop receiving > emails > > from it, send > > > an email to privacyidea...@googlegroups.com. > > > To post to this group, send email to > > priva...@googlegroups.com. > > > To view this discussion on the web visit > > > > > > https://groups.google.com/d/msgid/privacyidea/55416469-bde4-4e6f-bbbc-8462b4e1da1b%40googlegroups.com. > > > For more options, visit > https://groups.google.com/d/optout. > > > > -- > > Cornelius Kölbel > > corneliu...@netknights.it > > +49 151 2960 1417 > > > > NetKnights GmbH > > http://www.netknights.it > > Landgraf-Karl-Str. 19, 34131 Kassel, Germany > > Tel: +49 561 3166797, Fax: +49 561 3166798 > > > > Amtsgericht Kassel, HRB 16405 > > Geschäftsführer: Cornelius Kölbel > > > > > > -- > > You received this message because you are subscribed to the > Google > > Groups "privacyidea" group. > > To unsubscribe from this group and stop receiving emails > from it, send > > an email to privacyidea...@googlegroups.com. > > To post to this group, send email to > priva...@googlegroups.com. > > To view this discussion on the web visit > > > https://groups.google.com/d/msgid/privacyidea/bfc540e9-7e7a-4524-ace6-f207dab1730a%40googlegroups.com. > > For more options, visit https://groups.google.com/d/optout. > > -- > Cornelius Kölbel > corneliu...@netknights.it > +49 151 2960 1417 > > NetKnights GmbH > http://www.netknights.it > Landgraf-Karl-Str. 19, 34131 Kassel, Germany > Tel: +49 561 3166797, Fax: +49 561 3166798 > > Amtsgericht Kassel, HRB 16405 > Geschäftsführer: Cornelius Kölbel > > > -- > You received this message because you are subscribed to the Google > Groups "privacyidea" group. > To unsubscribe from this group and stop receiving emails from it, send > an email to privacyidea...@googlegroups.com. > To post to this group, send email to priva...@googlegroups.com. > To view this discussion on the web visit > https://groups.google.com/d/msgid/privacyidea/140accd8-8d81-4840-a2b0-dad6e4639ccd%40googlegroups.com. > For more options, visit https://groups.google.com/d/optout. -- Cornelius Kölbel corneliu...@netknights.it +49 151 2960 1417 NetKnights GmbH http://www.netknights.it Landgraf-Karl-Str. 19, 34131 Kassel, Germany Tel: +49 561 3166797, Fax: +49 561 3166798 Amtsgericht Kassel, HRB 16405 Geschäftsführer: Cornelius Kölbel
–
You received this message because you are subscribed to the Google
Groups “privacyidea” group.
To unsubscribe from this group and stop receiving emails from it, send
an email to privacyidea+unsubscribe@googlegroups.com.
To post to this group, send email to privacyidea@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/privacyidea/fd2dc6ce-260c-4214-8ab2-6f58c3532b8d%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
–
Cornelius Kölbel
@cornelinux
+49 151 2960 1417
NetKnights GmbH
http://www.netknights.it
Landgraf-Karl-Str. 19, 34131 Kassel, Germany
Tel: +49 561 3166797, Fax: +49 561 3166798
Amtsgericht Kassel, HRB 16405
Geschäftsführer: Cornelius Kölbel
signature.asc (819 Bytes)