Fatal编程技术网
  • ldap/
  • 修改Worklight';s Liberty配置文件配置以使用LDAP&;来自Worklight Studio的401s

修改Worklight';s Liberty配置文件配置以使用LDAP&;来自Worklight Studio的401s

ldap ibm-mobilefirst

修改Worklight';s Liberty配置文件配置以使用LDAP&;来自Worklight Studio的401s,ldap,ibm-mobilefirst,worklight-studio,websphere-liberty,Ldap,Ibm Mobilefirst,Worklight Studio,Websphere Liberty,经过一番磕磕绊绊, 我能够将server.xml配置为命中LDAP。这很好。但是,现在我无法再从Worklight Studio进行部署 在jndi中使用错误凭证会产生预期错误;因此,我必须假设jndi中配置的凭据正在工作 [2014-07-30 16:05:34]未能将应用程序“应用程序”部署到Worklight Server:HTTP 401–未经授权` 在worklight日志中: [ERROR ] FWLST0003E: ========= Failed starting p

经过一番磕磕绊绊, 我能够将server.xml配置为命中LDAP。这很好。但是,现在我无法再从Worklight Studio进行部署

在jndi中使用错误凭证会产生预期错误;因此,我必须假设jndi中配置的凭据正在工作

[2014-07-30 16:05:34]未能将应用程序“应用程序”部署到Worklight Server:HTTP 401–未经授权`

在worklight日志中:

    [ERROR   ] FWLST0003E: ========= Failed starting project /myproject [project myproject]
Error creating bean with name 'taskManager' defined in URL [wsjar:file:/C:/Users/user/luna-workspace-local/WorklightServerConfig/shared/resources/worklight-jee-library-6.2.0.jar!/conf/core.xml]: Cannot resolve reference to bean 'worklightAuthenticationService' while setting bean property 'authenticationService'; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'worklightAuthenticationService' defined in URL [wsjar:file:/C:/Users/user/luna-workspace-local/WorklightServerConfig/shared/resources/worklight-jee-library-6.2.0.jar!/conf/core.xml]: Cannot create inner bean 'com.worklight.core.auth.impl.LoginConfigurationServiceBean#16d60e0' of type [com.worklight.core.auth.impl.LoginConfigurationServiceBean] while setting bean property 'loginConfigurationService'; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'com.worklight.core.auth.impl.LoginConfigurationServiceBean#16d60e0' defined in URL [wsjar:file:/C:/Users/user/luna-workspace-local/WorklightServerConfig/shared/resources/worklight-jee-library-6.2.0.jar!/conf/core.xml]: Invocation of init method failed; nested exception is java.lang.RuntimeException: FWLSE0249E: conf/authenticationConfig.xml contains duplicated realm named: wl_directUpdateRealm [project myproject]
相关的server.xml配置将更改

<administrator-role>
  <user>user</user>
</administrator-role>  

<jndiEntry jndiName="ibm.worklight.admin.jmx.user" value="user"/>
<jndiEntry jndiName="ibm.worklight.admin.jmx.pwd" value="{xor}password"/>

<ldapRegistry baseDN="DC=group,DC=dev,DC=dce,DC=company,DC=com" bindDN="user@dev" bindPassword="{xor}password" host="group.dev.dce.company.com" id="ldap" ignoreCase="true" ldapType="Microsoft Active Directory" port="389" realm="group.dev.dce.company.com:389"><activedFilters groupFilter="(&amp;(cn=%v)(objectcategory=group))" groupIdMap="*:cn" groupMemberIdMap="memberOf:member" userFilter="(&amp;(sAMAccountName=%v)(objectcategory=user))" userIdMap="user:sAMAccountName"/></ldapRegistry>   

<!-- Declare the IBM Worklight Admin Services application. -->
      <application context-root="worklightadmin" id="worklight-management-service" location="worklight-management-service.war" name="WorklightServices" type="war">
        <application-bnd>
          <security-role name="worklightadmin">
            <user name="user"/>
          </security-role>
          <security-role name="worklightdeployer">
      <user name="user"/>
          </security-role>
          <security-role name="worklightmonitor">
      <user name="user"/>
          </security-role>
          <security-role name="worklightoperator">
      <user name="user"/>
          </security-role>
        </application-bnd>
        <classloader delegation="parentLast">
          <privateLibrary>
            <fileset dir="${wlp.install.dir}/lib" includes="com.ibm.ws.crypto.passwordutil*.jar"/>
          </privateLibrary>
        </classloader>
      </application>
      <application context-root="worklightconsole" id="worklight-management-ui" location="worklight-management-ui.war" name="WorklightConsole" type="war">
    <application-bnd>
      <security-role name="worklightadmin">
  <user name="user"/>
      </security-role>
      <security-role name="worklightdeployer">
  <user name="user"/>
      </security-role>
      <security-role name="worklightmonitor">
  <user name="user"/>
      </security-role>
      <security-role name="worklightoperator">
  <user name="user"/>
      </security-role>
    </application-bnd>
  </application>


用户
问题出在这一行上

<jndiEntry jndiName="ibm.worklight.admin.jmx.pwd" value="{xor}password"/>
这里的密码不应该是{xor},而是明文

<jndiEntry jndiName="ibm.worklight.admin.jmx.pwd" value="password"/>
似乎jndi用户/pass正在工作,但插件本身有问题。为什么不能{XOR}使用此密码?如果不是,阅读会更安全吗?(我也有同样的问题。)