修改Worklight';s Liberty配置文件配置以使用LDAP&;来自Worklight Studio的401s
经过一番磕磕绊绊, 我能够将server.xml配置为命中LDAP。这很好。但是,现在我无法再从Worklight Studio进行部署 在jndi中使用错误凭证会产生预期错误;因此,我必须假设jndi中配置的凭据正在工作 [2014-07-30 16:05:34]未能将应用程序“应用程序”部署到Worklight Server:HTTP 401–未经授权` 在worklight日志中:修改Worklight';s Liberty配置文件配置以使用LDAP&;来自Worklight Studio的401s,ldap,ibm-mobilefirst,worklight-studio,websphere-liberty,Ldap,Ibm Mobilefirst,Worklight Studio,Websphere Liberty,经过一番磕磕绊绊, 我能够将server.xml配置为命中LDAP。这很好。但是,现在我无法再从Worklight Studio进行部署 在jndi中使用错误凭证会产生预期错误;因此,我必须假设jndi中配置的凭据正在工作 [2014-07-30 16:05:34]未能将应用程序“应用程序”部署到Worklight Server:HTTP 401–未经授权` 在worklight日志中: [ERROR ] FWLST0003E: ========= Failed starting p
[ERROR ] FWLST0003E: ========= Failed starting project /myproject [project myproject]
Error creating bean with name 'taskManager' defined in URL [wsjar:file:/C:/Users/user/luna-workspace-local/WorklightServerConfig/shared/resources/worklight-jee-library-6.2.0.jar!/conf/core.xml]: Cannot resolve reference to bean 'worklightAuthenticationService' while setting bean property 'authenticationService'; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'worklightAuthenticationService' defined in URL [wsjar:file:/C:/Users/user/luna-workspace-local/WorklightServerConfig/shared/resources/worklight-jee-library-6.2.0.jar!/conf/core.xml]: Cannot create inner bean 'com.worklight.core.auth.impl.LoginConfigurationServiceBean#16d60e0' of type [com.worklight.core.auth.impl.LoginConfigurationServiceBean] while setting bean property 'loginConfigurationService'; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'com.worklight.core.auth.impl.LoginConfigurationServiceBean#16d60e0' defined in URL [wsjar:file:/C:/Users/user/luna-workspace-local/WorklightServerConfig/shared/resources/worklight-jee-library-6.2.0.jar!/conf/core.xml]: Invocation of init method failed; nested exception is java.lang.RuntimeException: FWLSE0249E: conf/authenticationConfig.xml contains duplicated realm named: wl_directUpdateRealm [project myproject]
相关的server.xml配置将更改
<administrator-role>
<user>user</user>
</administrator-role>
<jndiEntry jndiName="ibm.worklight.admin.jmx.user" value="user"/>
<jndiEntry jndiName="ibm.worklight.admin.jmx.pwd" value="{xor}password"/>
<ldapRegistry baseDN="DC=group,DC=dev,DC=dce,DC=company,DC=com" bindDN="user@dev" bindPassword="{xor}password" host="group.dev.dce.company.com" id="ldap" ignoreCase="true" ldapType="Microsoft Active Directory" port="389" realm="group.dev.dce.company.com:389"><activedFilters groupFilter="(&(cn=%v)(objectcategory=group))" groupIdMap="*:cn" groupMemberIdMap="memberOf:member" userFilter="(&(sAMAccountName=%v)(objectcategory=user))" userIdMap="user:sAMAccountName"/></ldapRegistry>
<!-- Declare the IBM Worklight Admin Services application. -->
<application context-root="worklightadmin" id="worklight-management-service" location="worklight-management-service.war" name="WorklightServices" type="war">
<application-bnd>
<security-role name="worklightadmin">
<user name="user"/>
</security-role>
<security-role name="worklightdeployer">
<user name="user"/>
</security-role>
<security-role name="worklightmonitor">
<user name="user"/>
</security-role>
<security-role name="worklightoperator">
<user name="user"/>
</security-role>
</application-bnd>
<classloader delegation="parentLast">
<privateLibrary>
<fileset dir="${wlp.install.dir}/lib" includes="com.ibm.ws.crypto.passwordutil*.jar"/>
</privateLibrary>
</classloader>
</application>
<application context-root="worklightconsole" id="worklight-management-ui" location="worklight-management-ui.war" name="WorklightConsole" type="war">
<application-bnd>
<security-role name="worklightadmin">
<user name="user"/>
</security-role>
<security-role name="worklightdeployer">
<user name="user"/>
</security-role>
<security-role name="worklightmonitor">
<user name="user"/>
</security-role>
<security-role name="worklightoperator">
<user name="user"/>
</security-role>
</application-bnd>
</application>
用户
问题出在这一行上
<jndiEntry jndiName="ibm.worklight.admin.jmx.pwd" value="{xor}password"/>
这里的密码不应该是{xor},而是明文
<jndiEntry jndiName="ibm.worklight.admin.jmx.pwd" value="password"/>
似乎jndi用户/pass正在工作,但插件本身有问题。为什么不能{XOR}使用此密码?如果不是,阅读会更安全吗?(我也有同样的问题。)