https://projects.ecoinformatics.org/ecoinfo/https://projects.ecoinformatics.org/ecoinfo/ecoinfo/favicon.ico?14691340362010-03-23T18:12:00ZEcoinformatics RedmineMetacat - Bug #4900: LDAP referral connection timeouthttps://projects.ecoinformatics.org/ecoinfo/issues/4900?journal_id=168912010-03-23T18:12:00Zben leinfelderleinfelder@nceas.ucsb.edu
<ul></ul><p>This came to light when Judith and Victoria were trying to authenticate with the saeonocean metacat node (that points to ldap.ecoinformatics.org).</p>
<p>I remember the AMNH server was pretty locked down and they didn't want to open connections with many servers, but I think something has gone wrong. Can we test this with a PARC username?</p> Metacat - Bug #4900: LDAP referral connection timeouthttps://projects.ecoinformatics.org/ecoinfo/issues/4900?journal_id=168922010-03-23T18:22:41Zben leinfelderleinfelder@nceas.ucsb.edu
<ul></ul><p>matt's suggestions<br />2) modify metacat to gracefully deal with referral failures and timeouts<br />3) modify metacat to query for the DN in a more precise way -- ie, don't query referral servers on which an account couldn't possibly exist<br />e.g., you're looking up a SANParks account -- there is no reason to be looking under o=PARC for that<br />I think a combination of 2 + 3 is the right way to go</p> Metacat - Bug #4900: LDAP referral connection timeouthttps://projects.ecoinformatics.org/ecoinfo/issues/4900?journal_id=168932010-03-23T20:28:13Zben leinfelderleinfelder@nceas.ucsb.edu
<ul></ul><p>added code to skip the referral and continue to the next one if there was a problem with the first referral. This allows us to still authenticate with other servers if one of the referrals is down.<br />Not sure if this can/will be in the 1.9.2 release. Currently in the trunk.</p> Metacat - Bug #4900: LDAP referral connection timeouthttps://projects.ecoinformatics.org/ecoinfo/issues/4900?journal_id=168942011-10-26T22:17:00Zben leinfelderleinfelder@nceas.ucsb.edu
<ul></ul><p>Decided that <a class="issue tracker-1 status-3 priority-2 priority-default closed" title="Bug: some required elements should be optional (Resolved)" href="https://projects.ecoinformatics.org/ecoinfo/issues/3">#3</a> is not feasible since accounts may be in groups defined on various LDAP servers.</p> Metacat - Bug #4900: LDAP referral connection timeouthttps://projects.ecoinformatics.org/ecoinfo/issues/4900?journal_id=168952013-03-27T21:28:30ZRedmine Admin
<ul></ul><p>Original Bugzilla ID was 4900</p>