I have a test PI instance up, connecting to a test LDAP system (Directory Server 389). The Resolver passes when I hit the test button, and users are listed in the Users list. Doing an ldapsearch with the same credentials is successful. As an admin user, when I select a user (/#/user/details/freeipa/kbtestuser), an error get's generated and appears on the screen: "ERR905: The user can not be found in any resolver in this realm!"
I have output from the debug log for both this screen and a user login.
Any ideas what I might try next would be appreciated. :-)
```
[
[2015-06-10 08:35:23,071][30715][139984253683648][ERROR][privacyidea.lib.auditmodules.sqlaudit:239] exception ProgrammingError('(ProgrammingError) column "success" is of type integer but expression is of type boolean\nLINE 1: ...10T08:35:23.068387\'::timestamp, \'\', \'GET /user/\', true, NULL...\n ^\nHINT: You will need to rewrite or cast the expression.\n',)
[2015-06-10 08:35:23,071][30715][139984253683648][ERROR][privacyidea.lib.auditmodules.sqlaudit:240] DATA: {'info': u'realm: freeipa', 'administrator': u'admin', 'realm': u'freeipa', 'success': True, 'privacyidea_server': 'otp2.hpc.nrel.gov', 'client_user_agent': 'chrome', 'client': '10.40.104.142', 'action_detail': '', 'action': 'GET /user/', 'serial': None} [2015-06-10 08:35:23,072][30715][139984253683648][ERROR][privacyidea.lib.auditmodules.sqlaudit:241] Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/privacyidea/lib/auditmodules/sqlaudit.py", line 231, in finalize_log
self.session.commit()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 721, in commit
self.transaction.commit()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 354, in commit
self._prepare_impl()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 334, in _prepare_impl
self.session.flush()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 1818, in flush
self._flush(objects)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 1936, in _flush
transaction.rollback(_capture_exception=True)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/util/langhelpers.py", line 58, in __exit__
compat.reraise(exc_type, exc_value, exc_tb)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 1900, in _flush
flush_context.execute()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/unitofwork.py", line 372, in execute
rec.execute(self)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/unitofwork.py", line 525, in execute
uow
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/persistence.py", line 64, in save_obj
table, insert)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/persistence.py", line 569, in _emit_insert_statements
execute(statement, params)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 662, in execute
params)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 761, in _execute_clauseelement
compiled_sql, distilled_params
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 874, in _execute_context
context)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 1024, in _handle_dbapi_exception
exc_info
File "/usr/lib/python2.7/dist-packages/sqlalchemy/util/compat.py", line 196, in raise_from_cause
reraise(type(exception), exception, tb=exc_tb)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 867, in _execute_context
context)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/default.py", line 324, in do_execute
cursor.execute(statement, parameters)
ProgrammingError: (ProgrammingError) column "success" is of type integer but expression is of type boolean
LINE 1: ...10T08:35:23.068387'::timestamp, '', 'GET /user/', true, NULL...
^
HINT: You will need to rewrite or cast the expression.
'INSERT INTO pidea_audit (date, signature, action, success, serial, token_type, "user", realm, administrator, action_detail, info, privacyidea_server, client, loglevel, clearance_level) VALUES (%(date)s, %(signature)s, %(action)s, %(success)s, %(serial)s, %(token_type)s, %(user)s, %(realm)s, %(administrator)s, %(action_detail)s, %(info)s, %(privacyidea_server)s, %(client)s, %(loglevel)s, %(clearance_level)s) RETURNING pidea_audit.id' {'info': u'realm: freeipa', 'administrator': u'admin', 'realm': u'freeipa', 'success': True, 'privacyidea_server': 'otp2.hpc.nrel.gov', 'loglevel': None, 'action_detail': '', 'token_type': None, 'date': datetime.datetime(2015, 6, 10, 8, 35, 23, 68387), 'client': '10.40.104.142', 'user': None, 'clearance_level': None, 'signature': '', 'action': 'GET /user/', 'serial': None}
[2015-06-10 08:35:23,103][30716][139984253683648][ERROR][privacyidea.app:1423] Exception on /token/ [GET] Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/flask/app.py", line 1817, in wsgi_app
response = self.full_dispatch_request()
File "/usr/lib/python2.7/dist-packages/flask/app.py", line 1477, in full_dispatch_request
rv = self.handle_user_exception(e)
File "/usr/lib/python2.7/dist-packages/flask/app.py", line 1381, in handle_user_exception
reraise(exc_type, exc_value, tb)
File "/usr/lib/python2.7/dist-packages/flask/app.py", line 1475, in full_dispatch_request
rv = self.dispatch_request()
File "/usr/lib/python2.7/dist-packages/flask/app.py", line 1461, in dispatch_request
return self.view_functions[rule.endpoint](**req.view_args)
File "/usr/lib/python2.7/dist-packages/privacyidea/lib/log.py", line 101, in log_wrapper
f_result = func(*args, **kwds)
File "/usr/lib/python2.7/dist-packages/privacyidea/api/token.py", line 350, in list_api
description=description)
File "/usr/lib/python2.7/dist-packages/privacyidea/lib/log.py", line 101, in log_wrapper
f_result = func(*args, **kwds)
File "/usr/lib/python2.7/dist-packages/privacyidea/lib/token.py", line 306, in get_tokens_paginate
description=description)
File "/usr/lib/python2.7/dist-packages/privacyidea/lib/token.py", line 182, in _create_token_query
(uid, _rtype, _resolver) = user.get_user_identifiers()
File "/usr/lib/python2.7/dist-packages/privacyidea/lib/user.py", line 213, in get_user_identifiers
raise UserError("The user can not be found in any resolver in "
UserError: ERR905: The user can not be found in any resolver in this realm!
[2015-06-10 08:35:23,180][30716][139984253683648][ERROR][privacyidea.lib.auditmodules.sqlaudit:239] exception ProgrammingError('(ProgrammingError) column "success" is of type integer but expression is of type boolean\nLINE 1: ...0T08:35:23.178538\'::timestamp, \'\', \'GET /token/\', false, NUL...\n ^\nHINT: You will need to rewrite or cast the expression.\n',)
[2015-06-10 08:35:23,181][30716][139984253683648][ERROR][privacyidea.lib.auditmodules.sqlaudit:240] DATA: {'info': u'ERR905: The user can not be found in any resolver in this realm!', 'administrator': u'admin', 'realm': u'freeipa', 'success': False, 'privacyidea_server': 'otp2.hpc.nrel.gov', 'client_user_agent': 'chrome', 'client': '10.40.104.142', 'action_detail': '', 'action': 'GET /token/', 'serial': None} [2015-06-10 08:35:23,181][30716][139984253683648][ERROR][privacyidea.lib.auditmodules.sqlaudit:241] Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/privacyidea/lib/auditmodules/sqlaudit.py", line 231, in finalize_log
self.session.commit()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 721, in commit
self.transaction.commit()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 354, in commit
self._prepare_impl()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 334, in _prepare_impl
self.session.flush()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 1818, in flush
self._flush(objects)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 1936, in _flush
transaction.rollback(_capture_exception=True)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/util/langhelpers.py", line 58, in __exit__
compat.reraise(exc_type, exc_value, exc_tb)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 1900, in _flush
flush_context.execute()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/unitofwork.py", line 372, in execute
rec.execute(self)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/unitofwork.py", line 525, in execute
uow
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/persistence.py", line 64, in save_obj
table, insert)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/persistence.py", line 569, in _emit_insert_statements
execute(statement, params)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 662, in execute
params)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 761, in _execute_clauseelement
compiled_sql, distilled_params
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 874, in _execute_context
context)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 1024, in _handle_dbapi_exception
exc_info
File "/usr/lib/python2.7/dist-packages/sqlalchemy/util/compat.py", line 196, in raise_from_cause
reraise(type(exception), exception, tb=exc_tb)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 867, in _execute_context
context)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/default.py", line 324, in do_execute
cursor.execute(statement, parameters)
ProgrammingError: (ProgrammingError) column "success" is of type integer but expression is of type boolean
LINE 1: ...0T08:35:23.178538'::timestamp, '', 'GET /token/', false, NUL...
^
HINT: You will need to rewrite or cast the expression.
'INSERT INTO pidea_audit (date, signature, action, success, serial, token_type, "user", realm, administrator, action_detail, info, privacyidea_server, client, loglevel, clearance_level) VALUES (%(date)s, %(signature)s, %(action)s, %(success)s, %(serial)s, %(token_type)s, %(user)s, %(realm)s, %(administrator)s, %(action_detail)s, %(info)s, %(privacyidea_server)s, %(client)s, %(loglevel)s, %(clearance_level)s) RETURNING pidea_audit.id' {'info': u'ERR905: The user can not be found in any resolver in this realm!', 'administrator': u'admin', 'realm': u'freeipa', 'success': False, 'privacyidea_server': 'otp2.hpc.nrel.gov', 'loglevel': None, 'signature': '', 'token_type': None, 'date': datetime.datetime(2015, 6, 10, 8, 35, 23, 178538), 'client': '10.40.104.142', 'user': None, 'clearance_level': None, 'action_detail': '', 'action': 'GET /token/', 'serial': None}
```
Also, when I attempt to log in to privacyidea as the `kbtestuser`, the following error is also generated, and the user is presented with a "wrong credentials" error :
[2015-06-10 08:41:10,273][26563][139984253683648][ERROR][privacyidea.lib.user:319] The user User(login=u'kbtestuser', realm=u'freeipa', resolver='') exists in NO resolver.
[2015-06-10 08:41:10,277][26563][139984253683648][ERROR][privacyidea.lib.auditmodules.sqlaudit:239] exception ProgrammingError('(ProgrammingError) column "success" is of type integer but expression is of type boolean\nLINE 1: ...10T08:41:10.274448\'::timestamp, \'\', \'POST /auth\', false, NUL...\n ^\nHINT: You will need to rewrite or cast the expression.\n',)
[2015-06-10 08:41:10,277][26563][139984253683648][ERROR][privacyidea.lib.auditmodules.sqlaudit:240] DATA: {'info': 'Wrong credentials', 'success': False, 'privacyidea_server': 'otp2.hpc.nrel.gov', 'client_user_agent': 'safari', 'client': '10.40.104.142', 'action_detail': '', 'action': 'POST /auth'} [2015-06-10 08:41:10,278][26563][139984253683648][ERROR][privacyidea.lib.auditmodules.sqlaudit:241] Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/privacyidea/lib/auditmodules/sqlaudit.py", line 231, in finalize_log
self.session.commit()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 721, in commit
self.transaction.commit()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 354, in commit
self._prepare_impl()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 334, in _prepare_impl
self.session.flush()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 1818, in flush
self._flush(objects)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 1936, in _flush
transaction.rollback(_capture_exception=True)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/util/langhelpers.py", line 58, in __exit__
compat.reraise(exc_type, exc_value, exc_tb)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/session.py", line 1900, in _flush
flush_context.execute()
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/unitofwork.py", line 372, in execute
rec.execute(self)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/unitofwork.py", line 525, in execute
uow
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/persistence.py", line 64, in save_obj
table, insert)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/orm/persistence.py", line 569, in _emit_insert_statements
execute(statement, params)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 662, in execute
params)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 761, in _execute_clauseelement
compiled_sql, distilled_params
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 874, in _execute_context
context)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 1024, in _handle_dbapi_exception
exc_info
File "/usr/lib/python2.7/dist-packages/sqlalchemy/util/compat.py", line 196, in raise_from_cause
reraise(type(exception), exception, tb=exc_tb)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/base.py", line 867, in _execute_context
context)
File "/usr/lib/python2.7/dist-packages/sqlalchemy/engine/default.py", line 324, in do_execute
cursor.execute(statement, parameters)
ProgrammingError: (ProgrammingError) column "success" is of type integer but expression is of type boolean
LINE 1: ...10T08:41:10.274448'::timestamp, '', 'POST /auth', false, NUL...
^
HINT: You will need to rewrite or cast the expression.
'INSERT INTO pidea_audit (date, signature, action, success, serial, token_type, "user", realm, administrator, action_detail, info, privacyidea_server, client, loglevel, clearance_level) VALUES (%(date)s, %(signature)s, %(action)s, %(success)s, %(serial)s, %(token_type)s, %(user)s, %(realm)s, %(administrator)s, %(action_detail)s, %(info)s, %(privacyidea_server)s, %(client)s, %(loglevel)s, %(clearance_level)s) RETURNING pidea_audit.id' {'info': 'Wrong credentials', 'administrator': None, 'realm': None, 'success': False, 'privacyidea_server': 'otp2.hpc.nrel.gov', 'loglevel': None, 'action_detail': '', 'token_type': None, 'action': 'POST /auth', 'client': '10.40.104.142', 'user': None, 'clearance_level': None, 'signature': '', 'date': datetime.datetime(2015, 6, 10, 8, 41, 10, 274448), 'serial': None}