dcm4chee-arc-psql:5.13.0-secure-ui: LDAP Configuration Problem

Mwombeki Fabian

unread,

Apr 12, 2018, 6:18:14 PM4/12/18

to dcm4che

Hello,

Please help figure out what I am missing..

I have installed dcm4chee using a docker compose method on Ubuntu 16.04.4 LTS using "Run all archive services with secured UI on a single host" I have managed to get into Keycloak and created the dcm4chee-arc-ui. But I can't log into the Archive UI. I get his error "Unexpected error when handling authentication request to identity provider."

It seems I have an LDAP configuration problem but I can't see how to fix it. Can someone guide me please.

Below is my log

____________________________

$ tail -100 /var/local/dcm4chee-arc/keycloak/log/server.log

at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:812)

at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)

at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)

at java.lang.Thread.run(Thread.java:748)

Caused by: org.keycloak.models.ModelException: Querying of LDAP failed org.keycloak.storage.ldap.idm.query.internal.LDAPQuery@46985d

at org.keycloak.storage.ldap.idm.store.ldap.LDAPIdentityStore.fetchQueryResults(LDAPIdentityStore.java:207)

at org.keycloak.storage.ldap.idm.query.internal.LDAPQuery.getResultList(LDAPQuery.java:164)

... 74 more

Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; remaining name 'ou=users,dc=dcm4che,dc=org'

at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3179)

at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3100)

at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2891)

at com.sun.jndi.ldap.LdapCtx.searchAux(LdapCtx.java:1846)

at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1769)

at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirContext.java:392)

at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:358)

at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:341)

at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:267)

at org.keycloak.storage.ldap.idm.store.ldap.LDAPOperationManager$3.execute(LDAPOperationManager.java:253)

at org.keycloak.storage.ldap.idm.store.ldap.LDAPOperationManager$3.execute(LDAPOperationManager.java:250)

at org.keycloak.storage.ldap.idm.store.ldap.LDAPOperationManager.execute(LDAPOperationManager.java:745)

at org.keycloak.storage.ldap.idm.store.ldap.LDAPOperationManager.execute(LDAPOperationManager.java:728)

at org.keycloak.storage.ldap.idm.store.ldap.LDAPOperationManager.search(LDAPOperationManager.java:250)

at org.keycloak.storage.ldap.idm.store.ldap.LDAPIdentityStore.fetchQueryResults(LDAPIdentityStore.java:198)

... 75 more

2018-04-12 17:54:53,569 ERROR [org.dcm4che3.audit.keycloak.AuditLoggerFactory] (default task-13) Missing Configuration for Device 'keycloak' - you may change the Device name by System Property 'keycloak.DeviceName'

2018-04-12 17:54:53,569 WARN [org.dcm4che3.audit.keycloak.Dcm4cheEventListenerProvider] (default task-13) Failed to get audit logger: org.dcm4che3.conf.api.ConfigurationNotFoundException

at org.dcm4che3.conf.ldap.LdapDicomConfiguration.findDevice(LdapDicomConfiguration.java:325)

at org.dcm4che3.audit.keycloak.AuditLoggerFactory.findDevice(AuditLoggerFactory.java:96)

at org.dcm4che3.audit.keycloak.AuditLoggerFactory.getAuditLoggers(AuditLoggerFactory.java:82)

at org.dcm4che3.audit.keycloak.Dcm4cheEventListenerProvider.onEvent(Dcm4cheEventListenerProvider.java:70)

at org.keycloak.events.EventBuilder.send(EventBuilder.java:187)

at org.keycloak.events.EventBuilder.error(EventBuilder.java:164)

at org.keycloak.authentication.AuthenticationProcessor.handleBrowserException(AuthenticationProcessor.java:670)

at org.keycloak.services.resources.LoginActionsService.processFlow(LoginActionsService.java:292)

at org.keycloak.services.resources.LoginActionsService.processAuthentication(LoginActionsService.java:255)

at org.keycloak.services.resources.LoginActionsService.authenticate(LoginActionsService.java:251)

at org.keycloak.services.resources.LoginActionsService.authenticateForm(LoginActionsService.java:311)

at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)

at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)

at java.lang.reflect.Method.invoke(Method.java:498)

at org.jboss.resteasy.core.MethodInjectorImpl.invoke(MethodInjectorImpl.java:140)

at org.jboss.resteasy.core.ResourceMethodInvoker.invokeOnTarget(ResourceMethodInvoker.java:295)

at org.jboss.resteasy.core.ResourceMethodInvoker.invoke(ResourceMethodInvoker.java:249)

at org.jboss.resteasy.core.ResourceLocatorInvoker.invokeOnTargetObject(ResourceLocatorInvoker.java:138)

at org.jboss.resteasy.core.ResourceLocatorInvoker.invoke(ResourceLocatorInvoker.java:101)

at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:406)

at org.jboss.resteasy.core.SynchronousDispatcher.invoke(SynchronousDispatcher.java:213)

at org.jboss.resteasy.plugins.server.servlet.ServletContainerDispatcher.service(ServletContainerDispatcher.java:228)

at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:56)

at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:51)

at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)

at io.undertow.servlet.handlers.ServletHandler.handleRequest(ServletHandler.java:85)

at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:129)

at org.keycloak.services.filters.KeycloakSessionServletFilter.doFilter(KeycloakSessionServletFilter.java:90)

at io.undertow.servlet.core.ManagedFilter.doFilter(ManagedFilter.java:61)

at io.undertow.servlet.handlers.FilterHandler$FilterChainImpl.doFilter(FilterHandler.java:131)

at io.undertow.servlet.handlers.FilterHandler.handleRequest(FilterHandler.java:84)

at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:62)

at io.undertow.servlet.handlers.ServletDispatchingHandler.handleRequest(ServletDispatchingHandler.java:36)

at org.wildfly.extension.undertow.security.SecurityContextAssociationHandler.handleRequest(SecurityContextAssociationHandler.java:78)

at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)

at io.undertow.servlet.handlers.security.SSLInformationAssociationHandler.handleRequest(SSLInformationAssociationHandler.java:131)

at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:57)

at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)

at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46)

at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64)

at io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:60)

at io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:77)

at io.undertow.security.handlers.NotificationReceiverHandler.handleRequest(NotificationReceiverHandler.java:50)

at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43)

at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)

at org.wildfly.extension.undertow.security.jacc.JACCContextIdHandler.handleRequest(JACCContextIdHandler.java:61)

at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)

at org.wildfly.extension.undertow.deployment.GlobalRequestControllerHandler.handleRequest(GlobalRequestControllerHandler.java:68)

at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43)

at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:292)

at io.undertow.servlet.handlers.ServletInitialHandler.access$100(ServletInitialHandler.java:81)

at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:138)

at io.undertow.servlet.handlers.ServletInitialHandler$2.call(ServletInitialHandler.java:135)

at io.undertow.servlet.core.ServletRequestContextThreadSetupAction$1.call(ServletRequestContextThreadSetupAction.java:48)

at io.undertow.servlet.core.ContextClassLoaderSetupAction$1.call(ContextClassLoaderSetupAction.java:43)

at org.wildfly.extension.undertow.security.SecurityContextThreadSetupAction.lambda$create$0(SecurityContextThreadSetupAction.java:105)

at org.wildfly.extension.undertow.deployment.UndertowDeploymentInfoService$UndertowThreadSetupAction.lambda$create$0(UndertowDeploymentInfoService.java:1508)

at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:272)

at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81)

at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:104)

at io.undertow.server.Connectors.executeRootHandler(Connectors.java:326)

at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:812)

at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)

at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)

at java.lang.Thread.run(Thread.java:748)

2018-04-12 17:54:53,571 WARN [org.keycloak.events] (default task-13) type=LOGIN_ERROR, realmId=dcm4che, clientId=dcm4chee-arc-ui, userId=null, ipAddress=192.168.99.1, error=invalid_user_credentials, auth_method=openid-connect, redirect_uri=http://ubuntuserver:8080/dcm4chee-arc/ui2/, code_id=e949ae38-6bac-4180-a590-35e2c112ca31, username=admin

Mwombeki Fabian

unread,

Apr 13, 2018, 12:25:55 AM4/13/18

to dcm4che

I found out my problem; I had not imported the LIDF into the server. I was able to fix the login problem.

But now I have two errors:

vrinda...@j4care.com

unread,

Apr 13, 2018, 8:08:22 AM4/13/18

to dcm4che

Which ldif did you import?

Mwombeki Fabian

unread,

Apr 13, 2018, 12:20:44 PM4/13/18

to dcm4che

I imported from dcm4chee-arc-5.13.0-psql-secure-ui/ldap/

Mwombeki Fabian

unread,

Apr 19, 2018, 10:19:22 PM4/19/18

to dcm4che

Can Anyone help me. I have used docker compose to install but Im still getting a problem with uploading all the LIDF files through Apache Directory Studio which makes me think I am missing the schema. I don't see any schema on Apache DS (see image attached) but when I check on ldap container I can see them( see image attached)

What am I missing?

Mwombeki Fabian

unread,

Apr 24, 2018, 1:38:59 AM4/24/18

to dcm4che

Please, can someone help me figure out my mistakes?

Gunter Zeilinger

unread,

Apr 24, 2018, 5:42:45 AM4/24/18

to dcm...@googlegroups.com

You do not need to configure any schema or import any configuration data when using the docker images!

--
You received this message because you are subscribed to the Google Groups "dcm4che" group.
To unsubscribe from this group and stop receiving emails from it, send an email to dcm4che+unsubscribe@googlegroups.com.
To post to this group, send email to dcm...@googlegroups.com.
Visit this group at https://groups.google.com/group/dcm4che.
For more options, visit https://groups.google.com/d/optout.

Mwombeki Fabian

unread,

Apr 24, 2018, 2:04:25 PM4/24/18

to dcm4che

Thank you for the confirmation.

Can you please help me understand why this first error shows up? I thought it was because the DN was missing.



2018-04-24 01:02:58,369 ERROR [org.dcm4chee.arc.impl.ArchiveDeviceProducer] (ServerService Thread Pool -- 90) Missing Configuration for Device 'dcm4chee-arc' - you may change the Device name by System Property 'dcm4chee-arc.DeviceName' 

2018-04-24 01:02:58,485 ERROR [org.jboss.msc.service.fail] (ServerService Thread Pool -- 90) MSC000001: Failed to start service jboss.deployment.subunit."dcm4chee-arc-ear-5.13.0-psql-secure-ui.ear"."dcm4chee-arc-service-5.13.0.jar".component.ArchiveServiceImpl.START: org.jboss.msc.service.StartException in service jboss.deployment.subunit."dcm4chee-arc-ear-5.13.0-psql-secure-ui.ear"."dcm4chee-arc-service-5.13.0.jar".component.ArchiveServiceImpl.START: java.lang.IllegalStateException: WFLYEE0042: Failed to construct component instance 

2018-04-24 01:02:58,688 ERROR [org.jboss.as.controller.management-operation] (Controller Boot Thread) WFLYCTL0013: Operation ("deploy") failed - address: ([("deployment" => "dcm4chee-arc-ear-5.13.0-psql-secure-ui.ear")]) - failure description: { 

2018-04-24 01:03:00,270 ERROR [org.jboss.as] (Controller Boot Thread) WFLYSRV0026: WildFly Full 12.0.0.Final (WildFly Core 4.0.0.Final) started (with errors) in 122989ms - Started 2647 of 2868 services (5 services failed or missing dependencies, 440 services are lazy, passive or on-demand)

Also, when I try to push some sample dicom images I get this error



docker run --rm --network=dcm4chee_default dcm4che/dcm4che-tools:5.10.5 storescu -cDCM4CHEE@arc:11112 /opt/dcm4che/etc/testdata/dicom 

Scanning files to send 

................ 

Scanned 16 files in 0.159s (=9ms/file) 

07:05:30,814 INFO - Initiate connection from 0.0.0.0/0.0.0.0:0 to arc:11112 

storescu: Connection refused (Connection refused) 

java.net.ConnectException: Connection refused (Connection refused) 

 at java.net.PlainSocketImpl.socketConnect(Native Method) 

 at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:350) 

 at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:206) 

 at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:188) 

 at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392) 

 at java.net.Socket.connect(Socket.java:589) 

 at org.dcm4che3.net.Connection.connect(Connection.java:952) 

 at org.dcm4che3.net.ApplicationEntity.connect(ApplicationEntity.java:590) 

 at org.dcm4che3.net.ApplicationEntity.connect(ApplicationEntity.java:607) 

 at org.dcm4che3.tool.storescu.StoreSCU.open(StoreSCU.java:515) 

 at org.dcm4che3.tool.storescu.StoreSCU.main(StoreSCU.java:287)

So i thought DCM4CHEE DN didn't not have access like above.

Please help me sort this out.

On Tuesday, April 24, 2018 at 5:42:45 AM UTC-4, gunterze wrote:

You do not need to configure any schema or import any configuration data when using the docker images!

On Tue, Apr 24, 2018 at 7:38 AM, Mwombeki Fabian <mwombek...@gmail.com> wrote:

Please, can someone help me figure out my mistakes?

On Thursday, April 19, 2018 at 10:19:22 PM UTC-4, Mwombeki Fabian wrote:
Can Anyone help me. I have used docker compose to install but Im still getting a problem with uploading all the LIDF files through Apache Directory Studio which makes me think I am missing the schema. I don't see any schema on Apache DS (see image attached) but when I check on ldap container I can see them( see image attached)

What am I missing?

On Friday, April 13, 2018 at 12:20:44 PM UTC-4, Mwombeki Fabian wrote:
I imported from dcm4chee-arc-5.13.0-psql-secure-ui/ldap/

On Friday, April 13, 2018 at 8:08:22 AM UTC-4, vrinda...@j4care.com wrote:
Which ldif did you import?

On Friday, April 13, 2018 at 6:25:55 AM UTC+2, Mwombeki Fabian wrote:
I found out my problem; I had not imported the LIDF into the server. I was able to fix the login problem.

But now I have two errors:
2018-04-12 17:54:53,569 ERROR [org.dcm4che3.audit.keycloak.AuditLoggerFactory] (default task-13) Missing Configuration for Device 'keycloak' - you may change the Device name by System Property 'keycloak.DeviceName'
2018-04-12 17:54:53,569 WARN [org.dcm4che3.audit.keycloak.Dcm4cheEventListenerProvider] (default task-13) Failed to get audit logger: org.dcm4che3.conf.api.ConfigurationNotFoundException

--
You received this message because you are subscribed to the Google Groups "dcm4che" group.

To unsubscribe from this group and stop receiving emails from it, send an email to dcm4che+u...@googlegroups.com.

Reply all

Reply to author

Forward