[6.0.3] LDAP Wizard hangs, users cannot login #8457
Comments
|
which ownCloud version? Sounds like an issue that was fixed in 6.0.3. |
|
Is there a git hub for the issue you mention? |
|
Yes: #7530 The stuff is running in the background and blocking further LDAP access. You could wait or restart the web server. |
|
We are experiencing the same difficulty here and are running 6.0.3 from the supplied Debian repository. When I hit continue from the first screen, I get the second screen (User Filter), there's a burst of queries sent to the LDAP server which takes approximately 2 seconds. A single Apache process then pegs the CPU to 100% indefinitely with no progress. I'm stuck on the User Filter screen with spinning icons beside "only those object classes" and "only from those groups" |
|
@Elethiomel could you set the logging to Everything, try again and provide the owncloud.log, please? |
|
I could only recover from this by restoring the oc_appconfig table from a mysql backup dump. If I use the admin view to config LDAP it ruins the config. Unfortunately this is a production system so breaking the config again is not possibility. I'll see what I can do though. I may be able to clone the system and reproduce the error. |
|
Would be very much appreciated, thank you. |
|
Same issue in 6.0.3 |
|
@ser72 which Charset and which LDAP server is used? Since following entry looks suspicious. What also looks strange is that there are errors about permission issues with the global file cache, e.g. Could you check whether there are other users than the web user running ownCloud? Might also be a cron job running as different user. |
If you are asking about Apache's config, it is set for the default UTF-8
Openldap, but we also have an Active Directory server on campus, so I'm no sure why the decision was made to use openldap
I set up the owncloud crontab entry to run as apache, so no. |
|
Charset on the OpenLDAP, or better question, are exclusively special characters used (other than base set of latin)? Oh, personally i would choose OpenLDAP, too :) Could you run Could you also post the LDAP configuration from the database (table oc_appconfig, appid = 'user_ldap')? Leave out the password row(s) :) |
|
Now i see similar behaviour on an UCS instance, which also runs PHP 5.3.3. I wonder whether this is to blame? Getting no log output, yet, but will do some debugging. |
|
Happens with 5.3.8 and 5.4, too, so not an incompatibility. |
|
stupid infinite loop under bad luck circumstances. The chance it happens with a not too small number of users (say, >15) is rather small, but I can happen. |
|
Same here. About 2000 Users in LDAP, ~1000 Groups. Configuring LDAP using the wizard leads to an infinit spinning wheel on LDAP-Wizard second page. It is impossible to configure ldap to a working state, because reading the server to generate next configuration page for the wizard never finishes. |
|
@ser72 @Elethiomel @tps800 please test the solution in #8623 |
|
@blizzz Is this fix based off 6.0.3? |
|
current stable6, but compared to 6.0.3 there are no other changes in the affected files iirc |
|
P.S.: works for me directly patching against stock 6.0.3 |
|
Same problem, and when I accidentaly deleted the ldap configuration by hitting return on the webpage twice, I'm now no longer able to enter the information. logs: May 16 15:00:10 owntest1 ownCloud[26932]: {PHP} Class 'PHPUnit_Framework_TestCase' not found at /var/www/html/owncloud-enterprise/apps/user_ldap/lib/wizard.php#32 |
|
@ser72 You copied the wizard.php from the tests (apps/user_ldap/tests/wizard.php |
|
aha -- ok let me verify. |
|
Same issue, spinning indicator on any of the ldap filter assists, users who should have access are unable to logon, receives the following error: Excerpt from logs, let me know if you want them all |
|
Can you post the contents of database table oc_ldap_user_mapping and your LDAP configuration? (table oc_appconfig, appid = 'user_ldap')? |
|
Data on S3 under: Support\customer-tickets-history\LDAP WIZARD\LDAP_INFO.txt |
|
@ser72 it looks a bit messed up… does not happen in the LDAP Wizard. I.e. inserting into 'oc_ldap_user_mapping' does not happen in this stage. It smells like a different issue. That's also why I asked for the oc_ldap_user_mapping table. Probably a small set of it will do. I reproduced the other error messages about partial results or size exceeding, and will have a closer look on why they occur, but they do not any harm to me. Well, for size exceeding i actually have an explanation, and this would be nothing to worry about. So, why is the wizard still hanging for you? Since your attempts, i assume the web server has been restarted? Because that's required as the infinite loop causes the server to use 100% CPU. |
|
@blizzz My understanding is as you state, apache is restarted when it hangs otherwise it causes 100% cpu. |
|
Ah, no, Apache needs to be restarted manually. |
|
@blizzz Yes -- my bad for the misunderstanding. The user has told me that apache is restarted (manually) when the CPU hits 100% |
the "oc_ldap_user_mapping" table is empty.
I've deleted and filled in all the options again, but configuration is marked as incomplete. In the past when I tried deleting/reconfigured, after restarting httpd the the configuration would be marked as complete and test configuration was sucessful. |
|
reg 1) how can there be an error message complaining on a duplicate row while the table is empty? does not make sense at all. reg 2) odd, i have not seen this. Does it happen always for you? Could you open a new issue for this? Thank you. The other thing is that since you completed it, the Wizard does not hang anymore, does it? |
|
The wizard still hangs. And yes agree with your theory on 1). Odd... Would you like a screen share??? |
|
Yes, if possible tomorrow. I am off the rest of the week and on the meeting the whole next week (might nevertheless be possible, though not ideal). |
|
@blizzz She is on the west coast. Just emailed asking if she is free this morning (her time)... WIll let you know |
LDAP: fix possible infinite loop, that causes hanging wizard, fixes #8457
|
All I currently have is: "I'm now able to see the ldap configuration, but still am having the
Requested logs. |
|
Guys. What about getting on the phone and debugging this together? :-) |
|
We did it, which was useful so the latest patch could be done. |
|
So... where is the patch ? 😄 |
|
@ser72 do you remember what the state was here? |
|
@blizzz Looking back at the case, it seems this was fixed in 6.0.4 and the customer was all set. |
|
Very well. I close this issue then. |
Environment
[]$ cat /etc/redhat-release
Red Hat Enterprise Linux Server release 6.5 (Santiago)
[]$ rpm -qa | grep php
php-5.3.3-27.el6_5.x86_64
Issue
User attempts to configure LDAP -- the LDAP wizard spins and spins and is not usable in this setup.
Configure LDAP via raw filters is possible, however, shows no users found and no groups found. This is using the same configuration as in oC5.
Error message
The hourly cronjob is reporting (which is why I increased the memory limit in php)
Logs
Complete logs and configuration can be found on S3 under
Support/customer-tickets-history/LDAP WIZARD
@blizzz
The text was updated successfully, but these errors were encountered: