LDAP Forever

More investigation of the ldap manager problem, but nothing found. On a happier note, Greg asked for help on an sql query and I suggested a way to do it. I'll be away at the Python conference until next Tuesday.

LDAP Debugging

I added some more debugging prints, this time directly in the Python ldap module. I got the parameters and then wrote a Python script and a Perl script that as far as I can tell, do the same thing. However, they return valid results and Zope does not. I'm still trying to figure out the difference.

Stuck on LDAP

Here's what I know about the problem. When logging in, the code tries to bind to ldap with user name and password. It doesn't have that info, so it binds anonymously. Then it queries ldap to get the distinguished name from ldap. This query fails, for unknown reasons, so it assumes the user is anonymous. This is an unacceptable result. so it asks for the password again. The problem is clearly with the query, but I haven't figured out why yet.

LDAP Continued

Narrowing down the problem, but still no joy.

Continued Work on LDAP

Contrary to what I previously thought, the ldap manager is going through the LDAP user folder. However, it is failing to return any results from the ldap query. I'm still trying to figure out why.

More LDAP

I ran the problem past Harry, and he couldn't come up with anything. So I spent the rest of the day studying the code, which is perversely opaque in this area.

LDAP Authorization

From Zope Authorization to LDAP authorization. LDAP authorization is failing. It looks like the code is searching for the getUserDN method and logging in as anonymous when it fails to find it. The only place I see this method defined is in LDAPUserFolder. It's unclear to me how LDAPUserFolder is invoked to override the default user folder.

Flotsam

Mike informed me that the calendar on this website was creating problems for the search appliance, so I disabled it. (Actually I tried to fix it and failed. I'll look at it again when I find time.) The script to re-analyze the network statistics finished yesterday. I took the output and used it to update the network statistics files.

Authorization Change Done

We were having trouble testing my authorization fix over on battra, so I moved it over to gorgo. We were able to complete testing there. In light of the results, I revised my fix of the code, retested, then deleted the debugging prints and handed the code over to Mike for more serious testing.

More Zope

I'm still debugging the authorization checking code. It seems to work well on the single url case, but not so well on the two url case. We haven't got squid set up yet, which makes testing more difficult.