[chandler-users] A few bugs and issues

Ben Listwon ben at involutionstudios.com
Wed May 21 19:23:00 PDT 2008


If it helps, here is the log around that point in time.

I am particularly suspicious of this line:
[MorseCodeServlet] Client error (403): principal does not have access  
to item 5a67d4a0-2213-11dd-99ef-943f796ad894

Where/how would I grant access for other users, other than just  
sending them the collection?



2008-05-21 17:54:59,387 DEBUG [ExtraTicketProcessingFilter] looking  
for tickets in request headers
2008-05-21 17:54:59,387 INFO  [http-operations] OPTIONS /chandler/mc/ 
collection/5a67d4a0-2213-11dd-99ef-943f796ad894 null https  
B995951B4CD60956
4199BCECD8CD40A52008-05-21 17:54:59,508 DEBUG  
[ExtraTicketProcessingFilter] looking for tickets in request headers
2008-05-21 17:54:59,508 INFO  [http-operations] HEAD /chandler/mc/ 
collection/5a67d4a0-2213-11dd-99ef-943f796ad894 null https  
440CBA196FA9E035219
AB33A058E9C572008-05-21 17:54:59,508 DEBUG [MorseCodeServlet] handling  
GET for /collection/5a67d4a0-2213-11dd-99ef-943f796ad894
2008-05-21 17:54:59,509 DEBUG [StandardMorseCodeController]  
subscribing to collection 5a67d4a0-2213-11dd-99ef-943f796ad894
2008-05-21 17:54:59,509 DEBUG [SecurityAdviceMonitor] in  
baseSecurityCheck()
2008-05-21 17:54:59,509 DEBUG [SecurityAdvice] in  
checkFindItemByUid(uid)
2008-05-21 17:54:59,509 DEBUG [StandardContentService] finding item  
with uid 5a67d4a0-2213-11dd-99ef-943f796ad894
2008-05-21 17:54:59,512 DEBUG  
[ThrowAwayHibernateSessionOnErrorInterceptor] throwing away bad  
session and binding new one2008-05-21 17:54:59,513 INFO   
[MorseCodeServlet] Client error (403): principal does not have access  
to item 5a67d4a0-2213-11dd-99ef-943f796ad894
2008-05-21 17:55:33,933 INFO  [http-operations] GET /chandler/cmp/ 
account null https 58CA0C4FF4A0A5A4659723A7E88D551E
2008-05-21 17:55:33,983 DEBUG [ExtraTicketProcessingFilter] looking  
for tickets in request headers2008-05-21 17:55:33,983 INFO  [http- 
operations] GET /chandler/atom/user/blistwon/preferences null https  
58CA0C4FF4A0A5A4659723A7E88D551E
2008-05-21 17:55:33,983 DEBUG [StandardTargetResolver] resolving URI / 
user/blistwon/preferences
2008-05-21 17:55:33,983 DEBUG [UriTemplate] matched /user/{username}/ 
preferences
2008-05-21 17:55:33,984 DEBUG [StandardUserService] getting user  
blistwon



On May 21, 2008, at 7:09 PM, Ben Listwon wrote:

>> Ah, actually, after a quick peek at the web ui, a couple thoughts
>> about both questions
>>
>>
>> >
>> > ------------------------------------------
>> > Biggest Issue - Sharing Collections
>> > ------------------------------------------
>> > BUG #1: The first bug here is that when you choose invite, you only
>> > see the view-and-edit
>> > link, there is no view-only link.
>> >
>> > BUG #2 ?: When I send that link to another user, and they try to
>> > subscribe, the server
>> > returns a 403, and a rather large XML message about insufficient
>> > privileges. I put a
>> > question mark on this, since it may be a privilege setting that I  
>> do
>> > not know how to find,
>> > rather than a bug. (If you want/need the XML message, I'll dig it  
>> up
>> > for you).
>> >
>>
>> How is your server configured? Are you running behind an apache
>> reverse proxy? If so, you'll need to make sure you've specified
>> reverse proxy settings in the appropriate spots:
>>
>> http://chandlerproject.org/Documentation/ServerBundleReverseProxy
>>
>> Depending on the answer, this could potentially be the cause of both
>> problems.
>
> No, no yuckiness there. In fact, the server is running simply with  
> the embedded Tomcat, etc that comes in the app distribution. The  
> only only configuration change that was made is to enable the SSL  
> version, and comment out the plain old http version.
>
>
>>  It would help to diagnose the specific problem you're having it you
>> could paste the link you're being given (the one returning the 403).
>> If security is a concern, feel free to replace the uuid (the long
>> string of the form xxxx-xxxxxxx-xxxx.. etc) and the ticket key.
>
> Sure. You can't get to our server anyway, as it is inside only. But  
> in case it will give you clues, it is:
> https://192.168.1.80:8443/chandler/pim/collection/5a67d4a0-2213-11dd-99ef-943f796ad894
>
>>
>> In general, make sure to read through
>>
>> http://chandlerproject.org/Developers/ServerBundleAdministrator
>>
>> if you haven't already, as it covers a number of possible pain  
>> points.
>
> Yeh, read all the docs thoroughly at setup time. The one you mention  
> probably helped avert a lot of headache :)
>
>
>> Thanks again,
>>
>> -Travis
>
>
>
>
> ------------------------------
> Benjamin Listwon
>
> Principal, Involution Studios
> "innovating the digital world"
>
> e. ben at involutionstudios.com
> c. +1 650 305 0228
>
> _______________________________________________
> chandler-users mailing list
> chandler-users at osafoundation.org
> http://lists.osafoundation.org/mailman/listinfo/chandler-users


------------------------------
Benjamin Listwon

Principal, Involution Studios
"innovating the digital world"

e. ben at involutionstudios.com
c. +1 650 305 0228



More information about the chandler-users mailing list