Project

General

Profile

Bug #1203

Metacat ldap authentication slow

Added by Dave Vieglais about 14 years ago. Updated about 13 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
Metacat
Target version:
-
Start date:
2011-01-07
Due date:
% Done:

0%

Milestone:
None
Product Version:
*
Story Points:
Sprint:

Description

Metacat appears to issue a large number of LDAP referal requests when authenticating which can take several seconds. This needs to be corrected for Metacat to operate in a CN environment.

Example log output from cn-unm-1:

knb 20110107-03:11:29: [WARN]: finish building index for doicd autogen.2011619112649.1 [edu.ucsb.nceas.metacat.IndexingTask]
knb 20110107-03:11:29: [INFO]: AuthLdap.getGroups - caught referral exception: ldap://directory.piscoweb.org/ou=people,dc=piscoweb,dc=org??sub [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:29: [INFO]: AuthLdap.getGroups - caught referral exception: ldap://ldap.lternet.edu/o=LTER,dc=ecoinformatics,dc=org??sub [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:29: [INFO]: AuthLdap.getGroups - caught referral exception: ldap://dataknp.sanparks.org/o=SANParks,dc=ecoinformatics,dc=org??sub [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:32: [INFO]: AuthLdap.getGroups - caught referral exception: ldap://dataknp.sanparks.org/o=SAEON,dc=ecoinformatics,dc=org??sub [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:36: [INFO]: AuthLdap.getGroups - caught referral exception: ldaps://ldap.biodiversityinformatics.amnh.org:636/dc=palmyraresearch,dc=org??sub [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:41: [ERROR]: NamingException when getting referral contex. Skipping this referral. ldap.biodiversityinformatics.amnh.org:636 [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:41: [INFO]: AuthLdap.getGroups - caught referral exception: ldap://desertdb.bgu.ac.il/o=ilter-israel,dc=ecoinformatics,dc=org??sub [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:41: [INFO]: AuthLdap.getGroups - caught referral exception: ldap://desertdb.bgu.ac.il/o=ilter-romania,dc=ecoinformatics,dc=org??sub [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:42: [INFO]: AuthLdap.getGroups - caught referral exception: ldap://desertdb.bgu.ac.il/o=ilter-slovakia,dc=ecoinformatics,dc=org??sub [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:43: [INFO]: AuthLdap.getGroups - caught referral exception: ldap://desertdb.bgu.ac.il/o=ilter-ukecn,dc=ecoinformatics,dc=org??sub [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:43: [WARN]: AuthLdap.getGroups - The user is in the following groups: [] [edu.ucsb.nceas.metacat.AuthLdap]
knb 20110107-03:11:43: [INFO]: the new session id is : 9DE0CA054AF3822B57FB6022464A70DC [edu.ucsb.nceas.metacat.AuthSession]
knb 20110107-03:11:43: [INFO]: the new session username : uid=kepler,o=unaffiliated,dc=ecoinformatics,dc=org [edu.ucsb.nceas.metacat.AuthSession]
knb 20110107-03:11:43: [DEBUG]: MetaCatServlet.handleLoginAction - Store session id 9DE0CA054AF3822B57FB6022464A70DC which has usernameuid=kepler,o=unaffiliated,dc=ecoinformatics,dc=org into hash in l
ogin method [edu.ucsb.nceas.metacat.MetaCatServlet]

History

#1 Updated by Ben Leinfelder about 13 years ago

  • Status changed from New to Rejected
  • Milestone set to None

This is not a D1 issue in that Metacat LDAP authentication is not used in D1 -- only client certificates.

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 14.8 MB)