Hi all,
i have some problems with log into the ODK web UI
I access to phpLDAPadmin console (with https://:40000 and login Ok with username “cn=admin,dc=example,dc=org” and the password “admin”.
Add user “webadmin” into ou=people and assign him to group “default_prefix site_admins” (gidNumber=500)
But then, i can’t login in Web-UI, the error message appears (Incorrect username or password.)
Thanks,
Ariel
What ODK tool and version are you using? And on what device and operating system version?
ODK 2 on ubuntu 16.04. and I try to connect to the web-ui from a terminal with windows 7
What you have you tried to fix the problem?
Add user “webadmin” into ou=people and assign him to group “default_prefix site_admins”
Anything else we should know or have? If you have a test form or screenshots or logs, attach here.
Looks like your users/groups might not be correctly assigned. In your screenshot, there isn’t a webadmin user but there is an aprincipal. The username to login to Sync Endpoint is the text in the uid field, make sure you have the correct value in that field.
Another possibility is that your Web UI is not configured properly. Could you try visiting /odktables/default/privilegesInfo at the same address as the Web UI and see if you could gain access?
Tested that I can find the user via CLI with
docker exec $(docker ps -f “label=com.docker.swarm.service.name=syncldap_ldap-service” --format ‘{{.ID}}’) ldapsearch -xLLL -D “cn=readonly,dc=example,dc=org” -w readonly -H ldap://ldap-service:389 -b “ou=people,dc=example,dc=org” -s sub ‘uid=test’ * +
Went to the web-ui url and entered the created user, and get prompted that the login credentials are incorrect.
Quick update, upon inspecting the logs for sync-web-ui I see the issue seems to with:
2018-07-14 10:10:30.462 INFO 5 — [nio-8080-exec-8] bServiceDelegatingAuthenticationProvider : Logging in with http://sync:8080/odktables/{appId}/privilegesInfo
2018-07-14 10:10:30.506 INFO 5 — [nio-8080-exec-8] bServiceDelegatingAuthenticationProvider : Received an exception when getting granted roles
2018-07-14 10:10:30.506 INFO 5 — [nio-8080-exec-8] bServiceDelegatingAuthenticationProvider : Received 404
2018-07-14 10:10:30.507 INFO 5 — [nio-8080-exec-8] bServiceDelegatingAuthenticationProvider : Received
I think the issue was related to having some other container with nginx configuration, which was conflicting with the settings required by odk/sync-web-ui and the logs seems to have pointed me to the right direction.
So, here’s how I managed to get logged in:
Stopped all containers with the command docker stop $(docker ps -aq)
I have installed ODK 2.0 Server on a VirtualBox running Ubuntu Server 18.04. I have access in php LDAP admin from host machine. I have created a user as decripted at ODK-X Sync Endpoint — ODK-X Docs
Try to visit /odktables/default/tables under the same hostname as the web-ui, and using the same credential. If you’re able to get a valid response back, then the web-ui wasn’t configured properly.
@feisung, where did you find the sync-web-ui logs. I am having exactly the same problem as you but still can’t login.
All good, found them in the Docker container. I get exactly the same error message and have tried the steps you suggested but I still can’t login to the Web-UI
Solved it! I needed to go into the 500 group and add my username to it by adding the attribute which wasn’t displayed.
Thanks.
I still can’t get logged on to the web-ui. I have tried re-installing everything. This is a clean install of ODK2 on a clean ubuntu 18.04 machine.
I really need to get this up and running for a demonstration.
web-ui logs:
2019-02-06 03:48:11.049 INFO 6 — [nio-8080-exec-3] bServiceDelegatingAuthenticationProvider : Logging in with http://sync:8080/odktables/{appId}/privilegesInfo
2019-02-06 03:48:11.099 INFO 6 — [nio-8080-exec-3] bServiceDelegatingAuthenticationProvider : Received an exception when getting granted roles
The web-ui seems to connect to openldap and searches for the uid. openldap doesn’t appear to return any errors and only a single entry, which I would expect?
OK, I’m having the same problem still. I go to https://l2odk2.vmhost.psu.edu/web-ui/login, and enter my newly created admin username and password. I immediately get this:
August 29, 2019 6:03:16 PM UTC
There was an unexpected error (type=Internal Server Error, status=500).
500
Please contact the operator with the above information.
I tried getting the docker logs for the nginx container: The last lines are:
10.255.0.2 - - [29/Aug/2019:18:03:05 +0000] “GET /web-ui/login HTTP/2.0” 200 2641 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Firefox/68.0” “-”
10.255.0.2 - - [29/Aug/2019:18:03:05 +0000] “GET /web-ui/css/sitewide.css HTTP/2.0” 200 62 “https://l2odk2.vmhost.psu.edu/web-ui/login” “Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Firefox/68.0” “-”
10.255.0.2 - - [29/Aug/2019:18:03:16 +0000] “POST /web-ui/login HTTP/2.0” 500 389 “https://l2odk2.vmhost.psu.edu/web-ui/login” “Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Firefox/68.0” “-”
This really doesn’t give me any more info than that there is a 500 error, which I knew already.
I tried linl33’s suggestion to go to odktables/default/tables, and am prompted by a webserver generated username challenge (in a popup window) and when I authenticate there I just get:
falsefalse
I am not authenticated because if I go back to the root of the site I get the /web-ui/login screen again.
I believe web-ui isn’t configured correctly, but have no clue as to what the actual problem is!
Thanks for any help from anyone.
PS: I have verified that my username, odk2_admin is in ldap and is a member of default_prefix site_admins (gid 500)
Hi, I’m having the same issue as the OP, as I’m also unable to login to the webui after creating the user in OpenLDAP, I’ve also added the user to the correct group (500), but somehow no luck.
Hi,
I’m recently trying manual server installation on my local system. i’m using windows 10 where Docker is installed and Swarm Mode is enabled. All required docker images has been pulled after running “mvn clean install” in the appropriate directory. But, Incorrect username and password is coming at http://127.0.0.1.