Re: [Condor-users] permission denied woes with enabling soap

[Joshua.Chartier@xxxxxxxxxxxx]

Hi,

I'm having the same problem as Jason was having back
in April but I haven't found a responses as to how(if?) it was fixed.

I've checked that QUEUE_ALL_USERS_TRUSTED is true
and that my SSL is disabled. Strangely I can change the ALLOW_SOAP to limit
the where the SOAP requests can come from but I can't use any other HOSTALLOW_WRITE
than * for birdbath submissions once I've removed the SSL entries in my
condor_config file.

Was this solved?

Thanks,
Josh

----------------------------------------------------------------------------------------

Well, I got it working, but I had to open up HOSTALLOW_WRITE
to '*' instead of something more explicit. After reading up, I believe
my woes were due to dns issues. I am trying to sort that out now. 
Thanks,

jdr


Matthew Farrellee wrote:

Jason,


Normally the QUEUE_ALL_USERS_TRUSTED = TRUE should
eliminate that problem. Do you happen to be using SSL authentication? If
so I wonder if QUEUE_ALL... is being ignored. 

Just a first thought...


matt

On Apr 25, 2007, at 8:31 AM, Jason Reilly wrote:


Hi all,

I am trying to set up Condor (6.8.3) to accept remote SOAP calls and I
keep getting a 'java.rmi.RemoteException: Permission denied' on
xact.begin(int).  I can submit jobs on the cmdline using condor_sumbit
with a simple 'echo' command.  The URL endpoint I am using is
'http://<host>:12000'.

Here is what I added the following to the config file:

WEB_ROOT_DIR=$(RELEASE_DIR)/lib/webservice
ENABLE_SOAP = TRUE
ALLOW_SOAP = */*
ENABLE_WEB_SERVER = TRUE
QUEUE_ALL_USERS_TRUSTED = TRUE
SCHEDD_ARGS = -p 12000

The SchedLog file has the following:

4/25 09:14:09 (pid:11005) About to serve HTTP request...

4/25 09:14:09 (pid:11005) SOAP entered beginTransaction(),
transaction: 0 
4/25 09:14:09 (pid:11005) SOAP call rejected, no permission
for user
NULL/<152.54.1.82:0>
4/25 09:14:09 (pid:11005) SOAP leaving beginTransaction() result=1
4/25 09:14:09 (pid:11005) Completed servicing HTTP request


I changed the condor config file variables HOSTALLOW_ADMINISTRATOR
to be the hostname of the central manager and HOSTALLOW_READ & HOSTALLOW_WRITE

to include my ipaddress.


I am thinking that I have misconfigured Condor, but
am not entirely sure 
as this is my first attempt at setting up it up.  Any
suggestions to
figure this out?

Thanks,

jdr
_______________________________________________
Condor-users mailing list

To unsubscribe, send a message to condor-users-request@xxxxxxxxxxx
with a 
subject: Unsubscribe
You can also unsubscribe by visiting
https://lists.cs.wisc.edu/mailman/listinfo/condor-users

The archives can be found at either
https://lists.cs.wisc.edu/archive/condor-users/
http://www.opencondor.org/spaces/viewmailarchive.action?key=CONDOR


_______________________________________________
Condor-users mailing list
To unsubscribe, send a message to condor-users-request@xxxxxxxxxxx with
a
subject: Unsubscribe
You can also unsubscribe by visiting
https://lists.cs.wisc.edu/mailman/listinfo/condor-users

The archives can be found at either
https://lists.cs.wisc.edu/archive/condor-users/
http://www.opencondor.org/spaces/viewmailarchive.action?key=CONDOR


This message is commercial in confidence and may be privileged.  It
is intended for the addressee(s) only.  Access to this message by
anyone else is unauthorized and strictly prohibited.  If you have
received this message in error, please inform the sender immediately.  Please
note that messages sent or received by the Tessella e-mail system may be
monitored and stored in an information retrieval system.

TESSELLA   Joshua.Chartier@xxxxxxxxxxxx
__/__/__/  Tessella Inc
__/__/__/   233 Needham Street, Suite 300, Newton, MA 02464, USA
__/__/__/  www.tessella.com
Tel: (1) 617.454.1220  Fax: (1) 617.454.1001