bien pues borro cookies reinicio apache que me muestra lo siguiente:
Starting httpd2 (prefork) Procesando el server: poa.localhost
Configuration:
$VAR1 = bless( {
'Global' => {
'CRC_Timeout' => '1800',
'String' => '',
'Accept_File' => './image_ok.png',
'RejUrlPatterns' => [],
'PassUrlPatterns' => [],
'filters' => [],
'Type' => 'Global',
'signoffLocs' => [],
'Debug' => '1',
'HttpAuth' => [],
'Req_DB' => '/usr/local/PAPI/PoA/req_DB',
'Hkey' =>
'YWNhOWZkNzE4MDRhFDRKJKJffg54DfkxNzgwMzNmOTU=',
'PoARw' => [],
'URL_Timeout' => '1800',
'hdRedirects' => [],
'formProc' => {},
'Lcook_Timeout' => '18000',
'Lkey' =>
'ZjYwNTk2DFrdfTYHNjhkMmZlZjM0NDMwMDlhNWYyMWU=',
'postRedirects' => [],
'RejPostPatterns' => [],
'url_redirects' => [],
'redirects' => [],
'RewUrlPatterns' => [],
'Pubkeys_Path' => '/usr/local/PAPI/PoA/KEYS',
'ases' => {
'MyAS' => {
'desc' => 'PAPI usando
Apache-2.00',
'url' => '
http://localhost/cgi-bin/AuthServer'
}
},
'Reject_File' => './image_nok.png',
'cookieRejects' => [],
'Hcook_DB' => '/usr/local/PAPI/PoA/hcook_DB',
'PassPostPatterns' => []
},
'poa.localhost' => {
'String' => '',
'Accept_File' => './image_ok.png',
'filters' => [],
'glpi' => {
'Filtered' => 1,
'String' => '/glpi',
'Accept_File' =>
'./image_ok.png',
'filters' => [
{
'reg' =>
'default',
'act' =>
'reject'
}
],
'Type' => 'Location',
'PoARw' => [],
'URL_Timeout' => '1800',
'hdRedirects' => [],
'formProc' => {},
'Auth_Location' =>
'/cookie_handler.cgi',
'RejPostPatterns' => [],
'postRedirects' => [],
'url_redirects' => [],
'port' => '80',
'redirects' => [],
'RewUrlPatterns' => [],
'Loc_pattern' =>
qr/(?-xism:\\/glpi)/,
'cookieRejects' => [],
'PassPostPatterns' => [],
'CRC_Timeout' => '1800',
'RejUrlPatterns' => [],
'PassUrlPatterns' => [],
'signoffLocs' => [],
'Debug' => '1',
'HttpAuth' => [],
'Req_DB' =>
'/usr/local/PAPI/PoA/req_DB',
'Hkey' =>
'YWNhOWZkNzE4MDRhFDRKJKJffg54DfkxNzgwMzNmOTU=',
'Independent' => 0,
'Serv' => 'glpi',
'GPoA_URL' => 'wayf:built-in',
'Lkey' =>
'ZjYwNTk2DFrdfTYHNjhkMmZlZjM0NDMwMDlhNWYyMWU=',
'Lcook_Timeout' => '18000',
'Pubkeys_Path' =>
'/usr/local/PAPI/PoA/KEYS',
'ases' => {
'MyAS' => {
'desc'
=> 'PAPI usando Apache-2.00',
'url' =>
'http://localhost/cgi-bin/AuthServer'
}
},
'Reject_File' =>
'./image_nok.png',
'Hcook_DB' =>
'/usr/local/PAPI/PoA/hcook_DB'
},
'Type' => 'Server',
'PoARw' => [],
'URL_Timeout' => '1800',
'hdRedirects' => [],
'formProc' => {},
'Auth_Location' =>
'/cookie_handler.cgi',
'RejPostPatterns' => [],
'postRedirects' => [],
'url_redirects' => [],
'port' => '80',
'redirects' => [],
'RewUrlPatterns' => [],
'cookieRejects' => [],
'PassPostPatterns' => [],
'CRC_Timeout' => '1800',
'RejUrlPatterns' => [],
'PassUrlPatterns' => [],
'signoffLocs' => [],
'Debug' => '1',
'HttpAuth' => [],
'Req_DB' =>
'/usr/local/PAPI/PoA/req_DB',
'Hkey' =>
'YWNhOWZkNzE4MDRhFDRKJKJffg54DfkxNzgwMzNmOTU=',
'Independent' => 0,
'Lkey' =>
'ZjYwNTk2DFrdfTYHNjhkMmZlZjM0NDMwMDlhNWYyMWU=',
'Lcook_Timeout' => '18000',
'Pubkeys_Path' =>
'/usr/local/PAPI/PoA/KEYS',
'ases' => {
'MyAS' => {
'desc' => 'PAPI
usando Apache-2.00',
'url' => '
http://localhost/cgi-bin/AuthServer'
}
},
'Reject_File' => './image_nok.png',
'Hcook_DB' =>
'/usr/local/PAPI/PoA/hcook_DB'
}
}, 'PAPI::Config' );
PAPI supposes that all protected resources are defined in Apache httpd.conf
file
Checking the sections for those resources....
OK
1;
__END__
ahora intento acceder al recurso http:://poa.localhost/glpi y aparece el
authserver, meto user y password y me aperece el error de openssl.
el errolog de apache muestra lo siguiente:
[Wed Jul 01 13:25:22 2009] [info] Init: Seeding PRNG with 0 bytes of entropy
[Wed Jul 01 13:25:22 2009] [info] Init: Generating temporary RSA private
keys (512/1024 bits)
[Wed Jul 01 13:25:22 2009] [info] Init: Generating temporary DH parameters
(512/1024 bits)
[Wed Jul 01 13:25:22 2009] [warn] Init: Session Cache is not configured
[hint: SSLSessionCache]
[Wed Jul 01 13:25:22 2009] [info] Init: Initializing (virtual) servers for
SSL
[Wed Jul 01 13:25:22 2009] [warn] RSA server certificate is a CA certificate
(BasicConstraints: CA == TRUE !?)
[Wed Jul 01 13:25:22 2009] [info] Server: Apache/2.2.3, Interface:
mod_ssl/2.2.3, Library: OpenSSL/0.9.8a
[Wed Jul 01 13:25:22 2009] [notice] suEXEC mechanism enabled (wrapper:
/usr/sbin/suexec2)
[Wed Jul 01 13:25:23 2009] [info] Init: Seeding PRNG with 0 bytes of entropy
[Wed Jul 01 13:25:23 2009] [info] Init: Generating temporary RSA private
keys (512/1024 bits)
[Wed Jul 01 13:25:23 2009] [info] Init: Generating temporary DH parameters
(512/1024 bits)
[Wed Jul 01 13:25:23 2009] [info] Init: Initializing (virtual) servers for
SSL
[Wed Jul 01 13:25:23 2009] [warn] RSA server certificate is a CA certificate
(BasicConstraints: CA == TRUE !?)
[Wed Jul 01 13:25:23 2009] [info] Server: Apache/2.2.3, Interface:
mod_ssl/2.2.3, Library: OpenSSL/0.9.8a
[Wed Jul 01 13:25:23 2009] [notice] Apache/2.2.3 (Linux/SUSE) configured --
resuming normal operations
[Wed Jul 01 13:25:23 2009] [info] Server built: Mar 2 2009 17:32:19
[Wed Jul 01 13:25:23 2009] [debug] prefork.c(991): AcceptMutex: sysvsem
(default: sysvsem)
[Wed Jul 01 13:28:25 2009] [notice] [client 127.0.0.1]
PAPI#15627_1246447705: PoA::set_parameters# Servername = <poa.localhost>\n
[Wed Jul 01 13:28:25 2009] [notice] [client 127.0.0.1]
PAPI#15627_1246447705: PoA::set_parameters# Server_ID = <glpi>\n
[Wed Jul 01 13:28:25 2009] [warn] [client 127.0.0.1]
PAPI#15627_1246447705_glpi: Lcook is empty
[Wed Jul 01 13:28:25 2009] [notice] [client 127.0.0.1]
PAPI#15627_1246447705_glpi: Hcook is empty
[Wed Jul 01 13:28:25 2009] [notice] [client 127.0.0.1]
PAPI#15627_1246447705: PoA::set_parameters# Servername = <poa.localhost>\n
[Wed Jul 01 13:28:25 2009] [notice] [client 127.0.0.1]
PAPI#15627_1246447705: PoA::set_parameters# Server_ID = <glpi>\n
[Wed Jul 01 13:28:25 2009] [notice] [client 127.0.0.1]
PAPI#15627_1246447705: PoA::set_parameters# Servername = <poa.localhost>\n
[Wed Jul 01 13:28:25 2009] [notice] [client 127.0.0.1]
PAPI#15627_1246447705: PoA::set_parameters# Server_ID = <glpi>\n
[Wed Jul 01 13:28:26 2009] [error] [client 127.0.0.1] File does not exist:
/srv/www/htdocs/login.css, referer:
https://localhost/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F
[Wed Jul 01 13:28:26 2009] [error] [client 127.0.0.1] File does not exist:
/srv/www/htdocs/xhtmlvalid.png, referer:
https://localhost/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F
[Wed Jul 01 13:28:26 2009] [error] [client 127.0.0.1] File does not exist:
/srv/www/htdocs/cssvalid.png, referer:
https://localhost/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F
[Wed Jul 01 13:28:36 2009] [notice] [client 127.0.0.1]
PAPI#15627_1246447716: PoA::set_parameters# Servername = <poa.localhost>\n
[Wed Jul 01 13:28:36 2009] [notice] [client 127.0.0.1]
PAPI#15627_1246447716: PoA::set_parameters# Server_ID = <glpi>\n
[Wed Jul 01 13:28:36 2009] [error] [client 127.0.0.1] RSA.xs:202: OpenSSL
error: block type is not 01 at /usr/lib/perl5/site_perl/5.8.8/PAPI/PoA.pm
line 910.\n
y el accesslog muestra:
127.0.0.1 - - [01/Jul/2009:13:28:25 +0200] "GET /glpi/ HTTP/1.1" 302 439 "-"
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.22pre) Gecko/20081213
SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:25 +0200] "GET
/glpi/cookie_handler.cgi/PAPIASRedirector?PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F&ASID=MyAS
HTTP/1.1" 302 - "-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.22pre)
Gecko/20081213 SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:25 +0200] "GET
/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F
HTTP/1.1" 302 412 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US;
rv:1.8.1.22pre) Gecko/20081213 SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:26 +0200] "GET /login.css HTTP/1.1" 302 299
"
https://localhost/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F"
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.22pre) Gecko/20081213
SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:25 +0200] "GET
/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F
HTTP/1.1" 200 1862 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US;
rv:1.8.1.22pre) Gecko/20081213 SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:26 +0200] "GET /cgi-bin/AuthServer
HTTP/1.1" 200 1756 "
https://localhost/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F"
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.22pre) Gecko/20081213
SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:26 +0200] "GET /xhtmlvalid.png HTTP/1.1"
302 299 "
https://localhost/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F"
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.22pre) Gecko/20081213
SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:26 +0200] "GET /cssvalid.png HTTP/1.1" 302
299 "
https://localhost/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F"
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.22pre) Gecko/20081213
SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:26 +0200] "GET /cgi-bin/AuthServer
HTTP/1.1" 200 1756 "
https://localhost/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F"
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.22pre) Gecko/20081213
SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:27 +0200] "GET /cgi-bin/AuthServer
HTTP/1.1" 200 1756 "
https://localhost/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F"
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.22pre) Gecko/20081213
SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:36 +0200] "GET
/glpi/?ACTION=CHECKED&AS=MyAS&DATA=jY9nIyxsQMSpHJaNTK22GHYhY%2BcDesxOLO5lLLhOG65Kix%2Bw%2Bexn4Y0%2FeLTZApM4YKzH3YhaRAN3%0AdZhSo49uD5HqKikels4OFDUclIB77g7%2Bc%2Bf8Xo%2BYQbEpWSb2rt1VgxhoR3LrWirLRvVG7WVQGled%0AkAhd0Xpcvmf%2FnFoqacg%3D%0A
HTTP/1.1" 500 1121 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US;
rv:1.8.1.22pre) Gecko/20081213 SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
127.0.0.1 - - [01/Jul/2009:13:28:35 +0200] "POST
/cgi-bin/AuthServer?PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F&ATTREQ=glpi
HTTP/1.1" 302 - "
https://localhost/cgi-bin/AuthServer?ATTREQ=glpi&PAPIPOAREF=4AB925C2663211DEA95F81E445792449&PAPIPOAURL=http%3A%2F%2Fpoa%2Elocalhost%2Fglpi%2F"
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.22pre) Gecko/20081213
SUSE/2.0.0.21post-0.3 Firefox/2.0.0.22pre"
espero este toda la info que requieres. ya que no veo el campo data que
mencionas, el debug en conf.xml esta a 1 y la linea PerlSetEnv
CONFIG_VERBOSE esta a true en el Apache_PoA_1.5.conf
Gracias
Un Saludo.
Francisco.
|
