[shib_auth] Access Denied after logging in
Chris Hunter
chunter at jhu.edu
Wed Jan 4 16:21:03 CET 2012
Hello,
I am a new user, so I apologize if this is a redundant issue or if has been covered in the documentation at https://wiki.aai.niif.hu/index.php?title=DrupalShibbolethReadmeDev.
I am trying to authenticate on a non-production server and I am getting an access denied screen when I attempt to login. I am able to authenticate using Shibboleth outside of Drupal on this server, so I believe that my module configuration is wrong.
In addition to reviewing the main documentation I've reviewed the Acquia Shibboleth video (http://www.acquia.com/resources/acquia-tv/conference/leverage-drupal-shibboleth-and-opensaml-connect-federated-identity-0), but I have not been able to figure out what I am doing wrong.
I would be more than grateful for any push in the right direction.
Thanks,
Chris
Debug Info
* $user:
* Array
* (
* [uid] => 1
* [name] => myusername
* [mail] => chunter at jhu.edu
* [roles] => Array
* (
* [2] => authenticated user
* [3] => administrator
* )
*
* )
* $_SESSION:
* Array
* (
* [shib_auth_rolecache] => Array
* (
* [3] => administrator
* [1] => anonymous user
* [2] => authenticated user
* [4] => superuser
* )
*
* )
* $_SERVER:
* Array
* (
* [PROCESSOR_ARCHITEW6432] => AMD64
* [_FCGI_X_PIPE_] => \\.\pipe\IISFCGI-032b088d-7a81-4efb-b535-8486247ee0ce
* [PHP_FCGI_MAX_REQUESTS] => 10000
* [PHPRC] => C:\Program Files (x86)\PHP\v5.2
* [ALLUSERSPROFILE] => C:\ProgramData
* [APPDATA] => C:\Windows\system32\config\systemprofile\AppData\Roaming
* [APP_POOL_CONFIG] => C:\inetpub\temp\apppools\test\test.config
* [APP_POOL_ID] => test
* [CommonProgramFiles] => C:\Program Files (x86)\Common Files
* [CommonProgramFiles(x86)] => C:\Program Files (x86)\Common Files
* [CommonProgramW6432] => C:\Program Files\Common Files
* [COMPUTERNAME] => JHSAISWEBDEV
* [ComSpec] => C:\Windows\system32\cmd.exe
* [FP_NO_HOST_CHECK] => NO
* [LOCALAPPDATA] => C:\Windows\system32\config\systemprofile\AppData\Local
* [NUMBER_OF_PROCESSORS] => 1
* [OS] => Windows_NT
* [Path] => C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\MySQL\MySQL Server 5.1\bin;C:\opt\shibboleth-sp\bin\;C:\opt\shibboleth-sp\lib\;C:\Program Files (x86)\Microsoft SQL Server\100\Tools\Binn\;C:\Program Files\Microsoft SQL Server\100\Tools\Binn\;C:\Program Files\Microsoft SQL Server\100\DTS\Binn\;C:\Program Files (x86)\Microsoft SQL Server\100\Tools\Binn\VSShell\Common7\IDE\;C:\Program Files (x86)\Microsoft Visual Studio 9.0\Common7\IDE\PrivateAssemblies\;C:\Program Files (x86)\Microsoft SQL Server\100\DTS\Binn\;
* [PATHEXT] => .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
* [PROCESSOR_ARCHITECTURE] => x86
* [PROCESSOR_IDENTIFIER] => Intel64 Family 6 Model 23 Stepping 6, GenuineIntel
* [PROCESSOR_LEVEL] => 6
* [PROCESSOR_REVISION] => 1706
* [ProgramData] => C:\ProgramData
* [ProgramFiles] => C:\Program Files (x86)
* [ProgramFiles(x86)] => C:\Program Files (x86)
* [ProgramW6432] => C:\Program Files
* [PSModulePath] => C:\Windows\system32\WindowsPowerShell\v1.0\Modules\
* [PUBLIC] => C:\Users\Public
* [SHIBSP_PREFIX] => C:/opt/shibboleth-sp
* [SHIBSP_SCHEMAS] => C:\opt\shibboleth-sp\share\xml\shibboleth\catalog.xml;C:\opt\shibboleth-sp\share\xml\xmltooling\catalog.xml;C:\opt\shibboleth-sp\share\xml\opensaml\saml20-catalog.xml;C:\opt\shibboleth-sp\share\xml\opensaml\saml11-catalog.xml
* [SystemDrive] => C:
* [SystemRoot] => C:\Windows
* [TEMP] => C:\Windows\TEMP
* [TMP] => C:\Windows\TEMP
* [UATDATA] => C:\Windows\SysWOW64\CCM\UATData\D9F8C395-CAB8-491d-B8AC-179A1FE1BE77
* [USERDOMAIN] => WIN
* [USERNAME] => JHSAISWEBDEV$
* [USERPROFILE] => C:\Windows\system32\config\systemprofile
* [windir] => C:\Windows
* [FCGI_ROLE] => RESPONDER
* [HTTP_CONNECTION] => keep-alive
* [HTTP_CONTENT_LENGTH] => 0
* [HTTP_ACCEPT] => text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
* [HTTP_ACCEPT_CHARSET] => ISO-8859-1,utf-8;q=0.7,*;q=0.7
* [HTTP_ACCEPT_ENCODING] => gzip, deflate
* [HTTP_ACCEPT_LANGUAGE] => en-us,en;q=0.5
* [HTTP_COOKIE] => SESS584a23b2bf1baac800c82e0029b53387=4tTcgiyr_yROzoqCrbFdGxwQftQkfwvoB7KjznMPxIQ; has_js=1; Drupal.toolbar.collapsed=0
* [HTTP_HOST] => 10.181.18.73
* [HTTP_IF_MODIFIED_SINCE] => Wed, 04 Jan 2012 15:06:48 +0000
* [HTTP_IF_NONE_MATCH] => "1325689608"
* [HTTP_REFERER] => http:// myserver /?q=node
* [HTTP_USER_AGENT] => Mozilla/5.0 (Windows NT 6.1; WOW64; rv:8.0.1) Gecko/20100101 Firefox/8.0.1
* [HTTP_SHIBSPOOFCHECK] => 3907272314154509076438531631993832852729
* [IIS_UrlRewriteModule] => 7.1.0871.0
* [APPL_MD_PATH] => /LM/W3SVC/1/ROOT
* [APPL_PHYSICAL_PATH] => C:\inetpub\wwwroot\
* [AUTH_TYPE] =>
* [AUTH_PASSWORD] =>
* [AUTH_USER] =>
* [CERT_COOKIE] =>
* [CERT_FLAGS] =>
* [CERT_ISSUER] =>
* [CERT_SERIALNUMBER] =>
* [CERT_SUBJECT] =>
* [CONTENT_LENGTH] => 0
* [CONTENT_TYPE] =>
* [DOCUMENT_ROOT] => C:\inetpub\wwwroot
* [GATEWAY_INTERFACE] => CGI/1.1
* [HTTPS] => off
* [HTTPS_KEYSIZE] =>
* [HTTPS_SECRETKEYSIZE] =>
* [HTTPS_SERVER_ISSUER] =>
* [HTTPS_SERVER_SUBJECT] =>
* [INSTANCE_ID] => 1
* [INSTANCE_NAME] => TEST
* [INSTANCE_META_PATH] => /LM/W3SVC/1
* [LOCAL_ADDR] => 10.181.18.73
* [LOGON_USER] =>
* [PATH_TRANSLATED] => C:\inetpub\wwwroot\index.php
* [QUERY_STRING] => q=admin%2Fconfig%2Fpeople%2Fshib_auth&render=overlay
* [REMOTE_ADDR] => myserver
* [REMOTE_HOST] => myserver
* [REMOTE_PORT] => 63157
* [REMOTE_USER] =>
* [REQUEST_METHOD] => GET
* [REQUEST_URI] => /?q=admin%2Fconfig%2Fpeople%2Fshib_auth&render=overlay
* [SCRIPT_FILENAME] => C:\inetpub\wwwroot\index.php
* [SCRIPT_NAME] => /index.php
* [SERVER_NAME] => 10.181.18.73
* [SERVER_PORT] => 80
* [SERVER_PORT_SECURE] => 0
* [SERVER_PROTOCOL] => HTTP/1.1
* [SERVER_SOFTWARE] => Microsoft-IIS/7.5
* [URL] => /index.php
* [ORIG_PATH_INFO] => /index.php
* [PHP_SELF] => /index.php
* [REQUEST_TIME] => 1325689838
* )
* MODULE CONFIGURATION:
* Array
* (
* [account_linking] => 0
* [account_linking_text] => Link this account with another identity
* [auto_destroy_session] => 1
* [debug_state] => 1
* [debug_url] =>
* [define_username] => 0
* [email_variable] => HTTP_SHIB_MAIL
* [enable_custom_mail] => 0
* [force_https] => 1
* [forceauthn] => 0
* [full_handler_url] => https://myserver/Shibboleth.sso/Login
* [full_logout_url] => https:// myserver /Shibboleth.sso/Logout
* [handler_protocol] => https
* [handler_url] => /Shibboleth.sso
* [is_passive] => 0
* [link_text] => Shibboleth Login
* [login_url] =>
* [logout_url] => /
* [terms_accept] => 0
* [terms_url] => /
* [terms_ver] =>
* [username_variable] => REMOTE_USER
* [wayf_uri] => /DS
* )
Screengrabs
[cid:image002.jpg at 01CCCACA.8FF56390]
[cid:image010.jpg at 01CCCACA.8FF56390]
[cid:image011.jpg at 01CCCACA.8FF56390]
[cid:image012.jpg at 01CCCACA.8FF56390]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://listserv.niif.hu/pipermail/shib_auth/attachments/20120104/ad032e53/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.jpg
Type: image/jpeg
Size: 54561 bytes
Desc: image002.jpg
URL: <https://listserv.niif.hu/pipermail/shib_auth/attachments/20120104/ad032e53/attachment-0004.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image010.jpg
Type: image/jpeg
Size: 46315 bytes
Desc: image010.jpg
URL: <https://listserv.niif.hu/pipermail/shib_auth/attachments/20120104/ad032e53/attachment-0005.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image011.jpg
Type: image/jpeg
Size: 53253 bytes
Desc: image011.jpg
URL: <https://listserv.niif.hu/pipermail/shib_auth/attachments/20120104/ad032e53/attachment-0006.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image012.jpg
Type: image/jpeg
Size: 29980 bytes
Desc: image012.jpg
URL: <https://listserv.niif.hu/pipermail/shib_auth/attachments/20120104/ad032e53/attachment-0007.jpg>
More information about the shib_auth
mailing list