[X2Go-User] X2Go-User Non-Digest, Vol 38, Issue 26
Ted Barnes
madogdevelopment at gmail.com
Mon Nov 4 13:13:26 CET 2013
Hi Mike:
How are you? I think I may have misposted my last response - apologies
if this ends up being a double post...
X2Go-User Non-Digest, Vol 38, Issue 26
Hi Mike:
Thanks again for the help...think we're making progress. Same results
though.... think it's still an authorization issue.
I made path changes (var/run/x2gobroker/x2gobroker-authservice.socket)
in both "x2gobroker-wsgi.apache.conf" and /etc/default/python-x2gobroker
(as well as some other tweaks in python-x2gobroker).
Looking in "broker.log" it has a line:
2013-11-02 11:58:00,671 - broker - INFO -
X2GOBROKER_AUTHSERVICE_SOCKET: /run/x2gobroker/x2gobroker-authservice.socket
...which seems to suggest it is still looking for "
/run/x2gobroker/x2gobroker-authservice.socket" instead of
"var/run/x2gobroker/x2gobroker-authservice.socket". FYI - there is no
"/run" on my Squeeze server.
Q: Am I missing a config statement or is this hard coded somewhere?
Have again attached logs and configs.....
****x2go Logs****
*authservice.log*
2013-11-02 11:50:59,620 - authservice - INFO - X2Go Session Broker
(0.0.3.0), written by Mike Gabriel (X2Go Project)
<mike.gabriel at das-netzwerkteam.de>
2013-11-02 11:50:59,621 - authservice - INFO - Setting up the PAM
authentication service's environment...
2013-11-02 11:50:59,621 - authservice - INFO - X2GOBROKER_DEBUG: True
2013-11-02 11:50:59,621 - authservice - INFO -
X2GOBROKER_AUTHSERVICE_SOCKET:
/var/run/x2gobroker/x2gobroker-authservice.socket
-----------------------------------
*broker.log*
2013-11-02 11:58:00,670 - broker - INFO - X2Go Session Broker (0.0.3.0),
2013-11-02 11:58:00,671 - broker - INFO - written by Mike Gabriel
(X2Go Project) <mike.gabriel at das-netzwerkteam.de>
2013-11-02 11:58:00,671 - broker - INFO - Setting up the broker's
environment...
2013-11-02 11:58:00,671 - broker - INFO - X2GOBROKER_DEBUG: False
2013-11-02 11:58:00,671 - broker - INFO - X2GOBROKER_CONFIG:
/etc/x2go/x2gobroker.conf
2013-11-02 11:58:00,671 - broker - INFO - X2GOBROKER_AGENT_CMD:
/usr/lib/x2go/x2gobroker-agent
2013-11-02 11:58:00,671 - broker - INFO -
X2GOBROKER_AUTHSERVICE_SOCKET: /run/x2gobroker/x2gobroker-authservice.socket
2013-11-02 11:58:00,671 - broker - INFO - X2GOBROKER_DEFAULT_BACKEND:
zeroconf
2013-11-02 11:58:00,672 - broker - INFO - X2GOBROKER_SSL_CERTFILE:
2013-11-02 11:58:00,672 - broker - INFO - X2GOBROKER_SSL_KEYFILE:
2013-11-02 11:58:01,328 - broker - INFO - client address is xxx.xxx.xxx.xxx
2013-11-02 11:58:01,329 - broker - DEBUG - username: user, password:
XXXXX, task: listsessions, profile_id: , cookie:
2013-11-02 11:58:01,329 - broker - DEBUG -
base_broker.X2GoBroker.get_authentication_mechanism(): found
default-auth-mech in global config section: pam
2013-11-02 11:58:01,582 - broker - DEBUG -
base_broker.X2GoBroker._do_authenticate(): authenticating user=user with
password=<hidden> against backend=inifile.
2013-11-02 11:58:01,583 - broker - DEBUG - connecting to authentication
service socket /run/x2gobroker/x2gobroker-authservice.socket
2013-11-02 11:58:03,670 - broker - DEBUG -
base_broker.X2GoBroker.check_access(): result of authentication check
is: False
-----------------------------------
*error.log*
2013-11-02 11:58:01,583 - error - ERROR - Authentication against
authentication service failed, trying direct PAM authentication (which
is likely to fail on most PAM setups).
2013-11-02 11:58:03,671 - error - ERROR - HTTP request error: HTTP 401:
Unauthorized
-----------------------------------
*wsgi.log*
wsgilog.log: Sat, 02 Nov 2013 11:58:03 ERROR Server got itself in trouble
Traceback (most recent call last):
File "/usr/lib/python2.6/dist-packages/wsgilog/__init__.py", line
179, in __call__
return self.application(environ, start_response)
File "/usr/bin/x2gobroker", line 243, in _application
return _tornado_application(environ, start_response)
File "/usr/lib/python2.6/dist-packages/tornado/wsgi.py", line 94, in
__call__
assert handler._finished
AssertionError
-----------------------------------
-----------------------------------
CONFIGS
*x2gobroker.conf*
###
### GLOBAL section
###
[global]
#enable-uccs-output = true
#my-uccs-url-base = http://localhost:8080/
default-auth-mech = pam
default-user-db = libnss
default-group-db = libnss
###
### BACKEND section
###
[zeroconf]
#enable = true
#auth-mech = pam
#user-db = libnss
#group-db = libnss
#desktop-shell = GNOME
[inifile]
enable = true
session-profiles = /etc/x2go/broker/x2gobroker-sessionprofiles.conf
-----------------------------------
*x2gobroker-wsgi.apache.conf*
SetEnv X2GOBROKER_DEBUG on
WSGIDaemonProcess x2gobroker user=x2gobroker group=x2gobroker
processes=5 threads=15
WSGIPassAuthorization On
SetEnv X2GOBROKER_DEFAULT_BACKEND inifile
SetEnv X2GOBROKER_CONFIG /etc/x2go/x2gobroker.conf
SetEnv X2GOBROKER_SESSIONPROFILES
/etc/x2go/broker/x2gobroker-sessionprofiles.conf
SetEnv X2GOBROKER_AUTHSOCKET
/var/run/x2gobroker/x2gobroker-authservice.socket
WSGIScriptAlias /x2gobroker /usr/bin/x2gobroker
WSGIProcessGroup x2gobroker
<Directory /usr/bin/x2gobroker>
Order deny,allow
Deny from all
# grant explicit access below
Allow from localhost
Allow from localhost-ip6
Options +FollowSymLinks
Options -Indexes
</Directory>
-----------------------------------
*x2gobroker-sessionprofiles.conf*
[DEFAULT]
command=TERMINAL
defsndport=true
useiconv=false
iconvfrom=UTF-8
height=600
export=
quality=9
fullscreen=false
layout=
useexports=true
width=800
speed=2
soundsystem=pulse
print=true
type=auto
sndport=4713
xinerama=true
variant=
usekbd=true
fstunnel=true
applications=TERMINAL,WWWBROWSER,MAILCLIENT,OFFICE
multidisp=false
sshproxyport=22
sound=true
rootless=false
iconvto=UTF-8
soundtunnel=true
dpi=96
sshport=22
setdpi=0
pack=16m-jpeg
directrdp=false
[GNOME]
user=
host=xxx.xxx.xxx.xxx
name=GNOME
command=GNOME
rootless=false
acl-groups-allow=gnome-users,admins,user
acl-groups-deny=ALL
acl-clients-deny=ALL
#acl-clients-allow=10.1.0.0/16
acl-clients-allow=xxx.xxx.xxx.xxx/24
acl-any-order=deny-allow
broker-session-autologin=true
sshport=22
*/etc/default/python-x2gobroker*
# X2Go Broker Session Broker (common) configuration for Debian
# The posix user/group ID the broker runs under (do not change!)
# if you change those nonetheless, make sure that the log file
# directory (default: /var/log/x2gobroker) and files in there are
# writable by that user
#X2GOBROKER_DAEMON_USER=x2gobroker
#X2GOBROKER_DAEMON_GROUP=x2gobroker
# The posix user under which the x2gobroker-agent can be launched on
# remote X2Go Servers.
X2GOBROKER_AGENT_USER=x2gobroker
# Control debug mode (0=disable, 1=enable).
#
# Apart from verbose logging in /var/log/x2gobroker/*.log, this will
# also make the broker available through http GET method requests
# (otherwise: POST method requests only) and you will be able to test
# the broker through your web browser
#
# This value has an effect on all (Python-based) X2Go Session Broker
# services and can be overridden in /etc/default/x2gobroker-* files.
X2GOBROKER_DEBUG=1
# Default X2Go Session Broker backend (available: zeroconf, inifile)
X2GOBROKER_DEFAULT_BACKEND=inifile
# Path to the X2Go Session Broker's configuration file
X2GOBROKER_CONFIG=/etc/x2go/x2gobroker.conf
# Path to the X2Go Session Broker's session profiles file (when using
the inifile backend)
X2GOBROKER_SESSIONPROFILES=/etc/x2go/broker/x2gobroker-sessionprofiles.conf
# Path to the X2Go Session Broker's agent command
#X2GOBROKER_AGENT_CMD=/usr/lib/x2go/x2gobroker-agent
# The unix socket file for communication between the broker and the
authentication service.
X2GOBROKER_AUTHSERVICE_SOCKET=/var/run/x2gobroker/x2gobroker-authservice.socket
-----------------------------------
More information about the x2go-user
mailing list