HI Kevin:
I think DataResourceRealm uses a database, and is an alteranative to
UserDatabaseRealm and MemoryRealm, which uses tomcat-users.xml. So im
not sure exactly what you are doing. google Tomcat Realms, if you cant
clear it up send me server.xml offline.
John
PS also, to ask the obvious, did you restart tomcat server?
On 8/5/2013 11:21 AM, Kevin Manross wrote:
Sorry, I should have said that I tried this with the tdsConfig user
but got denied. Please note the discrepancy between the roles shown
in my "showSecurity" output and the tomcat-users.xml. Would this cause
the problem? I've restarted tomcat numerous times and I don't see the
tdsTrigger role showing up in the "showSecurity" page.
FWIW - I have my data access restricted via context (using
DataResourceRealm) however I have the default UserDatabaseRealm in my
server.xml.
-kevin.
On 8/2/13 5:03 PM, John Caron wrote:
Hi Kevin:
since your trig user has only tdsTrigger role, you cant log in, you need
tdsConfig role for that.
the trig user can only hit the URL to trigger an update. The URL for the actual
trigger is
https://server:port/thredds/admin/collection/trigger?collection=<name>, where
name is the collection name
let me know if that works.
John
On 8/2/2013 2:10 PM, Kevin Manross wrote:
I have been trying to get the trigger feature to work with my GRIB
collection.
My catalog has the following:
</gribConfig>
<update startup="true" rescan="0 0 0 * * ? *" trigger="allow"/>
</featureCollection>
My tomcat-users.xml file is set to:
<role rolename="tdsTrigger"/>
<role rolename="tdsConfig"/>
<role rolename="tdsMonitor"/>
<user name="trig" password="****" roles="tdsTrigger"/>
<user name="conf" password="****" roles="tdsConfig,tdsTrigger"/>
<user name="mon" password="****"
roles="manager,tdsTrigger,tdsConfig,tdsMonitor"/>
I'm seeing no errors in my thredds/logs files.
fc.ds083.2.log shows
updateConfig =UpdateConfig{startup=true, recheckAfter='null', rescan='0
0 0 * * ? *', triggerOk=true, deleteAfter=null}
I am unable to log in with my trig user. When I log in with the conf
user, I get the following
https://castle.ucar.edu:8443/thredds/admin/debug?General/showSecurity
Debug Actions
Cmd= General/showSecurity
Security Info
req.getRemoteUser(): tdsConfig
req.getUserPrincipal(): GenericPrincipal[tdsConfig(tdsConfig,)]
req.isUserInRole(admin):false
------------------
Likewise, with the mon user, I get:
Debug Actions
Cmd= General/showSecurity
Security Info
req.getRemoteUser(): tdsMonitor
req.getUserPrincipal():
GenericPrincipal[tdsMonitor(manager,tdsConfig,tdsMonitor,)]
req.isUserInRole(admin):false
------------------
It seem as if THREDDS isn't getting the tomcat-users.xml information
properly.
I just updated to 4.1.18 today.
-kevin.
--
Kevin Manross
NCAR/CISL/Data Support Section
Phone: (303)-497-1218
Email:manross@xxxxxxxx <mailto:manross@xxxxxxxx>
Web:http://rda.ucar.edu
_______________________________________________
thredds mailing list
thredds@xxxxxxxxxxxxxxxx
For list information or to unsubscribe,
visit:http://www.unidata.ucar.edu/mailing_lists/
_______________________________________________
thredds mailing list
thredds@xxxxxxxxxxxxxxxx
For list information or to unsubscribe, visit:http://www.unidata.ucar.edu/mailing_lists/
--
Kevin Manross
NCAR/CISL/Data Support Section
Phone: (303)-497-1218
Email:manross@xxxxxxxx <mailto:manross@xxxxxxxx>
Web:http://rda.ucar.edu
_______________________________________________
thredds mailing list
thredds@xxxxxxxxxxxxxxxx
For list information or to unsubscribe, visit:
http://www.unidata.ucar.edu/mailing_lists/
