堆栈内存溢出
  简体   繁体   English

使用 openldap 配置 hyperledger fabric-ca 服务器

[英]hyperledger fabric-ca server configure with openldap

 原文  2018-09-03 01:52:07       ldap/ hyperledger-fabric/ hyperledger/ hyperledger-fabric-ca

问题描述

Does anyone successfully configured Fabric-CA (1.2.0-stable) server with openldap server?是否有人使用openldap服务器成功配置了Fabric-CA (1.2.0-stable)服务器?

I am seeing this error in the logs:我在日志中看到此错误:

2018/09/03 01:34:01 [DEBUG] Creating new LDAP client for { Enabled:true URL:ldap://****:****@openldap/dc=example,dc=com UserFilter:(uid=%s) GroupFilter:(memberUid=%s) Attribute:{[uid member][{ }] map[groups:[{ }]]} TLS:{false [] { }}  }
2018/09/03 01:34:01 [DEBUG] Initialized LDAP identity registry; err=Invalid expression for attribute '': Unexpected end of expression
2018/09/03 01:34:01 [WARNING] Failed to initialize LDAP client; err=Invalid expression for attribute '': Unexpected end of expression
2018/09/03 01:34:01 [ERROR] Error occurred initializing database: Invalid expression for attribute '': Unexpected end of expression

This is the command which I am using to start openldap :这是我用来启动openldap的命令:

docker run -h openldap -p 389:389 --name openldap --network=fabric-n --volume /home/xxxx/fabric-ca/data:/etc/hyperledger --env LDAP_ORGANISATION="Hyperledger" --env LDAP_DOMAIN="example.com"  --env LDAP_ADMIN_PASSWORD="adminpw" --detach osixia/openldap:1.2.1

This is the command that run fabricca :这是运行fabricca的命令:

docker run -h fabric-ca -p 7054:7054 --name fabric-ca --network=fabric-n --volume /home/xxxx/fabric-ca/data:/etc/hyperledger --env FABRIC_CA_SERVER_HOME="/etc/hyperledger/fabric-ca-server" --env FABRIC_CA_CLIENT_HOME="/etc/hyperledger/fabric-ca-client" --env FABRIC_CA_SERVER_CA_NAME="hfca" --detach hyperledger/fabric-ca:amd64-1.2.0

I created a docker overlay network which can connect to openldap container我创建了一个可以连接到 openldap 容器的 docker 覆盖网络

fabric-ca-server-config.yaml

ldap:
  # Enables or disables the LDAP client (default: false)
  # If this is set to true, the "registry" section is ignored.
enabled: true
  # The URL of the LDAP server
url: ldap://cn=admin,dc=example,dc=com:adminpw@openldap/dc=example,dc=com

1 个解决方案

解决方案1
 2  2018-09-03 12:22:02

This error is most probably caused because of missing converters properties set below in fabric-ca-server-config.yaml file.这个错误很可能是因为在fabric-ca-server-config.yaml文件中缺少下面设置的converters属性。 By default, in ldap section there are converters which are empty:默认情况下,在ldap部分有一些converters是空的:

      converters:
         - name:
           value:

And when ldap is enabled, it cannot be properly parsed, so error is raised.并且当启用ldap时,它无法正确解析,因此会引发错误。 Please put any values there, so something like:请在那里输入任何值,例如:

      converters:
         - name: hf.Revoker
           value: attr("uid") =~ "revoker*"

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Hyperledger Fabric-ca 连接到 LDAP 目录 - Hyperledger Fabric-ca connection to a LDAP directory 在Ubuntu 10.04服务器中配置OpenLDAP以进行SVN用户和组管理 - Configure OpenLDAP inside Ubuntu 10.04 server for svn user and group administration 如何在 OPENLDAP 中配置镜像节点 - How to configure mirror node in OPENLDAP 为现有客户端应用程序配置OpenLDAP userCertificate - Configure OpenLDAP userCertificate for existing client application 将ldif文件导入OpenLDAP服务器 - Import ldif file into OpenLDAP server 具有OpenLDAP和SSL的WSO2身份服务器 - WSO2 Identity Server with OpenLDAP and SSL 从openldap服务器检索内部属性(entryUUID) - Retrieve Internal attributes(entryUUID) from openldap server 如何将OpenLDAP从SuSE复制到Debian服务器? - How to copy OpenLDAP from SuSE to Debian Server? 无法将 OpenLDAP 恢复到新服务器 - Can't restore OpenLDAP to new server LDAPS:即使从根目录中删除 CA 证书,openldap 绑定也成功 - LDAPS: openldap bind successful even after deleting CA certificate from root directory
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM