[Building Sakai] CourseManagementService and Site Access
Stephen Marquard
stephen.marquard at uct.ac.za
Thu May 7 02:47:19 PDT 2009
Is it possible your group provider (CM implementation) is returning inconsistent results?
When a user logs, refreshUser() in the authz code calls the group provider method getGroupRolesForUser(eid).
It sounds like your CM implementation isn't returning the right results for that, but does return the right results when asked for the set of users for a provider id.
Regards
Stephen
Stephen Marquard, Learning Technologies Co-ordinator
Centre for Educational Technology, University of Cape Town
http://www.cet.uct.ac.za
Email/IM/XMPP: stephen.marquard at uct.ac.za
Phone: +27-21-650-5037 Cell: +27-83-500-5290
>>> <branden at uwindsor.ca> 2009/05/07 01:32 AM >>>
An update on this issue. This is the functionality I'm seeing when
debugging this issue:
1. Log in as administrator, visit Site A's Site Info tool. The realm for
the site is updated with an entry for the user, and they display on the
roster in Site Info. The realm is updated with the patch in
http://bugs.sakaiproject.org/jira/browse/SAK-6261 .
2. I run the following query directly against the database and see the
user is in the realm:
select SRRG.USER_ID, SRR.ROLE_NAME, SRRG.ACTIVE, SRRG.PROVIDED from
SAKAI_REALM_RL_GR SRRG inner join SAKAI_REALM SR on SRRG. REALM_KEY = SR.
REALM_KEY inner join SAKAI_REALM_ROLE SRR on SRRG.ROLE_KEY = SRR.ROLE_KEY
where SR.REALM_ID = /site/site_id
3. I "become" one of the users, and that user is removed from the realm of
the site. Running the same query as in #2 shows the user was actually
removed from the realm.
We're using Oracle 10g, here is our configuration:
#### Oracle settings
vendor at org.sakaiproject.db.api.SqlService=oracle
driverClassName at javax.sql.BaseDataSource=oracle.jdbc.driver.OracleDriver
hibernate.dialect=org.hibernate.dialect.Oracle10gDialect
url at javax.sql.BaseDataSource=jdbc:oracle:thin:@sakai.db.server:1521:sakai
username at javax.sql.BaseDataSource=sakai
password at javax.sql.BaseDataSource=password
#Avoid DBCP deadlocks by disabling testing of DBCP connections
validationQuery at javax.sql.BaseDataSource=
defaultTransactionIsolationString at javax.sql.BaseDataSource=
testOnBorrow at javax.sql.BaseDataSource=false
Any possibility of a transaction issue? Any advice is appreciated.
Thanks,
------------------------------------------
Branden Visser
LMS Application Programmer - Information Systems Services
Information Technology Services
University of Windsor
Branden Visser/University of Windsor wrote on 06/05/2009 04:34:56 PM:
> Branden Visser/University of Windsor
> 06/05/2009 04:34 PM
>
> To
>
> sakai-dev at collab.sakaiproject.org
>
> cc
>
> Subject
>
> CourseManagementService and Site Access
>
> Hi all,
>
> We're having some trouble going into Summer 2009 where "provided"
> access through the CourseManagementService is not granting access
> for users to site. The site does not appear in the "My Active Sites"
> area, and they do not have access to hit the URL directly. The only
> way the users will gain access to their site is if someone goes into
> Site Info and clicks "Update Participants". This is despite the fact
> that the rosters appear full in the Realm Administrator and the
> roster appears full in Site Info.
>
> I think it is related to the users not being pulled into the site's
> access list in the database. Has anyone experienced this issue? If
> so, have you solved it? This is a very urgent issue for us right
> now, so any insight is greatly appreciated. We're running off of 2.5.2.
>
> Thanks,
> ------------------------------------------
> Branden Visser
> LMS Application Programmer - Information Systems Services
> Information Technology Services
> University of Windsor
More information about the sakai-dev
mailing list