[Building Sakai] CourseManagementService and Site Access
branden at uwindsor.ca
branden at uwindsor.ca
Thu May 7 10:40:05 PDT 2009
Hi everyone, thanks for your replies. The issue was that the column
sakai_realm.provider_id and the table sakai_realm_provider were out of
sync (our bad). We managed to sync them back up, and change a realm
process so that it uses the Sakai API instead of direct DB modification.
Stephen had the right idea, "refreshUser()" references the
sakai_realm_provider table, while "refreshAuthzGroup()" references the
column in sakai_realm, so they were getting different information.
Is there any movement towards using either one or the other to normalize
this provider access? These 2 storage places have no database integrity
keeping them in sync.
Thanks,
------------------------------------------
Branden Visser
LMS Application Programmer - Information Systems Services
Information Technology Services
University of Windsor
"Stephen Marquard" <stephen.marquard at uct.ac.za> wrote on 07/05/2009
05:47:19 AM:
> "Stephen Marquard" <stephen.marquard at uct.ac.za>
> 07/05/2009 05:47 AM
>
> To
>
> <sakai-dev at collab.sakaiproject.org>, <branden at uwindsor.ca>
>
> cc
>
> Subject
>
> Re: [Building Sakai] CourseManagementService and Site Access
>
> Is it possible your group provider (CM implementation) is returning
> inconsistent results?
>
> When a user logs, refreshUser() in the authz code calls the group
> provider method getGroupRolesForUser(eid).
>
> It sounds like your CM implementation isn't returning the right
> results for that, but does return the right results when asked for
> the set of users for a provider id.
>
> Regards
> Stephen
>
> Stephen Marquard, Learning Technologies Co-ordinator
> Centre for Educational Technology, University of Cape Town
> http://www.cet.uct.ac.za
> Email/IM/XMPP: stephen.marquard at uct.ac.za
> Phone: +27-21-650-5037 Cell: +27-83-500-5290
>
>
> >>> <branden at uwindsor.ca> 2009/05/07 01:32 AM >>>
> An update on this issue. This is the functionality I'm seeing when
> debugging this issue:
>
> 1. Log in as administrator, visit Site A's Site Info tool. The realm for
> the site is updated with an entry for the user, and they display on the
> roster in Site Info. The realm is updated with the patch in
> http://bugs.sakaiproject.org/jira/browse/SAK-6261 .
>
> 2. I run the following query directly against the database and see the
> user is in the realm:
>
> select SRRG.USER_ID, SRR.ROLE_NAME, SRRG.ACTIVE, SRRG.PROVIDED from
> SAKAI_REALM_RL_GR SRRG inner join SAKAI_REALM SR on SRRG. REALM_KEY =
SR.
> REALM_KEY inner join SAKAI_REALM_ROLE SRR on SRRG.ROLE_KEY =
SRR.ROLE_KEY
> where SR.REALM_ID = /site/site_id
>
> 3. I "become" one of the users, and that user is removed from the realm
of
> the site. Running the same query as in #2 shows the user was actually
> removed from the realm.
>
> We're using Oracle 10g, here is our configuration:
>
> #### Oracle settings
> vendor at org.sakaiproject.db.api.SqlService=oracle
> driverClassName at javax.sql.BaseDataSource=oracle.jdbc.driver.OracleDriver
> hibernate.dialect=org.hibernate.dialect.Oracle10gDialect
>
url at javax.sql.BaseDataSource=jdbc:oracle:thin:@sakai.db.server:1521:sakai
> username at javax.sql.BaseDataSource=sakai
> password at javax.sql.BaseDataSource=password
>
> #Avoid DBCP deadlocks by disabling testing of DBCP connections
> validationQuery at javax.sql.BaseDataSource=
> defaultTransactionIsolationString at javax.sql.BaseDataSource=
> testOnBorrow at javax.sql.BaseDataSource=false
>
> Any possibility of a transaction issue? Any advice is appreciated.
>
> Thanks,
> ------------------------------------------
> Branden Visser
> LMS Application Programmer - Information Systems Services
> Information Technology Services
> University of Windsor
>
> Branden Visser/University of Windsor wrote on 06/05/2009 04:34:56 PM:
>
> > Branden Visser/University of Windsor
> > 06/05/2009 04:34 PM
> >
> > To
> >
> > sakai-dev at collab.sakaiproject.org
> >
> > cc
> >
> > Subject
> >
> > CourseManagementService and Site Access
> >
> > Hi all,
> >
> > We're having some trouble going into Summer 2009 where "provided"
> > access through the CourseManagementService is not granting access
> > for users to site. The site does not appear in the "My Active Sites"
> > area, and they do not have access to hit the URL directly. The only
> > way the users will gain access to their site is if someone goes into
> > Site Info and clicks "Update Participants". This is despite the fact
> > that the rosters appear full in the Realm Administrator and the
> > roster appears full in Site Info.
> >
> > I think it is related to the users not being pulled into the site's
> > access list in the database. Has anyone experienced this issue? If
> > so, have you solved it? This is a very urgent issue for us right
> > now, so any insight is greatly appreciated. We're running off of
2.5.2.
> >
> > Thanks,
> > ------------------------------------------
> > Branden Visser
> > LMS Application Programmer - Information Systems Services
> > Information Technology Services
> > University of Windsor
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://collab.sakaiproject.org/pipermail/sakai-dev/attachments/20090507/9984dab5/attachment.html
More information about the sakai-dev
mailing list