<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
</head>
<body style="background-color: rgb(255, 255, 255); color: rgb(0, 0,
0); font-family: sans-serif; font-size: 16px;" bgcolor="#FFFFFF"
text="#000000">
<div class="QCMcontainer"
style="font-family:sans-serif;font-size:16px;"><br>
<br>
<span style="color:#000000; font-family:sans-serif;
font-size:12px; font-weight:normal" class="headerSpan">
<div class="moz-cite-prefix">Il 04/02/2014 12:55, Yedidyah Bar
David ha scritto:<br>
</div>
</span>
<blockquote style="border-left: 2px solid #009900 !important;
border-right: 2px solid #009900 !important; padding: 0px 15px
0px 15px; margin: 8px 2px;"
cite="mid:799037904.14090285.1391514930366.JavaMail.root@redhat.com"
type="cite"><!--[if !IE]><DIV style="border-left: 2px solid #009900; border-right: 2px solid #009900; padding: 0px 15px; margin: 2px 0px;"><![endif]-->
<div style="font-family: times new roman, new york, times,
serif; font-size: 12pt; color: #000000">
<blockquote style="border-left:2px solid
#1010FF;margin-left:5px;padding-left:5px;color:#000;font-weight:normal;font-style:normal;text-decoration:none;font-family:Helvetica,Arial,sans-serif;font-size:12pt;"><b>From:
</b>"Alessandro Bianchi" <a class="moz-txt-link-rfc2396E" href="mailto:a.bianchi@skynet.it"><a.bianchi@skynet.it></a><br>
<b>To: </b>"Gianluca Cecchi"
<a class="moz-txt-link-rfc2396E" href="mailto:gianluca.cecchi@gmail.com"><gianluca.cecchi@gmail.com></a><br>
<b>Cc: </b>"Yedidyah Bar David" <a class="moz-txt-link-rfc2396E" href="mailto:didi@redhat.com"><didi@redhat.com></a>,
"users" <a class="moz-txt-link-rfc2396E" href="mailto:users@ovirt.org"><users@ovirt.org></a><br>
<b>Sent: </b>Tuesday, February 4, 2014 1:19:43 PM<br>
<b>Subject: </b>Re: [Users] ovirt-report Forbidden access
error<br>
<div><br>
</div>
<br>
<div><br>
</div>
<span style="color:#000000; font-family:sans-serif;
font-size:12px; font-weight:normal" class="headerSpan">
<div class="moz-cite-prefix">Il 04/02/2014 11:30, Gianluca
Cecchi ha scritto:<br>
</div>
</span>
<blockquote style="border-left: 2px solid #009900
!important; border-right: 2px solid #009900 !important;
padding: 0px 15px 0px 15px; margin: 8px 2px;"
cite="mid:CAG2kNCxEmE0iXtmXEcZZDti_=qRn7uE63Rkfo8V0i=AKCr=f5g@mail.gmail.com">
<pre>On Tue, Feb 4, 2014 at 11:10 AM, Alessandro Bianchi <a moz-do-not-send="true" class="moz-txt-link-rfc2396E" href="mailto:a.bianchi@skynet.it" target="_blank"><a.bianchi@skynet.it></a> wrote:
</pre>
<blockquote style="border-left: 2px solid #009900
!important; border-right: 2px solid #009900 !important;
padding: 0px 15px 0px 15px; margin: 8px 2px;">
<pre>Il 04/02/2014 09:55, Gianluca Cecchi ha scritto:
On Tue, Feb 4, 2014 at 9:10 AM, Alessandro Bianchi wrote:
in working directory '/usr/share/ovirt-engine-dwh/db-scripts'
2014-02-04 09:01:26::DEBUG::common_utils::962::root:: output =
2014-02-04 09:01:26::DEBUG::common_utils::963::root:: stderr = psql: FATALE:
autenticazione con password fallita per l'utente "engine_history"
password retrieved from file "/tmp/pgpassNkKGNp.tmp"
(autenticazione con password fallita per l'utente "engine_history" =
authentication failed for user "engine_history" system language is italian)
so it seems a user creation permission problem on the database
since I'm not too familiar with pgsql how is it supposed to fix this?
It look like it misses the password in some ovirt configuration file but
where to edit and how o fix it?
Any hint?
Thank you
See this thread of mine if you want to start from scratch and you
don't have any previous reports/dwh data or you don't mind to loose
them. Engine and its data is not impacted at all.
Eventually I'm going to open a bug for bad mgmt of pre-existing DB
user during setup (eg due to a previously failed in the middle
install).
<a moz-do-not-send="true" class="moz-txt-link-freetext" href="http://lists.ovirt.org/pipermail/users/2014-February/020740.html" target="_blank">http://lists.ovirt.org/pipermail/users/2014-February/020740.html</a>
Let us know how it goes.
Gianluca
Ok with this 2b extra step it works
I have installed everything with no errors, but still have Forbidden access
right clicking on Vms -> reports
If I click on the "reports portal" I see this link
<a moz-do-not-send="true" class="moz-txt-link-freetext" href="http://10.0.0.5/OvirtEngineWeb/ReportsRedirectServlet" target="_blank"><font color="red"><b>ATTENZIONE: i link numerici sono spesso utilizzati da malintenzionati</b></font> http://10.0.0.5/OvirtEngineWeb/ReportsRedirectServlet</a>
I suspect this is something related to apache configuration
access.log shows nothing so were may I see a log of what's happening?
Thank you
Alessandro
</pre>
</blockquote>
<pre>I too see that redirect and then when I click I land to
<a moz-do-not-send="true" class="moz-txt-link-freetext" href="https://my-engine/ovirt-engine-reports/login.html" target="_blank">https://my-engine/ovirt-engine-reports/login.html</a>
and then after login/pwd :
<a moz-do-not-send="true" class="moz-txt-link-freetext" href="https://my-engine/ovirt-engine-reports/flow.html?_flowId=searchFlow" target="_blank">https://my-engine/ovirt-engine-reports/flow.html?_flowId=searchFlow</a>
I have SpiceProxy configured.
Don't know if this impacts apache configuration.
In my case it works and in /etc/httpd/conf.d
Ihave
# ls -lrt
total 68
-rw-r--r--. 1 root root 926 Mar 31 2013 BackupPC.conf
-rw-r--r--. 1 root root 298 Jul 23 2013 squid.conf
-rw-r--r--. 1 root root 516 Jul 31 2013 welcome.conf
-rw-r--r--. 1 root root 1252 Jul 31 2013 userdir.conf
-rw-r--r--. 1 root root 9426 Jul 31 2013 ssl.conf.20131003112151
-rw-r--r--. 1 root root 2893 Jul 31 2013 autoindex.conf
-rw-r--r--. 1 root root 366 Jul 31 2013 README
-rw-r--r--. 1 root root 2778 Oct 3 11:21
z-ovirt-engine-proxy.conf.20131119125706
-rw-r--r--. 1 root root 33 Oct 3 11:21 ovirt-engine-root-redirect.conf
-rw-r--r--. 1 root root 9444 Oct 3 11:21 ssl.conf
-rw-r--r--. 1 root root 2775 Nov 19 12:57
z-ovirt-engine-proxy.conf.20140115003015
-rw-r--r--. 1 root root 1251 Jan 7 15:54 z-ovirt-engine-reports-proxy.conf
-rw-r--r--. 1 root root 2788 Jan 15 00:30 z-ovirt-engine-proxy.conf
z-ovirt-engine-reports-proxy.conf:
<IfModule proxy_ajp_module>
<Proxy ajp://localhost:8702>
# This is needed to make sure that connections to the application server
# are recovered in a short time interval (5 seconds at the moment)
# otherwise when the application server is restarted the web server will
# refuse to connect during 60 seconds.
ProxySet retry=5
# This is needed to make sure that long RESTAPI requests have time to
# finish before the web server aborts the request as the default timeout
# (controlled by the Timeout directive in httpd.conf) is 60 seconds.
ProxySet timeout=3600
</Proxy>
<Location /ovirt-engine-reports>
ProxyPass ajp://localhost:8702/ovirt-engine-reports
<IfModule deflate_module>
AddOutputFilterByType DEFLATE text/javascript text/css
text/html text/xml text/json application/xml application/json
application/x-yaml
</IfModule>
</Location>
</IfModule>
</pre>
</blockquote>
Uuuuuuh<br>
<div><br>
</div>
enterig the URL you showed directely I can login and see
reports ok<br>
<div><br>
</div>
so it looks link in ovirt main page is somehow wrong!</blockquote>
<div><br>
</div>
<div>This should work. To help debug this, p<span
style="font-size: 12pt;">lease check/post these:</span></div>
<div><br>
</div>
<div>/etc/httpd/conf.d/z-ovirt-engine-proxy.conf</div>
<div>/etc/httpd/conf.d/z-ovirt-engine-reports-proxy.conf</div>
<div>/var/log/httpd/error_log</div>
<div>/var/log/httpd/ssl_error_log</div>
<div>/var/log/httpd/access_log</div>
<div>/var/log/httpd/ssl_access_log</div>
<div><br>
</div>
<div>As user postgres, output of:</div>
<div><span style="font-family: Arial, Helvetica, sans-serif;
font-size: 10pt;">psql engine -c "select * from
vdc_options where
option_name='RedirectServletReportsPage';"</span></div>
<div><br>
</div>
<div>Thanks!</div>
<div>-- <br>
</div>
<div><span name="x"></span>Didi<span name="x"></span><br>
</div>
<div><br>
</div>
<style>
<!--
P { font-family: "Arial", "Helvetica", sans-serif; font-size: 10pt }
P.nome { color: #ff8000; font-family: "Arial", "Helvetica", sans-serif; font-size: 12pt; font-weight: bold; text-align: center }
P.indirizzo { color: #0084d1; font-family: "Arial", "Helvetica", sans-serif; font-size: 10pt; font-weight: bold; line-height: 0.48cm; text-align: center }
P.info { color: #b3b3b3; font-family: "Arial", "Helvetica", sans-serif; font-size: 9pt }
A:link { color: #005dff; text-decoration: none }
A:visited { color: #005dff; text-decoration: none }
-->
</style></div>
<br>
-- <br>
Il messaggio è stato analizzato alla ricerca di virus o
<br>
contenuti pericolosi da
<strong><a moz-do-not-send="true" href="http://www.skynet.it/">SkyNet
Srl</a></strong>, ed è
<br>
risultato non infetto.<br>
<br>
This message has been checked for virus or dangerous content
<br>
by <strong><a moz-do-not-send="true"
href="http://www.skynet.it/">SkyNet SRL</a></strong> and
seems to be clean.
<!--[if !IE]></DIV><![endif]--></blockquote>
added the name of the report host in my /etc/hosts and now have
ssl certificate error BUT goes to the right server<br>
<br>
Sorry for wasting your time ...<br>
<br>
<div class="moz-signature">-- <br>
<meta http-equiv="CONTENT-TYPE" content="text/html;
charset=UTF-8">
<title></title>
<meta name="generator" content="Bluefish 2.0.3">
<meta name="author" content="Alessandro Bianchi">
<meta name="CREATED" content="20100306;9474300">
<meta name="CHANGEDBY" content="Alessandro ">
<meta name="CHANGED" content="20100306;10212100">
<style type="text/css">
<!--
P { font-family: "Arial", "Helvetica", sans-serif; font-size: 10pt }
P.nome { color: #ff8000; font-family: "Arial", "Helvetica", sans-serif; font-size: 12pt; font-weight: bold; text-align: center }
P.indirizzo { color: #0084d1; font-family: "Arial", "Helvetica", sans-serif; font-size: 10pt; font-weight: bold; line-height: 0.48cm; text-align: center }
P.info { color: #b3b3b3; font-family: "Arial", "Helvetica", sans-serif; font-size: 9pt }
A:link { color: #005dff; text-decoration: none }
A:visited { color: #005dff; text-decoration: none }
-->
</style>
<p class="nome">SkyNet SRL</p>
<p class="indirizzo">Via Maggiate 67/a - 28021 Borgomanero (NO)
- tel.
+39 0322-836487/834765 - fax +39 0322-836608</p>
<p align="CENTER"><a href="http://www.skynet.it/">http://www.skynet.it</a></p>
<p class="indirizzo">Autorizzazione Ministeriale n.197</p>
<p class="info">Le informazioni contenute in questo messaggio
sono
riservate e confidenziali ed è vietata la diffusione in
qualunque
modo eseguita.<br>
Qualora Lei non fosse la persona a cui il presente
messaggio è destinato, La invitiamo ad eliminarlo ed a
distruggerlo
non divulgandolo, dandocene gentilmente comunicazione. <br>
Per
qualsiasi informazione si prega di contattare <a class="moz-txt-link-abbreviated" href="mailto:info@skynet.it">info@skynet.it</a>
(e-mail dell'azienda). Rif. D.L. 196/2003</p>
</div>
</div>
</body>
</html>