"Job Composer" Permissions issue

liu-shaobo · June 24, 2022, 9:53am

hi，please help me ,thanks.

CentOS-6.7 x64
LDAP
ondemand 2.9

Create New Job and upload file
Shows as follows：

" Error occurred when attempting to create new file
Unprocessable Entity"

" The change you wanted was rejected.
Maybe you tried to change something you didn’t have access to.
If you are the application owner check the logs for more information."

apache access log as follows:

106.75.220.2 - user01 [24/Jun/2022:18:00:22 +0800] "PUT /pun/sys/dashboard/files/fs//home/user01/ondemand/data/sys/myjobs/templates/Basic_ABAQUS_Job_Owens/tst?touch=true HTTP/1.1" 422 - "http://ood.hpc.edu/pun/sys/dashboard/files/fs/home/user01/ondemand/data/sys/myjobs/templates/Basic_ABAQUS_Job_Owens" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36"

apache error log as follows:

[Fri Jun 24 18:00:22.753890 2022] [lua:debug] [pid 16786] lua_request.c(1839): [client 106.75.220.2:61282] AH01486: request_rec->dispatching headers_out -> apr table, referer: http://ood.hpc.edu/pun/sys/dashboard/files/fs/home/user01/ondemand/data/sys/myjobs/templates/Basic_ABAQUS_Job_Owens
[Fri Jun 24 18:00:22.753906 2022] [lua:debug] [pid 16786] lua_request.c(1849): [client 106.75.220.2:61282] AH01487: request_rec->dispatching clock -> lua_CFunction, referer: http://ood.hpc.edu/pun/sys/dashboard/files/fs/home/user01/ondemand/data/sys/myjobs/templates/Basic_ABAQUS_Job_Owens
[Fri Jun 24 18:00:22.753961 2022] [lua:debug] [pid 16786] lua_request.c(1849): [client 106.75.220.2:61282] AH01487: request_rec->dispatching info -> lua_CFunction, referer: http://ood.hpc.edu/pun/sys/dashboard/files/fs/home/user01/ondemand/data/sys/myjobs/templates/Basic_ABAQUS_Job_Owens
[Fri Jun 24 18:00:22.753975 2022] [lua:info] [pid 16786] [client 106.75.220.2:61282] req_protocol="HTTP/1.1" req_handler="proxy-server" req_method="PUT" req_accept="*/*" req_user_agent="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.0.0 Safari/537.36" res_content_length="0" req_content_type="" res_content_encoding="" req_status="422" req_origin="http://ood.hpc.edu" time_user_map="0.008" local_user="user01" req_referer="http://ood.hpc.edu/pun/sys/dashboard/files/fs/home/user01/ondemand/data/sys/myjobs/templates/Basic_ABAQUS_Job_Owens" res_content_language="" req_port="80" req_is_websocket="false" req_server_name="ood.hpc.edu" log_hook="ood" req_accept_charset="" req_hostname="ood.hpc.edu" log_id="YrWLNoMwO@vOuwAPuCoySwAAAAg" res_content_location="" res_location="" log_time="2022-06-24T10:00:22.753675Z" remote_user="user01" req_user_ip="106.75.220.2" res_content_disp="" req_is_https="false" req_filename="proxy:http://localhost/pun/sys/dashboard/files/fs//home/user01/ondemand/data/sys/myjobs/templates/Basic_ABAQUS_Job_Owens/tst?touch=true" req_uri="/pun/sys/dashboard/files/fs/home/user01/ondemand/data/sys/myjobs/templates/Basic_ABAQUS_Job_Owens/tst" time_proxy="4.309" res_content_type="text/html; charset=utf-8" req_accept_language="zh-cn,zh;q=0.9" req_cache_control="" req_accept_encoding="gzip, deflate", referer: http://ood.hpc.edu/pun/sys/dashboard/files/fs/home/user01/ondemand/data/sys/myjobs/templates/Basic_ABAQUS_Job_Owens

jeff.ohrstrom · June 24, 2022, 12:43pm

We require SSL by default. If you enable SSL on your apache, it’ll resolve this.

Alternatively you can follow these instructions to add an initializer. These instructions are for the dashboard (which you’ll also need) so you can substitute that with myjobs and it’d be the same for the job composer.

github.com/OSC/ondemand

HTTP 422 Error / InvalidAuthenticityToken

opened 09:43AM - 31 May 21 UTC

closed 02:38PM - 17 Jun 21 UTC

GloktarFR

bug

After a fresh installation of OOD-2.0.9 on CentOS-7.9, I'm unable to use batch c…onnect applications. The navigation through the dashboard (file explorer, shell, etc.) is working well though. But every time I try to submit a job in an interactive session, I'm getting a HTTP 422 Error. In the /var/log/ondemand-nginx/<user>/error.log, I'm seeing this error message: ``` App 19736 output: [2021-05-31 09:51:01 +0200 ] WARN "Can't verify CSRF token authenticity." App 19736 output: [2021-05-31 09:51:01 +0200 ] INFO "method=POST path=/pun/sys/dashboard/batch_connect/sys/bc_desktop_3d/session_contexts format=html controller=BatchConnect::SessionContextsController action=create status=422 error='ActionController::InvalidAuthenticityToken: ActionController::InvalidAuthenticityToken' duration=0.73 view=0.00" App 19736 output: [2021-05-31 09:51:01 +0200 ] FATAL "" App 19736 output: [2021-05-31 09:51:01 +0200 ] FATAL "ActionController::InvalidAuthenticityToken (ActionController::InvalidAuthenticityToken):" App 19736 output: [2021-05-31 09:51:01 +0200 ] FATAL "" App 19736 output: [2021-05-31 09:51:01 +0200 ] FATAL "actionpack (5.2.6) lib/action_controller/metal/request_forgery_protection.rb:215:in `handle_unverified_request'\nactionpack (5.2.6) lib/action_controller/metal/request_forgery_protection.rb:247:in `handle_unverified_request'\nactionpack (5.2.6) lib/action_controller/metal/request_forgery_protection.rb:242:in `verify_authenticity_token'\nactivesupport (5.2.6) lib/active_support/callbacks.rb:426:in `block in make_lambda'\nactivesupport (5.2.6) lib/active_support/callbacks.rb:198:in `block (2 levels) in halting'\nactionpack (5.2.6) lib/abstract_controller/callbacks.rb:34:in `block (2 levels) in <module:Callbacks>'\nactivesupport (5.2.6) lib/active_support/callbacks.rb:199:in `block in halting'\nactivesupport (5.2.6) lib/active_support/callbacks.rb:513:in `block in invoke_before'\nactivesupport (5.2.6) lib/active_support/callbacks.rb:513:in `each'\nactivesupport (5.2.6) lib/active_support/callbacks.rb:513:in `invoke_before'\nactivesupport (5.2.6) lib/active_support/callbacks.rb:131:in `run_callbacks'\nactionpack (5.2.6) lib/abstract_controller/callbacks.rb:41:in `process_action'\nactionpack (5.2.6) lib/action_controller/metal/rescue.rb:22:in `process_action'\nactionpack (5.2.6) lib/action_controller/metal/instrumentation.rb:34:in `block in process_action'\nactivesupport (5.2.6) lib/active_support/notifications.rb:168:in `block in instrument'\nactivesupport (5.2.6) lib/active_support/notifications/instrumenter.rb:23:in `instrument'\nactivesupport (5.2.6) lib/active_support/notifications.rb:168:in `instrument'\nactionpack (5.2.6) lib/action_controller/metal/instrumentation.rb:32:in `process_action'\nactionpack (5.2.6) lib/action_controller/metal/params_wrapper.rb:256:in `process_action'\nactionpack (5.2.6) lib/abstract_controller/base.rb:134:in `process'\nactionview (5.2.6) lib/action_view/rendering.rb:32:in `process'\nactionpack (5.2.6) lib/action_controller/metal.rb:191:in `dispatch'\nactionpack (5.2.6) lib/action_controller/metal.rb:252:in `dispatch'\nactionpack (5.2.6) lib/action_dispatch/routing/route_set.rb:52:in `dispatch'\nactionpack (5.2.6) lib/action_dispatch/routing/route_set.rb:34:in `serve'\nactionpack (5.2.6) lib/action_dispatch/journey/router.rb:52:in `block in serve'\nactionpack (5.2.6) lib/action_dispatch/journey/router.rb:35:in `each'\nactionpack (5.2.6) lib/action_dispatch/journey/router.rb:35:in `serve'\nactionpack (5.2.6) lib/action_dispatch/routing/route_set.rb:840:in `call'\nrack (2.2.3) lib/rack/tempfile_reaper.rb:15:in `call'\nrack (2.2.3) lib/rack/etag.rb:27:in `call'\nrack (2.2.3) lib/rack/conditional_get.rb:40:in `call'\nrack (2.2.3) lib/rack/head.rb:12:in `call'\nactionpack (5.2.6) lib/action_dispatch/http/content_security_policy.rb:18:in `call'\nrack (2.2.3) lib/rack/session/abstract/id.rb:266:in `context'\nrack (2.2.3) lib/rack/session/abstract/id.rb:260:in `call'\nactionpack (5.2.6) lib/action_dispatch/middleware/cookies.rb:670:in `call'\nactionpack (5.2.6) lib/action_dispatch/middleware/callbacks.rb:28:in `block in call'\nactivesupport (5.2.6) lib/active_support/callbacks.rb:98:in `run_callbacks'\nactionpack (5.2.6) lib/action_dispatch/middleware/callbacks.rb:26:in `call'\nactionpack (5.2.6) lib/action_dispatch/middleware/debug_exceptions.rb:61:in `call'\nactionpack (5.2.6) lib/action_dispatch/middleware/show_exceptions.rb:33:in `call'\nlograge (0.11.2) lib/lograge/rails_ext/rack/logger.rb:15:in `call_app'\nrailties (5.2.6) lib/rails/rack/logger.rb:26:in `block in call'\nactivesupport (5.2.6) lib/active_support/tagged_logging.rb:71:in `block in tagged'\nactivesupport (5.2.6) lib/active_support/tagged_logging.rb:28:in `tagged'\nactivesupport (5.2.6) lib/active_support/tagged_logging.rb:71:in `tagged'\nrailties (5.2.6) lib/rails/rack/logger.rb:26:in `call'\nactionpack (5.2.6) lib/action_dispatch/middleware/remote_ip.rb:81:in `call'\nrequest_store (1.5.0) lib/request_store/middleware.rb:19:in `call'\nactionpack (5.2.6) lib/action_dispatch/middleware/request_id.rb:27:in `call'\nrack (2.2.3) lib/rack/method_override.rb:24:in `call'\nrack (2.2.3) lib/rack/runtime.rb:22:in `call'\nactivesupport (5.2.6) lib/active_support/cache/strategy/local_cache_middleware.rb:29:in `call'\nactionpack (5.2.6) lib/action_dispatch/middleware/executor.rb:14:in `call'\nrack (2.2.3) lib/rack/sendfile.rb:110:in `call'\nrailties (5.2.6) lib/rails/engine.rb:524:in `call'\n/opt/rh/ondemand/root/usr/share/ruby/vendor_ruby/phusion_passenger/rack/thread_handler_extension.rb:107:in `process_request'\n/opt/rh/ondemand/root/usr/share/ruby/vendor_ruby/phusion_passenger/request_handler/thread_handler.rb:157:in `accept_and_process_next_request'\n/opt/rh/ondemand/root/usr/share/ruby/vendor_ruby/phusion_passenger/request_handler/thread_handler.rb:110:in `main_loop'\n/opt/rh/ondemand/root/usr/share/ruby/vendor_ruby/phusion_passenger/request_handler.rb:416:in `block (3 levels) in start_threads'\n/opt/rh/ondemand/root/usr/share/ruby/vendor_ruby/phusion_passenger/utils.rb:113:in `block in create_thread_and_abort_on_exception'" ``` Any idea what's causing this ? I have this exact same installation with ondemand-1.8.20 and it's working fine.

liu-shaobo · June 24, 2022, 11:54pm

thanks，Apache adds SSL, which can be accessed normally；