Hello,
I'm trying to create config file for simple incident logbook. It should has 3 attributes:
- source (source of incident) with options:
- email
- jira_id
- ezd_id
- Tactics (from MITRE but for simplicity I wrote only this):
- aaa,
- bbb,
- Technics (also from MITRE but also for simplicity I wrote only this):
- tactics1, tactics2,
- tactics3, tactics4
And this is not working.
For me it looks that choosing first attribute - Source - causes problems, because after that I cannot choose third - Technics - attribute.
When I will start filling attributes from the second - Tactics - then Technics options are avaiable.
Below is config file:
Theme = default
Page Title = ELOG - $Theme
Attributes = Source, Technics, Tactics
Options Source = Email{a}, Jira{b}, EZD{c}
{a} Attributes = Source, Adres_email, Technics, Tactics
{b} Attributes = Source, JIRA_ID, Technics, Tactics
{c} Attributes = Source, EZD_ID, Technics, Tactics
Options Technics = aaa{1}, bbb{2}
{1} Options Tactics = tactics1, tactics2
{2} Options Tactics = tactics3, tactics4
Page Title = ELOG - $subject
Reverse sort = 1
Quick filter = Source, Technics, Tactics
I will appreciate any help.
Best Regards |
Please excuse my double-posting. But my first entry was not displayed on the forum and I haven't received feedback yet. I think this is because I responded to an entry that was still in draft mode, whereas my entry was a "normal" entry. My initial entry has the Message ID: 69870 and was in reply to: 68348
***
Dear Andreas and Stefan,
First of all thank you for the template for a checklist. I have created my own version of it and the HTML looks fine. For comparison, I temporarily also included the shiftcheck template provided by Stefan to my ELOG.
However, I have the same problem as JD. After submitting the data in shiftcheck, I receive the error "Cannot open file passwords.pwd: No such file or directory" and the URL is http://localhost:8085/ShiftCheck/?cmd=Submit&suppress=1&unm=&upwd=&Author=Marcel+Zauner-Wieczorek&edit_id=&D=1&M=4&Shift=Morning&a4=&h2=&a5=&a6=&c1=&c2=&c3=&c4=&c5=&bb1=&cr1=&cr9=&cr18=&cr20=&cr21=&cr23=&cr24="
I have tried to include the path of the password file in the cfg file (using "", <>, <"">, and only the path name), but then the elogd.exe won't start at all unless I change it back to the simple "Password file = passwords.pwd".
Here is an excerpt of my config file:
****
[global]
port = 8085
Password file = passwords.pwd
Login expiration = 1
Admin user = Marcel
Login user = Marcel
Self register = 1
Group General = ShiftCheck
Group Gas phase instruments = Checklist_MARGA
Restrict edit time = 1
Admin restrict edit time = 0
Autosave = 60
[ShiftCheck]
Comment = Shift Check List
Attributes = Author, D, M, Y, Shift, a1, a2, a3, a4, a5, h1, h2, h3, h4, h5, c1, c2, c3, c4, c5, c6, c7, bb1, cr1, cr2, cr3, cr4, cr5, cr6, cr7, cr8, cr9, cr10, cr11, cr12, cr13, cr14, cr15, cr16, cr17, cr18, cr19, cr20, cr21, cr22, cr23, cr24, cr25, cr26, sw1, sw2, sw3, sw4, sw5
Quick filter = Shift, Author
Options Shift = Morning, Evening, Night
Enable attachments = 0
Show text = 0
Custom new form = shiftcheck.html
Custom edit form = shiftcheck.html
Custom display form = shiftcheck.html
List after submit = 1
[Checklist_MARGA]
Comment = Check List for MARGA
Date Format = %d.%m.%Y
Time Format = %d.%m.%Y %H:%M:%S
Reverse sort = 1
Attributes = Author, D, M, Y, On, DP2h, T_SJAC, T_heat, EC_An, EC_Cat, IonBal, IS_Cat_Ae, IS_An_Ae, IS_Cat_Ga, IS_An_Ga, P1, P2, Err, Com
Quick filter = Author
Enable attachments = 0
Show text = 0
Custom new form = checklist_MARGA.html
Custom edit form = checklist_MARGA.html
Custom display form = checklist_MARGA.html
List after submit = 1
***
I am actually confused about the passwords.pwd file. I have successfully created several users with passwords and I can use their credentials to log into the different labbooks. However, none of these users (let along their (encrypted) passwords) turn up in the passwords.pwd file. I don't know where ELOG saves these information, but it's apparently not the passwords.pwd file that is defined in the cfg file and that I have access to.
I hope that someone can help me with this issue. Otherwise, I would omit the password function within ELOG and find an external solution for a password protection.
Cheers,
Marcel |
The ETH physics department is running an ELOG behind an Apache reverse proxy:
ProxyPass / http://localhost:$port/ retry=0
ProxyPassReverse / http://localhost:$port/
ProxyAddHeaders off
Authentication is done on the Apache side using LDAP authentication, example:
<Location /demo>
Use PhysLDAP
AuthType Basic
AuthBasicProvider ldap
...
Require valid-user
RewriteEngine On
RewriteCond %{LA-U:REMOTE_USER} (.+)
RewriteRule . - [E=RU:%1,NS]
RequestHeader add X-Forwarded-User %{RU}e
</Location>
And all ELOGs use the following config:
[demo]
Authentication = Webserver
For the PSI-Praktikum we had to create a logbook that is accessible without an ETH-Account. A new logbook was added, which is not authenticated via the proxy, but the ELOG internal authentication. In order to grant access to the students, I was made admin for that logbook. The configuration is the following:
[PSI-Praktikum]
Authentication = File
Password file = /home/wwwelog/private/password/psi-praktikum.xml
Admin user = damian
In order to prevent my user from editing the global configuration, top groups according to https://elog.psi.ch/elog/config.html#groups were introduced, with one top group for all the proxy-authenticated logbooks, and a separate one for the Praktikum logbook. However, even after doing this, I am still able to edit the [global] section. Is there a way to prevent this? Or is it not possible to have a global section that is not accessible by the top group admins? |