Authentication log Questions

Mads Kiilerich mads at kiilerich.com
Thu Jun 10 12:26:11 UTC 2021 

Hi

On 6/10/21 9:25 AM, 김태호 wrote:
> *>> Question 1*
>
>
> We are constantly getting this kind of log as following (at WARNING 
> level) :
>
> ...
>
> 2021-06-10 07:04:42.989 ERROR 
> [kallithea.lib.auth_modules.auth_internal] user admin had a bad password
>
> 2021-06-10 07:04:42.989 WARNI [kallithea.lib.auth_modules] User 
> `admin` failed to authenticate against 
> kallithea.lib.auth_modules.auth_internal
>
> 2021-06-10 07:04:48.507 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:04:48.853 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:05:18.535 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:05:18.848 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:05:48.560 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:05:48.859 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:06:18.592 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:06:18.865 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:06:39.255 WARNI [kallithea.lib.auth_modules] User 
> `member1` failed to authenticate against 
> kallithea.lib.auth_modules.auth_crowd
>
> 2021-06-10 07:06:45.635 WARNI [kallithea.lib.auth_modules] User 
> `member1` failed to authenticate against 
> kallithea.lib.auth_modules.auth_crowd
>
> 2021-06-10 07:06:48.719 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:06:48.884 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> [2021-06-10 07:07:10 +0000] [5664] [INFO] Handling signal: winch
>
> 2021-06-10 07:07:18.640 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:07:18.911 WARNI [kallithea.lib.auth] user is anonymous 
> and NOT authenticated with regular auth @ HomeController:index
>
> 2021-06-10 07:07:22.535 WARNI [kallithea.lib.auth_modules] User 
> `member1` failed to authenticate against 
> kallithea.lib.auth_modules.auth_crowd
>
> 2021-06-10 07:07:28.507 WARNI [kallithea.lib.auth_modules] User 
> `member1` failed to authenticate against 
> kallithea.lib.auth_modules.auth_crowd
>
> ...
>
>
> I wonder why the log prints that the authentication failed even if 
> login is successful.
>

It is very possible that some of the logging statements in the code are 
too verbose. The code path might seem warning-ish when looking at the 
particular function, but perhaps less relevant when used in production. 
We can fix that.


For example, I noticed that one of the messages seems too verbose and 
not helpful, so I will propose something like 
https://kallithea-scm.org/repos/kallithea-incoming/changeset/2b37222f8d71 
for next release.


Even if not a Python programmer, it should be possible for you to find 
the log statements in the code and get an idea under what circumstances 
it is emitted. That can provide a good argument why the logging should 
be different.


For the log entries you show, the timestamps are so different that it 
must be for different requests. INFO logging for [logger_kallithea] will 
give more context ... but also make the logging much more verbose and 
impossible to read if there are multiple simultaneous requests.


Can you be more precise about which "wrong" log statements come from 
*one* successful login?


> *>> Question 2*
>
> *
> *
>
> We changed http_server to waitress to download a large size file from 
> my kallithea-git.
>
> Also I put larger value for channel_timeout 
> and max_request_body_size(channel_timeout = 180, max_request_body_size 
> = 322122547200) in my .ini file.
>
> But I still haven't received the same size file as the next attached 
> picture.
>
>
> *But I can still download small size files from Kallithea. *
>
> image.16233092690410.png
>

(Is this related to the other question asked some days ago? If so: It is 
much better to follow up in that thread so we have all the relevant 
information in one place, without mixing things up. And make sure to 
answer all questions if you want help.)


Exactly what problem do you see? Can you reproduce it in a test setup? 
Can you describe how you think we can reproduce the problem?


> *>> Question 3*
>
> As a guest, whenever I push to git repositoy, the following error 
> message occurs.
>
>
> *ERROR MESSAGE 1:*
>
> POST git-receive-pack (642 bytes)
> remote: Traceback (most recent call last):
> remote:   File "hooks/pre-receive", line 16, in <module>
> remote:     from kallithea.lib.hooks import handle_git_pre_receive as _handler 
>
> remote: ModuleNotFoundError: No module named 'kallithea'
>
>
> *ERROR MESSAGE 2:*
>
> Enumerating objects: 46, done.
> Delta compression using up to 8 threads
> Total 32 (delta 17), reused 0 (delta 0), pack-reused 0
> POST git-receive-pack (34113 bytes)
> Remote: Traceback (most recent call last):
> Remote:   File "hooks/pre-receive", line 16, in <module>
> Remote:     from kallithea.lib.hooks import handle_git_pre_receive as _handler 
>
> Remote: ModuleNotFoundError: No module named 'kallithea'
>
>
> Why cannot it find the 'kallithea' module?
>

This hook must have been installed by a previous Kallithea version. Did 
you follow 
https://kallithea.readthedocs.io/en/default/upgrade.html#reinstall-internal-git-repository-hooks 
?


/Mads

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sfconservancy.org/pipermail/kallithea-general/attachments/20210610/d6b4d3e5/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image.16233092690410.png
Type: image/png
Size: 5022 bytes
Desc: not available
URL: <http://lists.sfconservancy.org/pipermail/kallithea-general/attachments/20210610/d6b4d3e5/attachment-0001.png>

More information about the kallithea-general mailing list