id	summary	reporter	owner	description	type	status	priority	component	severity	resolution	keywords	cc	release
6397	Plugin provides error that is unclear for troubleshooting	mattmnx@…	Emmanuel Blot	"Logins/Authentications/Authorizations work fine until I attempt to authorize different forms of access via a group with the Ldap Plugin. I have created a group called TracAdmins and added myself to that group within Active Directory. Within the trac site I have enabled the trac ldap plugin and configured the needed directives in the trac.ini. I also created a group called @TracAdmins (Same Name as the AD group) within trac. When I try to gain Admin level access to the trac site I am given standard user access. I am authenticated but not with the proper level of access. I enabled debugging in the logs but the error isnt giving me anything to go on. 

The lines from the Debug log follow:

2010-01-04 17:20:51,650 Trac[chrome] DEBUG: Prepare chrome data for request
2010-01-04 17:20:51,651 Trac[api] DEBUG: action controllers for ticket workflow: ['ConfigurableTicketWorkflow']
2010-01-04 17:20:51,658 Trac[api] ERROR: LDAP error: Operations error
2010-01-04 17:20:51,662 Trac[api] ERROR: LDAP error: Operations error
2010-01-04 17:20:51,664 Trac[perm] DEBUG: No policy allowed mamadmin performing TRAC_ADMIN on None
2010-01-04 17:20:51,664 Trac[perm] DEBUG: No policy allowed mamadmin performing PERMISSION_GRANT on None
2010-01-04 17:20:51,665 Trac[perm] DEBUG: No policy allowed mamadmin performing PERMISSION_REVOKE on None
2010-01-04 17:20:51,665 Trac[perm] DEBUG: No policy allowed mamadmin performing TICKET_ADMIN on None
2010-01-04 17:20:51,667 Trac[perm] DEBUG: No policy allowed mamadmin performing EMAIL_VIEW on None
2010-01-04 17:20:51,667 Trac[session] DEBUG: Retrieving session for ID 'mamadmin'

Trac.ini Bits:

[components]
ldapplugin.* = enabled
ldapplugin.api.ldappermissiongroupprovider = enabled
ldapplugin.api.ldappermissionstore = disabled

-clip-

[ldap]
basedn = DC=foo,DC=com
bind_passwd = XXXXXX
bind_user = cn=LDAPReader,cn=Users,dc=srahosting,dc=com
enable = true
host = XXXXX
cache_ttl = 900
cache_size = 100

I can see the logins/outs on the ldap server and there does not seem to be any errors. How can I trace out what this LDAP error Trac is reporting really is?

"	defect	new	normal	LdapPlugin	normal				0.11