Re: [Trac] Trac 1.0.4, TracAccountManager 0.4.4 with SessionStore authentication

[Steffen Hoffmann]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

On 29.04.2015 16:40, Mark Antonson wrote:
> I'm trying to setup Trac authentication with the AccountManager plugin.
>  I'm running the FastCGI version through lighttpd's spawn-fcgi
> component, hosted through Resin 3.0 (don't ask, it's already on this
> server and needed to support another old application). 

...

> I registered an account named admin and manually added the permissions
> per the cook book, but when logging in it takes the username and
> password but doesn't actually log you in, still browsing using
> anonymous.  Set the trac logging to DEBUG and this is what I see in
> trac.log:
> 
> |
> 2015-04-29 09:32:38,796 Trac[main] DEBUG: Dispatching
> 
> 2015-04-29 09:32:38,797 Trac[web_ui] DEBUG: LoginModule._remote_user:
> Authentication attempted for 'admin'
> 2015-04-29 09:32:38,799 Trac[web_ui] WARNING: LoginModule.authenticate:
> 'REMOTE_USER' was set to ''
> 2015-04-29 09:32:38,799 Trac[web_ui] DEBUG: LoginModule.authenticate:
> Set 'REMOTE_USER' = 'admin'
> 2015-04-29 09:32:38,801 Trac[session] DEBUG: Retrieving session for ID
> u'admin'
> 2015-04-29 09:32:38,862 Trac[main] DEBUG: Dispatching
> 
> 2015-04-29 09:32:38,863 Trac[session] DEBUG: Retrieving session for ID
> 'd8350ff6f918db420e1197ec'
> 2015-04-29 09:32:38,870 Trac[chrome] DEBUG: Prepare chrome data for request
> |
> 
> So it appears an authentication is starting, but the REMOTE_USER is
> being lost.  After researching, I thought I'd found a solution in
> setting the environ_auth_overwrite = false, but then the login fails
> with "Invalid username or password".  The trac.log shows:

Why should this become a solution?

The authentication has been going well as before, far as it could on
Trac and accountmananger side.

I've not heared anything about that Resin server software and how it
could be configured to pick-up the 'REMOTE_USER' authentication result
on the server side, but this is what as to be done now I guess.

Steffen Hoffmann

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iEYEARECAAYFAlVBOPwACgkQ31DJeiZFuHcFdwCfW1zZnfWHrJTdULM+nIeyIEju
hhgAniW5qExo9GX/UDLkSC9J4EJMTvem
=ykAm
-END PGP SIGNATURE-

-- 
You received this message because you are subscribed to the Google Groups "Trac 
Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to trac-users+unsubscr...@googlegroups.com.
To post to this group, send email to trac-users@googlegroups.com.
Visit this group at http://groups.google.com/group/trac-users.
For more options, visit https://groups.google.com/d/optout.

[Trac] Trac 1.0.4, TracAccountManager 0.4.4 with SessionStore authentication

[Mark Antonson]

I'm trying to setup Trac authentication with the AccountManager plugin. 
 I'm running the FastCGI version through lighttpd's spawn-fcgi component, 
hosted through Resin 3.0 (don't ask, it's already on this server and needed 
to support another old application).  I built the AccountManager .egg and 
installed just fine.  Following the instructions in the cook book to 
configure for SessionStore authentication, my trac.ini has:

[account-manager]
hash_method = HtDigestHashMethod
db_htdigest_realm = TracDB
password_store = SessionStore
reset_password = false

[components]
trac.versioncontrol.* = disabled
trac.web.auth.loginmodule = disabled
acct_mgr.admin.* = enabled
acct_mgr.api.* = enabled
acct_mgr.db.sessionstore = enabled
acct_mgr.htfile.* = disabled
acct_mgr.http.* = disabled
acct_mgr.notification.* = enabled
acct_mgr.pwhash.htdigesthashmethod = enabled
acct_mgr.pwhash.htpasswdhashmethod = disabled
acct_mgr.register.* = enabled
acct_mgr.svnserve.svnservepasswordstore = disabled
acct_mgr.web_ui.* = enabled
acct_mgr.web_ui.resetpwstore = disabled

I registered an account named admin and manually added the permissions per 
the cook book, but when logging in it takes the username and password but 
doesn't actually log you in, still browsing using anonymous.  Set the trac 
logging to DEBUG and this is what I see in trac.log:

2015-04-29 09:32:38,796 Trac[main] DEBUG: Dispatching 
2015-04-29 09:32:38,797 Trac[web_ui] DEBUG: LoginModule._remote_user: 
Authentication attempted for 'admin'
2015-04-29 09:32:38,799 Trac[web_ui] WARNING: LoginModule.authenticate: 
'REMOTE_USER' was set to ''
2015-04-29 09:32:38,799 Trac[web_ui] DEBUG: LoginModule.authenticate: Set 
'REMOTE_USER' = 'admin'
2015-04-29 09:32:38,801 Trac[session] DEBUG: Retrieving session for ID 
u'admin'
2015-04-29 09:32:38,862 Trac[main] DEBUG: Dispatching 
2015-04-29 09:32:38,863 Trac[session] DEBUG: Retrieving session for ID 
'd8350ff6f918db420e1197ec'
2015-04-29 09:32:38,870 Trac[chrome] DEBUG: Prepare chrome data for request

So it appears an authentication is starting, but the REMOTE_USER is being 
lost.  After researching, I thought I'd found a solution in setting 
the environ_auth_overwrite = false, but then the login fails with "Invalid 
username or password".  The trac.log shows:

2015-04-29 09:36:48,265 Trac[main] DEBUG: Dispatching 
2015-04-29 09:36:48,266 Trac[web_ui] DEBUG: LoginModule._remote_user: 
Authentication attempted for 'admin'
2015-04-29 09:36:48,269 Trac[session] DEBUG: Retrieving session for ID 
'd8350ff6f918db420e1197ec'
2015-04-29 09:36:48,271 Trac[web_ui] DEBUG: LoginModule.process_request: 
'user_locked' = False
2015-04-29 09:36:48,272 Trac[chrome] DEBUG: Prepare chrome data for request

I'm not sure where to go from here in debugging this.  Any help would be 
appreciated.


-- 
You received this message because you are subscribed to the Google Groups "Trac 
Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to trac-users+unsubscr...@googlegroups.com.
To post to this group, send email to trac-users@googlegroups.com.
Visit this group at http://groups.google.com/group/trac-users.
For more options, visit https://groups.google.com/d/optout.