[SOGo] BTS activities for Friday, November 18 2016
Title: BTS activities for Friday, November 18 2016 BTS Activities Home page: http://www.sogo.nu/bugs Project: SOGo For the period covering: Friday, November 18 2016 idlast updatestatus (resolution)categorysummary 1530 2016-11-18 12:38:32 updated (open) Backend Mail automatically disabling vacation messages without cron job and master user 3907 2016-11-18 07:03:54 updated (open) Web Mail Sieve server Authentication failed 1949 2016-11-18 12:08:41 resolved (duplicate) Backend General Better Sieve management 3899 2016-11-18 06:52:41 resolved (fixed) Web General SQL authentication 1529 2016-11-18 12:08:47 resolved (duplicate) Web Preferences sieve: auto-activation of vacation message -- users@sogo.nuhttps://inverse.ca/sogo/lists
Re: [SOGo] domain seperation using ldap
> On Nov 18, 2016, at 5:54 PM, Jeroen Beerstra (jer...@beerstra.org) >wrote: > > So the question remains and it would be really helpful if I could setup > LDAP in a way that allows domain separation without needing to add a > section to the sogo.conf per domain. I believe this can be perfectly solved if SOGo supports place holder in LDAP base dn, bind dn, filter, etc. Related feature request i submitted in bug tracker: https://sogo.nu/bugs/view.php?id=3685 Let me copy the request below: ### Please consider supporting place holders in LDAP base dn, bind dn and filter, so that we can get flexible LDAP support. For example, login as user 'j...@mydomain.com': - %s for full login username (full email address) - %d for domain part in email address (mydomain.com) - %u for username part in email address (john) Then we can get flexible LDAP base dn and bind dn like this: base dn: domainName=%d,o=domains,dc=iredmail,dc=org bind dn: mail=%s,ou=Users,domainName=%d,o=domains,dc=iredmail,dc=org ### With placeholder support, we can easily achieve the “separation”, no extra (logical) code required to be done in SOGo itself. Zhang Huangbin, founder of iRedMail project: http://www.iredmail.org/ Time zone: GMT+8 (China/Beijing). -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] markMessageRead gives HTTP 500 error
Niklaas Baudet von Gersdorff [2016-11-17 21:26 +0100] : > I found the following, which might be of interest: > > BAD Error in IMAP command UID STORE: Invalid uidset (0.001 + 0.107 + 0.106 > secs). > > I assume this is Dovecot's response. But I'm still desperately > looking for the command that was sent by SOGo. I've got some news on this. I used Dovecot's rawlog_dir feature [1] to get a full transcript of IMAP sessions. In the following you can see two log pairs, one for an example when marking the message read fails, and one for an example when marking the message read succeeds. - Log of the commands sent by SOGo [failure]: 1 1479494975.487768 2 capability 2 1479494975.597790 3 ID ("x-originating-ip" "80.128.92.18, 80.128.92.18, 10.1.4.1") 3 1479494975.702911 4 namespace 4 1479494975.805228 5 LIST "" "" 5 1479494975.911216 6 status "INBOX" (UIDVALIDITY) 6 1479494976.015683 7 select "INBOX" 7 1479494976.017657 8 uid fetch 2239792419 (FLAGS ENVELOPE BODYSTRUCTURE RFC822.SIZE RFC822.HEADER) 8 1479494976.237562 9 uid fetch 2239792419 (body.peek[text]) 9 1479494976.454405 10 uid store -2055174877 +FLAGS (\seen) 10 1479494976.560037 11 logout Line 9 is the most interesting one. To me this looks like an integer overflow. - Log of the commands sent back by Dovecot [failure]: 1 1479494975.409990 L OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS BINARY MOVE SPECIAL-USE QUOTA] Logged in 2 1479494975.596099 * CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS BINARY MOVE SPECIAL-USE QUOTA 3 1479494975.596157 2 OK Capability completed (0.000 + 0.109 + 0.108 secs). 4 1479494975.701265 * ID ("name" "Dovecot") 5 1479494975.701289 3 OK ID completed (0.001 + 0.104 + 0.103 secs). 6 1479494975.803571 * NAMESPACE (("" "/")) NIL NIL 7 1479494975.803604 4 OK Namespace completed (0.000 + 0.101 + 0.100 secs). 8 1479494975.909212 * LIST (\Noselect) "/" "" 9 1479494975.909252 5 OK List completed (0.001 + 0.104 + 0.104 secs). 10 1479494975.912913 * STATUS INBOX (UIDVALIDITY 1470121274) 11 1479494975.913070 6 OK Status completed (0.000 + 0.000 + 0.001 secs). 12 1479494976.016096 * FLAGS (\Answered \Flagged \Deleted \Seen \Draft Old) 13 1479494976.016120 * OK [PERMANENTFLAGS (\Answered \Flagged \Deleted \Seen \Draft Old \*)] Flags permitted. 14 1479494976.016131 * 24 EXISTS 15 1479494976.016141 * 0 RECENT 16 1479494976.016151 * OK [UNSEEN 18] First unseen. 17 1479494976.016161 * OK [UIDVALIDITY 1470121274] UIDs valid 18 1479494976.016170 * OK [UIDNEXT 2239792420] Predicted next UID 19 1479494976.016181 * OK [HIGHESTMODSEQ 22849] Highest 20 1479494976.016209 7 OK [READ-WRITE] Select completed (0.000 + 0.000 secs). 21 1479494976.125146 * 24 FETCH (UID 2239792419 FLAGS () RFC822.SIZE 5239 ENVELOPE ("Fri, 18 Nov 2016 18:47:03 +" {109} 22 23 {removed} 24 25 1479494976.128037 ) 26 1479494976.128376 8 OK Fetch completed (0.004 + 0.107 secs). 27 1479494976.344820 * 24 FETCH (UID 2239792419 BODY[TEXT] {975} 28 29 {removed} 30 31 1479494976.344963 ) 32 1479494976.345168 9 OK Fetch completed (0.001 + 0.107 secs). 33 1479494976.556124 10 BAD Error in IMAP command UID STORE: Invalid uidset (0.001 + 0.102 + 0.101 secs). 34 1479494976.560080 * BYE Logging out 35 1479494976.560133 11 OK Logout completed (0.000 + 0.000 secs). Line 33 is the most interesting one. For comparison the following is the log pair when marking the message read succeeds. - Log of the commands sent by SOGo [success]: 1 1479495516.981928 2 capability 2 1479495517.088561 3 ID ("x-originating-ip" "80.128.92.18, 80.128.92.18, 10.1.4.1") 3 1479495517.193587 4 namespace 4 1479495517.299703 5 LIST "" "" 5 1479495517.407754 6 status "INBOX" (UIDVALIDITY) 6 1479495517.510810 7 select "INBOX" 7 1479495517.513942 8 uid fetch 7766 (FLAGS ENVELOPE BODYSTRUCTURE RFC822.SIZE RFC822.HEADER) 8 1479495517.841574 9 uid fetch 7766 (body.peek[1] body.peek[2]) 9 1479495518.163159 10 uid store 7766 +FLAGS (\seen) 10 1479495518.280185 11 logout - Log of the commands sent back by Dovecot [success]: 1 1479495516.903069 L OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES
Re: [SOGo] Exporting a shared calendar
Le 17/11/2016 à 18:57, Francis Lachapelle (flachape...@inverse.ca) a écrit : >> On Nov 17, 2016, at 11:43 AM, dan le bray (d...@univ-lehavre.fr) >>wrote: >> >> Hello, >> using SOGo 3.2.1 there is an "export" entry in the contextual menu of a >> shared calendar but clicking it does nothing. Is there something >> mandatory to be done for this function to work or should this entry be >> hidden for a shared calendar? > > It's actually not supported. I just removed the menu entry. > > > Francis nice, ty -- Daniel Le Bray :: CRI :: Pôle Systèmes et Réseaux daniel.le-b...@univ-lehavre.fr / +33 02 32 74 42 94 Universite Le Havre Normandie 25 rue Philippe Lebon, BP1123, 76063 Le Havre Cedex -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Ical and MOVE
Op 17-11-16 om 15:42 schreef Christian Mack (christian.m...@uni-konstanz.de): > Yes MOVE means moving the event into another calendar. > The question is, in which calendar did it move? > As you can not see it in SOGo, it moved it out of SOGo. > So check the local calendars in Apple Calendar. Thanks for your help, I will let the user check it. With regards, Paul van der Vlis. -- Paul van der Vlis Linux systeembeheer Groningen https://www.vandervlis.nl/ -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] LDAP addressbook
Hi, We try to get our global addressbook working in sogo v3.2.1 and we have some problem in the config file. We try to import a new contect from sogo web interface and we cannot map the cn correctly to import it in the LDAP. here the config SOGoUserSources = ( { id = sambaContacts; modifiers = ( us...@domain.com, us...@domain.com ); displayName = "Contacts"; canAuthenticate = NO; isAddressBook = YES; type = ldap; CNFieldName = cn; IDFieldName = cn; UIDFieldName = cn; objectClasses = contact; hostname = "ldap://myldapserver:389;; baseDN = "ou=Contacts,dc=domain,dc=com"; bindDN = "vm...@domain.com"; bindPassword = password; mapping = { mozillaworkurl = ("wWWHomePage", "mozillaworkurl"); mozillaworkstreet2 = streetAddress; }; } ); With this setup, i can see the new global addressbook and I can retrieve contact. Now the new contact is not working correclty. When save the new contact I get this in wireshark. Frame 48: 213 bytes on wire (1704 bits), 213 bytes captured (1704 bits) Ethernet II, Src: Vmware_c7:0c:d8 (00:0c:29:c7:0c:d8), Dst: Vmware_cd:22:37 (00:0c:29:cd:22:37) Internet Protocol Version 4, Src: 10.0.1.50, Dst: 10.0.1.45 Transmission Control Protocol, Src Port: 39310, Dst Port: 389, Seq: 56, Ack: 15, Len: 147 Lightweight Directory Access Protocol LDAPMessage addRequest(2) "cn=c86-582de600-1-42d8b100,ou=contacts,dc=domain,dc=com" messageID: 2 protocolOp: addRequest (8) addRequest entry: cn=c86-582de600-1-42d8b100,ou=contacts,dc=domain,dc=com attributes: 2 items AttributeList item cn type: cn vals: 1 item AttributeList item objectClass type: objectClass vals: 1 item [Response In: 50] In my LDAP server I see the new user as c86-582de600-1-42d8b100 instead of the Display Name. I don't see the email in the request. Anybody can help me with the config ? Regards Jonathan -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo v3 and Calendars
Hi Christian, > Am 18.11.2016 um 09:36 schrieb Christian Mack: > >> Am 15.11.2016 um 15:11 schrieb "Andreas Blaha" (andr...@blaha.at): >> Hi, >> >> I have upgraded my test server to v3.2.1 and since experience an issue with >> calendars which definitely worked in 2.3.17: >> >> I can create events (even recurring ones) and tasks in the web interface and >> can see them properly, both in web ui and via active sync. If though I >> import a calendar (114 recurring events) I receive the message "114 events >> imported" but cannot see them in the web interface. But they are visible on >> the iPhone synced with ActiveSync, and also via CalDAV. >> >> Is this a known bug that I just could not find in the list? >> > > What have you set as refresh intervall for the importing user? 5 minutes > Did you try to manually reload? yes > Do you see those events after relogin to the webinterface no the appointments are not visible even after a week. same scenario works on 2.3 best regards Andy > > > Kind regards, > Christian Mack > > -- > Christian Mack > Universität Konstanz > Kommunikations-, Informations-, Medienzentrum (KIM) > Abteilung Basisdienste > 78457 Konstanz > +49 7531 88-4416 > -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] domain seperation using ldap
Op 15-11-16 om 15:54 schreef Alessandro Briosi (a...@metalit.com): > Il 15/11/2016 13:56, Jeroen Beerstra (jer...@beerstra.org) ha scritto: >> We also provide e-mail services to selected clients on request and here >> is where the problems begin. At the moment we use Mysql as >> authentication provider for SOGo only and because I don't want >> individual clients to find other clients contact data or possibly more >> we use a config section per domain and a seperate user table in the >> database. This works but is rather hard to maintain. >> >> For this reason and some others I'm looking into LDAP as authentication >> provider. Is it possible to use ldap in a simular way? That is by >> separating domains from each other so users can only find other users in >> their own organization or share with them. >> >> If I simply need to RTFM please let me know :) LDAP is rather >> complicated and my experience with it is limited, I did succeed in >> setting up a test environment with 389 server on CentOS 7 and letting it >> work with SOGo and Dovecot. >> >> PS in the end all of this should work with postfix/dovecot virtual >> users, but I guess that is off-topic and more a postfix/dovecot issue. > > I have a similar installation. > > I though have 1 table with all the users (my management interface > handles it this way), > so I setup 1 view for every "domain/customer" I need to manage. > Simply a select which filters by domain ... > > I started using the mysql only setup and it worked well, though I > thought it would have been nice to have groups which is only supported > by the > LDAP implementation in SOGo. > > So I configured an LDAP service with the mysql backend just to have > groups taken from the database. > > [OT] Nobody uses them :-( so I could have left the mysql backend [/OT] > > anyway then I simply configured the SOGO.conf with the separate domains > and it all works pretty well. > Of course it might become a bit complicated if you often need to > add/remove domains you manage, > but it could be scripted pretty easily IMHO. > > ... > domains = { > firstdomain = { > SOGoMailDomain = firstdomain.com; > SOGoUserSources = ( > { > /*ldap o mysql configuration */ > ... > /* here I even have a different ldap address book which is a mapped > database table of a shared web address book */ > } > ); > }; > seconddomain = { SOGoMailDomain = secondomain.com; > SOGoUserSources = ( > { > ... > } > ); > }; > }; > ... > > > Hope this helps, > Alessandro Hi Alessandro, Thank you for your reply. This is exactly the setup we use, that is multiple mysql usersources for different domains. But this is rather hard to maintain, and new internet domains are added on a regular basis. In fact at the moment I'm kind of holding down the principle of also selling e-mail accounts to clients because of this. So the question remains and it would be really helpful if I could setup LDAP in a way that allows domain separation without needing to add a section to the sogo.conf per domain. As a bonus users could change their e-mail password themselves which would further add to the user expierence and take some load of me :) So is this even possible and of so how does one do this? Pointers would be greatly appreciated also! -- kind regards Jeroen Beerstra signature.asc Description: OpenPGP digital signature
Re: [SOGo] Search via ActiveSync
Hmmm, meanwhile SOGo and nginx stop working when performing a search via ActiveSync whereas searching in web interface is working pretty well. I have endless log entries like: container: /SOGo -- http://127.0.0.1:2/SOGo/Microsoft-Server-ActiveSync?User=u...@example.com=B5SHIQ32FCI8BAHL0U234OA64=iPhone=Search own: /SOGo/u...@example.com Nov 18 09:49:46 sogod [18083]: <0x560ba7c862d0[SOGoMailAccounts]:Mail> baseURL: name=Mail (container=SOGoUserFolder) container: /SOGo/u...@example.come/ own: /SOGo/u...@example.com/Mail Nov 18 09:49:46 sogod [18083]: <0x560ba7cbf320[SOGoMailAccount]:0> baseURL: name=0 (container=SOGoMailAccounts) container: /SOGo/u...@example.com/Mail/ own: /SOGo/u...@example.com/Mail/0 Nov 18 09:49:46 sogod [18083]: <0x560bad43f390[SOGoMailFolder]:folderArchive> baseURL: name=folderArchive (container=SOGoMailAccount) container: /SOGo/u...@example.com/Mail/0/ own: /SOGo/u...@example.com/Mail/0/folderArchive Nov 18 09:49:46 sogod [18083]: <0x560badecce80[SOGoMailObject]:12055> baseURL: name=12055 (container=SOGoMailFolder) container: /SOGo/u...@example.com/Mail/0/folderArchive/ own: /SOGo/u...@example.com/Mail/0/folderArchive/12055 In the end this results in: *28613 connect() failed (111: Connection refused) while connecting to upstream, client: 127.0.0.1, server: host.example.com, request: "GET /SOGo/ HTTP/1.1", upstream: "http://127.0.0.1:2/SOGo/;, host: "host.example.com" This happens every time when searchin via ActiveSync (only tested on iOS). I have absolutely no idea, what's going wrong. The mailbox is really big, but searching via web interface is fast. Thanks, Andreas Am Do, 17. Nov 2016, um 07:07, schrieb Andreas: > Hi, > > I am running a quite large mailbox with nearly 20k mail in the inbox > folder and nearly 30k mails in an archive folder. With solr search is > working very fast in SOGo's web interface. > > When searching via ActiveSync search is rather slow and sometimes causes > the SOGo process and nginx to stop responding (so that they have to be > restarted). > > As far as I know I cannot exclude folders from search (otherwise I would > consider to exclude the Archive folder), but I guessed that ActiveSync > search would be as fast as searching within the web interface. > > Are there any tuning tipps? > > > Thanks, > > Andreas > -- > users@sogo.nu > https://inverse.ca/sogo/lists -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Addressbook access via LDAP?
On 16/11/16 11:17, Peter Lohmann (em...@peter-lohmann.ch) wrote: I was wondering if it would be possible to access the addressbooks via LDAP to hook up a few DECT VOIP phones to the addresses I maintain via CardDAV? I needed to do this with Cisco/Linksys VoIP phones and could not find any solution built into SOGo. Being stuck in a corner I cobbled together a small LDAP server, which I called SOGodap, that connects to the SOGo MySQL database and searches the address book tables (only supports the old multiple tables per user model). It then listens as a very limited LDAP server for queries from the phones. I've been running it as a Linux daemon on customer servers for over a year now without issue. The code is basic and in Google Go language. It lacks any form of security and all over the wire stuff is done in plain text, so only suitable for LAN use at best! My intention was to open-source the code via Github but I am afraid I haven't yet and the documentation is non-existent. Due to an office move next week I am unlikely to have any time to tidy it up for a little while. What is your background? Would compiling a Go project be something that you could consider? -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo v3 and Calendars
Am 15.11.2016 um 15:11 schrieb "Andreas Blaha" (andr...@blaha.at): > Hi, > > I have upgraded my test server to v3.2.1 and since experience an issue with > calendars which definitely worked in 2.3.17: > > I can create events (even recurring ones) and tasks in the web interface and > can see them properly, both in web ui and via active sync. If though I > import a calendar (114 recurring events) I receive the message "114 events > imported" but cannot see them in the web interface. But they are visible on > the iPhone synced with ActiveSync, and also via CalDAV. > > Is this a known bug that I just could not find in the list? > What have you set as refresh intervall for the importing user? Did you try to manually reload? Do you see those events after relogin to the webinterface? Kind regards, Christian Mack -- Christian Mack Universität Konstanz Kommunikations-, Informations-, Medienzentrum (KIM) Abteilung Basisdienste 78457 Konstanz +49 7531 88-4416 smime.p7s Description: S/MIME Cryptographic Signature