Re: [SOGo] survey question for Debian users
В Срд, 24/10/2012 в 07:58 -0400, Wolfgang Sourdeau пишет: Hi, We are considering dropping support for Lenny, as it is not even supported by Debian anymore. Who among you would be affected if we stopped plublishing SOGo packages for that distribution? We have some of Lenny installations with sogo, but we don't have the need to update often. If there is a need to update we usually updating to the current stable. So, not a problem if there is still some old version available. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Integrating jabber chat with SOGo
В Чтв, 19/04/2012 в 10:04 -0300, Federico Alberto Sayd пишет: Hello I am trying to integrate a jabber chat client into SOGo[1]. Both jabber server (openfire) and SOGo uses the same authentication backend (ldap). I load the chat client that is a javascript aplication modifying the UIxPageFrame.wox template in the sogo user home and including the javascript My question is if is there any method to retrieve user and password from session and then pass them to javascript to authenticate the user in the chat server? Thanks for any answer Passing username/password server-side to client-side (sogo-js) is a bad idea because of the security of js. We've recently implemented js chat client in portal, we used this technic: 1. Loging to portal, retrieve OTP 2. Use this OTP to login to XMPP 3. Rewrite auth plugin to check OTP first and in case of failure also check pass -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Integrating jabber chat with SOGo
В Чтв, 19/04/2012 в 12:50 -0300, Federico Alberto Sayd пишет: On 19/04/12 12:19, Покотиленко Константин Александрович wrote: В Чтв, 19/04/2012 в 10:04 -0300, Federico Alberto Sayd пишет: Hello I am trying to integrate a jabber chat client into SOGo[1]. Both jabber server (openfire) and SOGo uses the same authentication backend (ldap). I load the chat client that is a javascript aplication modifying the UIxPageFrame.wox template in the sogo user home and including the javascript My question is if is there any method to retrieve user and password from session and then pass them to javascript to authenticate the user in the chat server? Thanks for any answer Passing username/password server-side to client-side (sogo-js) is a bad idea because of the security of js. I know but the jabber clients that I found are implemented in client side javascript That's why I suggest OTP as secure solution. You use portal's security to login and generate OTP and since it's one-time you can use it in JS securely. Once you are logged to XMPP - OTP is not longer valid. If you'll need to reconnect to XMPP you'll need to request OTP again. We've recently implemented js chat client in portal, we used this technic: 1. Loging to portal, retrieve OTP By portal do you mean SOGo? I do not know nothing about SOGo implementing OTP. The portal I was talking about is Drupal. Don't know how difficult this will be to implement in SOGo. What chat client do you use in your application? Client side is strophe.js 2. Use this OTP to login to XMPP 3. Rewrite auth plugin to check OTP first and in case of failure also check pass Thanks -- users@sogo.nu https://inverse.ca/sogo/lists -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Integrating jabber chat with SOGo
В Чтв, 19/04/2012 в 18:15 +0200, Martin Rabl пишет: Hi, Am 19. April 2012 17:50 CEST, Federico Alberto Sayd fs...@uncu.edu.ar schrieb: Passing username/password server-side to client-side (sogo-js) is a bad idea because of the security of js. I know but the jabber clients that I found are implemented in client side javascript You want to implement a type of Single-Sign-On for the jabber client. Compare the architecture of SOGo with your clients - all stuff in SOGo will be done at the server side, which is by definition a secure site. The user (and its client aka browser ) never will see a password again after login - thats makes it a bit secure. For your problem I would suggest searching a serverside driven solution with a lightweight browser client. Then look if this solution accepts login via htaccess-logon-dialogs AND switch SOGo to accept this one instead using the form-login (there is a documentet switch in the configuration, please search for it). Give it a try if this could be a way. If not - maybe you have a look for CAS (when your Jabber-Client speaks CAS). The main reason for client-side (JS) xmpp client - it's the only lightweight way to make chat instant. My personal opinion: stop try to integrate your jabber with SOGo. I think it is better to use a platform client for Win, Unix etc., which authenticates against the source SOGo uses. Platform client is better if you are using it everyday, this is not the case for majority of nowadays' visitors. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Webservers other than Apache
В Птн, 30/03/2012 в 09:59 +0100, Ed W пишет: On 28/03/2012 14:44, Lukas Pirl wrote: Has anyone ever tried to setup SOGo with a web server other than Apache? Especially I am interested in running SOGo with the Cherokee [1] web server. I found a post that said that SOGo relies on mod_ngobjweb [2]. Is it part of the project philosophy to get SOGo portable for web servers (and other required technology)? [1] http://www.cherokee-project.com/ [2] http://mail.opengroupware.org/pipermail/sogo/2007-November/000254.html I'm not sure if your message is a spam? I'm sure cherokee is great though Just as a datapoint, I use nginx on nearly all my servers. The install size is literally a couple of hundred KB, memory usage is lower than apache, configuration is sane (to me at least). I'm even using it on an embedded solution that I'm working on right now - install really is quite tiny... I'm not sure what mod_ngobjweb is, but I can confirm that sogo is running here on nginx. I also run SOGo on nginx. Not as out of the box as on apache, but not difficult. Performance and especially memory footprint is not comparable. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo EXCEPTION on login
В Птн, 16/03/2012 в 17:50 +0200, Покотиленко Константин Александрович пишет: В Птн, 16/03/2012 в 16:23 +0200, Покотиленко Константин Александрович пишет: В Птн, 16/03/2012 в 13:10 +0200, Покотиленко Константин Александрович пишет: В Чтв, 15/03/2012 в 13:34 -0400, Ludovic Marcotte пишет: On 15/03/12 11:57, Покотиленко Константин Александрович wrote: I've googled and found one post with exactly same error, the author said he solved the problem by fixing LDAP configuration and did not provided any details. Show your complete SOGo configuration. Here is .GNUstepDefaults: I've found my problem. keyMailFieldNames/key stringmail/string First, MailFieldNames should be array and since it defaults to mail I just removed this block. Second, It was not working until I explicitly specified type=ldap for SOGoUserSources. It's not clear in the docs that it should be specified, docs doesn't mention type in defaults write sogod SOGoUserSources ... command, but mentions it in config samples. And third, I have to TRUNCATE all SOGo tables in MySQL to get rid of SOGo EXCEPTION. Actually, problem not solved. After some time being logged in I get internal server error if I'm logged in and An unhandled error occurred. if I try to login with this log messages: = 2012-03-16 17:22:31.127 sogod[3445] WARNING(-[NSNull(misc) count]): called NSNull -count (returns 0) !!! 192.168.*.* - - [16/Mar/2012:17:22:31 GMT] GET /SOGo/so/ HTTP/1.1 200 5126/0 0.025 14845 65% 12K 2012-03-16 17:36:31.361 sogod[3445] WARNING(-[NSNull(misc) count]): called NSNull -count (returns 0) !!! 192.168.*.* - - [16/Mar/2012:17:36:31 GMT] GET /SOGo/so/ HTTP/1.1 200 5126/0 0.031 14845 65% 0 Mar 16 17:37:46 sogod [3445]: SOGoRootPage successful login for user 'casper' - expire = -1 grace = -1 EXCEPTION: NSException: 0x2392278 NAME:NSInvalidArgumentException REASON:NSDataMalloc(instance) does not recognize stringByReplacingString:withString: INFO:(null) Mar 16 17:37:46 sogod [27289]: 0x0x1f2b208[WOWatchDogChild] child 3445 exited Mar 16 17:37:46 sogod [27289]: 0x0x1f2b208[WOWatchDogChild] (terminated due to signal 6) Mar 16 17:37:46 sogod [27289]: 0x0x1d66968[WOWatchDog] child spawned with pid 8424 = If I remove profile of my user DELETE FROM `sogo`.`sogo_user_profile` WHERE `sogo_user_profile`.`c_uid` = 'casper' I'm able to login and use SOGo for some time and then it happens again. Found similar bug report and a solution. Changed mysql database and it's table's collation from utf8_bin to utf8_unicode_ci. And now it's working without exceptions. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo EXCEPTION on login
В Чтв, 15/03/2012 в 13:34 -0400, Ludovic Marcotte пишет: On 15/03/12 11:57, Покотиленко Константин Александрович wrote: I've googled and found one post with exactly same error, the author said he solved the problem by fixing LDAP configuration and did not provided any details. Show your complete SOGo configuration. Here is .GNUstepDefaults: ?xml version=1.0 encoding=UTF-8? !DOCTYPE plist PUBLIC -//GNUstep//DTD plist 0.9//EN http://www.gnustep.org/plist-0_9.xml; plist version=0.9 dict keyNSGlobalDomain/key dict /dict keysogod/key dict keyOCSFolderInfoURL/key stringmysql://sogo:sogo:3306/sogo/sogo_folder_info/string keyOCSSessionsFolderURL/key stringmysql://sogo:sogo@localhost:3306/sogo/sogo_sessions_folder/string keyOGoIMAPServer/key stringimap.mydomain.com/string keyOGoTrashFolderName/key stringTrash/string keySOGoACLsSendEMailNotifications/key stringYES/string keySOGoAppointmentSendEMailNotifications/key stringYES/string keySOGoDraftsFolderName/key stringDraft/string keySOGoFoldersSendEMailNotifications/key stringYES/string keySOGoForceIMAPLoginWithEmail/key stringYES/string keySOGoLanguage/key stringRussian/string keySOGoMailDomain/key stringmydomain.com/string keySOGoMailingMechanism/key stringsmtp/string keySOGoProfileURL/key stringmysql://sogo:sogo@localhost:3306/sogo/sogo_user_profile/string keySOGoSMTPServer/key stringsmtp.mydomain.com/string keySOGoSentFolderName/key stringSent/string keySOGoSuperUsernames/key array stringcasper/string /array keySOGoTimeZone/key stringEurope/Kyiv/string keySOGoUserSources/key array dict keyCNFieldName/key stringcn/string keyIMAPLoginFieldName/key stringmail/string keyMailFieldNames/key stringmail/string keyUIDFieldName/key stringsAMAccountName/string keybaseDN/key stringou=usersamp;admins,dc=office,dc=mydomain,dc=com/string keybindAsCurrentUser/key stringYES/string keybindDN/key stringcn=authman,ou=usersamp;admins,dc=office,dc=mydomain,dc=com/string keybindFields/key array stringsAMAccountName/string /array keybindPassword/key stringldappass/string keycanAuthenticate/key stringYES/string keydisplayName/key stringActive Directory/string keyhostname/key string192.168.*.*/string keyid/key stringAD/string keyisAddressBook/key stringYES/string keyport/key string3268/string /dict /array /dict /dict /plist -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo EXCEPTION on login
В Птн, 16/03/2012 в 13:10 +0200, Покотиленко Константин Александрович пишет: В Чтв, 15/03/2012 в 13:34 -0400, Ludovic Marcotte пишет: On 15/03/12 11:57, Покотиленко Константин Александрович wrote: I've googled and found one post with exactly same error, the author said he solved the problem by fixing LDAP configuration and did not provided any details. Show your complete SOGo configuration. Here is .GNUstepDefaults: I've found my problem. keyMailFieldNames/key stringmail/string First, MailFieldNames should be array and since it defaults to mail I just removed this block. Second, It was not working until I explicitly specified type=ldap for SOGoUserSources. It's not clear in the docs that it should be specified, docs doesn't mention type in defaults write sogod SOGoUserSources ... command, but mentions it in config samples. And third, I have to TRUNCATE all SOGo tables in MySQL to get rid of SOGo EXCEPTION. Well, each time I install SOGo I'm getting certain that SOGo itself is a great software, BUT Gnustep configuration is a nightmare b/c it's hard to debug. Thanks. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] SOGo EXCEPTION on login
В Птн, 16/03/2012 в 16:23 +0200, Покотиленко Константин Александрович пишет: В Птн, 16/03/2012 в 13:10 +0200, Покотиленко Константин Александрович пишет: В Чтв, 15/03/2012 в 13:34 -0400, Ludovic Marcotte пишет: On 15/03/12 11:57, Покотиленко Константин Александрович wrote: I've googled and found one post with exactly same error, the author said he solved the problem by fixing LDAP configuration and did not provided any details. Show your complete SOGo configuration. Here is .GNUstepDefaults: I've found my problem. keyMailFieldNames/key stringmail/string First, MailFieldNames should be array and since it defaults to mail I just removed this block. Second, It was not working until I explicitly specified type=ldap for SOGoUserSources. It's not clear in the docs that it should be specified, docs doesn't mention type in defaults write sogod SOGoUserSources ... command, but mentions it in config samples. And third, I have to TRUNCATE all SOGo tables in MySQL to get rid of SOGo EXCEPTION. Actually, problem not solved. After some time being logged in I get internal server error if I'm logged in and An unhandled error occurred. if I try to login with this log messages: = 2012-03-16 17:22:31.127 sogod[3445] WARNING(-[NSNull(misc) count]): called NSNull -count (returns 0) !!! 192.168.*.* - - [16/Mar/2012:17:22:31 GMT] GET /SOGo/so/ HTTP/1.1 200 5126/0 0.025 14845 65% 12K 2012-03-16 17:36:31.361 sogod[3445] WARNING(-[NSNull(misc) count]): called NSNull -count (returns 0) !!! 192.168.*.* - - [16/Mar/2012:17:36:31 GMT] GET /SOGo/so/ HTTP/1.1 200 5126/0 0.031 14845 65% 0 Mar 16 17:37:46 sogod [3445]: SOGoRootPage successful login for user 'casper' - expire = -1 grace = -1 EXCEPTION: NSException: 0x2392278 NAME:NSInvalidArgumentException REASON:NSDataMalloc(instance) does not recognize stringByReplacingString:withString: INFO:(null) Mar 16 17:37:46 sogod [27289]: 0x0x1f2b208[WOWatchDogChild] child 3445 exited Mar 16 17:37:46 sogod [27289]: 0x0x1f2b208[WOWatchDogChild] (terminated due to signal 6) Mar 16 17:37:46 sogod [27289]: 0x0x1d66968[WOWatchDog] child spawned with pid 8424 = If I remove profile of my user DELETE FROM `sogo`.`sogo_user_profile` WHERE `sogo_user_profile`.`c_uid` = 'casper' I'm able to login and use SOGo for some time and then it happens again. How could I further debug on this? -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] SOGo EXCEPTION on login
I've just installed SOGo 1.3.12c from yum repository for RHEL6. Auth is set to AD LDAP, database is mysql. When I try to login I get An unhandled error occurred. and this is in the sogo.log: 2012-03-15 17:39:09.140 sogod[19754] WARNING(-[NSNull(misc) count]): called NSNull -count (returns 0) !!! 192.168.*.* - - [15/Mar/2012:17:39:09 GMT] GET /SOGo/ HTTP/1.1 200 5125/0 0.094 14842 65% 4M Mar 15 17:39:13 sogod [19754]: SOGoRootPage successful login for user 'casper' - expire = -1 grace = -1 EXCEPTION: NSException: 0x2b0b5d8 NAME:NSInvalidArgumentException REASON:GSCInlineString(instance) does not recognize stringsWithFormat: INFO:(null) Mar 15 17:39:13 sogod [19733]: 0x0x26daf08[WOWatchDogChild] child 19754 exited Mar 15 17:39:13 sogod [19733]: 0x0x26daf08[WOWatchDogChild] (terminated due to signal 6) Mar 15 17:39:13 sogod [19733]: 0x0x2522988[WOWatchDog] child spawned with pid 20157 So it says successful login for user 'casper' and drop an exception just after. I've googled and found one post with exactly same error, the author said he solved the problem by fixing LDAP configuration and did not provided any details. My baseDN and bindDN contain an amp sing (...ou=usersamp;admins,dc=...), I wonder whether this is my problem. Also, this SOGo version depend on libmemcached.so.7 which is available from sogo-rhel6 repository, but rhel6 comes with libmemcached.so.2 and php memcached extension requires libmemcached.so.2, so I was not able to update. I just made symlink from libmemcached.so.2 to libmemcached.so.7 and now wonder if this would cause problems. -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] SOGo EXCEPTION on login
I've just installed SOGo 1.3.12c from yum repository for RHEL6. Auth is set to AD LDAP, database is mysql. When I try to login I get An unhandled error occurred. and this is in the sogo.log: 2012-03-15 17:39:09.140 sogod[19754] WARNING(-[NSNull(misc) count]): called NSNull -count (returns 0) !!! 192.168.*.* - - [15/Mar/2012:17:39:09 GMT] GET /SOGo/ HTTP/1.1 200 5125/0 0.094 14842 65% 4M Mar 15 17:39:13 sogod [19754]: SOGoRootPage successful login for user 'casper' - expire = -1 grace = -1 EXCEPTION: NSException: 0x2b0b5d8 NAME:NSInvalidArgumentException REASON:GSCInlineString(instance) does not recognize stringsWithFormat: INFO:(null) Mar 15 17:39:13 sogod [19733]: 0x0x26daf08[WOWatchDogChild] child 19754 exited Mar 15 17:39:13 sogod [19733]: 0x0x26daf08[WOWatchDogChild] (terminated due to signal 6) Mar 15 17:39:13 sogod [19733]: 0x0x2522988[WOWatchDog] child spawned with pid 20157 So it says successful login for user 'casper' and drop an exception just after. I've googled and found one post with exactly same error, the author said he solved the problem by fixing LDAP configuration and did not provided any details. My baseDN and bindDN contain an amp sing (...ou=usersadmins,dc=...), I wonder whether this is my problem. Also, this SOGo version depend on libmemcached.so.7 which is available from sogo-rhel6 repository, but rhel6 comes with libmemcached.so.2 and php memcached extension requires libmemcached.so.2, so I was not able to update. I just made symlink from libmemcached.so.2 to libmemcached.so.7 and now wonder if this would cause problems. -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Portal integration
В Пнд, 16/01/2012 в 21:47 +0100, Fabrice Durand пишет: Hi, to integrate SOGo to drupal , the first thing that comes to my mind is to use an iframe in drupal. To use the portal auth, you should have to use CAS (drupal and SOGo are compatible), but i never try. The second possibility is to use something like Vulture websso: If drupal do authentication against the same ldap directory than sogo, vulture is that you need. I'll not explain exactly how vulture work (there is a mailling list for that), but vulture act as an authentication portail that push identification on Drupal and on SOGo. So you just need to authenticate one time and vulture do the SSO. Thanks for your ideas and pointers. It seems integration quite possible with acceptable effort. I'll dig in soon. Le 16 janvier 2012 19:35, Покотиленко Константин Александрович cas...@meteor.dp.ua a écrit : В Пнд, 16/01/2012 в 19:19 +0100, Georg Bretschneider пишет: Hi, could you specify integrate? Make it: - look like part of portal. Make it be a page of a portal instead being standalone web-application - use portal auth Am 16.01.2012 15:17, schrieb Покотиленко Константин Александрович: Hi, Does anybody tried to integrate Sogo into portals like Drupal? I'm going to investigate this soon, so if somebody have experience please share. In general how difficult this might be? -- users@sogo.nu https://inverse.ca/sogo/lists -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] Portal integration
Hi, Does anybody tried to integrate Sogo into portals like Drupal? I'm going to investigate this soon, so if somebody have experience please share. In general how difficult this might be? -- users@sogo.nu https://inverse.ca/sogo/lists
Re: [SOGo] Portal integration
В Пнд, 16/01/2012 в 19:19 +0100, Georg Bretschneider пишет: Hi, could you specify integrate? Make it: - look like part of portal. Make it be a page of a portal instead being standalone web-application - use portal auth Am 16.01.2012 15:17, schrieb Покотиленко Константин Александрович: Hi, Does anybody tried to integrate Sogo into portals like Drupal? I'm going to investigate this soon, so if somebody have experience please share. In general how difficult this might be? -- users@sogo.nu https://inverse.ca/sogo/lists