Re: [SOGo] SOGo MySQL Authentication
Hello Odhiambo Washington
Am 2013-06-26 14:46, schrieb Odhiambo Washington:
I am almost bald trying to get authentication using mysql working. The
difficult part is how to tell what SOGo is exactly doing (debugging) so
that I can fix it.
I have in my sogo.conf:
/* MySQL Authentication */
SOGoUserSources = (
{
type = sql;
canAuthenticate = YES;
displayName = Staff Members;
id = users;
isAddressBook = YES;
userPasswordAlgorithm = md5;
viewURL
=mysql://exim4u:XXX@127.0.0.1:3306/exim4u/sogo_auth_view
http://exim4u:XXX@127.0.0.1:3306/exim4u/sogo_auth_view;
}
);
And I created a view on my DB as follows:
CREATE VIEW sogo_auth_view AS SELECT user_id AS sogo_id, username AS
c_uid, realname AS c_name, clear AS c_password, username AS c_cn, use
rname AS mail, realname AS displayName FROM users WHERE enabled='1';
Which gives me:
mysql select * from exim4u.sogo_auth_view where c_name like '%wash%';
+-+-+-++-+-+-+
| sogo_id | c_uid | c_name | c_password |
c_cn| mail| displayName |
+-+-+-++-+-+-+
| 3 | w...@kictanet.or.ke mailto:w...@kictanet.or.ke | Odhiambo
WASHINGTON | secret1| w...@kictanet.or.ke
mailto:w...@kictanet.or.ke | w...@kictanet.or.ke
mailto:w...@kictanet.or.ke | Odhiambo WASHINGTON |
+-+-+-++-+-+-+
I am trying to login using username=w...@kictanet.or.ke
mailto:w...@kictanet.or.ke and password=whateveritis but I always get
failure... wrong username or password.
..
Is there something I am doing wrong?? Is it wrong password format?
In your SOGo configuration you say userPasswordAlgorithm = md5, but it
seems you have plain text passwords in your Mysql view.
Is that correct?
Then just use md5 hashed passwords in your view and it should work.
My assumption is that SOGo is supposed to be sending these login details
to my IMAP (Dovecot), right? Looking at my dovecot logs, I see no
connection attempts...
It will do that, but it will check your username and password against
the mysql view first.
As that isn't working, it will not try to connect to the IMAP server at all.
Kind regards,
Christian Mack
--
Christian Mack
Gruppe Informationsdienste
Rechenzentrum Universität Konstanz
--
users@sogo.nu
https://inverse.ca/sogo/lists
Re: [SOGo] SOGo MySQL Authentication
Hi Christian,
I managed to wade past the authentication stage, actually. I used an MD5
encrypted password in that field and changed the userPasswordAlgorithm =
crypt, which worked for me after a suggestion from another member of this
list.
Thanks for the follow up.
Do you by any chance use Resource Configurations. I am at that stage of the
SOGo learning curve. I posted a question today. Hopefully you have ideas on
that too:)
On 3 July 2013 15:20, Christian Mack christian.m...@uni-konstanz.de wrote:
Hello Odhiambo Washington
Am 2013-06-26 14:46, schrieb Odhiambo Washington:
I am almost bald trying to get authentication using mysql working. The
difficult part is how to tell what SOGo is exactly doing (debugging) so
that I can fix it.
I have in my sogo.conf:
/* MySQL Authentication */
SOGoUserSources = (
{
type = sql;
canAuthenticate = YES;
displayName = Staff Members;
id = users;
isAddressBook = YES;
userPasswordAlgorithm = md5;
viewURL
=mysql://exim4u:XXX@127.0.0.1:3306/exim4u/sogo_auth_view
http://exim4u:XXX@127.0.0.1:3306/exim4u/sogo_auth_view;
}
);
And I created a view on my DB as follows:
CREATE VIEW sogo_auth_view AS SELECT user_id AS sogo_id, username AS
c_uid, realname AS c_name, clear AS c_password, username AS c_cn, use
rname AS mail, realname AS displayName FROM users WHERE enabled='1';
Which gives me:
mysql select * from exim4u.sogo_auth_view where c_name like '%wash%';
+-+-+-++-+-+-+
| sogo_id | c_uid | c_name | c_password |
c_cn| mail| displayName |
+-+-+-++-+-+-+
| 3 | w...@kictanet.or.ke mailto:w...@kictanet.or.ke | Odhiambo
WASHINGTON | secret1| w...@kictanet.or.ke
mailto:w...@kictanet.or.ke | w...@kictanet.or.ke
mailto:w...@kictanet.or.ke | Odhiambo WASHINGTON |
+-+-+-++-+-+-+
I am trying to login using username=w...@kictanet.or.ke
mailto:w...@kictanet.or.ke and password=whateveritis but I always get
failure... wrong username or password.
..
Is there something I am doing wrong?? Is it wrong password format?
In your SOGo configuration you say userPasswordAlgorithm = md5, but it
seems you have plain text passwords in your Mysql view.
Is that correct?
Then just use md5 hashed passwords in your view and it should work.
My assumption is that SOGo is supposed to be sending these login details
to my IMAP (Dovecot), right? Looking at my dovecot logs, I see no
connection attempts...
It will do that, but it will check your username and password against
the mysql view first.
As that isn't working, it will not try to connect to the IMAP server at
all.
Kind regards,
Christian Mack
--
Christian Mack
Gruppe Informationsdienste
Rechenzentrum Universität Konstanz
--
users@sogo.nu
https://inverse.ca/sogo/lists
--
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254733744121/+254722743223
I can't hear you -- I'm using the scrambler.
--
users@sogo.nu
https://inverse.ca/sogo/lists
[SOGo] SOGo MySQL Authentication
Helloz,
I am almost bald trying to get authentication using mysql working. The
difficult part is how to tell what SOGo is exactly doing (debugging) so
that I can fix it.
I have in my sogo.conf:
/* MySQL Authentication */
SOGoUserSources = (
{
type = sql;
canAuthenticate = YES;
displayName = Staff Members;
id = users;
isAddressBook = YES;
userPasswordAlgorithm = md5;
viewURL =mysql://
exim4u:XXX@127.0.0.1:3306/exim4u/sogo_auth_view;
}
);
And I created a view on my DB as follows:
CREATE VIEW sogo_auth_view AS SELECT user_id AS sogo_id, username AS c_uid,
realname AS c_name, clear AS c_password, username AS c_cn, use
rname AS mail, realname AS displayName FROM users WHERE enabled='1';
Which gives me:
mysql select * from exim4u.sogo_auth_view where c_name like '%wash%';
+-+-+-++-+-+-+
| sogo_id | c_uid | c_name | c_password | c_cn
| mail| displayName |
+-+-+-++-+-+-+
| 3 | w...@kictanet.or.ke | Odhiambo WASHINGTON | secret1|
w...@kictanet.or.ke | w...@kictanet.or.ke | Odhiambo WASHINGTON |
+-+-+-++-+-+-+
I am trying to login using username=w...@kictanet.or.ke and
password=whateveritis but I always get failure... wrong username or
password.
On sogo.log, I see no clue whatsoever:
root@gw:/usr/local/etc/sogo # tail -f /var/log/sogo/sogo.log
Jun 26 14:51:24 sogod [94532]: 0x0x23bdedc4[WOWatchDog] child spawned
with pid 94533
Jun 26 15:40:53 sogod [5681]: version 2.0.6a (build
r...@gw.kictanet.or.ke201306252307) -- starting
Jun 26 15:40:53 sogod [5681]: vmem size check enabled: shutting down app
when vmem 384 MB
Jun 26 15:40:53 sogod [5681]: 0x0x23c01ee4[SOGoProductLoader] SOGo
products loaded from '/usr/local/GNUstep/Local/Library/SOGo':
Jun 26 15:40:53 sogod [5681]: 0x0x23c01ee4[SOGoProductLoader]
Appointments.SOGo, Contacts.SOGo, Mailer.SOGo, CommonUI.SOGo,
ContactsUI.SOGo,
MailerUI.SOGo, MailPartViewers.SOGo, MainUI.SOGo, PreferencesUI.SOGo,
SchedulerUI.SOGo, AdministrationUI.SOGo
Jun 26 15:40:53 sogod [5681]: 0x0x23bdedc4[WOWatchDog] listening on
*:2
Jun 26 15:40:53 sogod [5681]: 0x0x23bdedc4[WOWatchDog] watchdog process
pid: 5681
Jun 26 15:40:53 sogod [5681]: 0x0x21464020[WOWatchDogChild] watchdog
request timeout set to 10 minutes
Jun 26 15:40:53 sogod [5681]: 0x0x23bdedc4[WOWatchDog] preparing 1
children
Jun 26 15:40:53 sogod [5681]: 0x0x23bdedc4[WOWatchDog] child spawned with
pid 5682
2013-06-26 15:41:06.186 sogod[5682] Note: Using UTF-8 as URL encoding in
NGExtensions.
Jun 26 15:41:06 sogod [5682]: |SOGo| starting method 'POST' on uri
'/SOGo/connect'
Jun 26 15:41:06 sogod [5682]: 0x0x23c58e54[SOGoCache] Cache cleanup
interval set every 300.00 seconds
Jun 26 15:41:06 sogod [5682]: 0x0x23c58e54[SOGoCache] Using host(s)
'localhost' as server(s)
Jun 26 15:41:10 sogod [5682]: |SOGo| lookup name: SOGo
2013-06-26 15:41:10.189 sogod[5682] Note(SoObject): SoDebugKeyLookup is
enabled!
2013-06-26 15:41:10.189 sogod[5682] Note(SoObject): SoDebugBaseURL is
enabled!
2013-06-26 15:41:10.190 sogod[5682] Note(SoObject): relative base URLs are
enabled.
Jun 26 15:41:10 sogod [5682]: |SOGo| did not find key 'SOGo' in SoClass:
0x0x23c07504[SoObjCClass]: super=0x0x23c07184 objc=SOGo slots=connect
,GET,view,casProxy,index,saml2-signon-post,changePassword,saml2-metadata,loading,toolbar
Jun 26 15:41:10 sogod [5682]: |SOGo| looked up value: (null)
Jun 26 15:41:10 sogod [5682]: |SOGo| lookup in root object: (null)
Jun 26 15:41:10 sogod [5682]: |SOGo| GOT: (null)
Jun 26 15:41:10 sogod [5682]: |SOGo| matched appname: SOGo
Jun 26 15:41:10 sogod [5682]: |SOGo| = rewrote value:
SOGo[0x0x23a6aba4]: name=SOGo
Jun 26 15:41:10 sogod [5682]: |SOGo| lookup name: connect
2013-06-26 15:41:10.194 sogod[5682] ERROR(-[NGBundleManager
bundleWithPath:]): could not create bundle for path:
'/usr/local/GNUstep/System/Libra
ry/Libraries/gnustep-base/Versions/1.24/Resources/SSL.bundle'
2013-06-26 15:41:10.202 sogod[5682] WOCompoundElement: pool embedding is on.
2013-06-26 15:41:10.203 sogod[5682] WOCompoundElement: id logging is on.
Jun 26 15:41:10 sogod [5682]: |SOGo| looked up value:
0x0x23c968c4[SoPageInvocation]: class=SOGoRootPage action=connect bound
instantiated pro
duct=0x0x23c67dc4[SoProduct]: loaded code-loaded
bundle=/usr/local/GNUstep/Local/Library/SOGo/MainUI.SOGo #classes=8
#categories=4 rm=0x0x23c770
a4
Jun 26 15:41:10 sogod [5682]: |SOGo| GOT:
0x0x23c968c4[SoPageInvocation]: class=SOGoRootPage action=connect bound
instantiated product=0x0x23
c67dc4[SoProduct]: loaded code-loaded
