[Tickets #7418] Unable to write filters to prefs with ldap backend (binds without password)

bugs at horde.org bugs at horde.org
Tue Sep 30 19:20:39 UTC 2008 

DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.

Ticket URL: http://bugs.horde.org/ticket/7418
------------------------------------------------------------------------------
  Ticket             | 7418
  Created By         | johannes.nilsson at sorch.se
  Summary            | Unable to write filters to prefs with ldap backend
                     | (binds without password)
  Queue              | Ingo
  Version            | 1.2.1
  Type               | Bug
  State              | Unconfirmed
  Priority           | 1. Low
  Milestone          |
  Patch              |
  Owners             |
------------------------------------------------------------------------------


johannes.nilsson at sorch.se (2008-09-30 15:20) wrote:

  I have horde setup to let imp handle the authentication. Imp talks  
to cyrus which talks to ldap. I have no problems logging in.

I have set up Ingo to use the 'prefs' storage driver. Ingo can read  
and publish filters just fine using the timsieved driver.  
Unfortunately Ingo fails when trying to write the filters to  
prefs/ldap. According to the ldap.log this is because it is trying to  
bind without a password.  It is however possible to change the 'Update  
script...' setting. Settings in other modules are also saved fine.

Versions:

horde-ingo-1.2.1-1mdv2008.1
horde-imp-4.2-2mdv2008.1
horde-3.2.2-1mdv2008.1


Additional information:

$conf['prefs']['maxsize'] = 2147483647;
$conf['prefs']['params']['hostspec'] = 'localhost';
$conf['prefs']['params']['port'] = 389;
$conf['prefs']['params']['version'] = '3';
$conf['prefs']['params']['basedn'] = 'ou=MailAccounts,dc=example,dc=com';
$conf['prefs']['params']['writedn'] = 'user';
$conf['prefs']['params']['uid'] = 'uid';
$conf['prefs']['driver'] = 'ldap';

$conf['auth']['admins'] = array('Administrator', 'johnil');
$conf['auth']['checkip'] = true;
$conf['auth']['checkbrowser'] = true;
$conf['auth']['alternate_login'] = false;
$conf['auth']['redirect_on_logout'] = false;
$conf['auth']['params']['app'] = 'imp';
$conf['auth']['driver'] = 'application';


I added this (at line 241) to  Prefs/ldap.php:

Horde::logMessage("Inside trying to rebind as :".$this->_dn." with:  
".$this->_password, __FILE__, __LINE__, PEAR_LOG_NOTICE);

 From horde.log:

Sep 30 21:01:41 HORDE [notice] [ingo] Inside trying to rebind as  
:mail=johannes.nilsson at example.com,ou=MailAccounts,dc=example,dc=com  
with:  [pid 925 on line 241 of  
"/usr/share/horde/lib/Horde/Prefs/ldap.php"]
Sep 30 21:01:41 HORDE [error] [ingo] Error rebinding for prefs  
writing: [53]: Server is unwilling to perform [pid 925 on line 260 of  
"/usr/share/horde/lib/Horde/Prefs/ldap.php"]
Sep 30 21:01:41 HORDE [error] [ingo] Internal LDAP error.  Details  
have been logged for the administrator. [pid 925 on line 338 of  
"/usr/share/horde/lib/Horde/Prefs/ldap.php"]

And ldap.log:

Sep 30 21:01:41 mettemauge slapd[17113]: conn=18315 fd=54 ACCEPT from  
IP=127.0.0.1:35658 (IP=0.0.0.0:389)
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18315 op=0 SRCH  
base="ou=MailAccounts,dc=example,dc=com" scope=2 deref=0  
filter="(uid=johnil)"
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18315 op=0 SRCH attr=dn
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18315 op=0 SEARCH RESULT  
tag=101 err=0 nentries=1 text=
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18315 op=1 BIND  
dn="mail=johannes.nilsson at example.com,ou=MailAccounts,dc=example,dc=com"  
method=128
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18315 op=1 RESULT tag=97  
err=53 text=unauthenticated bind (DN with no password) disallowed
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18316 fd=55 ACCEPT from  
IP=127.0.0.1:35659 (IP=0.0.0.0:389)
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18316 op=0 SRCH  
base="ou=MailAccounts,dc=example,dc=com" scope=2 deref=0  
filter="(uid=johnil)"
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18316 op=0 SEARCH RESULT  
tag=101 err=0 nentries=1 text=
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18316 op=1 UNBIND
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18316 fd=55 closed
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18317 fd=55 ACCEPT from  
IP=127.0.0.1:35660 (IP=0.0.0.0:389)
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18317 op=0 SRCH  
base="ou=MailAccounts,dc=example,dc=com" scope=2 deref=0  
filter="(uid=johnil)"
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18317 op=0 SEARCH RESULT  
tag=101 err=0 nentries=1 text=
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18317 op=1 UNBIND
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18317 fd=55 closed
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18315 op=2 UNBIND
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18315 fd=54 closed
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18318 fd=54 ACCEPT from  
IP=127.0.0.1:35661 (IP=0.0.0.0:389)
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18318 op=0 SRCH  
base="ou=MailAccounts,dc=example,dc=com" scope=2 deref=0  
filter="(uid=johnil)"
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18318 op=0 SRCH attr=dn
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18318 op=0 SEARCH RESULT  
tag=101 err=0 nentries=1 text=
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18318 op=1 BIND  
dn="mail=johannes.nilsson at example.com,ou=MailAccounts,dc=example,dc=com"  
method=128
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18318 op=1 RESULT tag=97  
err=53 text=unauthenticated bind (DN with no password) disallowed
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18318 op=2 UNBIND
Sep 30 21:01:41 mettemauge slapd[17113]: conn=18318 fd=54 closed

More information about the bugs mailing list