[dev] ical webdav problem

Didi Rieder adrieder at sbox.tugraz.at
Sun May 18 15:17:39 UTC 2008 

Quoting Jan Schneider <jan at horde.org>:

> Zitat von Didi Rieder <adrieder at sbox.tugraz.at>:
>
>> Quoting Jan Schneider <jan at horde.org>:
>>
>>> Zitat von Didi Rieder <adrieder at sbox.tugraz.at>:
>>>
>>>> Hi,
>>>>
>>>> our Horde system is set up to authenticate via IMP:
>>>> horde/conf.php:
>>>> $conf['auth']['params']['app'] = 'imp';
>>>> $conf['auth']['driver'] = 'application';
>>>>
>>>> IMP is configured to serve as client for ~15 different mail servers.
>>>> horde/imp/conf.php:
>>>> $conf['server']['server_list'] = 'shown';
>>>>
>>>> This works all fine and all prefs_uid, calendar_id and so on are
>>>> named/stored as "username at realm"
>>>>
>>>> Now, when I try to access my calendar via webdav then I don't get
>>>> an output.
>>>> I used the following url:
>>>> <https://myhordehost/horde/rpc.php/kronolith/username@realm/username@realm.ics>
>>>> and provided "username" as username and the correct password as
>>>> password at the login.
>>>>
>>>> With this the user does even not get authenticated at the right
>>>> mailserver (server_key = 'my_mailserver'). When adding
>>>> "/?server=my_mailserver" to the url above, then the user gets
>>>> authenticated to the corresponding mailserver, that's fine so far,
>>>> but  I still do not get any ical output. From the log_debug I see,
>>>> that the  user value in the sql statements changes between
>>>> "username" and  "username at realm" after the "login success". I
>>>> attached a log file with  all the entries from one attempt.
>>>>
>>>> I'm I doing somthing wrong? Is there a solution for this?
>>>
>>> How do users authenticate, with or without the realm? If without, how
>>> do you attach the realm? How do the logs look like compared to a
>>> "regular" login?
>>>
>>
>> Jan, thanks for answering
>>
>> The users do not have to add the realm to their usernames up on login.
>> I do not attach the realm somehow, I think the realm gets added
>> automatically when using the auth driver application together with imp
>> and the selectable server list.
>
> No, you must have set this up somehow, it doesn't happen magically.
>
>> When a "regular" login is done, then all sql queries are performed as
>> expected, meaning that for each username value the realm is attached -
>> at least in the queries found in the debug log.

Well I set the corresponding realms to each server in IMPs servers.php.
The documentation, says that the realm is then appended for Horde but  
not for the mailservers, so I think that it is or should be done  
"automagically":

  * realm: ONLY USE REALM IF YOU ARE USING IMP FOR HORDE AUTHENTICATION,
  *        AND YOU HAVE MULTIPLE SERVERS AND USERNAMES OVERLAP BETWEEN
  *        THOSE SERVERS. If you only have one server, or have multiple
  *        servers with no username clashes, or have full user at example.com
  *        usernames, you DO NOT need a realm setting. If you set one, an
  *        '@' symbol plus the realm will be appended to the username that
  *        users log in to IMP with to create the username that Horde treats
  *        the user as. So with a realm of 'example.com', the username
  *        'jane' would be treated by Horde (NOT your IMAP/POP server) as
  *        'jane at example.com', and the username 'jane at example.com' would be
  *        treated as 'jane at example.com@example.com' - an occasion where you
  *        probably don't need a realm setting.

...or did I get it wrong?

Didi

-- 
-------------------------
Didi Rieder
adrieder at sbox.tugraz.at
PGPKey ID: 3431D0B0
-------------------------

More information about the dev mailing list