[SOGo] does bypass authentication work plus some othe issues (long post)
Harondel J. Sibble
sogo@opengroupware.org
Thu, 24 Apr 2008 11:35:01 -0700
Okay, several months ago I saw Ludovic Marcotte post on the Funambol list
that SOGo properly deals with the transition of vcal to ical when syncing
from thunberbird/lightning to the Windows Mobile Device via the funambol DS
server. The funambol DS server doesn't and end result is that a appointement
scheduled in lightning shows up on the pda 7 hours off.
This is the procedure to perform a complete install of SOGo. SOGo is a
complete and scalable groupware server which stores everything (except
mails, of course) on a database server.
In your case, you would only need the database part but we don't have yet
the documentation to get it in a working state w/o installing and
configuring SOGo completely.
> And by the fact that you mention I'd just need the proper schema, are
> you refeing to me being able to use my current mysql database setup
> rather than postgres or are you refering to ldap?
I was referring to the database schema. MySQL could easily be supported
but it's not yet the case in the Funambol SOGo Connector (it only supports
PostgreSQL and Oracle).
We could prepare some docs for you on this but not in the next few days...
As with regard to this question from your other mail:
> So using the above, I still use the funambol clients on my devices which
> then talk to the SOGo connector, or the latter replaces the
> funambol/syncml clients?
Here's the big picture:
Device -> SyncML Client -> Funambol -> Funambol SOGo Connector -> SOGo
database
Okay, so installed all the rpm's for CentOS5, created the following defaults
file under sogo user's home directory
cat /home/sogo/GNUstep/Defaults/.GNUstepDefaults
{
NSGlobalDomain = {
};
"sogod-0.9" = {
AgenorProfileURL =
"postgresql://sogo:sogo@127.0.0.1:5432/sogo/sogo_user_profile";
OCSFolderInfoURL =
"postgresql://sogo:sogo@127.0.0.1:5432/sogo/sogo_folder_info";
SOGoAuthentificationMethod = bypass;
SOGoServerTimeZone = America/Vancouver;
WOHttpAllowHost = 10.20.73.5;
};
Now I am at the stage where about half the time I get the sogo login page,
but no matter what I type in for username/password, it just puts me back to
the same login page. I've not created any users other than the sogo one as
all I want to do is be able to sync my calendar and contacts, from Lightning
to Windows Mobile5 pda and have the appointments show up at the correct time.
I don't care about any other features of Sogo at this time.
The other half of the time I get the
500 Internal Server Error
Internal Server Error
The server encountered an internal error or misconfiguration and was unable
to complete your request.
Please contact the server administrator, root@localhost and inform them of
the time the error occurred, and anything you might have done that may have
caused the error.
More information about this error may be available in the server error log.
I've read extensively in the mailling list archives for 2008 and found lots
of comments on these problems.
Couple other issues come up, using the init script I get the following
# /etc/init.d/sogod start
Starting Scalable OpenGroupware.Org (Inverse edition):
defaults read: couldn't read default
/usr/sbin/sogod 1 [ OK ]
defaults read: couldn't read default
/usr/sbin/sogod 2 [ OK ]
defaults read: couldn't read default
/usr/sbin/sogod 3 [ OK ]
If I switch to the sogo user and run the wrapper script I get a similar issue
$ /usr/sbin/sogod
defaults read: couldn't read default
If I don't run the wrapper I get
$ /usr/GNUstep/System/Tools/Admin/sogod-0.9
2008-04-24 11:32:41.602 sogod-0.9[15548] starting SOGo (build root@sogo
200804011156)
2008-04-24 11:32:41.603 sogod-0.9[15548] Note: vmem size check enabled:
shutting down app when vmem > 200 MB
Apr 24 11:32:41 sogod-0.9 [15548]: SNS support disabled.
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]> scanning
SOGo products in: /home/sogo/GNUstep/Library/SOGo-0.9
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]> scanning
SOGo products in: /usr/GNUstep/Local/Library/SOGo-0.9
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]> scanning
SOGo products in: /usr/GNUstep/System/Library/SOGo-0.9
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]>
register SOGo product: Mailer.SOGo
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]>
register SOGo product: Contacts.SOGo
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]>
register SOGo product: CommonUI.SOGo
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]>
register SOGo product: MailPartViewers.SOGo
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]>
register SOGo product: MailerUI.SOGo
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]>
register SOGo product: MainUI.SOGo
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]>
register SOGo product: SchedulerUI.SOGo
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]>
register SOGo product: Appointments.SOGo
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]>
register SOGo product: ContactsUI.SOGo
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]>
register SOGo product: PreferencesUI.SOGo
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]> scanning
SOGo products in: /usr/local/lib/sogod-0.9
Apr 24 11:32:41 sogod-0.9 [15548]: <0x0xa2a4c20[SOGoProductLoader]> scanning
SOGo products in: /usr/lib/sogod-0.9
2008-04-24 11:32:41.710 sogod-0.9[15548] Note: fetching full mail header.
2008-04-24 11:32:41.711 sogod-0.9[15548] Note(SOGoMailObject): using constant
etag for mail parts: '"imap4url_0_9_126"'
2008-04-24 11:32:41.712 sogod-0.9[15548] Note: using SOGo mail spool folder:
/tmp/
2008-04-24 11:32:41.713 sogod-0.9[15548] Note(SOGoMailBodyPart): using
constant etag for mail parts: '"imap4url_0_9_126"'
2008-04-24 11:32:41.714 sogod-0.9[15548] Note: using shared-folders name:
'(nil)'
2008-04-24 11:32:41.714 sogod-0.9[15548] Note: using other-users-folders
name: '(nil)'
2008-04-24 11:32:41.771 sogod-0.9[15548] could not open channel to
sogo@127.0.0.1
Apr 24 11:32:41 sogod-0.9 [15548]: [ERROR] <0x0xa3e28d0[GCSChannelManager]>
could not open channel <0x0xa3fa428[PostgreSQL72Channel]: not-connected> for
URL: postgresql://sogo:sogo@127.0.0.1:5432/sogo/sogo_user_profile
2008-04-24 11:32:41.774 sogod-0.9[15548] could not open channel to
sogo@127.0.0.1
Apr 24 11:32:41 sogod-0.9 [15548]: [ERROR] <0x0xa3e28d0[GCSChannelManager]>
could not open channel <0x0xa4058b0[PostgreSQL72Channel]: not-connected> for
URL: postgresql://sogo:sogo@127.0.0.1:5432/sogo/sogo_folder_info
Apr 24 11:32:41 sogod-0.9 [15548]: |SOGo-0.9| WOHttpAdaptor listening on
address *:20000
SELINUX is completely disabled
The appropriate services are running fine
# ps auxw | grep postgres
postgres 15130 1.4 0.1 20920 2928 ? S 11:20 0:00
/usr/bin/postmaster -p 5432 -D /var/lib/pgsql/data
postgres 15132 0.0 0.0 10700 604 ? S 11:20 0:00 postgres:
logger process
postgres 15134 0.0 0.0 20920 836 ? S 11:20 0:00 postgres:
writer process
postgres 15135 0.0 0.0 11700 600 ? S 11:20 0:00 postgres:
stats buffer process
postgres 15136 0.0 0.0 10936 772 ? S 11:20 0:00 postgres:
stats collector process
root 15144 0.0 0.0 3892 668 pts/0 R+ 11:20 0:00 grep
postgres
# ps auxw | grep httpd
root 14495 0.1 0.6 23024 9344 ? Ss 11:19 0:00
/usr/sbin/httpd
apache 14540 0.0 0.3 23160 4796 ? S 11:19 0:00
/usr/sbin/httpd
apache 14541 0.0 0.3 23160 4796 ? S 11:19 0:00
/usr/sbin/httpd
apache 14542 0.0 0.3 23160 4796 ? S 11:19 0:00
/usr/sbin/httpd
apache 14590 0.0 0.3 23160 4796 ? S 11:19 0:00
/usr/sbin/httpd
apache 14591 0.0 0.3 23160 4796 ? S 11:19 0:00
/usr/sbin/httpd
root 15150 0.0 0.0 3896 644 pts/0 R+ 11:21 0:00 grep httpd
# ps auxw | grep sogod
sogo 14719 0.0 0.4 22264 6336 ? S 11:19 0:00
/usr/GNUstep/System/Tools/Admin/sogod-0.9 -WOPort 20002
sogo 14746 0.0 0.5 23356 7812 pts/0 S 11:19 0:00
/usr/GNUstep/System/Tools/Admin/sogod-0.9 -WOPort 20000
sogo 14844 0.0 0.6 20704 9892 ? S 11:19 0:00
/usr/GNUstep/System/Tools/Admin/sogod-0.9 -WOPort 20000
sogo 14853 0.1 0.7 25556 11444 ? S 11:19 0:00
/usr/GNUstep/System/Tools/Admin/sogod-0.9 -WOPort 20000
sogo 14925 0.0 0.6 20704 9900 ? S 11:19 0:00
/usr/GNUstep/System/Tools/Admin/sogod-0.9 -WOPort 20001
sogo 14932 0.1 0.7 25536 11320 ? S 11:19 0:00
/usr/GNUstep/System/Tools/Admin/sogod-0.9 -WOPort 20001
sogo 15006 0.0 0.6 20700 9888 ? S 11:19 0:00
/usr/GNUstep/System/Tools/Admin/sogod-0.9 -WOPort 20002
sogo 15007 0.1 0.7 25528 11340 ? S 11:19 0:00
/usr/GNUstep/System/Tools/Admin/sogod-0.9 -WOPort 20002
root 15153 0.0 0.0 3892 648 pts/0 R+ 11:21 0:00 grep sogod
Sometimes I am able to do the telnet localhost 20000 GET / [enter][enter]
wothout issue, at least I was able to do that last night, today it
immediately disconnects.
>From the /var/log/sogo/sogod-20000.log
2008-04-24 11:19:39.418 sogod-0.9[14853] starting SOGo (build root@sogo
200804011156)
2008-04-24 11:19:39.419 sogod-0.9[14853] Note: vmem size check enabled:
shutting down app when vmem > 200 MB
Apr 24 11:19:39 sogod-0.9 [14853]: SNS support disabled.
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]> scanning
SOGo products in: /home/sogo/GNUstep/Library/SOGo- 0.9
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]> scanning
SOGo products in: /usr/GNUstep/Local/Library/SOGo- 0.9
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]> scanning
SOGo products in: /usr/GNUstep/System/Library/SOGo -0.9
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]>
register SOGo product: Mailer.SOGo
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]>
register SOGo product: Contacts.SOGo
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]>
register SOGo product: CommonUI.SOGo
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]>
register SOGo product: MailPartViewers.SOGo
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]>
register SOGo product: MailerUI.SOGo
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]>
register SOGo product: MainUI.SOGo
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]>
register SOGo product: SchedulerUI.SOGo
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]>
register SOGo product: Appointments.SOGo
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]>
register SOGo product: ContactsUI.SOGo
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]>
register SOGo product: PreferencesUI.SOGo
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]> scanning
SOGo products in: /usr/local/lib/sogod-0.9
Apr 24 11:19:39 sogod-0.9 [14853]: <0x0x88b3cf8[SOGoProductLoader]> scanning
SOGo products in: /usr/lib/sogod-0.9
2008-04-24 11:19:39.523 sogod-0.9[14853] Note: fetching full mail header.
2008-04-24 11:19:39.523 sogod-0.9[14853] Note(SOGoMailObject): using constant
etag for mail parts: '"imap4url_0_9_126"'
2008-04-24 11:19:39.525 sogod-0.9[14853] Note: using SOGo mail spool folder:
/tmp/
2008-04-24 11:19:39.525 sogod-0.9[14853] Note(SOGoMailBodyPart): using
constant etag for mail parts: '"imap4url_0_9_126"'
2008-04-24 11:19:39.526 sogod-0.9[14853] Note: using shared-folders name:
'(nil)'
2008-04-24 11:19:39.526 sogod-0.9[14853] Note: using other-users-folders
name: '(nil)'
2008-04-24 11:19:39.584 sogod-0.9[14853] could not open channel to
sogo@127.0.0.1
Apr 24 11:19:39 sogod-0.9 [14853]: [ERROR] <0x0x89f19a8[GCSChannelManager]>
could not open channel <0x0x8a09508[PostgreSQL72Cha
nnel]: not-connected> for URL:
postgresql://sogo:sogo@127.0.0.1:5432/sogo/sogo_user_profile
2008-04-24 11:19:39.585 sogod-0.9[14853] could not open channel to
sogo@127.0.0.1
Apr 24 11:19:39 sogod-0.9 [14853]: [ERROR] <0x0x89f19a8[GCSChannelManager]>
could not open channel <0x0x8a0c320[PostgreSQL72Cha
nnel]: not-connected> for URL:
postgresql://sogo:sogo@127.0.0.1:5432/sogo/sogo_folder_info
Apr 24 11:19:39 sogod-0.9 [14853]: |SOGo-0.9| WOHttpAdaptor listening on
address *:20000
Apr 24 11:19:43 sogod-0.9 [14853]: [ERROR] <0x0x8a13248[WOHttpAdaptor]>
ACCESS DENIED: <0x0x8a11c18[NGInternetSocketAddress]: h
ost=localhost port=43823>
Apr 24 11:19:46 sogod-0.9 [14853]: [ERROR] <0x0x8a13248[WOHttpAdaptor]>
ACCESS DENIED: <0x0x8a0f7f8[NGInternetSocketAddress]: h
ost=localhost port=43824>
Apr 24 11:20:41 sogod-0.9 [14853]: [ERROR] <0x0x8a13248[WOHttpAdaptor]>
ACCESS DENIED: <0x0x8a11c18[NGInternetSocketAddress]: h
ost=localhost port=43825>
Apr 24 11:22:33 sogod-0.9 [14853]: [ERROR] <0x0x8a13248[WOHttpAdaptor]>
ACCESS DENIED: <0x0x8a11c18[NGInternetSocketAddress]: h
ost=localhost port=43826>
Apr 24 11:22:47 sogod-0.9 [14853]: [ERROR] <0x0x8a13248[WOHttpAdaptor]>
ACCESS DENIED: <0x0x8a11c18[NGInternetSocketAddress]: h
ost=localhost port=41408>
Apr 24 11:23:47 sogod-0.9 [14853]: [ERROR] <0x0x8a13248[WOHttpAdaptor]>
ACCESS DENIED: <0x0x8a11c18[NGInternetSocketAddress]: h
ost=localhost port=41409>
Apr 24 11:23:56 sogod-0.9 [14853]: [ERROR] <0x0x8a13248[WOHttpAdaptor]>
ACCESS DENIED: <0x0x8a0f7f8[NGInternetSocketAddress]: h
ost=localhost port=41410>
I've tried with both iptables and any firewall apps on the centos box
disabled but no joy.
When initializing the database, these were my choices
# su - postgres
-bash-3.1$ createuser sogo
Shall the new role be a superuser? (y/n) n
Shall the new role be allowed to create databases? (y/n) y
Shall the new role be allowed to create more new roles? (y/n) n
CREATE ROLE
Was that appropriate? At no point did I assign a password to the sogo
account. I also did the "createdb -O sogo sogo" and it responded
appropriately.
So to the whole point, March postings suggest that bypass doesn't work and
I'll need to setup LDAP, is that correct. I just want to sync calendar and
contacts. Also I seem to be having multiple problems, can anyone see
anything obvious as above?
--
Harondel J. Sibble
Sibble Computer Consulting
Creating solutions for the small business and home computer user.
help@pdscc.com (use pgp keyid 0x3AD5C11D) http://www.pdscc.com
(604) 739-3709 (voice/fax) (604) 686-2253 (pager)