[OGo-Users] LDAP for Skyrix Zidestore along with OGo Zidestore.

Doug Smith users@opengroupware.org
Fri, 02 Mar 2007 14:47:10 -0600 

Thanks for the help on authentication.  I was able to get the settings 
in for the Skyrix5 user.  The connector now authenticates, but Outlook 
doesn't seem to when it starts.  I think it is because the account is 
created for ogo-zidestore when logging into the webserver, but no 
account is created for SX-zidestore.  Maybe now I need to get rid of 
ogo-zidestore and have everything use the sx-zidestore.  I'm curious if 
this sounds right to you.  Here is the first part of the error log when 
Outlook starts.  It is a total of 1398 lines. =\

Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D request 
0x087E09E4: OPTIONS /zidestore/so/dsmith/ 
(ctx=0x088FEC34)                  
Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D authenticator 
allowed request.
Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D traverse 
(/zidestore/so/dsmith/): dsmith (no acquisition)
Mar 02 14:15:22 ZideStore [17814]: |ZideStore| traverse: dsmith
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   do traverse name: 
'dsmith'                                                                
Mar 02 14:15:22 ZideStore [17814]: |ZideStore| lookup name: dsmith
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   did not find key 
'dsmith' in SoClass: <0x08690634[SoObjCClass]: super=0x086761C4 
objc=ZideStore slots=GET>
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   looked up 
value:                                                                           

Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   lookup in root 
object:                                                                    
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   root is application object
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   GOT:
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   traverse miss: 
name=dsmith: i=0,count=1                                                   
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|     miss is last 
object.                                                                    
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|     handle miss error: 
(Exception name:SoAuthRequired class:SoAuthRequiredException 
reason:authentication required info:<nil>)
Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D   not calling 
exception: (Exception name:SoAuthRequired class:SoAuthRequiredException 
reason:authentication required 
info:<nil>)                                                                                                 

Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D   render object: 
(Exception name:SoAuthRequired class:SoAuthRequiredException 
reason:authentication required info:<nil>)
Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D     render in 
ctx: <0x088FEC34[WOContext]: 00145e885da088fec34 app=ZideStore sn=none 
eid= 
rqeid=>                                                                                                                                

Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D     use 
rule-selected renderer: <SoDefaultRenderer 0x8904db4>
Mar 02 14:15:22 ZideStore [17814]: <[so-dflt-renderer]>D     render as 
security exception: (Exception name:SoAuthRequired 
class:SoAuthRequiredException reason:authentication required 
info:<nil>)                                                                                      

Mar 02 14:15:22 ZideStore [17814]: <[so-dflt-renderer]>D     
authenticator: <SxAuthenticator 0x87e61ec>
Mar 02 14:15:22 ZideStore [17814]: <[so-dflt-renderer]>D     
authenticator did render exception.
Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D   made response: 
0x08901A9C (status=401,len=,type=)                                 
Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D request 
0x087EA684: OPTIONS /zidestore/so/dsmith/ 
(ctx=0x088FEC34)                  
Mar 02 14:15:22 ZideStore [17814]: <0x00226520[LSCommandContext]> 
+[LSCommandContext(LDAPSupport) isLDAPLoginAuthorized:password:]: LDAP 
server 'dc01.avatartechnology.net:389' did authenticate user 'dsmith'
Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D authenticator 
allowed request.
Mar 02 14:15:22 ZideStore [17814]: <[object-handler]>D traverse 
(/zidestore/so/dsmith/): dsmith (no acquisition)                           
Mar 02 14:15:22 ZideStore [17814]: |ZideStore| traverse: dsmith
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   do traverse name: 
'dsmith'                                                                
Mar 02 14:15:22 ZideStore [17814]: |ZideStore| lookup name: dsmith
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   did not find key 
'dsmith' in SoClass: <0x08690634[SoObjCClass]: super=0x086761C4 
objc=ZideStore slots=GET>
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   looked up value:
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   lookup in root object:
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   root is application 
object                                                                
Mar 02 14:15:22 ZideStore [17814]: |ZideStore|   GOT:
Mar 02 14:15:23 ZideStore [17814]: <0x00226520[LSCommandContext]> 
+[LSCommandContext(LDAPSupport) isLDAPLoginAuthorized:password:]: LDAP 
server 'dc01.avatartechnology.net:389' did authenticate user 
'dsmith'                                                                          

Mar 02 14:15:23 ZideStore [17814]: |ZideStore| set clientObject: 
<0x088CEEEC[SxUserFolder]: login=dsmith>
Mar 02 14:15:23 ZideStore [17814]: <[object-handler]>D   dispatcher: 
<0x088BFAEC[SoObjectWebDAVDispatcher]: object=<0x088CEEEC[SxUserFolder]: 
login=dsmith>>


Adam Tauno Williams wrote:
>>>>  When I try Outlook it logs to the Skyrix Zidestore log 
>>>> instead and appears to be failing authentication.  Does anyone know how 
>>>> to enable LDAP for the Skyrix5 Zidestore as well?  I included at the 
>>>> bottom the only changes I have made to the server to get LDAP to work.
>>>>         
>>> On my servers the ZideStore/ZideLook servers installed under a different
>>> user account that the Open Source set of servers;  OGo uses user "ogo"
>>> and ZideStore/ZideLook use user "skyrix5".  You have to set the defaults
>>> for the skyrix5 user.
>>>       
>> I'm sure you are on the right path, but I'm not sure what you mean by 
>> "set the defaults".  I tried adding my LDAP settings to 
>> /etc/opengroupware.org/ZideStore.plist and 
>>     
>
> "/etc/opengroupware.org" is only a sym-link to
> "/var/lib/opengroupware.org/.libFoundation", which is the defaults
> directory for the user "ogo".
>
>   
>> /etc/opengroupware.org/Defaults.plist with no luck.  I tried changing 
>> the /etc/init.d/sx-zidestore to use user ogo and change perms on the 
>> dirs to ogo:skyrix and the init script broke so I put it all back.
>>     
>
> su to the user the ZideStore/ZideLook daemon runs as and use the
> Defaults command to set the defaults.  Defaults are per-user.  If the
> daemon runs as a different user, with a different home directory,  then
> it has an entirely separate collection of defaults.
>
>   
>>> Have you checked what use the ZideStore/ZideLook server is using? ("ps
>>> axu | grep -i zide") Make sure the defaults are set for that user too.
>>>       
>> [root@scogo Defaults]# ps -ef |grep -i zide
>> skyrix5   3516     1  0 09:08 ?        00:00:00 
>> /opt/skyrix/skyrix5/WOApps/ZideStore.woa/ix86/linux-gnu/gnu-fd-nil/ZideStore 
>> -WOUseWatchDog YES
>> skyrix5   3525  3516  0 09:08 ?        00:00:00 
>> /opt/skyrix/skyrix5/WOApps/ZideStore.woa/ix86/linux-gnu/gnu-fd-nil/ZideStore 
>> -WOUseWatchDog YES
>> ogo       3875     1  0 09:09 ?        00:00:01 
>> /usr/local/sbin/ogo-zidestore-1.5
>>     
>
> See...ZideStore/ZideLook is running as user "skyrix5",  set the defaults
> for that user;  which has nothing to do with "/etc/opengroupware.org".
>