[OGo-Users] ldap+kerberos authentication
Torsten Becker
users@opengroupware.org
Mon, 05 Mar 2007 00:44:51 +0100
Torsten Becker schrieb:
> Adam Tauno Williams schrieb:
>>> Does some know what ogo tries to do in the database or how i can it
>>> make visible to me?
>>>
>>
>> Set the PGDebugEnabled default to "YES".
>>
>>
> Thank you. I will test it. Perhaps I can find some hints then...
>
>
This is shown in the webui.log after enabling PGDebugEnabled:
Mar 04 23:25:07 ogo-webui-1.1 [22508]: PostgreSQL72 connection
established: <0x0x8b6d244[PGConnection]: connection=0x0x8b35318>
Mar 04 23:25:07 ogo-webui-1.1 [22508]: PostgreSQL72 channel 0x0x82da2c4
opened (connection=<0x0x8b6d244[PGConnection]: connection=0x0x8b35318>)
Mar 04 23:25:07 ogo-webui-1.1 [22508]: PG0x0x82da2c4 SQL: BEGIN TRANSACTION
Mar 04 23:25:07 ogo-webui-1.1 [22508]: PG0x0x82da2c4 SQL: SELECT
t1.login, t1.is_locked, t1.password FROM person t1 WHERE (t1.login =
'root') AND (t1.is_account=1)
Mar 04 23:25:07 ogo-webui-1.1 [22508]: PG0x0x82da2c4 SQL: COMMIT TRANSACTION
PostgreSQL72 connection dropped 0x0x8b6d244 (channel=0x0x82da2c4)
This repeats since some timeout.
After the timeout the browser shows the login dialog for the defined
kerberos login.
After giving the credentials I see the login-screen from ogo with
the username plus realm (ckent@AXG.LOCAL) and an empty password field.
The asking for credentials is new, since I removed all Defaults
concerning LDAP in the ogo configuration.
Only BasicAuthentication is enabled.
This is the log for not using BasicAuthentication for ogo:
Mar 04 23:26:19 ogo-webui-1.1 [23004]: |ogo-webui-1.1| OpenGroupware.org
instance initialized.
Mar 04 23:26:19 ogo-webui-1.1 [23004]: |ogo-webui-1.1| WOHttpAdaptor
listening on address *:20000
Mar 04 23:26:28 ogo-webui-1.1 [23004]: PostgreSQL72 connection
established: <0x0x8b1d254[PGConnection]: connection=0x0x8b2add8>
Mar 04 23:26:28 ogo-webui-1.1 [23004]: PostgreSQL72 channel 0x0x82da2c4
opened (connection=<0x0x8b1d254[PGConnection]: connection=0x0x8b2add8>)
Mar 04 23:26:28 ogo-webui-1.1 [23004]: PG0x0x82da2c4 SQL: BEGIN TRANSACTION
Mar 04 23:26:28 ogo-webui-1.1 [23004]: PG0x0x82da2c4 SQL: SELECT
t1.login, t1.is_locked, t1.password FROM person t1 WHERE (t1.login =
'root') AND (t1.is_account=1)
Mar 04 23:26:28 ogo-webui-1.1 [23004]: PG0x0x82da2c4 SQL: COMMIT TRANSACTION
PostgreSQL72 connection dropped 0x0x8b1d254 (channel=0x0x82da2c4)
Mar 04 23:26:28 ogo-webui-1.1 [23004]: PostgreSQL72 connection
established: <0x0x8b423fc[PGConnection]: connection=0x0x8b389f0>
Mar 04 23:26:28 ogo-webui-1.1 [23004]: PostgreSQL72 channel 0x0x82da2c4
opened (connection=<0x0x8b423fc[PGConnection]: connection=0x0x8b389f0>)
At this time mod-auth-kerb authenticated the user and the loginprompt
from ogo is shown in the browser.
Now i can login as root with no errors.