[CalendarServer-users] Adding principals

Sebastian Hagedorn Hagedorn at uni-koeln.de
Tue Sep 5 07:54:24 PDT 2006 

Hi Cyrus,

I'm also struggling with that using Mulberry ...

--On 5. September 2006 10:25:59 -0400 Cyrus Daboo <cdaboo at apple.com> wrote:

> FYI I just added a wiki page for the repository.xml file:
>
> <http://svn.macosforge.org/projects/calendarserver/wiki/RepositoryXML>

Thanks ...

> --On September 5, 2006 12:25:28 AM -0400 Rick Davis <roodavis at mac.com>
> wrote:
>
>> By editing the repository-dev.xml file I was able to create more users.
>> The principals are created.

Same here:

2006/09/05 16:37 CEST [-] Created principal: /principals/users/a0620

I can see it in 
~/Developer/Collaboration/CalendarServer/twistedcaldav/test/data/principals/users. 
Is that path to be expected?

> > When I attempt to publish a calendar as one
>> of the new users the /calendars/users/<newuser> folder is created with
>> the inbox and outbox folder.

That doesn't even work for me, but the folders seem to be cerated while 
creating the principal. They are in 
~/Developer/Collaboration/CalendarServer/twistedcaldav/test/data/calendars/users/a0620

>> But the calendar fails to publish with "Access to the calendar <server
>> url> is not permitted.."  If I use the admin name and password I can
>> publish the test calendar.
>
> Can you provide the relevant portion of the server log?

Here it reads:

2006/09/05 16:39 CEST [HTTPChannel,0,134.95.128.1] OPTIONS 
/calendars/users/a0620/ HTTP/1.1
2006/09/05 16:39 CEST [HTTPChannel,0,134.95.128.1] 'Invalid privileges with 
no authentication details: <OPTIONS /calendars/users/a0620/ (1, 1)>'
2006/09/05 16:39 CEST [HTTPChannel,0,134.95.128.1] OPTIONS 
/calendars/users/a0620/ HTTP/1.1
2006/09/05 16:39 CEST [HTTPChannel,0,134.95.128.1] 'Invalid privileges with 
valid authentication details: <OPTIONS /calendars/users/a0620/ (1, 1)>'

> As described on the wiki page, each user should be given <DAV:all>
> privileges to their own calendar home collection. So it should be
> possible to do anything in that collection once authenticated.

That doesn't seem to work. Perhaps the implicit rights don't work? Could 
you give us an example how to set the privileges explicitly? In the example 
file I see:

      <acl>
        <ace>
          <principal><all/></principal>
          <grant><privilege><all/></privilege></grant>
          <protected/>
          <inheritable/>
        </ace>
      </acl>

But I don't really understand how that's supposed to work.
-- 
     .:.Sebastian Hagedorn - RZKR-R1 (Gebäude 52), Zimmer 18.:.
Zentrum für angewandte Informatik - Universitätsweiter Service RRZK
.:.Universität zu Köln / Cologne University - ✆ +49-221-478-5587.:.
                   .:.:.:.Skype: shagedorn.:.:.:.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 186 bytes
Desc: not available
Url : http://lists.macosforge.org/pipermail/calendarserver-users/attachments/20060905/3f2ec1fd/attachment.bin

More information about the calendarserver-users mailing list