[CalendarServer-users] delegation help?
Joe Auty
joe at netmusician.org
Sat Nov 17 22:01:20 PST 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Nov 17, 2007, at 5:30 AM, Emil Lundberg wrote:
> Hey Joe,
>
> You've confused the sample accounts file where locations have
> delegates (which is normal), with cyrus's example. You now have
> users and locations with duplicate uid's which is definitely not
> what you intended :-)
>
> Here's what your accounts.xml file should look like (but c.f. the
> previous discussion on the use of the guid field):
>
> <user>
> <uid>userA</uid>
> <guid>userA</guid>
> <password>password</password>
> <name>user A</name>
> <proxies>
> <member type="users">userB</member>
> </proxies>
> </user>
> <user>
> <uid>userB</uid>
> <guid>userB</guid>
> <password>password</password>
> <name>user B</name>
> <proxies>
> <member type="users">userA</member>
> </proxies>
> </user>
>
Hmmm... setting up my accounts-test.xml file results in the server not
being able to startup (I could paste in the error if helpful, but it
is quite long)
I have taken out my locations I have defined, and modifed my users
declarations to match the following:
<user>
<uid>joe</uid>
<guid>joe</guid>
<password>mypassword</password>
<name>Joe Auty</name>
<proxies>
<member type="users">test</member>
</proxies>
</user>
<user>
<uid>test</uid>
<guid>test</guid>
<password>mypassword</password>
<name>Joe Auty (test)</name>
<proxies>
<member type="users">joe</member>
</proxies>
</user>
Here is the first few lines of my error message:
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] Log opened.
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] twistd
> 2.5.0+rUnknown (/usr/local/bin/python 2.4.4) starting up
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] reactor class:
> <class 'twisted.internet.selectreactor.SelectReactor'>
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] Configuring
> directory service of type:
> twistedcaldav.directory.xmlfile.XMLDirectoryService
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] Traceback (most
> recent call last):
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] File "../Twisted/
> bin/twistd", line 21, in ?
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] run()
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] File "/usr/local/
> src/Twisted/twisted/scripts/twistd.py", line 27, in run
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] app.run(runApp,
> ServerOptions)
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] File "/usr/local/
> src/Twisted/twisted/application/app.py", line 379, in run
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] runApp(config)
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-] File "/usr/local/
> src/Twisted/twisted/scripts/twistd.py", line 23, in runApp
> 2007-11-18 01:01:19-0500 [-] [caldav-8008] [-]
> _SomeApplicationRunner(config).run()
> Then follow steps 4-6 below. Note that using iCal server (or DCS w/
> OD directory service I presume), iCal let's a user define delgates
> for himself from within iCal, as well as lets the delegate see
> calendars for which he is the delegate.
>
> /Emil
>
>
> On 17 nov 2007, at 07.10, Joe Auty wrote:
>
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> Finally had time to test this, but this doesn't seem to work...
>> here are the your instructions again, Cyrus, as well as my results...
>>
>> On Nov 12, 2007, at 10:13 AM, Cyrus Daboo wrote:
>>>>
>>>
>>> OK, here are some step-by-step instructions for setting up
>>> delegates:
>>>
>>> Example add user 'A' as a delegate/proxy for user 'B'.
>>>
>>> 1) In the accounts.xml, locate the user 'B' account entry.
>>>
>>> 2) Add a <proxies> element to user B entry if one is not already
>>> present.
>>>
>>> 3) Inside the <proxies> element add an element for user 'A' thusly:
>>>
>>> <member type="users">A</member>
>>>
>>> replace 'A' with the actual user id.
>>>
>>> 4) In your web browser, navigate to /principals/users/B
>>> (substituting the user id for B). Copy the principal-URL value you
>>> see there (it will start with /principals/__uids__/).
>>>
>>> 5) In iCal create a new CalDAV account. For the user id enter user
>>> A's user id. For the password use user A's password. Expand down
>>> the 'Server Options" section and enter the principal-URL value for
>>> user B into the Account URL field. Then click Add.
>>>
>>> 6) After that the calendars for user B will appear in iCal. Note
>>> that this is being accessed by user A (i.e. using user A's login/
>>> password). So user B's login/password is kept private to them.
>>> User A will have full read-write access to user B's calendar data.
>>>
>>
>> Okay, I have 3 accounts configured in iCal now:
>>
>> 1) my account (user A)
>> 2) my test account (user B)
>> 3) the account you requested me to create here using the username
>> and password for user A, and the following server address:
>>
>> https://mydomain:8443/principals/__uids__/test/
>>
>> I have setup delegation for user A so that I can access user B
>> using the delegation tab in the iCal GUI
>>
>> Here is my accounts XML file:
>>
>>
>> <user>
>> <uid>userA</uid>
>> <guid>userA</guid>
>> <password>password</password>
>> <name>user A</name>
>> </user>
>> <user>
>> <uid>userB</uid>
>> <guid>userB</guid>
>> <password>password</password>
>> <name>user B</name>
>> </user>
>> <user>
>>
>>
>> <location>
>> <uid>userA</uid>
>> <password>password</password>
>> <name>user A</name>
>> <auto-schedule/>
>> <proxies>
>> <member type="users">userB</member>
>> </proxies>
>> </location>
>>
>> <location>
>> <uid>userB</uid>
>> <password>password</password>
>> <name>user B</name>
>> <auto-schedule/>
>> <proxies>
>> <member type="users">userA</member>
>> </proxies>
>> </location>
>>
>>
>> The result: no noticeable change. I was expecting that anything I'd
>> write to the delegate calendar would be available under user B's
>> calendar and vice versa.
>>
>> Have I done something wrong here?
>>
>>
>>
>>
>>
>>
>>
>> - -----------
>> Joe Auty
>> NetMusician: web publishing software for musicians
>> http://www.netmusician.org
>> joe at netmusician.org
>>
>>
>> -----BEGIN PGP SIGNATURE-----
>> Version: GnuPG v1.4.7 (Darwin)
>>
>> iD8DBQFHPoXFCgdfeCwsL5ERAoGCAJ4r9IFaDqsMjteygSGNlepQZt9LXQCfVfIH
>> RBp/h3FvSrQtQZkG9qTAUOM=
>> =inbp
>> -----END PGP SIGNATURE-----
>> _______________________________________________
>> calendarserver-users mailing list
>> calendarserver-users at lists.macosforge.org
>> http://lists.macosforge.org/mailman/listinfo/calendarserver-users
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)
iD8DBQFHP9UwCgdfeCwsL5ERAgCqAJ9Ix1sykKweeJQ86i90D3RvO929WgCeO/dS
K4NaKE+Nbw4BwxwOWqpeFKU=
=zVN6
-----END PGP SIGNATURE-----
More information about the calendarserver-users
mailing list