[CalendarServer-users] Help with basic directory service authentication
cssdev at mac.com
cssdev at mac.com
Tue Mar 18 07:31:20 PDT 2008
Hello,
I installed CalendarServer-1.1 (via svn) on a Fedora Core 5 Linux server, and I managed to get everything running after applying the patches mentioned in tickets #188 and #2110. I want to use apache htpasswd authentication for single sign-on integration with existing web services, but I cannot authenticate when I attempt to connect to the Calendar Server. I can access the main CalDAV listing, but attempting to access any calendars fails because the user authentication does not succeed. I tried to connect with Firefox 2.0.12 on Windows, and it did present me with an authentication dialog.
My caldavd-dev.plist file points toward the htpasswd file, and it's readable. It's a valid htpasswd file, and I manually created a groups file. Are there other steps that I need to configure for the permissions beyond just the users and passwords? How do I assign permissions among calendars when using the basic directory service?
The output is attached below. Any help would be appreciated.
Thanks,
Chris
---
2008-03-18 10:24:17-0400 [-] Log opened.
2008-03-18 10:24:17-0400 [-] twistd 2.5.0+r19773 (/usr/bin/python 2.4.3) starting up
2008-03-18 10:24:17-0400 [-] reactor class: <class 'twisted.internet.selectreactor.SelectReactor'>
2008-03-18 10:24:17-0400 [-] 2 processors found, configuring 2 processes.
2008-03-18 10:24:17-0400 [-] Adding pydirector service with configuration: /tmp/pydirgTL71Y
2008-03-18 10:24:17-0400 [-] twistedcaldav.logging.AMPLoggingFactory starting on "'logs/caldavd.sock'"
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Log opened.
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] twistd 2.5.0+r19773 (/usr/bin/python 2.4.3) starting up
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] reactor class: <class 'twisted.internet.selectreactor.SelectReactor'>
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Configuring directory service of type: twistedcaldav.directory.apache.BasicDirectoryService
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Configuring SudoDirectoryService with file: conf/sudoers.plist
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting up document root at: twistedcaldav/test/data/
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting up principal collection: <class 'twistedcaldav.directory.principal.DirectoryPrincipalProvisioningResource'>
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting up calendar collection: <class 'twistedcaldav.static.CalendarHomeProvisioningFile'>
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting up root resource: <class 'twistedcaldav.root.RootResource'>
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting up default ACEs on root resource
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting up AdminPrincipals
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Added /principals/__uids__/admin/ as admin principal
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting root ACL
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Log opened.
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] twistd 2.5.0+r19773 (/usr/bin/python 2.4.3) starting up
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] reactor class: <class 'twisted.internet.selectreactor.SelectReactor'>
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Configuring authentication for realm: SoftwareRealm
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting up scheme: kerberos
2008-03-18 10:24:18-0400 [-] [caldav-8445] [KerberosCredentialFactoryBase] getServerPrincipalDetails: ('Cannot get sequence cursor from keytab', 2)
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Configuring directory service of type: twistedcaldav.directory.apache.BasicDirectoryService
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Configuring SudoDirectoryService with file: conf/sudoers.plist
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Could not start Kerberos
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting up scheme: digest
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting up document root at: twistedcaldav/test/data/
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting up principal collection: <class 'twistedcaldav.directory.principal.DirectoryPrincipalProvisioningResource'>
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting up scheme: basic
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Configuring authentication wrapper
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Setting up service
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting up calendar collection: <class 'twistedcaldav.static.CalendarHomeProvisioningFile'>
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Configuring log observer: <twistedcaldav.logging.AMPCommonAccessLoggingObserver object at 0xb78d8f0c>
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting up root resource: <class 'twistedcaldav.root.RootResource'>
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Adding SSL server at 127.0.0.1:8445
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] twisted.web2.channel.http.HTTPFactory starting on 8445
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] Starting factory <twisted.web2.channel.http.HTTPFactory instance at 0xb78d920c>
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting up default ACEs on root resource
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting up AdminPrincipals
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Added /principals/__uids__/admin/ as admin principal
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting root ACL
2008-03-18 10:24:18-0400 [twistedcaldav.logging.AMPLoggingFactory] AMPLoggingProtocol connection established (HOST:UNIXSocket('logs/caldavd.sock') PEER:UNIXSocket(''))
2008-03-18 10:24:18-0400 [-] [caldav-8445] [-] AMP connection established (HOST:UNIXSocket(None) PEER:UNIXSocket('logs/caldavd.sock'))
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Configuring authentication for realm: SoftwareRealm
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting up scheme: kerberos
2008-03-18 10:24:18-0400 [-] [caldav-8444] [KerberosCredentialFactoryBase] getServerPrincipalDetails: ('Cannot get sequence cursor from keytab', 2)
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Could not start Kerberos
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting up scheme: digest
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting up scheme: basic
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Configuring authentication wrapper
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Setting up service
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Configuring log observer: <twistedcaldav.logging.AMPCommonAccessLoggingObserver object at 0xb793ff0c>
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Adding SSL server at 127.0.0.1:8444
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] twisted.web2.channel.http.HTTPFactory starting on 8444
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] Starting factory <twisted.web2.channel.http.HTTPFactory instance at 0xb794020c>
2008-03-18 10:24:18-0400 [twistedcaldav.logging.AMPLoggingFactory] AMPLoggingProtocol connection established (HOST:UNIXSocket('logs/caldavd.sock') PEER:UNIXSocket(''))
2008-03-18 10:24:18-0400 [-] [caldav-8444] [-] AMP connection established (HOST:UNIXSocket(None) PEER:UNIXSocket('logs/caldavd.sock'))
2008-03-18 10:24:21-0400 [-] [caldav-8444] [-] AMP connection established (HOST:UNIXSocket(None) PEER:UNIXSocket('logs/caldavd-pydir.sock'))
2008-03-18 10:24:21-0400 [-] [caldav-8444] [AMP,client] GET /calendars/ HTTP/1.1
2008-03-18 10:24:25-0400 [-] [caldav-8444] [AMP,client] GET /calendars/ HTTP/1.1
2008-03-18 10:24:25-0400 [-] [caldav-8444] [AMP,client] "Directory service <BasicDirectoryService 'SoftwareRealm': FilePath('/home/chris/cal/CalendarServer-1.1/conf/users') FilePath('/home/chris/cal/CalendarServer-1.1/conf/groups')> has no GUID; generating service GUID from realm name."
2008-03-18 10:24:25-0400 [-] [caldav-8444] [AMP,client] "Directory service <SudoDirectoryService 'SoftwareRealm': FilePath('/home/chris/cal/CalendarServer-1.1/conf/sudoers.plist')> has no GUID; generating service GUID from realm name."
2008-03-18 10:24:25-0400 [-] [caldav-8444] [AMP,client] 'Authentication failed: Incorrect credentials for <BasicUserRecord[users at fcbe1233-7903-55b6-a1af-ebb4083b615f(SoftwareRealm)] 5fe5d845-192c-552e-b415-9ee69e768500(chris) None>'
2008-03-18 10:24:29-0400 [-] [caldav-8444] [AMP,client] GET /calendars/ HTTP/1.1
2008-03-18 10:24:29-0400 [-] [caldav-8444] [AMP,client] 'Authentication failed: Incorrect credentials for <BasicUserRecord[users at fcbe1233-7903-55b6-a1af-ebb4083b615f(SoftwareRealm)] 5fe5d845-192c-552e-b415-9ee69e768500(chris) None>'
2008-03-18 10:24:34-0400 [-] Received SIGINT, shutting down.
2008-03-18 10:24:34-0400 [-] (Port None Closed)
2008-03-18 10:24:34-0400 [AMPLoggingProtocol,0,] AMPLoggingProtocol connection lost (HOST:UNIXSocket('logs/caldavd.sock') PEER:UNIXSocket(''))
2008-03-18 10:24:34-0400 [AMPLoggingProtocol,1,] AMPLoggingProtocol connection lost (HOST:UNIXSocket('logs/caldavd.sock') PEER:UNIXSocket(''))
2008-03-18 10:24:34-0400 [-] Main loop terminated.
2008-03-18 10:24:34-0400 [-] Server Shut Down.
More information about the calendarserver-users
mailing list