SOGo | BTS

View Issue Details Jump to Notes ] Related Changesets ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0003899SOGoWeb Generalpublic2016-11-14 15:322016-11-18 06:52
Reporterlabnet 
Assigned Toludovic 
PriorityhighSeverityblockReproducibilityalways
StatusresolvedResolutionfixed 
Platform[Server] LinuxOSDebianOS Version7 (Wheezy)
Product Version3.2.1 
Target VersionFixed in Version3.2.2 
Summary0003899: SQL authentication
DescriptionAfter Upgrade to the actual nightly build. The authentication din't work:

SOGO LOG
Nov 14 18:21:57 sogod [16773]: SOGoRootPage Login from 'xxxxx' for user 'xxx@xxx.com' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0
  

SOGo Config
  SOGoUserSources =
  (
    {
        type = sql;
        id = directory;
        viewURL="mysql://postfixadmin:xxxxx@127.0.0.1:3306/postfixadmin/sogo_auth";
        canAuthenticate = YES;
        isAddressBook = YES;
        userPasswordAlgorithm = md5-crypt;
    }
  );
Steps To ReproduceStandard Login on on the Web-Groupware.
Also the CalDAV and CardDAV authentication connections do not work.
Tagsauthentication, mysql, passwordPolicy
Attached Fileshtml file icon SQL-Result.html [^] (3,409 bytes) 2016-11-14 16:22

- Relationships Relation Graph ] Dependency Graph ]

-  Notes
(0010849)
labnet (reporter)
2016-11-14 15:37

I don't know why the password policy produce the error, due to the authentication credentials are used from the postfix mailbox?
User avatar (0010850)
ludovic (administrator)
2016-11-14 15:59

Show a sample of a user password from the db.

We recently modified that code to also support sha256/512-crypt.
(0010864)
labnet (reporter)
2016-11-15 13:45
edited on: 2016-11-15 13:45

Test with sha512 password scheme, we get the same error. Is it possible to deactivate this password policy?

Nov 15 19:40:18 sogod [28343]: SOGoRootPage Login from '2a02:1205:506a:da80:f057:e5a2:4ed:86b5' for user 'test@xxxx.info' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0

User avatar (0010865)
ludovic (administrator)
2016-11-15 13:46

Password policy has nothing to do with this, it's used only for LDAP.
User avatar (0010866)
ludovic (administrator)
2016-11-15 14:13

I think I fixed the issue but I would need a sample password you have in your c_password column. Copy/paste the value *AS IS*.
(0010867)
labnet (reporter)
2016-11-15 14:28

Test Password "q1w2e3r4t5_test" (without quote)

c_password
$1$0ed624b4$v9DuuC7u8TZvPHr.aVcn21

(when is the fix in the next daily build to test it?)
User avatar (0010868)
ludovic (administrator)
2016-11-15 14:29

in 16 hours from now
(0010872)
labnet (reporter)
2016-11-16 08:45

After update to the nightly build, again the same problem:
Setting up sogo:amd64 (3.2.1.20161115-1) ...
======= Important SOGo post-installation note =======

SOGo database schemas are _not_ automatically upgraded by
the packaging system.

Please check the list of database schema upgrade scripts
inside /usr/share/doc/sogo/ and apply them if needed.

[ ok ] Restarting SOGo: sogo.
Setting up sudo (1.8.5p2-1+nmu3+deb7u2) ...



Nov 16 14:43:20 sogod [11355]: SOGoRootPage Login from 'xxxx' for user 'xxx@xxxx.com' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0
User avatar (0010873)
ludovic (administrator)
2016-11-16 08:53

There was no nightly builds generated last night - we'll generate a new one tonight so the fix is NOT in 20161115.
(0010887)
labnet (reporter)
2016-11-17 10:58

I have tried to update, but no new build was available. when can I test the fixed version? Thanks.
User avatar (0010888)
francis (administrator)
2016-11-17 15:35

New nightly builds are now available.
(0010889)
labnet (reporter)
2016-11-18 00:30

Great work the login is working as before - Thanks!!

- Related Changesets
sogo: master bf42f225
Timestamp: 2016-11-15 14:18:57
Author: ludovic
Details ] Diff ]
(fix) fixed broken string initializations (fixes 0003899)
mod - SoObjects/SOGo/NSData+Crypto.m Diff ] File ]
sogo: v2 53b1cc54
Timestamp: 2016-11-15 14:18:57
Author: ludovic
Details ] Diff ]
(fix) fixed broken string initializations (fixes 0003899)
mod - SoObjects/SOGo/NSData+Crypto.m Diff ] File ]

- Issue History
Date Modified Username Field Change
2016-11-14 15:32 labnet New Issue
2016-11-14 15:33 labnet Tag Attached: authentication
2016-11-14 15:33 labnet Tag Attached: Baikal
2016-11-14 15:33 labnet Tag Attached: mysql
2016-11-14 15:34 labnet Tag Detached: Baikal
2016-11-14 15:34 labnet Tag Attached: passwordPolicy
2016-11-14 15:37 labnet Note Added: 0010849
2016-11-14 15:59 ludovic Note Added: 0010850
2016-11-14 16:22 labnet File Added: SQL-Result.html
2016-11-15 13:45 labnet Note Added: 0010864
2016-11-15 13:45 labnet Note Edited: 0010864 View Revisions
2016-11-15 13:46 ludovic Note Added: 0010865
2016-11-15 14:13 ludovic Note Added: 0010866
2016-11-15 14:19 ludovic Changeset attached => sogo master bf42f225
2016-11-15 14:19 ludovic Assigned To => ludovic
2016-11-15 14:19 ludovic Resolution open => fixed
2016-11-15 14:23 ludovic Changeset attached => sogo v2 53b1cc54
2016-11-15 14:28 labnet Note Added: 0010867
2016-11-15 14:29 ludovic Note Added: 0010868
2016-11-16 08:45 labnet Note Added: 0010872
2016-11-16 08:53 ludovic Note Added: 0010873
2016-11-17 10:58 labnet Note Added: 0010887
2016-11-17 15:35 francis Note Added: 0010888
2016-11-18 00:30 labnet Note Added: 0010889
2016-11-18 06:52 ludovic Status new => resolved
2016-11-18 06:52 ludovic Fixed in Version => 3.2.2


Copyright © 2000 - 2019 MantisBT Team
Powered by Mantis Bugtracker