Hey all, I really like the concept behind roundcube - it looks slick! but I am having some problems installing (or rather, authenticating once installed).
My server is: roundcube.willowisp.net
and I modified the index.php with a
<pre> var_dump($_SESSION); var_dump($_REQUEST); </pre> after the session initialization. (pic below)
I know the credentials are good, as it is my mailserver and they work in thunderbird. it doesn't appear to be translating the login form info into the session variables.
Any ideas? Do I need to have register_globals on?
thanks in advance, j.
I misunderstood one of the settings in config/main.inc.php
$rcmail_config['auto_create_user'] = TRUE;
I thought that meant anyone could create a mail account - it really seems to mean that they can create a roundcube webmail acct (and that they will need an email account to do that...)
I feel somewhat stupid - should have installed it generic before I started screwing with things.
thanks, j. -------- Original Message -------- Subject: Install problem Date: Sat, 01 Oct 2005 16:38:55 -0700 From: Joshua Layne joshua@willowisp.net To: dev@lists.roundcube.net
Hey all, I really like the concept behind roundcube - it looks slick! but I am having some problems installing (or rather, authenticating once installed).
My server is: roundcube.willowisp.net
and I modified the index.php with a
<pre> var_dump($_SESSION); var_dump($_REQUEST); </pre> after the session initialization. (pic below)
I know the credentials are good, as it is my mailserver and they work in thunderbird. it doesn't appear to be translating the login form info into the session variables.
Any ideas? Do I need to have register_globals on?
thanks in advance, j.
k - so i downloaded the HEAD branch from CVS and installed it on my system. the setup right now looks quite simple (at least the config/ files). the only issue i see right now is that no matter what user i put (that I know exists on the system and can log in) it says that the user/password failed.
now, i guess i was at a loss at this the same way Joshua was, so my question is two-fold: what auth system does rcube use? and from what I can tell, the user table in the mysql db is for user registration only? should it map back to the actual system user information?
cheers, rodolfo
On 10/1/05, joshua joshua@willowisp.net wrote:
I misunderstood one of the settings in config/main.inc.php
$rcmail_config['auto_create_user'] = TRUE;
I thought that meant anyone could create a mail account - it really seems to mean that they can create a roundcube webmail acct (and that they will need an email account to do that...)
I feel somewhat stupid - should have installed it generic before I started screwing with things.
thanks, j. -------- Original Message -------- Subject: Install problem Date: Sat, 01 Oct 2005 16:38:55 -0700 From: Joshua Layne joshua@willowisp.net To: dev@lists.roundcube.net
Hey all, I really like the concept behind roundcube - it looks slick! but I am having some problems installing (or rather, authenticating once installed).
My server is: roundcube.willowisp.net
and I modified the index.php with a
<pre> var_dump($_SESSION); var_dump($_REQUEST); </pre> after the session initialization. (pic below)
I know the credentials are good, as it is my mailserver and they work in thunderbird. it doesn't appear to be translating the login form info into the session variables.
Any ideas? Do I need to have register_globals on?
thanks in advance, j.
Hi there,
I know, the user authorization and creation is not well documented. This is how it works: The main authority for the RoundCube access is the IMAP server. If 'auto_create_user' is set to TRUE in config/main.inc.php a new record in the user table will be created once the IMAP login succeeded. This user record does not store a password, it's just used to assign identities, contacts and cache records. If you have 'auto_create_user' set to FALSE only IMAP logins which already have a corresponding entry in the user's table (username and hostname) will be allowed.
And here's a notice about the CVS version: don't forget to move config/*.inc.php.dist to config/*inc.php in order to make the system work.
Regards, Thomas
2005/10/3, Rodolfo segleaur@gmail.com:
k - so i downloaded the HEAD branch from CVS and installed it on my system. the setup right now looks quite simple (at least the config/ files). the only issue i see right now is that no matter what user i put (that I know exists on the system and can log in) it says that the user/password failed.
now, i guess i was at a loss at this the same way Joshua was, so my question is two-fold: what auth system does rcube use? and from what I can tell, the user table in the mysql db is for user registration only? should it map back to the actual system user information?
cheers, rodolfo
OK - makes sense. What type of auth can it do against the IMAP server? from what i can tell rcube does plain auth against imap/imaps. the interesting thing here is that i cannot, for the life of me authenticate with rcube against the imap server (it's all in the same box). I'm trying to get this to work on Mac OS X.4 Server. no errors are logged in logs/errors or sendmail. so any detailed info or experience on how this works would be helpful to track down the bugger that's crashing this in the code.
cheers, rodolfo
On 10/3/05, thomas bruederli roundcube@gmail.com wrote:
Hi there,
I know, the user authorization and creation is not well documented. This is how it works: The main authority for the RoundCube access is the IMAP server. If 'auto_create_user' is set to TRUE in config/main.inc.php a new record in the user table will be created once the IMAP login succeeded. This user record does not store a password, it's just used to assign identities, contacts and cache records. If you have 'auto_create_user' set to FALSE only IMAP logins which already have a corresponding entry in the user's table (username and hostname) will be allowed.
And here's a notice about the CVS version: don't forget to move config/*.inc.php.dist to config/*inc.php in order to make the system work.
Regards, Thomas
2005/10/3, Rodolfo segleaur@gmail.com:
k - so i downloaded the HEAD branch from CVS and installed it on my system. the setup right now looks quite simple (at least the config/ files). the only issue i see right now is that no matter what user i put (that I know exists on the system and can log in) it says that the user/password failed.
now, i guess i was at a loss at this the same way Joshua was, so my question is two-fold: what auth system does rcube use? and from what I can tell, the user table in the mysql db is for user registration only? should it map back to the actual system user information?
cheers, rodolfo
K, I've been digging into this a bit further. Seems that when I try to log in as any user, rcube updates the DB with session information, but it doesn't seem to create a corresponding user record in the users table. For example, loggging in with mailadmin as a user, the only entry in the mysql log is this:
INSERT INTO session (sess_id, vars, created, changed) VALUES ('e73688aafc73be78b2089e5cbe36f409', 'client_id|s:32:"e73688aafc73be78b2089e5cbe36f409";user_lang|s:2:"en";auth_time|i:1128394400;auth|s:40:"f3a3e88c1f2781fad6bbb2d1132d 4c8a5e7647e0";task|s:4:"mail";', NOW(), NOW());
but yet the user table stays empty. obviously, i do have the auto registration option set to TRUE in main.inc.php.
I'm using the CVS tree, so i don't know if that's partially the problem, but it doesn't seem to work either with the stable release. from what i can tell, there's no indication that an IMAP log in is being requested (I have cyrus logging everything at this point to see what's what).
Any ideas?
cheers, rodolfo
On 10/3/05, Rodolfo segleaur@gmail.com wrote:
OK - makes sense. What type of auth can it do against the IMAP server? from what i can tell rcube does plain auth against imap/imaps. the interesting thing here is that i cannot, for the life of me authenticate with rcube against the imap server (it's all in the same box). I'm trying to get this to work on Mac OS X.4 Server. no errors are logged in logs/errors or sendmail. so any detailed info or experience on how this works would be helpful to track down the bugger that's crashing this in the code.
cheers, rodolfo
On 10/3/05, thomas bruederli roundcube@gmail.com wrote:
Hi there,
I know, the user authorization and creation is not well documented. This is how it works: The main authority for the RoundCube access is the IMAP server. If 'auto_create_user' is set to TRUE in config/main.inc.php a new record in the user table will be created once the IMAP login succeeded. This user record does not store a password, it's just used to assign identities, contacts and cache records. If you have 'auto_create_user' set to FALSE only IMAP logins which already have a corresponding entry in the user's table (username and hostname) will be allowed.
And here's a notice about the CVS version: don't forget to move config/*.inc.php.dist to config/*inc.php in order to make the system work.
Regards, Thomas
2005/10/3, Rodolfo segleaur@gmail.com:
k - so i downloaded the HEAD branch from CVS and installed it on my system. the setup right now looks quite simple (at least the config/ files). the only issue i see right now is that no matter what user i put (that I know exists on the system and can log in) it says that the user/password failed.
now, i guess i was at a loss at this the same way Joshua was, so my question is two-fold: what auth system does rcube use? and from what I can tell, the user table in the mysql db is for user registration only? should it map back to the actual system user information?
cheers, rodolfo
A session record is created on the first request (the login page). As I can see, the session does not contain login information for the IMAP server. This means that the IMAP login failed (for whatever reason). The webmail has not been tested with many IMAP servers yet and it could be possible that there's a general communication problem between RoundCube and your IMAP server. For debugging you can print out the global variable $iil_error to see, if there' were any socket errors while connection to IMAP.
Regards, Thomas
2005/10/4, Rodolfo segleaur@gmail.com:
K, I've been digging into this a bit further. Seems that when I try to log in as any user, rcube updates the DB with session information, but it doesn't seem to create a corresponding user record in the users table. For example, loggging in with mailadmin as a user, the only entry in the mysql log is this:
INSERT INTO session (sess_id, vars, created, changed) VALUES ('e73688aafc73be78b2089e5cbe36f409', 'client_id|s:32:"e73688aafc73be78b2089e5cbe36f409";user_lang|s:2:"en";auth_time|i:1128394400;auth|s:40:"f3a3e88c1f2781fad6bbb2d1132d 4c8a5e7647e0";task|s:4:"mail";', NOW(), NOW());
but yet the user table stays empty. obviously, i do have the auto registration option set to TRUE in main.inc.php.
I'm using the CVS tree, so i don't know if that's partially the problem, but it doesn't seem to work either with the stable release. from what i can tell, there's no indication that an IMAP log in is being requested (I have cyrus logging everything at this point to see what's what).
Any ideas?
cheers, rodolfo
Thomas & list - found the issue with Cyrus and Roundcube for the moment being. Seems that rcube only speaks cleartext passwords back to the IMAP server. I was running with CRAM-MD5 and login as authentication mechanisims. I'll take a look at the code over this coming weekend and see if i can graft on support for the different auth methods that Cyrus has.
Cheers, Rodolfo
On 10/4/05, thomas bruederli roundcube@gmail.com wrote:
A session record is created on the first request (the login page). As I can see, the session does not contain login information for the IMAP server. This means that the IMAP login failed (for whatever reason). The webmail has not been tested with many IMAP servers yet and it could be possible that there's a general communication problem between RoundCube and your IMAP server. For debugging you can print out the global variable $iil_error to see, if there' were any socket errors while connection to IMAP.
Regards, Thomas
2005/10/4, Rodolfo segleaur@gmail.com:
K, I've been digging into this a bit further. Seems that when I try to log in as any user, rcube updates the DB with session information, but it doesn't seem to create a corresponding user record in the users table. For example, loggging in with mailadmin as a user, the only entry in the mysql log is this:
INSERT INTO session (sess_id, vars, created, changed) VALUES ('e73688aafc73be78b2089e5cbe36f409', 'client_id|s:32:"e73688aafc73be78b2089e5cbe36f409";user_lang|s:2:"en";auth_time|i:1128394400;auth|s:40:"f3a3e88c1f2781fad6bbb2d1132d 4c8a5e7647e0";task|s:4:"mail";', NOW(), NOW());
but yet the user table stays empty. obviously, i do have the auto registration option set to TRUE in main.inc.php.
I'm using the CVS tree, so i don't know if that's partially the problem, but it doesn't seem to work either with the stable release. from what i can tell, there's no indication that an IMAP log in is being requested (I have cyrus logging everything at this point to see what's what).
Any ideas?
cheers, rodolfo
2005/10/5, Rodolfo segleaur@gmail.com:
Thomas & list - found the issue with Cyrus and Roundcube for the moment being. Seems that rcube only speaks cleartext passwords back to the IMAP server. I was running with CRAM-MD5 and login as authentication mechanisims. I'll take a look at the code over this coming weekend and see if i can graft on support for the different auth methods that Cyrus has.
Yes, I know about this issue. To give you a hint: try passing more arguments to iil_Connect() [in porgram/lib/imap.inc] from the rcube_imap class [in program/include/rcube_imap.inc]. Unfortunately I didn't have the time to work on this but I found out the following: Add a fourth argument when calling iil_Connect(). This argument should be array('imap' => 'auth') or array('imap' => 'check'). The value 'auth' will try CRAM-MD5 first and then plain. If set to 'check' the auth method proposed by the server will be used.
Cheers, Rodolfo
OK, thanks for testing this. Please report if it works and what code you added/changed.
Thomas
On 10/4/05, thomas bruederli roundcube@gmail.com wrote:
A session record is created on the first request (the login page). As I can see, the session does not contain login information for the IMAP server. This means that the IMAP login failed (for whatever reason). The webmail has not been tested with many IMAP servers yet and it could be possible that there's a general communication problem between RoundCube and your IMAP server. For debugging you can print out the global variable $iil_error to see, if there' were any socket errors while connection to IMAP.
Regards, Thomas
-
joshua -
Joshua Layne
-
Rodolfo -
thomas bruederli -
Thomas Bruederli