GroupDAV permissions

adsantos 2011-12-13 14:25:59 UTC #1

Hi!

First of all, I have to mention that I’ve been looking to resolve this issue for over a month in many occasions and haven’t been able to. I’ve also looked into all the forums and still can’t find the solution.

My issue is with permissions for CalDAV/CardDAV/GroupDAV: when I try to create a remote calendar on Thunderbird / Lightning (following instructions provided on http://www.egroupware.org/thunderbird_event_synchronization after changing the domain and user names) it does not accept my username | password combination (the same work perfectly on EGroupWare’s web interface). I’m using Mozilla Thunderbird 8.0 with Lightning 1.0

When I’m logged in to EGroupWare, I can see the page on http://www.mydomain.com/egroupware/groupdav.php/admin/calendar , but when I’m not logged in, I get the prompt “A username and password are being requested by http://www.mydomain.com. The site says: “EGroupware CalDAV/CardDAV/GroupDAV server”” (Authentication Required) and my username/password do not work.

I have granted permissions to this user by checking the option “Enabled / ACL” on “Calendar” (with the respective permissions) and on “CalDAV, CardDAV and GroupDAV server” for the admin user account.

I’m using shared hosting on a Linux server, with EGroupware Community Version 1.8.001.

I’d really appreciate any help on this, as it’s been really frustrating.

Thanks in advance,

ADSantos

ingoratsdorf 2011-12-13 21:55:31 UTC #2

Hi.

Firstly my alarm bells start ringing when I see you using an admin account
for CalDAV etc. The admin account should be - my personal strong belief -
only be used for administration od eGroupware and nothing else.
Create a user account for you.

Notwithstanding that, Thunderbird has several severe issues with
authentication, it always had. In addition, some servers do not support some
auth methods and others add “stuff” to the auth headers that eGroupware does
not understand, particularly shared servers in safe mode etc.

And what have you done over the past month to find the issue? That would
limit some other guesswork. Have you set up and tried various auth methods
in header setup?
My thunderbird install continuously asks for the password too. It accepts
it, however does not save it because I am using many calendars and
thunderbird only stores passwords per host, not per URL. So does MS Outlook.
In addition, my shared server adds the apache PID to the auth headers
nounce: " EGroupware CalDAV/CardDAV/GroupDAV server: bad login or
password-10466", hence HTTP auth does not work for me.

Have you tried another user?
Have you tried different auth method?
Have you looked at switching debug on and see what goes to error log?

Chers,
Ingo

adsantos 2011-12-15 14:43:37 UTC #3

Thanks for the follow-up.

Have you tried another user? I had tried with a different user with same results. Just created a new one and tried with no difference.
Have you tried different auth method? I just tried with every other auth method listed for CalDAV/CardDAV/GroupDAV (that didn’t require a sepparate service) and still the same issue.
Have you looked at switching debug on and see what goes to error log? Please explain how do I switch debug on (couldn’t find it)

Regards,

ADSantos

ingoratsdorf 2011-12-15 18:10:06 UTC #4

To debug groupdav:

Log in as admin in the main eGroupware
In “General Menu” sidebar, select “Preferences”
Select CalDAV, CardDAV and GroupDAV Server Preferences
Select “Forced Preferences” tab
Select level 3 under Debug Level down the bottom

This will generate A LOT of information in your servers error.log
You will need access to your servers error log, most probably through your
shared server’s admin panel. See what you can find in the error log.

I suspect if no auth method works for you, then your server might be
blocking some of the conversation. This can happen on shared servers.

When, done, disable debug mode again. It slows down your server, generates
too much sensitive data and is a potential safety issue.

Cheers,
Ingo