View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0003899 | SOGo | Web General | public | 2016-11-14 20:32 | 2016-11-18 11:52 |
Reporter | labnet | Assigned To | ludovic | ||
Priority | high | Severity | block | Reproducibility | always |
Status | resolved | Resolution | fixed | ||
Platform | [Server] Linux | OS | Debian | OS Version | 7 (Wheezy) |
Product Version | 3.2.1 | ||||
Fixed in Version | 3.2.2 | ||||
Summary | 0003899: SQL authentication | ||||
Description | After Upgrade to the actual nightly build. The authentication din't work: SOGO LOG SOGo Config | ||||
Steps To Reproduce | Standard Login on on the Web-Groupware. | ||||
Tags | authentication, mysql, passwordPolicy | ||||
I don't know why the password policy produce the error, due to the authentication credentials are used from the postfix mailbox? |
|
Show a sample of a user password from the db. We recently modified that code to also support sha256/512-crypt. |
|
SQL-Result.html (3,409 bytes)
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <!-- saved from url=(0227)https://moebes.info/phpmyadmin/sql.php?db=postfixadmin&table=sogo_auth&printview=1&sql_query=SELECT+%2A+%0AFROM++%60sogo_auth%60+%0AWHERE+c_uid+%3D++%27test%40moebes.info%27&display_text=F&token=e6c6b74c5746c0e8d35e98cd48dacd31 --> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="de" lang="de" dir="ltr"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <link rel="icon" href="https://moebes.info/phpmyadmin/favicon.ico" type="image/x-icon"> <link rel="shortcut icon" href="https://moebes.info/phpmyadmin/favicon.ico" type="image/x-icon"> <title>SQL-Abfrageergebnis - phpMyAdmin 3.4.11.1deb2+deb7u6</title> <link rel="stylesheet" type="text/css" href="./SQL-Result_files/phpmyadmin.css.php"> </head> <body bgcolor="#ffffff"> <h1>SQL-Abfrageergebnis</h1> <p> <strong>Host:</strong> localhost<br> <strong>Datenbank:</strong> postfixadmin<br> <strong>Erstellungszeit:</strong> 14. Nov 2016 um 22:19<br> <strong>Erstellt von:</strong> phpMyAdmin 3.4.11.1deb2+deb7u6 / MySQL 5.5.52-0+deb7u1<br> <strong>SQL-Befehl:</strong> SELECT * FROM `sogo_auth` WHERE c_uid = 'test@moebes.info' LIMIT 0, 30 ; <br> <strong>Datensätze:</strong> 1 </p> <div id="sqlqueryresults" class="ajax"><table id="table_results" class="data ajax"> <thead><tr> <th class="condition">c_uid </th><th>c_name </th><th>c_password </th><th>c_cn </th><th>mail </th></tr> </thead> <tbody> <tr class="odd"><td class="data inline_edit not_null odd condition ">test@moebes.info</td> <td class="data inline_edit not_null odd ">test@moebes.info</td> <td class="data inline_edit not_null odd ">$1$a6d5abcc$gQQKOOLIpwb/4Nuw4kDdS.</td> <td class="data inline_edit not_null odd ">test</td> <td class="data inline_edit not_null odd ">test@moebes.info</td> </tr> </tbody> </table> <script type="text/javascript"> //<![CDATA[ // Do print the page window.onload = function() { if (typeof(window.print) != 'undefined') { window.print(); } } //]]> </script> </div><script type="text/javascript"> //<![CDATA[ $(document).ready(function(){ // updates current settings if (window.parent.setAll) { window.parent.setAll('de', 'utf8_general_ci', '1', 'postfixadmin', 'sogo_auth', 'e6c6b74c5746c0e8d35e98cd48dacd31'); } // set current db, table and sql query in the querywindow if (window.parent.reload_querywindow) { window.parent.reload_querywindow( 'postfixadmin', 'sogo_auth', ''); } if (window.parent.frame_content) { // reset content frame name, as querywindow needs to set a unique name // before submitting form data, and navigation frame needs the original name if (typeof(window.parent.frame_content.name) != 'undefined' && window.parent.frame_content.name != 'frame_content') { window.parent.frame_content.name = 'frame_content'; } if (typeof(window.parent.frame_content.id) != 'undefined' && window.parent.frame_content.id != 'frame_content') { window.parent.frame_content.id = 'frame_content'; } //window.parent.frame_content.setAttribute('name', 'frame_content'); //window.parent.frame_content.setAttribute('id', 'frame_content'); } }); //]]> </script> </body></html> |
|
Test with sha512 password scheme, we get the same error. Is it possible to deactivate this password policy? Nov 15 19:40:18 sogod [28343]: SOGoRootPage Login from '2a02:1205:506a:da80:f057:e5a2:4ed:86b5' for user 'test@xxxx.info' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0 |
|
Password policy has nothing to do with this, it's used only for LDAP. |
|
I think I fixed the issue but I would need a sample password you have in your c_password column. Copy/paste the value AS IS. |
|
Test Password "q1w2e3r4t5_test" (without quote) c_password (when is the fix in the next daily build to test it?) |
|
in 16 hours from now |
|
After update to the nightly build, again the same problem: SOGo database schemas are not automatically upgraded by Please check the list of database schema upgrade scripts [ ok ] Restarting SOGo: sogo. Nov 16 14:43:20 sogod [11355]: SOGoRootPage Login from 'xxxx' for user 'xxx@xxxx.com' might not have worked - password policy: 65535 grace: -1 expire: -1 bound: 0 |
|
There was no nightly builds generated last night - we'll generate a new one tonight so the fix is NOT in 20161115. |
|
I have tried to update, but no new build was available. when can I test the fixed version? Thanks. |
|
New nightly builds are now available. |
|
Great work the login is working as before - Thanks!! |
|
sogo: master bf42f225 2016-11-15 14:18 Details Diff |
(fix) fixed broken string initializations (fixes 0003899) |
Affected Issues 0003899 |
|
mod - SoObjects/SOGo/NSData+Crypto.m | Diff File | ||
sogo: v2 53b1cc54 2016-11-15 14:18 Details Diff |
(fix) fixed broken string initializations (fixes 0003899) |
Affected Issues 0003899 |
|
mod - SoObjects/SOGo/NSData+Crypto.m | Diff File |
Date Modified | Username | Field | Change |
---|---|---|---|
2016-11-14 20:32 | labnet | New Issue | |
2016-11-14 20:33 | labnet | Tag Attached: authentication | |
2016-11-14 20:33 | labnet | Tag Attached: Baikal | |
2016-11-14 20:33 | labnet | Tag Attached: mysql | |
2016-11-14 20:34 | labnet | Tag Detached: Baikal | |
2016-11-14 20:34 | labnet | Tag Attached: passwordPolicy | |
2016-11-14 20:37 | labnet | Note Added: 0010849 | |
2016-11-14 20:59 | ludovic | Note Added: 0010850 | |
2016-11-14 21:22 | labnet | File Added: SQL-Result.html | |
2016-11-15 18:45 | labnet | Note Added: 0010864 | |
2016-11-15 18:45 | labnet | Note Edited: 0010864 | |
2016-11-15 18:46 | ludovic | Note Added: 0010865 | |
2016-11-15 19:13 | ludovic | Note Added: 0010866 | |
2016-11-15 19:19 | ludovic | Changeset attached | => sogo master bf42f225 |
2016-11-15 19:19 | ludovic | Assigned To | => ludovic |
2016-11-15 19:19 | ludovic | Resolution | open => fixed |
2016-11-15 19:23 | ludovic | Changeset attached | => sogo v2 53b1cc54 |
2016-11-15 19:28 | labnet | Note Added: 0010867 | |
2016-11-15 19:29 | ludovic | Note Added: 0010868 | |
2016-11-16 13:45 | labnet | Note Added: 0010872 | |
2016-11-16 13:53 | ludovic | Note Added: 0010873 | |
2016-11-17 15:58 | labnet | Note Added: 0010887 | |
2016-11-17 20:35 | francis | Note Added: 0010888 | |
2016-11-18 05:30 | labnet | Note Added: 0010889 | |
2016-11-18 11:52 | ludovic | Status | new => resolved |
2016-11-18 11:52 | ludovic | Fixed in Version | => 3.2.2 |