Debian Bug report logs - #656395
davical: make Apache's HTTP Basic Auth work, when using PHP via redirects

Display info messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Christoph Anton Mitterer <calestyo@scientia.net>

To: Debian Bug Tracking System <submit@bugs.debian.org>

Subject: davical: make Apache's HTTP Basic Auth work, when using PHP via redirects

Date: Thu, 19 Jan 2012 01:34:44 +0100

Source: davical
Version: 1.0.2-1
Severity: important
Tags: upstream


Hi.

a) What is THE right way to set using the HTTP Basic Auth from (e.g.) Apache?
I've seen this in the wiki:
- http://wiki.davical.org/w/Configuration_settings#Apache_Module_does_the_Authentication
 $c->authenticate_hook['server_auth_type'] = 'Basic';
 include_once('AuthPlugins.php');
and this:
- http://wiki.davical.org/w/Configuration/Authentication_Settings#When_the_Webserver_does_the_authentication
$c->authenticate_hook['server_auth_type'] = array('Negotiate','Basic');

The correct way should be documented, the other one dropped.


The actual bug report:
b) AFAIK, davical "just" looks in the evn var REMOTE_USER for the user.
However, when a internal redirect has happened, especially when using 
PHP as CGI/FastCGI, this seems to be not set at all, but rather the
env var "REDIRECT_REMOTE_USER".
So please try to use the later, if the former is undefined.


Cheers,
Chris.

Message #10 received at 656395@bugs.debian.org (full text, mbox, reply):

From: Christoph Anton Mitterer <calestyo@scientia.net>

To: 656395@bugs.debian.org, Andrew McMillan <awm@debian.org>

Cc: control@bugs.debian.org

Subject: Re: davical: make Apache's HTTP Basic Auth work, when using PHP via redirects

Date: Sun, 12 Feb 2012 19:53:10 +0100

[Message part 1 (text/plain, inline)]

tags 656395 + patch
stop

Hey Andrew.

The following patch should solve this. But please double check the
code :)


Chris.

[redirect_remote_user-support.patch (text/x-patch, attachment)]

[smime.p7s (application/x-pkcs7-signature, attachment)]

Message #21 received at 656395-done@bugs.debian.org (full text, mbox, reply):

From: Christoph Anton Mitterer <calestyo@scientia.net>

To: 656395-done@bugs.debian.org

Cc: control@bugs.debian.org

Subject: Re: davical: make Apache's HTTP Basic Auth work, when using PHP via redirects

Date: Mon, 25 Mar 2013 02:21:44 +0100

[Message part 1 (text/plain, inline)]

forwarded 656395 https://github.com/DAViCal/davical/commit/f313282ee08339e5084d588172149b46dd278e13
fixed 656395 1.1.2
stop

I fixed that upstream in commit f313282ee08339e5084d588172149b46dd278e13.
An analogous fix was necessary for AWL (https://github.com/andrews-web-libraries/awl/commit/29ddd89baaf65bda2560e51665a2e761abef4147).

Closing the bug here right now, as a easy workaround (CGI wrapper script) is possible.

Cheers,
Chris.

[smime.p7s (application/x-pkcs7-signature, attachment)]

Message #32 received at 656395-close@bugs.debian.org (full text, mbox, reply):

From: Florian Schlichting <fsfs@debian.org>

To: 656395-close@bugs.debian.org

Subject: Bug#656395: fixed in davical 1.1.3-1

Date: Mon, 06 Oct 2014 23:18:40 +0000

Source: davical
Source-Version: 1.1.3-1

We believe that the bug you reported is fixed in the latest version of
davical, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 656395@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Florian Schlichting <fsfs@debian.org> (supplier of updated davical package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 07 Oct 2014 00:12:13 +0200
Source: davical
Binary: davical davical-doc
Architecture: source all
Version: 1.1.3-1
Distribution: unstable
Urgency: low
Maintainer: Davical Development Team <davical-devel@lists.sourceforge.net>
Changed-By: Florian Schlichting <fsfs@debian.org>
Description:
 davical    - PHP CalDAV and CardDAV Server
 davical-doc - PHP CalDAV and CardDAV Server - technical documentation
Closes: 656390 656395 702403 703290 703383 703387 717043 726577 730941 740827 742498
Changes:
 davical (1.1.3-1) unstable; urgency=low
 .
   [ Andrew McMillan ]
   * New upstream release (closes: #656395, #702403, #703290, #703383, #703387,
     #740827)
   * Updated the control file Vcs-* fields to the new addresses of the
     canonical git upstream repository.
   * Removed README.Debian which didn’t contain any useful information.
 .
   [ Florian Schlichting ]
   * Takeover for the Davical Development Team (closes: #742498)
   * Use short-form debian/rules and fix source format declaration
     (closes: #730941)
   * Clean up duplicate files (symlink identical files in api documentation)
   * debian/control: update and sort dependencies, add php5, php5-cli
     (closes: #717043), php5-curl to Recommends (closes: #656390),
     php5-ldap as Suggests (LP: #479378)
   * Add doc-base registration for api doc and website in davical-doc
   * Add a README.Debian explaining the necessary steps for a basic
     installation
   * Bump dh compat to level 9
   * Add a debian/watch file
   * Switch d/copyright to copyright-format 1.0, amend CREDITS from git log
   * Bump dependency on awl to 0.55
   * Declare compliance with Debian Policy 3.9.6
   * Upload to Debian (closes: #726577)
Checksums-Sha1:
 980bd5eaf8ba2d30961ee0f6458e2a95ea03aaa3 2003 davical_1.1.3-1.dsc
 782fe9eb4a21d95cfabc294aa7b3ce4b9039f7c6 2453312 davical_1.1.3.orig.tar.xz
 5e37901b6332a2d967561a65032e0ec27a6cc6b7 10984 davical_1.1.3-1.debian.tar.xz
 8d494b329bbf0e03f3c0751c115ec33e10928b65 339554 davical_1.1.3-1_all.deb
 43ad3e471ba93d742443e586cd4e340267ab9b3a 1156932 davical-doc_1.1.3-1_all.deb
Checksums-Sha256:
 e42a68eafc1d311a80085943f7a115cf093ac4873590b9292c02aab711a24cb3 2003 davical_1.1.3-1.dsc
 160f29788392ded6acbbeee0e2895016d3bf95baba569fe9bbd85b22d6222d8a 2453312 davical_1.1.3.orig.tar.xz
 1c1658ca3495c27e0bb4cef5eb3df338a8a137047afc91f0e0de76c322b10314 10984 davical_1.1.3-1.debian.tar.xz
 a18068dcf45df5d0b3a6681b86a86137fd9265896b9628fb2ea6d2c84e8d1c80 339554 davical_1.1.3-1_all.deb
 ae03c7da0d90c8ccf3401fb83f25f08ba376e5f7cfd56f3b9babfca04bba3f50 1156932 davical-doc_1.1.3-1_all.deb
Files:
 7bbc3339f8799950c2fe6daa9fe5ecd1 2003 web extra davical_1.1.3-1.dsc
 e12d97b693a74c86e4707a18e1056a82 2453312 web extra davical_1.1.3.orig.tar.xz
 c90642b34c38f8c917819c2721c14e6b 10984 web extra davical_1.1.3-1.debian.tar.xz
 ae69f814df74292e201c18fbe18beeea 339554 web extra davical_1.1.3-1_all.deb
 29f3e19a5297e5550a041dcccbcb9d00 1156932 doc extra davical-doc_1.1.3-1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=h/Ut
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.