Bug#437026: please enable kerberos authentication
On Fri, Aug 10, 2007 at 10:17:56AM +0200, Alexander Sack wrote: tags 437026 + confirmed thanks On Fri, Aug 10, 2007 at 10:01:02AM +0200, Guido Guenther wrote: Hi, the auth extension is currently disabled. Please enable it in iceowl to get SPNEGO/Kerberos to work. Trivial patch attached. Upstream bug is: https://bugzilla.mozilla.org/show_bug.cgi?id=391493 Cheers, -- Guido Yes, will do ... is it known to work? It works here. There are issues when the server only allows for Kerberos and you don't have a valid ticket: you don't get an error message and the calender stays empty. If the server also support plain auth, it looks o.k. though. Cheers, -- Guido -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#437026: please enable kerberos authentication
Package: iceowl Version: 0.5-2 Severity: wishlist Tags: patch Hi, the auth extension is currently disabled. Please enable it in iceowl to get SPNEGO/Kerberos to work. Trivial patch attached. Upstream bug is: https://bugzilla.mozilla.org/show_bug.cgi?id=391493 Cheers, -- Guido -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.23-rc2-g2c9d365c Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages iceowl depends on: ii debianutils 2.22.1 Miscellaneous utilities specific t ii fontconfig 2.4.2-1.2generic font configuration library ii libatk1.0-0 1.18.0-2 The ATK accessibility toolkit ii libc6 2.6-5GNU C Library: Shared libraries ii libcairo2 1.4.10-1+b2 The Cairo 2D vector graphics libra ii libfontconfig1 2.4.2-1.2generic font configuration library ii libfreetype62.3.5-1 FreeType 2 font engine, shared lib ii libgcc1 1:4.2.1-1GCC support library ii libglib2.0-02.12.13-1The GLib library of C routines ii libgtk2.0-0 2.10.13-1The GTK+ graphical user interface ii libjpeg62 6b-13The Independent JPEG Group's JPEG ii libnspr4-0d 4.6.7-1 NetScape Portable Runtime Library ii libnss3-0d 3.11.7-1 Network Security Service libraries ii libpango1.0-0 1.16.5-1 Layout and rendering of internatio ii libpng12-0 1.2.15~beta5-2 PNG library - runtime ii libstdc++6 4.2.1-1 The GNU Standard C++ Library v3 ii libx11-62:1.0.3-7X11 client-side library ii libxcursor1 1:1.1.8-2X cursor management library ii libxext61:1.0.3-2X11 miscellaneous extension librar ii libxfixes3 1:4.0.3-2X11 miscellaneous 'fixes' extensio ii libxft2 2.1.12-2 FreeType-based font drawing librar ii libxi6 2:1.1.2-1X11 Input extension library ii libxinerama11:1.0.2-1X11 Xinerama extension library ii libxrandr2 2:1.2.1-1X11 RandR extension library ii libxrender1 1:0.9.2-1X Rendering Extension client libra ii libxt6 1:1.0.5-3X11 toolkit intrinsics library ii psmisc 22.5-1 Utilities that use the proc filesy ii zlib1g 1:1.2.3.3.dfsg-5 compression library - runtime iceowl recommends no packages. -- no debconf information diff --git a/debian/rules b/debian/rules index ad0db16..394a3a1 100755 --- a/debian/rules +++ b/debian/rules @@ -52,7 +52,7 @@ DEB_CONFIGURE_USER_FLAGS= \ --with-system-jpeg=/usr \ --with-system-zlib=/usr \ --enable-optimize=-pipe -w $(OPTFLAGS) \ - --enable-extensions=default,lightning \ + --enable-extensions=default,lightning,auth \ --with-system-nspr \ --with-system-nss \ --enable-postscript \
Bug#437026: please enable kerberos authentication
tags 437026 + confirmed thanks On Fri, Aug 10, 2007 at 10:01:02AM +0200, Guido Guenther wrote: Hi, the auth extension is currently disabled. Please enable it in iceowl to get SPNEGO/Kerberos to work. Trivial patch attached. Upstream bug is: https://bugzilla.mozilla.org/show_bug.cgi?id=391493 Cheers, -- Guido Yes, will do ... is it known to work? - Alexander -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#437026: please enable kerberos authentication
On Fri, Aug 10, 2007 at 02:42:25PM +0200, Alexander Sack wrote: On Fri, Aug 10, 2007 at 02:36:27PM +0200, Guido Guenther wrote: On Fri, Aug 10, 2007 at 10:17:56AM +0200, Alexander Sack wrote: tags 437026 + confirmed thanks On Fri, Aug 10, 2007 at 10:01:02AM +0200, Guido Guenther wrote: Hi, the auth extension is currently disabled. Please enable it in iceowl to get SPNEGO/Kerberos to work. Trivial patch attached. Upstream bug is: https://bugzilla.mozilla.org/show_bug.cgi?id=391493 Cheers, -- Guido Yes, will do ... is it known to work? It works here. There are issues when the server only allows for Kerberos and you don't have a valid ticket: you don't get an error message and the calender stays empty. If the server also support plain auth, it looks o.k. though. You mean if you do not yet have a ticket granting ticket, right? If it doesn't get you a service-ticket at all, I would consider it not usable. Calendarserver offers Kerberos only: If you don't have a TGT, you won't get a dialog to acquire one - the calender just stays empty. If you _do_ have a TGT you get a service-ticket as expected. Calenderserver offers Kerberos and alternative authentication mechanisms: If you don't have a TGT, a dialog asks for the password of the other authentication mechanism. If you _do_ have a TGT you get a service-ticket as expected. Cheers, -- Guido -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#437026: please enable kerberos authentication
On Fri, Aug 10, 2007 at 02:36:27PM +0200, Guido Guenther wrote: On Fri, Aug 10, 2007 at 10:17:56AM +0200, Alexander Sack wrote: tags 437026 + confirmed thanks On Fri, Aug 10, 2007 at 10:01:02AM +0200, Guido Guenther wrote: Hi, the auth extension is currently disabled. Please enable it in iceowl to get SPNEGO/Kerberos to work. Trivial patch attached. Upstream bug is: https://bugzilla.mozilla.org/show_bug.cgi?id=391493 Cheers, -- Guido Yes, will do ... is it known to work? It works here. There are issues when the server only allows for Kerberos and you don't have a valid ticket: you don't get an error message and the calender stays empty. If the server also support plain auth, it looks o.k. though. You mean if you do not yet have a ticket granting ticket, right? If it doesn't get you a service-ticket at all, I would consider it not usable. - Alexander -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]