Re: [rt-users] RT::Authen::ExternalAuth with PHPass (phpbb3);
On Thu, Nov 17, 2011 at 1:49 PM, Adrian Stel adisa...@gmail.com wrote: Hi Ruslan, If I understand well: 1) apply patch - easy to do (just add line to /opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/DBI.pm) 2) Here I have some question because I'm not sure how set 'p_enc_pkg' and 'p_enc_sub' These are not required when p_check is set. p_check is a code inlined right into config that does whole job of checking password user entered against the hash. I need add this check to RT_SiteConfig.pm: ?? Yes. p_check = sub { my ($hash, $pass) = @_; use Authen::Passphrase; return Authen::Passphrase-from_crypt($hash || '*')-match($pass); }, then RT_SiteConfig.pm looks like: # The Perl package subroutine used to encrypt passwords # e.g. if the passwords are stored using the MySQL v3.23 PASSWORD # function, then you will need Crypt::MySQL::password, but for the # MySQL4+ password function you will need Crypt::MySQL::password41 # Alternatively, you could use Digest::MD5::md5_hex or any other # encryption subroutine you can load in your perl installation 'p_enc_pkg' = 'Authen::Passphrase', (???) 'p_enc_sub' = '$P$', () p_check = sub { my ($hash, $pass) = @_; use Authen::Passphrase; return Authen::Passphrase-from_crypt($hash || '*')-match($pass); }, #'p_enc_pkg' = 'Crypt::MySQL', #'p_enc_sub' = 'password41', # If your p_enc_sub takes a salt as a second parameter, # uncomment this line to add your salt #'p_salt' = 'SALT', If i mix/miss something please correct me. Leave p_check and options that control how to find user in the DB, drop p_salt and p_enc_* options. Best Regards Adrian -- Best regards, Ruslan. RT Training Sessions (http://bestpractical.com/services/training.html) * Barcelona, Spain November 28 29, 2011
Re: [rt-users] RT::Authen::ExternalAuth with PHPass (phpbb3);
Hi Ruslan, I comment in RT_SiteConfig.pm: #p_enc_pkg = #p_enc_sub = and put: p_check = sub { my ($hash, $pass) = @_; use Authen::Passphrase; return Authen::Passphrase-from_crypt($hash || '*')-match($pass); }, In log I can see: p_check for My_MySQL failed: unrecognised crypt scheme $H$ at /opt/rt4/etc/RT_SiteConfig.pm line 154 This is the line: 154 return Authen::Passphrase-from_crypt($hash || '*')-match($pass); I'm not sure if I put this p_check i right place, or I miss some '' ? Normal we have: ''p_enc_pkg' = 'Authen::Passphrase',' Should I live this p_check like this: 151 p_check = sub { 152 my ($hash, $pass) = @_; 153 use Authen::Passphrase; 154 return Authen::Passphrase-from_crypt($hash || '*')-match($pass); 155 }, 156 I can send you whole Set($ExternalSettings,) if it will help find issues. Best Adrian 2011/11/17 Ruslan Zakirov r...@bestpractical.com: On Thu, Nov 17, 2011 at 1:49 PM, Adrian Stel adisa...@gmail.com wrote: Hi Ruslan, If I understand well: 1) apply patch - easy to do (just add line to /opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/DBI.pm) 2) Here I have some question because I'm not sure how set 'p_enc_pkg' and 'p_enc_sub' These are not required when p_check is set. p_check is a code inlined right into config that does whole job of checking password user entered against the hash. I need add this check to RT_SiteConfig.pm: ?? Yes. p_check = sub { my ($hash, $pass) = @_; use Authen::Passphrase; return Authen::Passphrase-from_crypt($hash || '*')-match($pass); }, then RT_SiteConfig.pm looks like: # The Perl package subroutine used to encrypt passwords # e.g. if the passwords are stored using the MySQL v3.23 PASSWORD # function, then you will need Crypt::MySQL::password, but for the # MySQL4+ password function you will need Crypt::MySQL::password41 # Alternatively, you could use Digest::MD5::md5_hex or any other # encryption subroutine you can load in your perl installation 'p_enc_pkg' = 'Authen::Passphrase', (???) 'p_enc_sub' = '$P$', () p_check = sub { my ($hash, $pass) = @_; use Authen::Passphrase; return Authen::Passphrase-from_crypt($hash || '*')-match($pass); }, #'p_enc_pkg' = 'Crypt::MySQL', #'p_enc_sub' = 'password41', # If your p_enc_sub takes a salt as a second parameter, # uncomment this line to add your salt #'p_salt' = 'SALT', If i mix/miss something please correct me. Leave p_check and options that control how to find user in the DB, drop p_salt and p_enc_* options. Best Regards Adrian -- Best regards, Ruslan. -- Pozdrawiam Adrian Stelmaszyk RT Training Sessions (http://bestpractical.com/services/training.html) * Barcelona, Spain November 28 29, 2011
Re: [rt-users] RT::Authen::ExternalAuth with PHPass (phpbb3);
On Thu, Nov 17, 2011 at 3:30 PM, Adrian Stel adisa...@gmail.com wrote: Hi Ruslan, [snip] In log I can see: p_check for My_MySQL failed: unrecognised crypt scheme $H$ at /opt/rt4/etc/RT_SiteConfig.pm line 154 Looks like it works. This is the line: 154 return Authen::Passphrase-from_crypt($hash || '*')-match($pass); I'm not sure if I put this p_check i right place, or I miss some '' ? Everything in its right place. However, according to http://www.openwall.com/phpass/ smart people in phpBB3 team changed $P$ to $H$ without changing meaning, so you need to oversmart them. Put the following line right before line 154 (return Authen...): $hash =~ s/^\$H\$/$P$/; That will replace $H$ in the beginning with $P$ and Authen::Passphrase should find proper module. -- Best regards, Ruslan. RT Training Sessions (http://bestpractical.com/services/training.html) * Barcelona, Spain November 28 29, 2011
[rt-users] How is RT-Extension-CustomField-HideEmptyValues supposed to work?
Hello, Can someone tell me what RT-Extension-CustomField-HideEmptyValues is supposed to do? I have one drop down that filters values for other ones. I would have thought that the child drop downs would be hidden as they have no values until the parent is selected, but that doesn't seem to work the way I would expect it to. I attached an image. The ones with Arrows next to them are empty values. Should they be hidden with this extension or am I misunderstanding what the extension is supposed to do? Thanks, Jim attachment: HideCustom.jpg RT Training Sessions (http://bestpractical.com/services/training.html) * Barcelona, Spain November 28 29, 2011
[rt-users] turning off automated e-mails
Tom - When we started using RT (3.6?), we set the template to 'Blank' for all scrips until we figured out which messages we did want to send. We then enabled the On Resolve, Reply to Requestors. Drawback: no silent resolve. We briefly tried a user-defined scrip for a silent resolve. The scrip was tied to Custom Field called Reply to Requestors?. See the RT wiki for how to implement this: http://requesttracker.wikia.com/wiki/Silent_Resolve_%28MuteResolve_ReRedux%29 We are moving to RT 4 shortly and plan to enable scrips that will send email for Reply and Comments. RT 4 has a 'Recipients' box on top of the page for updating ticket. This box contains a check list of those whose role allows them to receive the current Reply or Comment. One can silently add comments by unchecking names. After we move to RT 4, we will disable scrip that sends a reply to requestors when the ticket is resolved. Folks can post a Reply when resolving at ticket if they'd like to send information to the Requestor. Sharon Belliveau Federal Reserve Board Subject: Re: [rt-users] turning off automated e-mails Tom, Also, you can disable ALL the Global notification scrips and just create what you want at the Queue level. The option to select whether you want an email to go out, with the default being NO, is not there, that I know of. However, if it is really that important, ask BP what it would cost to modify your version for you. Kenn LBNL On Tue, Nov 15, 2011 at 7:45 AM, Giuseppe Sollazzo gsoll...@sgul.ac.ukwrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Tom, there's a much simpler way of dealing with it: I guess you want to have a look at Scrips and Templates. You can disable some of them. For example, Autoreply is the one triggered when a ticket is created, Correspond is the one triggered for any other reply except for a ticket resolution, Resolved is the resolution. Possibly, you want to leave just Autoreply and Resolved as active. Giuseppe On 15/11/11 15:24, Tom Hansen wrote: I am new to RT but I have done extensive searching on this and have not found what I am looking for. So, apologies if this is an FAQ that I have somehow missed. Basically, I want to set up RT4 so that it will only send e-mails upon explicit request. No e-mails on ticket creation, no e-mails on status change, no e-mails on adding comments/replies. I would just like, on every reply/comment, to have an e-mail this option so that an admin can very simply choose at the time of entering a reply or comment, to actually send as an e-mail. The DEFAULT would always be to NOT send any e-mails to anyone, and even if you choose to update a requestor on a particular reply or comment, I don't want that action to turn on the faucet for that user- I want the default to always be NO E-MAIL. Why is this? Because I know that my user base would be irritated by such e-mails. I know I am when I get automated replies like Your ticket #7546564 has been received. Our next available tech will respond. It's like calling an 800 number and getting the infamous your call is very important to us. Please hold and your call will be answered in the order it was received. I ultimately would like the user to receive usually just one e-mail when the ticket is closed, consisting of a personal message from one of us that also gets recorded in RT. That's it. And even that should be optional. Even if the problem had to be bounced between two techs, escalated, placed on hold for a day pending response from the vendor, before finally being resolved by a third tech, and the manager. I just don't want the user going on that roller-coaster ride with us unless they want to, and then we would only want to manually send out those pieces of information that we explicitly choose to share, at the time that we want to share it. I don't want RT sending out ANY e-mails automatically, EVER. But I still want the capability to manually choose to send any reply/comment from RT to a user if need be. But only on explicit manual request from the admin entering the information into RT. This sounds like such a simple, obvious scenario, yet I find support for it nowhere. Must I spend a week learning the internals of RT and write my own extension, to just set it so that it will only send e-mails manually? For now I have implemented a quick fix to allow me to use RT: I inserted an exit statement into the top of the Perl code routine that sends e-mails -- it was the top recommendation on the wiki -- and then I went in and, via a custom callback I got from the Wiki, suppressed the listing of those numerous e-mail sent entries that pollute the ticket history. But this solution means that I'm forever copying and pasting to and from e-mails to users. Which is fine, it's doable. But why does it need to be so hard to just turn off automatic e-mailing from RT? RT
Re: [rt-users] turning off automated e-mails
On Thu, Nov 17, 2011 at 09:53:49AM -0500, sharon.belliv...@frb.gov wrote: Tom - When we started using RT (3.6?), we set the template to 'Blank' for all scrips until we figured out which messages we did want to send. We then enabled the On Resolve, Reply to Requestors. Drawback: no silent resolve. We briefly tried a user-defined scrip for a silent resolve. The scrip was tied to Custom Field called Reply to Requestors?. See the RT wiki for how to implement this: http://requesttracker.wikia.com/wiki/Silent_Resolve_%28MuteResolve_ReRedux%29 We are moving to RT 4 shortly and plan to enable scrips that will send email for Reply and Comments. RT 4 has a 'Recipients' box on top of the page for updating ticket. This box contains a check list of those whose role allows them to receive the current Reply or Comment. One can silently add comments by unchecking names. After we move to RT 4, we will disable scrip that sends a reply to requestors when the ticket is resolved. Folks can post a Reply when resolving at ticket if they'd like to send information to the Requestor. Sharon Belliveau Federal Reserve Board Hi Sharon and Tom, One approach that we use is to define a custom field called something like Send Resolve. Then update the resolve scrips to check for that custom field and if it is set to no, do not send the notice. Cheers, Ken RT Training Sessions (http://bestpractical.com/services/training.html) * Barcelona, Spain November 28 29, 2011
Re: [rt-users] How is RT-Extension-CustomField-HideEmptyValues supposed to work?
On 11/17/2011 08:52 AM, Jim Lesinski wrote: Can someone tell me what RT-Extension-CustomField-HideEmptyValues is supposed to do? I have one drop down that filters values for other ones. I would have thought that the child drop downs would be hidden as they have no values until the parent is selected, but that doesn't seem to work the way I would expect it to. I attached an image. The ones with Arrows next to them are empty values. Should they be hidden with this extension or am I misunderstanding what the extension is supposed to do? That extension affects only display, not editing, of CFs. That is, it changes the /Ticket/Display.html page. If it hid the empty CFs when editing, you'd never be able to add a value for normal CFs that weren't filtered on another CF. Thomas RT Training Sessions (http://bestpractical.com/services/training.html) * Barcelona, Spain November 28 29, 2011
[rt-users] pdf thumbnail shows as broken
We're uploading some pdf files into custom fields as images. We need to do this as we want the pdfs to be clickable in searches. The problem is that the thumbnails show as broken images. I'm guessing this is because RT doesn't know how to make thumbnails from pdfs. We want to either have the thumbnails show up or turn off the thumbnails for pdfs and eliminate the broken image icon. I found this: http://search.cpan.org/~leocharre/Image-Magick-Thumbnail-PDF-1.13/lib/Image/Magick/Thumbnail/PDF.pm but as I am constitutionally incapable of programming in perl this does not help me much. Is anyone aware of a plugin for this? Or know a way to turn off the thumbnails for pdfs? Thanks! -- Pain is temporary. It may last a minute, or an hour, or a day, or a year, but eventually it will subside and something else will take its place. If I quit, however, it lasts forever. RT Training Sessions (http://bestpractical.com/services/training.html) * Barcelona, Spain November 28 29, 2011
Re: [rt-users] pdf thumbnail shows as broken
On 11/17/2011 01:16 PM, Yan Seiner wrote: We're uploading some pdf files into custom fields as images. We need to do this as we want the pdfs to be clickable in searches. That's the wrong approach. You should upload your PDFs into Upload a file CFs and extend the column map (using callbacks) to allow you to interpolate the file's URL within RT inside your format string. The problem is that the thumbnails show as broken images. I'm guessing this is because RT doesn't know how to make thumbnails from pdfs. RT isn't thumbnailing what you upload when it displays the CF value for you. Since it is an image CF, RT simply spits out an HTML img tag that points to the image URL within RT. I don't know of any browser that renders PDFs in img tags. Thomas RT Training Sessions (http://bestpractical.com/services/training.html) * Barcelona, Spain November 28 29, 2011
[rt-users] Nightly enoch root script change
Presently by default the nightly script runs to move items from any stalled state to opn when the Starts Date arrives. Is there a way to also have the script clear the Starts field as well? --- Vance Walsh Network and Systems Administrator Concord Academy - Concord, Mass. RT Training Sessions (http://bestpractical.com/services/training.html) * Barcelona, Spain November 28 29, 2011
[rt-users] make upgrade-database fails
Apparently this isn't a bug, was wondering if any of you have run into the following scenario: I am trying to upgrade from version 3.6.11 to the most recent. When running make upgrade-database, it errors out with the following: DBI connect('dbname=rt3;host= localhost','rt_user',...) failed: Access denied for user 'rt_user'@'localhost' (using password: YES) at /usr/local/share/perl5/DBIx/SearchBuilder/Handle.pm line 103 Connect Failed Access denied for user 'rt_user'@'localhost' (using password: YES) at /home/jared/rt-4.0.4/sbin/../lib/RT.pm line 165 make: *** [upgrade-database] Error 255 I have verified that I can access the mysql server with the user and password that I am using, so I am at a loss as to what to do here. -- - Thanks for your time - Jared B. Griffith - Email - jared.b.griff...@gmail.com - Cell Phone - 909-653-7814 RT Training Sessions (http://bestpractical.com/services/training.html) * Barcelona, Spain November 28 29, 2011