Re: [rt-users] RT::Authen::ExternalAuth with PHPass (phpbb3);

[Ruslan Zakirov]

On Thu, Nov 17, 2011 at 1:49 PM, Adrian Stel adisa...@gmail.com wrote:
 Hi Ruslan,

 If I understand well:

 1) apply patch - easy to do (just add line to
 /opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/DBI.pm)

 2) Here I have some question because I'm not sure how set 'p_enc_pkg'
 and 'p_enc_sub'

These are not required when p_check is set. p_check is a code inlined
right into config that does whole job of checking password user
entered against the hash.

 I need add this check to RT_SiteConfig.pm: ??

Yes.

 p_check = sub {
   my ($hash, $pass) = @_;
   use Authen::Passphrase;
   return Authen::Passphrase-from_crypt($hash || '*')-match($pass);
 },


 then RT_SiteConfig.pm looks like:


 # The Perl package  subroutine used to encrypt passwords
 # e.g. if the passwords are stored using the MySQL v3.23 PASSWORD
 # function, then you will need Crypt::MySQL::password, but for the
 # MySQL4+ password function you will need Crypt::MySQL::password41
 # Alternatively, you could use Digest::MD5::md5_hex or any other
 # encryption subroutine you can load in your perl installation
 'p_enc_pkg'                 =  'Authen::Passphrase',   (???)
 'p_enc_sub'                 =  '$P$',     ()
 p_check = sub {
  my ($hash, $pass) = @_;
  use Authen::Passphrase;
  return Authen::Passphrase-from_crypt($hash || '*')-match($pass);
 },
 #'p_enc_pkg'                 =  'Crypt::MySQL',
 #'p_enc_sub'                 =  'password41',
 # If your p_enc_sub takes a salt as a second parameter,
 # uncomment this line to add your salt
 #'p_salt'                    =  'SALT',


 If i mix/miss something please correct me.

Leave p_check and options that control how to find user in the DB,
drop p_salt and p_enc_* options.

 Best Regards
 Adrian

-- 
Best regards, Ruslan.

RT Training Sessions (http://bestpractical.com/services/training.html)
*  Barcelona, Spain  November 28  29, 2011

Re: [rt-users] RT::Authen::ExternalAuth with PHPass (phpbb3);

[Adrian Stel]

Hi Ruslan,


I comment in RT_SiteConfig.pm:

#p_enc_pkg =
#p_enc_sub =

and put:

p_check = sub {
  my ($hash, $pass) = @_;
  use Authen::Passphrase;
  return Authen::Passphrase-from_crypt($hash || '*')-match($pass);
},



In log I can see:

p_check for My_MySQL failed: unrecognised crypt scheme $H$ at
/opt/rt4/etc/RT_SiteConfig.pm line 154


This is the line:

154   return Authen::Passphrase-from_crypt($hash || '*')-match($pass);


I'm not sure if I put this p_check i right place, or I miss some '' ?


Normal we have:
''p_enc_pkg' =  'Authen::Passphrase','

Should I live this p_check like this:

   151  p_check = sub {
   152   my
($hash, $pass) = @_;
   153   use
Authen::Passphrase;
   154
return Authen::Passphrase-from_crypt($hash || '*')-match($pass);
   155  },
   156


I can send you whole  Set($ExternalSettings,) if it will  help find issues.

Best
Adrian

2011/11/17 Ruslan Zakirov r...@bestpractical.com:
 On Thu, Nov 17, 2011 at 1:49 PM, Adrian Stel adisa...@gmail.com wrote:
 Hi Ruslan,

 If I understand well:

 1) apply patch - easy to do (just add line to
 /opt/rt4/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth/DBI.pm)

 2) Here I have some question because I'm not sure how set 'p_enc_pkg'
 and 'p_enc_sub'

 These are not required when p_check is set. p_check is a code inlined
 right into config that does whole job of checking password user
 entered against the hash.

 I need add this check to RT_SiteConfig.pm: ??

 Yes.

 p_check = sub {
   my ($hash, $pass) = @_;
   use Authen::Passphrase;
   return Authen::Passphrase-from_crypt($hash || '*')-match($pass);
 },


 then RT_SiteConfig.pm looks like:


 # The Perl package  subroutine used to encrypt passwords
 # e.g. if the passwords are stored using the MySQL v3.23 PASSWORD
 # function, then you will need Crypt::MySQL::password, but for the
 # MySQL4+ password function you will need Crypt::MySQL::password41
 # Alternatively, you could use Digest::MD5::md5_hex or any other
 # encryption subroutine you can load in your perl installation
 'p_enc_pkg'                 =  'Authen::Passphrase',   (???)
 'p_enc_sub'                 =  '$P$',     ()
 p_check = sub {
  my ($hash, $pass) = @_;
  use Authen::Passphrase;
  return Authen::Passphrase-from_crypt($hash || '*')-match($pass);
 },
 #'p_enc_pkg'                 =  'Crypt::MySQL',
 #'p_enc_sub'                 =  'password41',
 # If your p_enc_sub takes a salt as a second parameter,
 # uncomment this line to add your salt
 #'p_salt'                    =  'SALT',


 If i mix/miss something please correct me.

 Leave p_check and options that control how to find user in the DB,
 drop p_salt and p_enc_* options.

 Best Regards
 Adrian

 --
 Best regards, Ruslan.




-- 
Pozdrawiam
Adrian Stelmaszyk

RT Training Sessions (http://bestpractical.com/services/training.html)
*  Barcelona, Spain  November 28  29, 2011

Re: [rt-users] RT::Authen::ExternalAuth with PHPass (phpbb3);

[Ruslan Zakirov]

On Thu, Nov 17, 2011 at 3:30 PM, Adrian Stel adisa...@gmail.com wrote:
 Hi Ruslan,


[snip]


 In log I can see:

 p_check for My_MySQL failed: unrecognised crypt scheme $H$ at
 /opt/rt4/etc/RT_SiteConfig.pm line 154

Looks like it works.

 This is the line:

 154   return Authen::Passphrase-from_crypt($hash || '*')-match($pass);


 I'm not sure if I put this p_check i right place, or I miss some '' ?

Everything in its right place. However, according to
http://www.openwall.com/phpass/ smart people in phpBB3 team changed
$P$ to $H$ without changing meaning, so you need to oversmart them.
Put the following line right before line 154 (return Authen...):

$hash =~ s/^\$H\$/$P$/;

That will replace $H$ in the beginning with $P$ and Authen::Passphrase
should find proper module.

-- 
Best regards, Ruslan.

RT Training Sessions (http://bestpractical.com/services/training.html)
*  Barcelona, Spain  November 28  29, 2011

[rt-users] How is RT-Extension-CustomField-HideEmptyValues supposed to work?

[Jim Lesinski]

Hello,

Can someone tell me what RT-Extension-CustomField-HideEmptyValues is
supposed to do? I have one drop down that filters values for other ones. I
would have thought that the child drop downs would be hidden as they have
no values until the parent is selected, but that doesn't seem to work the
way I would expect it to.

I attached an image. The ones with Arrows next to them are empty values.
Should they be hidden with this extension or am I misunderstanding what the
extension is supposed to do?

Thanks,
Jim
attachment: HideCustom.jpg
RT Training Sessions (http://bestpractical.com/services/training.html)
*  Barcelona, Spain — November 28  29, 2011

[rt-users] turning off automated e-mails

[Sharon . Belliveau]

Tom -

When we started using RT (3.6?), we set the template to 'Blank' for all
scrips until we figured out which messages we did want to send.  We then
enabled the On Resolve, Reply to Requestors. Drawback: no silent resolve.

We briefly tried a user-defined scrip for a silent resolve. The scrip was
tied to Custom Field called Reply to Requestors?.  See the RT wiki for
how to implement this:
http://requesttracker.wikia.com/wiki/Silent_Resolve_%28MuteResolve_ReRedux%29

We are moving to RT 4 shortly and plan to enable scrips that will send
email for Reply and Comments.  RT 4 has a 'Recipients' box on top of the
page for updating ticket. This box contains a check list of those whose
role allows them to receive the current Reply or Comment.  One can silently
add comments by unchecking names. After we move to RT 4, we will disable
scrip that sends a reply to requestors when the ticket is resolved. Folks
can post a Reply when resolving at ticket if they'd like to send
information to the Requestor.

Sharon Belliveau
Federal Reserve Board




Subject: Re: [rt-users] turning off automated e-mails
Tom,

Also, you can disable ALL the Global notification scrips and just create
what you want at the Queue level.

The option to select whether you want an email to go out, with the default
being NO, is not there, that I know of. However, if it is really that
important, ask BP what it would cost to modify your version for you.

Kenn
LBNL

On Tue, Nov 15, 2011 at 7:45 AM, Giuseppe Sollazzo
gsoll...@sgul.ac.ukwrote:


 -BEGIN PGP SIGNED MESSAGE-
 Hash: SHA1

 Hi Tom,
 there's a much simpler way of dealing with it: I guess you want to
 have a look at Scrips and Templates.

 You can disable some of them. For example, Autoreply is the one
 triggered when a ticket is created, Correspond is the one triggered
 for any other reply except for a ticket resolution, Resolved is the
 resolution.

 Possibly, you want to leave just Autoreply and Resolved as active.

 Giuseppe

 On 15/11/11 15:24, Tom Hansen wrote:
 
  I am new to RT but I have done extensive searching on this and
  have not found what I am looking for. So, apologies if this is an
  FAQ that I have somehow missed.
 
  Basically, I want to set up RT4 so that it will only send e-mails
  upon explicit request. No e-mails on ticket creation, no e-mails
  on status change, no e-mails on adding comments/replies.
 
  I would just like, on every reply/comment, to have an e-mail
  this option so that an admin can very simply choose at the time
  of entering a reply or comment, to actually send as an e-mail.
  The DEFAULT would always be to NOT send any e-mails to anyone, and
  even if you choose to update a requestor on a particular reply or
  comment, I don't want that action to turn on the faucet for that
  user- I want the default to always be NO E-MAIL.
 
  Why is this? Because I know that my user base would be irritated
  by such e-mails. I know I am when I get automated replies like
  Your ticket #7546564 has been received. Our next available tech
  will respond. It's like calling an 800 number and getting the
  infamous your call is very important to us. Please hold and your
  call will be answered in the order it was received.
 
  I ultimately would like the user to receive usually just one
  e-mail when the ticket is closed, consisting of a personal message
  from one of us that also gets recorded in RT. That's it. And even
  that should be optional. Even if the problem had to be bounced
  between two techs, escalated, placed on hold for a day pending
  response from the vendor, before finally being resolved by a third
  tech, and the manager. I just don't want the user going on that
  roller-coaster ride with us unless they want to, and then we would
  only want to manually send out those pieces of information that we
  explicitly choose to share, at the time that we want to share it.
 
  I don't want RT sending out ANY e-mails automatically, EVER.
 
  But I still want the capability to manually choose to send any
  reply/comment from RT to a user if need be. But only on explicit
  manual request from the admin entering the information into RT.
 
  This sounds like such a simple, obvious scenario, yet I find
  support for it nowhere. Must I spend a week learning the internals
  of RT and write my own extension, to just set it so that it will
  only send e-mails manually?
 
 
  For now I have implemented a quick fix to allow me to use RT: I
  inserted an exit statement into the top of the Perl code routine
  that sends e-mails -- it was the top recommendation on the wiki --
  and then I went in and, via a custom callback I got from the Wiki,
  suppressed the listing of those numerous e-mail sent entries
  that pollute the ticket history. But this solution means that I'm
  forever copying and pasting to and from e-mails to users. Which
  is fine, it's doable. But why does it need to be so hard to just
  turn off automatic e-mailing from RT?
 






RT 

Re: [rt-users] turning off automated e-mails

[k...@rice.edu]

On Thu, Nov 17, 2011 at 09:53:49AM -0500, sharon.belliv...@frb.gov wrote:
 Tom -
 
 When we started using RT (3.6?), we set the template to 'Blank' for all
 scrips until we figured out which messages we did want to send.  We then
 enabled the On Resolve, Reply to Requestors. Drawback: no silent resolve.
 
 We briefly tried a user-defined scrip for a silent resolve. The scrip was
 tied to Custom Field called Reply to Requestors?.  See the RT wiki for
 how to implement this:
 http://requesttracker.wikia.com/wiki/Silent_Resolve_%28MuteResolve_ReRedux%29
 
 We are moving to RT 4 shortly and plan to enable scrips that will send
 email for Reply and Comments.  RT 4 has a 'Recipients' box on top of the
 page for updating ticket. This box contains a check list of those whose
 role allows them to receive the current Reply or Comment.  One can silently
 add comments by unchecking names. After we move to RT 4, we will disable
 scrip that sends a reply to requestors when the ticket is resolved. Folks
 can post a Reply when resolving at ticket if they'd like to send
 information to the Requestor.
 
 Sharon Belliveau
 Federal Reserve Board
 

Hi Sharon and Tom,

One approach that we use is to define a custom field called something
like Send Resolve. Then update the resolve scrips to check for that
custom field and if it is set to no, do not send the notice.

Cheers,
Ken

RT Training Sessions (http://bestpractical.com/services/training.html)
*  Barcelona, Spain  November 28  29, 2011

Re: [rt-users] How is RT-Extension-CustomField-HideEmptyValues supposed to work?

[Thomas Sibley]

On 11/17/2011 08:52 AM, Jim Lesinski wrote:
 Can someone tell me what RT-Extension-CustomField-HideEmptyValues is
 supposed to do? I have one drop down that filters values for other ones.
 I would have thought that the child drop downs would be hidden as they
 have no values until the parent is selected, but that doesn't seem to
 work the way I would expect it to. 
 
 I attached an image. The ones with Arrows next to them are empty values.
 Should they be hidden with this extension or am I misunderstanding what
 the extension is supposed to do?

That extension affects only display, not editing, of CFs.  That is, it
changes the /Ticket/Display.html page.

If it hid the empty CFs when editing, you'd never be able to add a value
for normal CFs that weren't filtered on another CF.

Thomas

RT Training Sessions (http://bestpractical.com/services/training.html)
*  Barcelona, Spain  November 28  29, 2011

[rt-users] pdf thumbnail shows as broken

[Yan Seiner]

We're uploading some pdf files into custom fields as images.  We need to
do this as we want the pdfs to be clickable in searches.

The problem is that the thumbnails show as broken images.  I'm guessing
this is because RT doesn't know how to make thumbnails from pdfs.

We want to either have the thumbnails show up or turn off the thumbnails
for pdfs and eliminate the broken image icon.

I found this:

http://search.cpan.org/~leocharre/Image-Magick-Thumbnail-PDF-1.13/lib/Image/Magick/Thumbnail/PDF.pm

but as I am constitutionally incapable of programming in perl this does
not help me much.

Is anyone aware of a plugin for this?  Or know a way to turn off the
thumbnails for pdfs?

Thanks!

-- 
Pain is temporary. It may last a minute, or an hour, or a day, or a year,
but eventually it will subside and something else will take its place. If
I quit, however, it lasts forever.


RT Training Sessions (http://bestpractical.com/services/training.html)
*  Barcelona, Spain  November 28  29, 2011

Re: [rt-users] pdf thumbnail shows as broken

[Thomas Sibley]

On 11/17/2011 01:16 PM, Yan Seiner wrote:
 We're uploading some pdf files into custom fields as images.  We need to
 do this as we want the pdfs to be clickable in searches.

That's the wrong approach.  You should upload your PDFs into Upload a
file CFs and extend the column map (using callbacks) to allow you to
interpolate the file's URL within RT inside your format string.

 The problem is that the thumbnails show as broken images.  I'm guessing
 this is because RT doesn't know how to make thumbnails from pdfs.

RT isn't thumbnailing what you upload when it displays the CF value for
you.  Since it is an image CF, RT simply spits out an HTML img tag
that points to the image URL within RT.  I don't know of any browser
that renders PDFs in img tags.

Thomas

RT Training Sessions (http://bestpractical.com/services/training.html)
*  Barcelona, Spain  November 28  29, 2011

[rt-users] Nightly enoch root script change

[Vance Walsh]

Presently by default the nightly script runs to move items from any stalled
state to opn when the Starts Date arrives.

Is there a way to also have the script clear the Starts field as well?

---

Vance Walsh
Network and Systems Administrator
Concord Academy - Concord, Mass.


RT Training Sessions (http://bestpractical.com/services/training.html)
*  Barcelona, Spain — November 28  29, 2011

[rt-users] make upgrade-database fails

[Jared Griffith]

Apparently this isn't a bug, was wondering if any of you have run into the
following scenario:

I am trying to upgrade from version 3.6.11 to the most recent.  When
running make upgrade-database, it errors out with the following:

DBI connect('dbname=rt3;host=
localhost','rt_user',...) failed: Access denied for user 'rt_user'@'localhost'
(using password: YES) at
/usr/local/share/perl5/DBIx/SearchBuilder/Handle.pm line 103
Connect Failed Access denied for user 'rt_user'@'localhost' (using
password: YES)
 at /home/jared/rt-4.0.4/sbin/../lib/RT.pm line 165
make: *** [upgrade-database] Error 255

I have verified that I can access the mysql server with the user and
password that I am using, so I am at a loss as to what to do here.


-- 
- Thanks for your time
- Jared B. Griffith
- Email - jared.b.griff...@gmail.com
- Cell Phone - 909-653-7814

RT Training Sessions (http://bestpractical.com/services/training.html)
*  Barcelona, Spain — November 28  29, 2011