[rt-users] HTML5/jqplot charts
Hi, I put together a little hack to replace the current GD charts with HTML5 ones.Here: http://requesttracker.wikia.com/wiki/HTML5ChartsIt's a minor thing, but I'd be grateful if someone with time on their hands would give them a try and let me know of any problems (either by responding here or in the comments).It should work in any new-ish browser + IE = 8. Cheers,Iulian We're hiring! http://bestpractical.com/jobs
Re: [rt-users] Allow unprivileged users to search
Hi, here's a quick hack that should allow unprivileged users to use the Simple Search page. First copy 3 files as follows: # mkdir -p /your/rt/location/local/html/SelfService/Search # mkdir /your/rt/location/local/html/Elements # cp /your/rt/location/share/html/Search/Simple.html /your/rt/location/local/html/SelfService/Search/ # cp /your/rt/location/share/html/Search/Results.html /your/rt/location/local/html/SelfService/Search/ # cp /your/rt/location/share/html/Elements/Tabs /your/rt/location/local/html/Elements/ Then download and apply the attached patches: # patch /your/rt/location/local/html/SelfService/Search/Simple.html -i ./simple.txt # patch /your/rt/location/local/html/SelfService/Search/Results.html -i ./results.txt # patch /your/rt/location/local/html/Elements/Tabs -i ./tabs.txt Restart the web server. Now the unprivileged users should be able to search through the tickets visible to them. Best regards, Iulian 88a90,96 # Iulian, stolen from MyRequests my $id = $session{'CurrentUser'}-id; my @roles = qw(Requestor Cc AdminCc Watcher); my $Query .= AND ( . join( ' OR ', map $_.id = $id, @roles) . ); 763a764,765 #add Simple Search to SelfService: $tickets-child( search = title = loc('Simple Search'), path = '/SelfService/Search/Simple.html', ); 83c83 $Format ||= $prefs-{'Format'} || RT-Config-Get('DefaultSearchResultFormat'); --- $Format ||= RT-Config-Get('DefaultSelfServiceSearchResultFormat'); 100a101,110 #limit to visible tickets (stolen from MyRequests) if($Query){ my $id = $session{'CurrentUser'}-id; my @roles = qw(Requestor Cc AdminCc Watcher); $Query .= AND ( . join( ' OR ', map $_.id = $id, @roles) . ); } RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
Re: [rt-users] RT-Authen-ExternalAuth-0.09 a bit too eager?
Thank you Kevin, I got rid of those parameters and everything is now fine. Best regards, Iulian RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
[rt-users] RT-Authen-ExternalAuth-0.09 a bit too eager?
Hello, I am upgrading from 3.8.7 (apache2 + mod_perl) to 4.0.4 (apache2 + mod_fastcgi) and I notice a strange behaviour of RT-Authen-ExternalAuth -0.09. The authentication works fine, however, the login page gets redirected straight away here: http://rt.address.com/NoAuth/Login.html?next=xxresults=xxx With the error message: You are not an authorized user. That is, this is what I see instead of the normal login page. This is what the log says: [Thu Dec 15 13:20:08 2011] [debug]: Attempting to use external auth service: AD (/opt/rt/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64) [Thu Dec 15 13:20:08 2011] [debug]: SSO Failed and no user to test with. Nexting (/opt/rt/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:92) [Thu Dec 15 13:20:08 2011] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/opt/rt/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:10) [Thu Dec 15 13:20:08 2011] [debug]: Attempting to use external auth service: AD (/opt/rt/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:64) [Thu Dec 15 13:20:08 2011] [debug]: SSO Failed and no user to test with. Nexting (/opt/rt/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:92) [Thu Dec 15 13:20:08 2011] [debug]: Autohandler called ExternalAuth. Response: (0, No User) (/opt/rt/local/plugins/RT-Authen-ExternalAuth/html/Elements/DoAuth:10) Is this to be expected? Or am I missing something? Because in the old version there was no redirection and no error messages. I dug a little bit and found a fix, but it seems a bit heavy handed (if not plain wrong). It involves modifiying .../html/Callbacks/ExternalAuth/autohandler/Session from this: %init $m-comp('/Elements/DoAuth',%ARGS); .. to this: %init if($ARGS{'user'} || $m-request_comp-path ne '/index.html'){ $m-comp('/Elements/DoAuth',%ARGS); } That is, try to authenticate me only if I provided an username or if I am trying to access something else than the login page(well..). Here's the relevant part of RT_SiteConfig: Set($WebExternalAuth , '1'); Set($WebFallbackToInternalAuth , '1'); Set($WebExternalAuto , '1'); Set($ExternalAuthPriority, [ 'AD' ]); Set($ExternalInfoPriority, [ 'AD' ]); Set($AutoCreateNonExternalUsers, 1); Set($ExternalSettings, { 'AD' = { 'type' = 'ldap', ... } }); And httpd.conf: VirtualHost *:80 ServerName xxx KeepAlive On AddDefaultCharsetUTF-8 LogLevel debug LogFormat %h %l %u %t \%r\ %s %b \%{Referer}i\ \%{User-agent}i\ %{X-Forwarded-For}i combined ErrorLog /opt/rt/var/log/error_log CustomLog /opt/rt/var/log/access_log common env=!dontlog Alias /NoAuth/images/ /opt/rt/share/html/NoAuth/images/ ScriptAlias / /opt/rt/sbin/rt-server.fcgi/ DocumentRoot /opt/rt/share/html Location / Order allow,deny Allow from all Options +ExecCGI AddHandlerfastcgi-script fcgi /Location Location /NoAuth/images SetHandler default-handler /Location /VirtualHost Thanks, Iulian RT Training Sessions (http://bestpractical.com/services/training.html) * Boston March 5 6, 2012
[rt-users] Active Directory Authentication Issue
Hi everyone, I'm having problem to set the authentication to work with active directory. I'm using domain administrator user for binding the AD. This is the error from syslog[critical]: RT::Authen::ExternalAuth::LDAP::_GetBoundLdapObj Can't bind: LDAP_INVALID_CREDENTIALS 49 (/usr/local/lib/rt3/lib/RT/Authen/ExternalAuth/LDAP.pm:467)and this is from ldapsearch tool:ldapsearch -h example -b "cn=some user, ou=Users, dc=example,dc=com,dc=mk" -D "admin, dc=example=com,dc=mk" -w "password"ldap_bind: Invalid credentials (49) additional info: 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, veceit is obviously something to do with username and password. My question is do I need special user for binding the active directory? or it is some mismatch in the config. ThanksThis is the config from RT_SiteConfig.pmSet( @Plugins, qw(RT::Authen::ExternalAuth) );Set($ExternalAuthPriority, [ 'My_LDAP', ]);Set($ExternalInfoPriority, [ 'My_LDAP' ]);Set($ExternalServiceUsesSSLorTLS, 0);Set($AutoCreateNonExternalUsers, 0);Set($ExternalSettings, { 'My_LDAP' = { 'type' = 'ldap', 'auth' = 1, 'server' = 'example', 'user' = 'user', 'pass' = 'password', 'base' = 'ou=Users,Groups,DC=unibank,DC=com,DC=mk', 'net_ldap_args' = [ version = 3 ], 'ssl_version' = 3, 'filter' = '(objectClass=*)',# 'filter' = '(sAMAccountName=%u)', 'd_filter' = '(userAccountControl:1.2.840.113556.1.4.803:=2)',# 'd_filter' = '((objectCategory=person)(objectClass=user))', 'attr_match_list' = [ 'Name', 'EmailAddress', 'RealName',# 'WorkPhone',# 'Address2' ], 'attr_map' = { 'Name' = 'sAMAccountName', 'EmailAddress' = 'mail', 'RealName' = 'cn', 'Organization' = 'physicalDeliveryOfficeName', } }, });---http://mail.secureroot.com/ - free mailbox for hackers and geeks