Re: [SOGo] cant get carddav to work
Hallo Götz,
folgende Config läuft bei mir:
Ich habe die IP des Servers durch 10.11.12.13 und den hostnamen durch
your.domain.tld
ersetzt. Ich denke für die Apple-Geräte ist der Part mit
RewriteRule ^/.well-known/caldav$ /SOGo/dav/ [R]
sehr wichtig.
Unbedingt beachten, dass keine Leerzeichen etc. vergessen werden.
Die SSL-Zertifikate habe ich in /etc/apache2/mods-enabled/ssl.conf mit
###added for SOGo
SSLCertificateFile /etc/apache2/ssl/server.crt
SSLCertificateKeyFile /etc/apache2/ssl/server.key
listen 8443
eingebunden.
Gruß aus der Oberpfalz
Peter
### Addressbook SSL on IP ###
IfModule mod_ssl.c
VirtualHost *:8443
ServerName your.domain.tld
SSLEngine On
#Cipher Order Fix for BEAST Attack Vector
SSLHonorCipherOrder on
SSLCipherSuite !aNULL:!eNULL:!EXPORT:!DSS:!DES:RC4-SHA:RC4-MD5:ALL
#SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire
FilesMatch \.(cgi|shtml|phtml|php)$
SSLOptions +StdEnvVars
/FilesMatch
Directory /usr/lib/cgi-bin
SSLOptions +StdEnvVars
/Directory
BrowserMatch MSIE [2-6] \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
# MSIE 7 and newer should be able to use keepalive
BrowserMatch MSIE [17-9] ssl-unclean-shutdown
# Enable .well-known to make sure clients find CardDav
RewriteEngine On
RewriteRule ^/.well-known/caldav$ /SOGo/dav/ [R]
RewriteRule ^/principals/users/(.*)$ /proxy/$1 [PT]
RewriteRule ^/SOGo/(.*)$ /SOGo/$1 [env=REMOTE_HOST:%{REMOTE_ADDR},PT]
#ProxyRequests Off
#SetEnv proxy-nokeepalive 1
ProxyPreserveHost On
ProxyPassInterpolateEnv On
#for CardDAV
ProxyPass /proxy http://127.0.0.1:2/SOGo/dav/ interpolate
ProxyPass /SOGohttp://127.0.0.1:2/SOGo interpolate
ProxyPass /http://127.0.0.1:2/SOGo/dav/ interpolate
Proxy http://127.0.0.1:2
RequestHeader set x-webobjects-server-port 8443
RequestHeader set x-webobjects-server-name your.domain.tld
RequestHeader set x-webobjects-server-url https://your.domain.tld;
RequestHeader set x-webobjects-server-protocol HTTP/1.0
RequestHeader set x-webobjects-remote-host %{REMOTE_HOST}e
env=REMOTE_HOST
AddDefaultCharset UTF-8
Order allow,deny
Allow from all
/Proxy
ErrorLog /var/log/apache2/your.domain.tld-ssl-error.log
LogLevel error
CustomLog /var/log/apache2/your.domain.tld-ssl-access.log combined
/VirtualHost
/IfModule
On 24.06.2013 10:02, Götz Reinicke - IT Koordinator wrote:
Hi,
Sogo Webfrontend and caldav (thunderbird/apple ical) are working fine
(beside the pop up problem in the frontend with firefox).
Also subscribing to and using calendars with ios (iPhone / iPad) is fine.
Now we have the request to support carddav as well and I was adding the
config from the wiki and changed the servername and added the ssl
certificate pathes.
retarting the httpd shows no errors, but accessing the server from apple
ical i do get errors in the server logs:
aa.bb.cc.dd - - [24/Jun/2013:09:58:48 GMT] OPTIONS /SOGo/:8843/
HTTP/1.1 404 34/0 0.002 - - 0
aa.bb.cc.dd - - [24/Jun/2013:09:58:48 +0200] OPTIONS /SOGo/%3A8843/
HTTP/1.1 404 34 - AddressBook/6.1.3 (1091) CardDAVPlugin/200
CFNetwork/520.5.1 Mac_OS_X/10.7.5 (11G63)
In apple Adressbook i have enterd the serversname and the serverpath is
discovered as /SOGo/:8843/
May be somewon can help me getting that up and running?
Thanks for any hint and suggestion! Regards Götz
--
users@sogo.nu
https://inverse.ca/sogo/lists
[SOGo] possible working free CardDAV Client for Outlook and SOGo - help needed
Hi, I found this nice Outlook Add-In for CardDAV Support. http://support.atmail.com/display/A7DOCS/Atmail+DavSync+Plugin+for+Microsoft+Outlook http://download.atmail.com/getsync.php It is from the atmail project and free. It seems it would support connecting to SOGo as well but I cannot get it to work. I have a working setup that can sync with iOS. Maybe only some small rewrite rule is necessary to get this client to work. I think this would help many others. Maybe someone with more SOGo knowledge than me can try to connect with the plugin and show it's working config? Thanks in advance Peter -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] no working readonly CardDAV profile on iOS
Hi, I have a working SOGo installation. I have created 2 users. The first user let's say user1 has an addressbook and gave read permission to user2. I use my iPhone and enter the following data manually to add a CardDAV account Server:fqdn.mydomain.com Username: user2 Password: password of user 2 Description: something Immediately after that it works perfect. user2 reads the address book of user1 I now create a profile with iPhone Configuration utility and enter the following Account Description:CardDAV on SOGo Account Hostname and Port:fqdn.mydomain.com:8443 Principal URL:-empty- Account Username:user2 Account Password: Ready!X [x] Use SSL When I deploy this configuration profile to my device, it does not work. If I go into Mail/Contacts/Calendar and edit the password manually and enter the same as in the configuration profile it also works immediately. The question is now, what is the problem. a) The password containing a ! ? b) Principal URL needed? if b) which is the correct one for user2 accessing user1 addressbook? My opinion is, that iOS when changing anything on a CardDAV account tries to autodetect things and gets it done while using the configuration profile everything needs to be 100%. When changing the password I assume that iOS retries autodetection and it works also. Any ideas? Greets PCFreak -- users@sogo.nu https://inverse.ca/sogo/lists
[SOGo] Problem with CardDav Profile
Hi,
I can connect with iPHone to sync contacts via internet when manually
adding a CardDAV profile that points to the public IP.
When using the hostname (test.mydomain.com) it does not work.
It also does not work when using the iPhone configuration utility and
create a CardDAV Profile (either IP or hostname).
It seems that
a) my configuration does not listen on the hostname.
b) if a CardDAV profile is created with iOS Configuration Utility you
have to provide a provision URL and it does not
automatically search for it.
I need to be able to access via internal IP and external IP (using
external hostname).
I opened port 8443 on the firewall NATing to SOGo 8443
Here is my SOGo.conf
Alias /SOGo.woa/WebServerResources/ \
/usr/lib/GNUstep/SOGo/WebServerResources/
Alias /SOGo/WebServerResources/ \
/usr/lib/GNUstep/SOGo/WebServerResources/
AliasMatch /SOGo/so/ControlPanel/Products/(.*)/Resources/(.*) \
/usr/lib/GNUstep/SOGo/$1.SOGo/Resources/$2
Directory /usr/lib/GNUstep/SOGo/
AllowOverride None
Order deny,allow
Allow from all
# Explicitly allow caching of static content to avoid browser
specific behavior.
# A resource's URL MUST change in order to have the client load the
new version.
IfModule expires_module
ExpiresActive On
ExpiresDefault access plus 1 year
/IfModule
/Directory
LocationMatch
^/SOGo/so/ControlPanel/Products/.*UI/Resources/.*\.(jpg|png|gif|css|js)
SetHandler default-handler
/LocationMatch
## Uncomment the following to enable proxy-side authentication, you will
then
## need to set the SOGoTrustProxyAuthentication SOGo user default to
YES and
## adjust the x-webobjects-remote-user proxy header in the Proxy section
## below.
#Location /SOGo
# AuthType XXX
# Require valid-user
# SetEnv proxy-nokeepalive 1
# Allow from all
#/Location
ProxyRequests Off
SetEnv proxy-nokeepalive 1
ProxyPreserveHost On
# When using CAS, you should uncomment this and install
cas-proxy-validate.py
# in /usr/lib/cgi-bin to reduce server overloading
#
# ProxyPass /SOGo/casProxy http://localhost/cgi-bin/cas-proxy-validate.py
# Proxy http://localhost/app/cas-proxy-validate.py
# Order deny,allow
# Allow from your-cas-host-addr
# /Proxy
ProxyPass /SOGo http://127.0.0.1:2/SOGo retry=0
Proxy http://127.0.0.1:2/SOGo
## adjust the following to your configuration
# RequestHeader set x-webobjects-server-port 443
RequestHeader set x-webobjects-server-port 80
RequestHeader set x-webobjects-server-name 10.110.160.131
# RequestHeader set x-webobjects-server-url https://10.110.160.131;
RequestHeader set x-webobjects-server-url http://10.110.160.131;
## When using proxy-side autentication, you need to uncomment and
## adjust the following line:
# RequestHeader set x-webobjects-remote-user %{REMOTE_USER}e
RequestHeader set x-webobjects-server-protocol HTTP/1.0
AddDefaultCharset UTF-8
Order allow,deny
Allow from all
/Proxy
### Addressbook SSL on IP ###
VirtualHost 0.0.0.0:8443
ServerName 0.0.0.0
SSLEngine On
ProxyRequests Off
SetEnv proxy-nokeepalive 1
ProxyPreserveHost On
ProxyPassInterpolateEnv On
#for CardDAV
ProxyPass /principals http://127.0.0.1:2/SOGo/dav/ interpolate
ProxyPass /SOGo/dav/ http://127.0.0.1:2/SOGo/dav/ interpolate
ProxyPass / http://127.0.0.1:2/SOGo/dav/ interpolate
Proxy http://127.0.0.1:2
RequestHeader set x-webobjects-server-port 8443
RequestHeader set x-webobjects-server-name 10.110.160.131:8843
RequestHeader set x-webobjects-server-url https://10.110.160.131:8443;
RequestHeader set x-webobjects-server-protocol HTTP/1.0
RequestHeader set x-webobjects-remote-host 127.0.0.1
AddDefaultCharset UTF-8
Order allow,deny
Allow from all
/Proxy
/VirtualHost
### Addressbook SSL on test.mydomain.com ###
### Addressbook SSL ###
VirtualHost test.mydomain.com:8443
ServerName test.mydomain.come
SSLEngine On
ProxyRequests Off
SetEnv proxy-nokeepalive 1
ProxyPreserveHost On
ProxyPassInterpolateEnv On
#for CardDAV
ProxyPass /principals http://127.0.0.1:2/SOGo/dav/ interpolate
ProxyPass /SOGo/dav/ http://127.0.0.1:2/SOGo/dav/ interpolate
ProxyPass / http://127.0.0.1:2/SOGo/dav/ interpolate
Proxy http://127.0.0.1:2
RequestHeader set x-webobjects-server-port 8443
RequestHeader set x-webobjects-server-name test.mydomain.com:8843
RequestHeader set x-webobjects-server-url
https://test.mydomain.com:8443;
RequestHeader set x-webobjects-server-protocol HTTP/1.0
RequestHeader set x-webobjects-remote-host 127.0.0.1
AddDefaultCharset UTF-8
Order allow,deny
Allow from all
/Proxy
/VirtualHost
--
users@sogo.nu
https://inverse.ca/sogo/lists
Re: [SOGo] Sogo First installation problem with configuration file
Hi Atef, The latest versions of SOGo configure the user sogo as a daemon user. As you can see it /etc/passwd sogo:x:999:999:SOGo daemon:/var/lib/sogo:/usr/sbin/nologin this user has no login shell and therefore cannot be used with sudo. If you are root or can get root (sudo -i) then you can use the command su to act as the user sogo. Example su -p -c YourCommand sogo will execute YourCommand as the user sogo Here some more examples su -p -c 'defaults write sogod SOGoTimeZone Europe/Berlin' sogo su -p -c 'defaults write sogod SOGoMailDomain yourdomain.com' sogo su -p -c 'defaults write sogod SOGoLanguage English' sogo So you see, it is very easy but at the moment not correct in the documentation. I hope I could help you. Kind regards PCFreak On 13.05.2013 04:02, Atef wrote: Hi, I'm installing sogo using these steps; sudo apt-key adv --keyserver keys.gnupg.net --recv-key 0x810273C4 sudo su echo deb http://inverse.ca/ubuntu precise precise /etc/apt/sources.list exit sudo apt-get update sudo apt-get install sogo sope4.9-gdl1-mysql memcached rpl mysql stuff... Then when i want to begin configuration; i do sudo su sogo result This account is currently not available. I tried to look for /home/sogo.. but not found I have only /home/paul which is my home.. so, I have followed the guide without doing sudo su sogo defaults write sogod SOGoTimeZone Europe/Paris And I found the file created /home/paul/GNUstep/Defaults/.GNUstepDefaults But after this i'm not able to login with the web interface. Please tell me how can I configure Sogo correctly (Steps to follow in order to create a configuration file in the right place..) Thanks in advance! Best regards, -- users@sogo.nu https://inverse.ca/sogo/lists
