Re: [users] Difficulty getting started...

2006-03-29 Thread Robin Bowes
Bill Shupp wrote:
> Robin Bowes wrote:
> 
> 
>>You can fix some typos while you're at it:
>>
>>[EMAIL PROTECTED] live]# grep -r "writabale" *
>>index.php:if(!is_writable($session_dir)) die("Error: $session_dir is not
>>writabale.  Please read INSTALL");
>>index.php:if(!is_writable("$private_dirs/templates_c")) die("Error:
>>$private_dirs/templates_c is not writabale.  Please read INSTALL");
>>index.php:if(!is_writable("$private_dirs/configs")) die("Error:
>>$private_dirs/configs is not writabale.  Please read INSTALL");
>>index.php:if(!is_writable("$private_dirs/cache")) die("Error:
>>$private_dirs/cache is not writabale.  Please read INSTALL");
>>
>>:)
> 
> 
> Hmm, dictionary.com says it's not misspelled:
> 
> http://dictionary.reference.com/search?q=writable

"writable" is OK - it's the text in the error message "writabale" that's
a little suspect. :)

R.


Re: [users] Difficulty getting started...

2006-03-29 Thread Bill Shupp
Robin Bowes wrote:

> You can fix some typos while you're at it:
> 
> [EMAIL PROTECTED] live]# grep -r "writabale" *
> index.php:if(!is_writable($session_dir)) die("Error: $session_dir is not
> writabale.  Please read INSTALL");
> index.php:if(!is_writable("$private_dirs/templates_c")) die("Error:
> $private_dirs/templates_c is not writabale.  Please read INSTALL");
> index.php:if(!is_writable("$private_dirs/configs")) die("Error:
> $private_dirs/configs is not writabale.  Please read INSTALL");
> index.php:if(!is_writable("$private_dirs/cache")) die("Error:
> $private_dirs/cache is not writabale.  Please read INSTALL");
> 
> :)

Hmm, dictionary.com says it's not misspelled:

http://dictionary.reference.com/search?q=writable

Regards,

Bill


Re: [users] Difficulty getting started...

2006-03-29 Thread Bob Hutchinson
On Wednesday 29 Mar 2006 20:42, Robin Bowes wrote:
> Robin Bowes wrote:
> > Bob Hutchinson wrote:
> >>On Wednesday 29 Mar 2006 18:25, Bill Shupp wrote:
> >>>Great work, Bob!  I have not had time to address this myself yet, but it
> >>>looks like you've gotten to the heart of it.  I'll test your findings
> >>>and try to get a 0.9.9.2 out with the fixes.
> >>
> >>nice one Bill ;-)
> >>
> >>Still would like to et to the bottom of Robin Bowes' problems though
> >
> > Yeah, me too!
>
> The previous message was sent before I tried Bob's fix.
>
> It worked!
>
> VegaDNS is now working for me with php-4.3.11 and mysql-5.0.18.
>
> I've also removed php4 and installed php-5.1.2 from rpms, i.e. the
> standard FC5 packages and that works too!

Great, now we know that using php5 is not an obstacle, same for mysql-5.x

>
> I'm one happy bunny.

heehee ;-)

>
> Thanks Bob!

You're welcome.

>
> R.

-- 
-
Bob Hutchinson
Midwales dot com
-


Re: [users] Difficulty getting started...

2006-03-29 Thread Robin Bowes
Bill Shupp wrote:
> Robin Bowes wrote:
> 
> 
>>The previous message was sent before I tried Bob's fix.
>>
>>It worked!
>>
>>VegaDNS is now working for me with php-4.3.11 and mysql-5.0.18.
>>
>>I've also removed php4 and installed php-5.1.2 from rpms, i.e. the
>>standard FC5 packages and that works too!
>>
>>I'm one happy bunny.
>>
>>Thanks Bob!
> 
> 
> Excellent, thanks for reporting back.  I'll double check things here,
> but I think the lack of quotes around the string 'test' was the main
> issue.  I'll get an update out today.

You can fix some typos while you're at it:

[EMAIL PROTECTED] live]# grep -r "writabale" *
index.php:if(!is_writable($session_dir)) die("Error: $session_dir is not
writabale.  Please read INSTALL");
index.php:if(!is_writable("$private_dirs/templates_c")) die("Error:
$private_dirs/templates_c is not writabale.  Please read INSTALL");
index.php:if(!is_writable("$private_dirs/configs")) die("Error:
$private_dirs/configs is not writabale.  Please read INSTALL");
index.php:if(!is_writable("$private_dirs/cache")) die("Error:
$private_dirs/cache is not writabale.  Please read INSTALL");

:)

R.


Re: [users] Difficulty getting started...

2006-03-29 Thread Bill Shupp
Robin Bowes wrote:

> The previous message was sent before I tried Bob's fix.
> 
> It worked!
> 
> VegaDNS is now working for me with php-4.3.11 and mysql-5.0.18.
> 
> I've also removed php4 and installed php-5.1.2 from rpms, i.e. the
> standard FC5 packages and that works too!
> 
> I'm one happy bunny.
> 
> Thanks Bob!

Excellent, thanks for reporting back.  I'll double check things here,
but I think the lack of quotes around the string 'test' was the main
issue.  I'll get an update out today.

Bill


Re: [users] Difficulty getting started...

2006-03-29 Thread Robin Bowes
Robin Bowes wrote:
> Bob Hutchinson wrote:
> 
>>On Wednesday 29 Mar 2006 18:25, Bill Shupp wrote:
>>
>>>Great work, Bob!  I have not had time to address this myself yet, but it
>>>looks like you've gotten to the heart of it.  I'll test your findings
>>>and try to get a 0.9.9.2 out with the fixes.
>>
>>
>>nice one Bill ;-)
>>
>>Still would like to et to the bottom of Robin Bowes' problems though
> 
> 
> Yeah, me too!

The previous message was sent before I tried Bob's fix.

It worked!

VegaDNS is now working for me with php-4.3.11 and mysql-5.0.18.

I've also removed php4 and installed php-5.1.2 from rpms, i.e. the
standard FC5 packages and that works too!

I'm one happy bunny.

Thanks Bob!

R.


Re: [users] Difficulty getting started...

2006-03-29 Thread Robin Bowes
Bob Hutchinson wrote:
> 
> //ini_set('error_reporting', E_ALL ^ E_NOTICE);
> ini_set('error_reporting', E_ALL);

Am I right in thinking that neither of these lines were in the original
index.php? i.e. you didn't comment our the first one and add the second
one - you added both?

> The database was empty, so create_tables.php would run. This resulted in a 
> nasty Notice:
> 
> Notice: Use of undefined constant test - assumed 'test' 
> in /home/hutch/www/html/vegadns-0.9.9.1/src/create_tables.php on line 43
>  
>  Warning: Cannot modify header information - headers already sent by (output 
> started at /home/hutch/www/html/vegadns-0.9.9.1/src/create_tables.php:43) 
> in /home/hutch/www/html/vegadns-0.9.9.1/index.php on line 108
> 
> so I edited create_tables.php on line 43
> replaced md5(test) with md5('test')

I've done that.

> BTW I realise that I could have avoided this by setting 
> ini_set('error_reporting', E_ALL ^ E_NOTICE);
> but then you don't find the bugs, that's how I set production boxes, not the 
> development box I'm doing this on.

Good call, because ...

> cleared the database and ran again, closing the browser in between (just in 
> case)
> 
> much better, straight into the edit account page where I changed a few things 
> and hit the edit button and it saved successfully, and left me logged in, I 
> clicked around a bit, logged out and logged in again, no problem, it accepted 
> the new password.

It works for me now!

> This is the point that yours has been stumbling on, right?
> I'm using MySQL - 4.0.24
> You are using MySQL 5.0.18 right?
> 
> does it support mysql_escape_string()
> 
> see line 95 and on src/users.php
> 
> do you see
> 
> 'update accounts set First_Name=' and so on in your mysql log?

Sure do!

 12 Query   update accounts set

First_Name='Robin',
Last_Name='Bowes',
Phone='',
Email='[EMAIL PROTECTED]',
Password='',
Account_Type='senior_admin', Status='active' where cid='1'
 12 Query   update active_sessions set
Email='[EMAIL PROTECTED]' where Email='test@test.com'


> The initial edit account page should have a hidden field for 'cid', it is set 
> in index.php line 203 or thereabouts
> 
> I'm just wondering if the refusal to save has to do with MySQL 5.x.xx 
> 
> I'm rather conservative about upgrading, this is just the kind of thing I 
> dread, and the hords of angry customers...
> 
> but it would be good to know in any event
> 
> 
>>It appears that I can use most of the functionality but checking the
>>logs reveals that several variables are not being passed between forms
>>(cid being one example that prevent login).
>>
>>If I log out I am unable to log back in again even with the original
>>password.
>>
>>I've checked with phpmyadmin (and mysql command line) and the
>>username/password remains unchanged.
>>
>>The MySQL query log actually shows that the app. is submitting the wrong
>>md5 hashed password (see above).
>>
>>I'm sure there's a logical explanation for all this but I can't put my
>>finger on it just at the moment...

Looks like you nailed it Bob - it was the missing quotes in that call to
md5 which screwed things up.

Thanks! I can now try and sell this to my clients! :)

R.


Re: [users] Difficulty getting started...

2006-03-29 Thread Robin Bowes
Bob Hutchinson wrote:
> On Wednesday 29 Mar 2006 18:25, Bill Shupp wrote:
>>Great work, Bob!  I have not had time to address this myself yet, but it
>>looks like you've gotten to the heart of it.  I'll test your findings
>>and try to get a 0.9.9.2 out with the fixes.
> 
> 
> nice one Bill ;-)
> 
> Still would like to et to the bottom of Robin Bowes' problems though

Yeah, me too!

R.


Re: [users] Difficulty getting started...

2006-03-29 Thread Bob Hutchinson
On Wednesday 29 Mar 2006 18:25, Bill Shupp wrote:
> Bob Hutchinson wrote:
> > Well I decided to install a virgin copy of vegadns-0.9.9.1 and see what
> > happened. The copy of vegadns that I use in production has lots of
> > changes so I need to see what happens 'out-of-the-box'
> >
> > before running it, I put the following in to index.php, immediately after
> > the other ini_set commands
> >
> > //ini_set('error_reporting', E_ALL ^ E_NOTICE);
> > ini_set('error_reporting', E_ALL);
> >
> > The database was empty, so create_tables.php would run. This resulted in
> > a nasty Notice:
> >
> > Notice: Use of undefined constant test - assumed 'test'
> > in /home/hutch/www/html/vegadns-0.9.9.1/src/create_tables.php on line 43
> >
> >  Warning: Cannot modify header information - headers already sent by
> > (output started at
> > /home/hutch/www/html/vegadns-0.9.9.1/src/create_tables.php:43) in
> > /home/hutch/www/html/vegadns-0.9.9.1/index.php on line 108
> >
> > so I edited create_tables.php on line 43
> > replaced md5(test) with md5('test')
> >
> > BTW I realise that I could have avoided this by setting
> > ini_set('error_reporting', E_ALL ^ E_NOTICE);
> > but then you don't find the bugs, that's how I set production boxes, not
> > the development box I'm doing this on.
> >
> > cleared the database and ran again, closing the browser in between (just
> > in case)
> >
> > much better, straight into the edit account page where I changed a few
> > things and hit the edit button and it saved successfully, and left me
> > logged in, I clicked around a bit, logged out and logged in again, no
> > problem, it accepted the new password.
> >
> > This is the point that yours has been stumbling on, right?
> > I'm using MySQL - 4.0.24
> > You are using MySQL 5.0.18 right?
> >
> > does it support mysql_escape_string()
> >
> > see line 95 and on src/users.php
> >
> > do you see
> >
> > 'update accounts set First_Name=' and so on in your mysql log?
> >
> > The initial edit account page should have a hidden field for 'cid', it is
> > set in index.php line 203 or thereabouts
> >
> > I'm just wondering if the refusal to save has to do with MySQL 5.x.xx
> > 
> >
> > I'm rather conservative about upgrading, this is just the kind of thing I
> > dread, and the hords of angry customers...
> >
> > but it would be good to know in any event
>
> Great work, Bob!  I have not had time to address this myself yet, but it
> looks like you've gotten to the heart of it.  I'll test your findings
> and try to get a 0.9.9.2 out with the fixes.

nice one Bill ;-)

Still would like to et to the bottom of Robin Bowes' problems though

>
> Regards,
>
> Bil

-- 
-
Bob Hutchinson
Midwales dot com
-


Re: [users] Difficulty getting started...

2006-03-29 Thread Bill Shupp
Bob Hutchinson wrote:
> Well I decided to install a virgin copy of vegadns-0.9.9.1 and see what 
> happened. The copy of vegadns that I use in production has lots of changes so 
> I need to see what happens 'out-of-the-box'
> 
> before running it, I put the following in to index.php, immediately after the 
> other ini_set commands
> 
> //ini_set('error_reporting', E_ALL ^ E_NOTICE);
> ini_set('error_reporting', E_ALL);
> 
> The database was empty, so create_tables.php would run. This resulted in a 
> nasty Notice:
> 
> Notice: Use of undefined constant test - assumed 'test' 
> in /home/hutch/www/html/vegadns-0.9.9.1/src/create_tables.php on line 43
>  
>  Warning: Cannot modify header information - headers already sent by (output 
> started at /home/hutch/www/html/vegadns-0.9.9.1/src/create_tables.php:43) 
> in /home/hutch/www/html/vegadns-0.9.9.1/index.php on line 108
> 
> so I edited create_tables.php on line 43
> replaced md5(test) with md5('test')
> 
> BTW I realise that I could have avoided this by setting 
> ini_set('error_reporting', E_ALL ^ E_NOTICE);
> but then you don't find the bugs, that's how I set production boxes, not the 
> development box I'm doing this on.
> 
> cleared the database and ran again, closing the browser in between (just in 
> case)
> 
> much better, straight into the edit account page where I changed a few things 
> and hit the edit button and it saved successfully, and left me logged in, I 
> clicked around a bit, logged out and logged in again, no problem, it accepted 
> the new password.
> 
> This is the point that yours has been stumbling on, right?
> I'm using MySQL - 4.0.24
> You are using MySQL 5.0.18 right?
> 
> does it support mysql_escape_string()
> 
> see line 95 and on src/users.php
> 
> do you see
> 
> 'update accounts set First_Name=' and so on in your mysql log?
> 
> The initial edit account page should have a hidden field for 'cid', it is set 
> in index.php line 203 or thereabouts
> 
> I'm just wondering if the refusal to save has to do with MySQL 5.x.xx 
> 
> I'm rather conservative about upgrading, this is just the kind of thing I 
> dread, and the hords of angry customers...
> 
> but it would be good to know in any event


Great work, Bob!  I have not had time to address this myself yet, but it
looks like you've gotten to the heart of it.  I'll test your findings
and try to get a 0.9.9.2 out with the fixes.

Regards,

Bil


Re: [users] Difficulty getting started...

2006-03-29 Thread Bob Hutchinson
On Tuesday 28 Mar 2006 19:46, Robin Bowes wrote:
> Bob Hutchinson wrote:
> > On Sunday 26 Mar 2006 19:42, Robin Bowes wrote:
> >>Bill Shupp wrote:
> >>>Perhaps it's missing in the form.  Can you verify that?  If so, I'm
> >>>surprised this has not been reported before.
> >>
> >>Bill,
> >>
> >>I've done some more checking. I've turned on the mysql query log, and
> >>the query that is being sent when I try to login with test@test.com/test
> >>is:
> >>
> >>Email='test@test.com' and
> >>Password='543e1d35c7c833e578709d2baabdc79c' and
> >>Status='active' LIMIT 1
> >>
> >>Looking in the accounts table, this is not the md5 hash of "test":
> >>
> >>mysql> select md5('test'), password from accounts;
> >>+--+--+
> >>
> >>| md5('test')  | password |
> >>
> >>+--+--+
> >>
> >>| 098f6bcd4621d373cade4e832627b4f6 | 098f6bcd4621d373cade4e832627b4f6 |
> >>
> >>+--+--+
> >>1 row in set (0.00 sec)
> >>
> >>Also, looking in index.php, I see this block of code:
> >>
> >>} else if($_REQUEST['state'] == "login_screen") {
> >>
> >>// LOGIN SCREEN
> >>
> >>$smarty->display('header.tpl');
> >>require('src/login_screen.php');
> >>$smarty->display('footer.tpl');
> >>exit;
> >>
> >>The file 'login_screen.php' does not exist:
> >>
> >>[EMAIL PROTECTED] vegadns-0.9.9.1]# pwd
> >>/var/www/vegadns/vegadns-0.9.9.1
> >>[EMAIL PROTECTED] vegadns-0.9.9.1]# find . -name login_screen.php
> >>
> >>Does that shed any light on the issue?
> >
> > looks to me like you have found a piece of leftover code, you could try
> > replacing the
> > require('src/login_screen.php');
> > with
> > $smarty->display('login_screen.tpl');
> >
> > I have to admit I have never stumbled across this bug, probably because
> >
> > $_REQUEST['state'] == "login_screen" is never called AFAICT
> >
> > vegadns-0.9.9.1 > grep -rni 'login_screen' *
> > index.php:112:$smarty->display('login_screen.tpl');
> > index.php:128:} else if($_REQUEST['state'] == "login_screen") {
> > index.php:133:require('src/login_screen.php');
> >
> > Are you managing to log in at all?
> > Have a look at the db with phpmyadmin or somesuch, it might help you
> > resolve this
>
> When I first connect after a clean install I am logged in automatically.

Well I decided to install a virgin copy of vegadns-0.9.9.1 and see what 
happened. The copy of vegadns that I use in production has lots of changes so 
I need to see what happens 'out-of-the-box'

before running it, I put the following in to index.php, immediately after the 
other ini_set commands

//ini_set('error_reporting', E_ALL ^ E_NOTICE);
ini_set('error_reporting', E_ALL);

The database was empty, so create_tables.php would run. This resulted in a 
nasty Notice:

Notice: Use of undefined constant test - assumed 'test' 
in /home/hutch/www/html/vegadns-0.9.9.1/src/create_tables.php on line 43
 
 Warning: Cannot modify header information - headers already sent by (output 
started at /home/hutch/www/html/vegadns-0.9.9.1/src/create_tables.php:43) 
in /home/hutch/www/html/vegadns-0.9.9.1/index.php on line 108

so I edited create_tables.php on line 43
replaced md5(test) with md5('test')

BTW I realise that I could have avoided this by setting 
ini_set('error_reporting', E_ALL ^ E_NOTICE);
but then you don't find the bugs, that's how I set production boxes, not the 
development box I'm doing this on.

cleared the database and ran again, closing the browser in between (just in 
case)

much better, straight into the edit account page where I changed a few things 
and hit the edit button and it saved successfully, and left me logged in, I 
clicked around a bit, logged out and logged in again, no problem, it accepted 
the new password.

This is the point that yours has been stumbling on, right?
I'm using MySQL - 4.0.24
You are using MySQL 5.0.18 right?

does it support mysql_escape_string()

see line 95 and on src/users.php

do you see

'update accounts set First_Name=' and so on in your mysql log?

The initial edit account page should have a hidden field for 'cid', it is set 
in index.php line 203 or thereabouts

I'm just wondering if the refusal to save has to do with MySQL 5.x.xx 

I'm rather conservative about upgrading, this is just the kind of thing I 
dread, and the hords of angry customers...

but it would be good to know in any event

> It appears that I can use most of the functionality but checking the
> logs reveals that several variables are not being passed between forms
> (cid being one example that prevent login).
>
> If I log out I am unable to log back in again even with the original
> password.
>
> I've checked with phpmyadmin (and mysql command line) and the
> username/password remains unchanged.
>
> The MySQL query log actually shows that the app. is sub

Re: [users] Difficulty getting started...

2006-03-28 Thread Robin Bowes
Ron Guerin wrote:
> Bill Shupp wrote:
> 
> 
>>I'm wondering if this is a PHP 5 issue.  Would you be willing to provide
>>me with a login?  Assuming the private directories are setup, I would
>>not need sudo, just access to the database.  If so, just send me the
>>login info off-list, and I'll probably have time today to take a look.
> 
> 
> You may have missed this...
> 
> "I've tried this under php4 (I installed php-4.4.2 from source on a FC5
> box with apache 2.2 + MySQL 5.0.18)"

Indeed.

I'm seeing the same behaviour with both php4 and php5 so I don't think
that's the issue.

I suspect it may be a php or apache configuration issue, but I'm not
sure what.

Hopefully Bill will be able to find something when he looks later today.

Cheers,

R.


Re: [users] Difficulty getting started...

2006-03-28 Thread Robin Bowes
Bob Hutchinson wrote:
> On Sunday 26 Mar 2006 19:42, Robin Bowes wrote:
> 
>>Bill Shupp wrote:
>>
>>>Perhaps it's missing in the form.  Can you verify that?  If so, I'm
>>>surprised this has not been reported before.
>>
>>Bill,
>>
>>I've done some more checking. I've turned on the mysql query log, and
>>the query that is being sent when I try to login with test@test.com/test
>>is:
>>
>>Email='test@test.com' and
>>Password='543e1d35c7c833e578709d2baabdc79c' and
>>Status='active' LIMIT 1
>>
>>Looking in the accounts table, this is not the md5 hash of "test":
>>
>>mysql> select md5('test'), password from accounts;
>>+--+--+
>>
>>| md5('test')  | password |
>>
>>+--+--+
>>
>>| 098f6bcd4621d373cade4e832627b4f6 | 098f6bcd4621d373cade4e832627b4f6 |
>>
>>+--+--+
>>1 row in set (0.00 sec)
>>
>>Also, looking in index.php, I see this block of code:
>>
>>} else if($_REQUEST['state'] == "login_screen") {
>>
>>// LOGIN SCREEN
>>
>>$smarty->display('header.tpl');
>>require('src/login_screen.php');
>>$smarty->display('footer.tpl');
>>exit;
>>
>>The file 'login_screen.php' does not exist:
>>
>>[EMAIL PROTECTED] vegadns-0.9.9.1]# pwd
>>/var/www/vegadns/vegadns-0.9.9.1
>>[EMAIL PROTECTED] vegadns-0.9.9.1]# find . -name login_screen.php
>>
>>Does that shed any light on the issue?
> 
> 
> looks to me like you have found a piece of leftover code, you could try 
> replacing the 
> require('src/login_screen.php');
> with
> $smarty->display('login_screen.tpl');
> 
> I have to admit I have never stumbled across this bug, probably because
> 
> $_REQUEST['state'] == "login_screen" is never called AFAICT
> 
> vegadns-0.9.9.1 > grep -rni 'login_screen' *
> index.php:112:$smarty->display('login_screen.tpl');
> index.php:128:} else if($_REQUEST['state'] == "login_screen") {
> index.php:133:require('src/login_screen.php');
> 
> Are you managing to log in at all?
> Have a look at the db with phpmyadmin or somesuch, it might help you resolve 
> this

When I first connect after a clean install I am logged in automatically.
It appears that I can use most of the functionality but checking the
logs reveals that several variables are not being passed between forms
(cid being one example that prevent login).

If I log out I am unable to log back in again even with the original
password.

I've checked with phpmyadmin (and mysql command line) and the
username/password remains unchanged.

The MySQL query log actually shows that the app. is submitting the wrong
md5 hashed password (see above).

I'm sure there's a logical explanation for all this but I can't put my
finger on it just at the moment...

R.


Re: [users] Difficulty getting started...

2006-03-28 Thread Ron Guerin
Bill Shupp wrote:

> I'm wondering if this is a PHP 5 issue.  Would you be willing to provide
> me with a login?  Assuming the private directories are setup, I would
> not need sudo, just access to the database.  If so, just send me the
> login info off-list, and I'll probably have time today to take a look.

You may have missed this...

"I've tried this under php4 (I installed php-4.4.2 from source on a FC5
box with apache 2.2 + MySQL 5.0.18)"

- Ron



Re: [users] Difficulty getting started...

2006-03-28 Thread Bill Shupp
Bob Hutchinson wrote:

> looks to me like you have found a piece of leftover code, you could try 
> replacing the 
> require('src/login_screen.php');
> with
> $smarty->display('login_screen.tpl');
> 
> I have to admit I have never stumbled across this bug, probably because
> 
> $_REQUEST['state'] == "login_screen" is never called AFAICT
> 
> vegadns-0.9.9.1 > grep -rni 'login_screen' *
> index.php:112:$smarty->display('login_screen.tpl');
> index.php:128:} else if($_REQUEST['state'] == "login_screen") {
> index.php:133:require('src/login_screen.php');
> 
> Are you managing to log in at all?
> Have a look at the db with phpmyadmin or somesuch, it might help you resolve 
> this

Robin,

I'm wondering if this is a PHP 5 issue.  Would you be willing to provide
me with a login?  Assuming the private directories are setup, I would
not need sudo, just access to the database.  If so, just send me the
login info off-list, and I'll probably have time today to take a look.

Regards,

Bill


Re: [users] Difficulty getting started...

2006-03-28 Thread Bob Hutchinson
On Sunday 26 Mar 2006 19:42, Robin Bowes wrote:
> Bill Shupp wrote:
> > Perhaps it's missing in the form.  Can you verify that?  If so, I'm
> > surprised this has not been reported before.
>
> Bill,
>
> I've done some more checking. I've turned on the mysql query log, and
> the query that is being sent when I try to login with test@test.com/test
> is:
>
> Email='test@test.com' and
> Password='543e1d35c7c833e578709d2baabdc79c' and
> Status='active' LIMIT 1
>
> Looking in the accounts table, this is not the md5 hash of "test":
>
> mysql> select md5('test'), password from accounts;
> +--+--+
>
> | md5('test')  | password |
>
> +--+--+
>
> | 098f6bcd4621d373cade4e832627b4f6 | 098f6bcd4621d373cade4e832627b4f6 |
>
> +--+--+
> 1 row in set (0.00 sec)
>
> Also, looking in index.php, I see this block of code:
>
> } else if($_REQUEST['state'] == "login_screen") {
>
> // LOGIN SCREEN
>
> $smarty->display('header.tpl');
> require('src/login_screen.php');
> $smarty->display('footer.tpl');
> exit;
>
> The file 'login_screen.php' does not exist:
>
> [EMAIL PROTECTED] vegadns-0.9.9.1]# pwd
> /var/www/vegadns/vegadns-0.9.9.1
> [EMAIL PROTECTED] vegadns-0.9.9.1]# find . -name login_screen.php
>
> Does that shed any light on the issue?

looks to me like you have found a piece of leftover code, you could try 
replacing the 
require('src/login_screen.php');
with
$smarty->display('login_screen.tpl');

I have to admit I have never stumbled across this bug, probably because

$_REQUEST['state'] == "login_screen" is never called AFAICT

vegadns-0.9.9.1 > grep -rni 'login_screen' *
index.php:112:$smarty->display('login_screen.tpl');
index.php:128:} else if($_REQUEST['state'] == "login_screen") {
index.php:133:require('src/login_screen.php');

Are you managing to log in at all?
Have a look at the db with phpmyadmin or somesuch, it might help you resolve 
this


>
> R.

-- 
-
Bob Hutchinson
Midwales dot com
-


Re: [users] Difficulty getting started...

2006-03-28 Thread Robin Bowes
Robin Bowes wrote:
> Bill Shupp wrote:
> 
>>Perhaps it's missing in the form.  Can you verify that?  If so, I'm
>>surprised this has not been reported before.
> 
> 
> Bill,
> 
> I've done some more checking. I've turned on the mysql query log, and
> the query that is being sent when I try to login with test@test.com/test is:
> 
> Email='test@test.com' and
> Password='543e1d35c7c833e578709d2baabdc79c' and
> Status='active' LIMIT 1
> 
> Looking in the accounts table, this is not the md5 hash of "test":
> 
> mysql> select md5('test'), password from accounts;
> +--+--+
> | md5('test')  | password |
> +--+--+
> | 098f6bcd4621d373cade4e832627b4f6 | 098f6bcd4621d373cade4e832627b4f6 |
> +--+--+
> 1 row in set (0.00 sec)
> 
> Also, looking in index.php, I see this block of code:
> 
> } else if($_REQUEST['state'] == "login_screen") {
> 
> // LOGIN SCREEN
> 
> $smarty->display('header.tpl');
> require('src/login_screen.php');
> $smarty->display('footer.tpl');
> exit;
> 
> The file 'login_screen.php' does not exist:
> 
> [EMAIL PROTECTED] vegadns-0.9.9.1]# pwd
> /var/www/vegadns/vegadns-0.9.9.1
> [EMAIL PROTECTED] vegadns-0.9.9.1]# find . -name login_screen.php
> 
> Does that shed any light on the issue?

Bill,

Have you any further thoughts on why this might not be working for me?

Thanks,

R.


Re: [users] Difficulty getting started...

2006-03-26 Thread Robin Bowes
Bill Shupp wrote:
> 
> Perhaps it's missing in the form.  Can you verify that?  If so, I'm
> surprised this has not been reported before.

Bill,

I've done some more checking. I've turned on the mysql query log, and
the query that is being sent when I try to login with test@test.com/test is:

Email='test@test.com' and
Password='543e1d35c7c833e578709d2baabdc79c' and
Status='active' LIMIT 1

Looking in the accounts table, this is not the md5 hash of "test":

mysql> select md5('test'), password from accounts;
+--+--+
| md5('test')  | password |
+--+--+
| 098f6bcd4621d373cade4e832627b4f6 | 098f6bcd4621d373cade4e832627b4f6 |
+--+--+
1 row in set (0.00 sec)

Also, looking in index.php, I see this block of code:

} else if($_REQUEST['state'] == "login_screen") {

// LOGIN SCREEN

$smarty->display('header.tpl');
require('src/login_screen.php');
$smarty->display('footer.tpl');
exit;

The file 'login_screen.php' does not exist:

[EMAIL PROTECTED] vegadns-0.9.9.1]# pwd
/var/www/vegadns/vegadns-0.9.9.1
[EMAIL PROTECTED] vegadns-0.9.9.1]# find . -name login_screen.php

Does that shed any light on the issue?

R.


Re: [users] Difficulty getting started...

2006-03-26 Thread Bill Shupp
Robin Bowes wrote:
> Bill Shupp wrote:
>> If 0.9.9.1 behaves the same way, let me know.. I have not tested with
>> php 5, so that could be related.
> 
> Bill,
> 
> With 0.9.9.1, I get the following error when trying to change the admin
> details from the initial screen:
> 
> Notice: Undefined index: cid in
> /var/www/vegadns/vegadns-0.9.9.1/src/functions.php on line 342
> You have an error in your SQL syntax; check the manual that corresponds
> to your MySQL server version for the right syntax to use near '' at line 1
> 
> Line 342 is:
> 
>   return $_REQUEST['cid'];
> 
> 
> I put some code in to print $_REQUEST and started again.
> 
> When I went to the initial page, $_REQUEST contains this:
> 
> Array
> (
> [VDNSSessid] => lkb7cl4ab0tqn34hfksf54kk04
> [state] => logged_in
> [mode] => users
> [user_mode] => edit_account
> [cid] => 1
> [theme] => clean
> [geeklog] => 2
> [password] => 1690e1e1465cd2dcc876f5a3d1a50590
> [PHPSESSID] => ecop6v1ts4ptuucl3r5c4vd9s3
> )
> 
> After changing the admin values and hitting edit, it contains this:
> 
> Array
> (
> [state] => logged_in
> [mode] => users
> [VDNSSessid] => lkb7cl4ab0tqn34hfksf54kk04
> [user_mode] => edit_account_now
> [first_name] => Robin
> [last_name] => Bowes
> [email_address] => [EMAIL PROTECTED]
> [phone] =>
> [password] => 1690e1e1465cd2dcc876f5a3d1a50590
> [password2] => password
> [account_type] => senior_admin
> [status] => active
> [theme] => clean
> [geeklog] => 2
> [PHPSESSID] => ecop6v1ts4ptuucl3r5c4vd9s3
> )
> 
> As you can see, cid is not set in the second example.
> 
> Any idea why?

Perhaps it's missing in the form.  Can you verify that?  If so, I'm
surprised this has not been reported before.

Regards,

Bill


Re: [users] Difficulty getting started...

2006-03-26 Thread Robin Bowes
Update:

I've tried this under php4 (I installed php-4.4.2 from source on a FC5
box with apache 2.2 + MySQL 5.0.18)

I see the same problem.

I wonder if this is a configuration issue, i.e. something wrong in php.ini ?

R.


Re: [users] Difficulty getting started...

2006-03-26 Thread Robin Bowes
Bill Shupp wrote:
> 
> If 0.9.9.1 behaves the same way, let me know.. I have not tested with
> php 5, so that could be related.

Bill,

With 0.9.9.1, I get the following error when trying to change the admin
details from the initial screen:

Notice: Undefined index: cid in
/var/www/vegadns/vegadns-0.9.9.1/src/functions.php on line 342
You have an error in your SQL syntax; check the manual that corresponds
to your MySQL server version for the right syntax to use near '' at line 1

Line 342 is:

return $_REQUEST['cid'];


I put some code in to print $_REQUEST and started again.

When I went to the initial page, $_REQUEST contains this:

Array
(
[VDNSSessid] => lkb7cl4ab0tqn34hfksf54kk04
[state] => logged_in
[mode] => users
[user_mode] => edit_account
[cid] => 1
[theme] => clean
[geeklog] => 2
[password] => 1690e1e1465cd2dcc876f5a3d1a50590
[PHPSESSID] => ecop6v1ts4ptuucl3r5c4vd9s3
)

After changing the admin values and hitting edit, it contains this:

Array
(
[state] => logged_in
[mode] => users
[VDNSSessid] => lkb7cl4ab0tqn34hfksf54kk04
[user_mode] => edit_account_now
[first_name] => Robin
[last_name] => Bowes
[email_address] => [EMAIL PROTECTED]
[phone] =>
[password] => 1690e1e1465cd2dcc876f5a3d1a50590
[password2] => password
[account_type] => senior_admin
[status] => active
[theme] => clean
[geeklog] => 2
[PHPSESSID] => ecop6v1ts4ptuucl3r5c4vd9s3
)

As you can see, cid is not set in the second example.

Any idea why?

R.


Re: [users] Difficulty getting started...

2006-03-25 Thread Bill Shupp
Bill Shupp wrote:
> Robin Bowes wrote:
>> Hi,
>>
>> I'm just checking out vegadns and am having trouble getting started.
>>
>> I on a FC4 platform with:
>>
>> httpd-2.0.54-10.3
>> php-5.0.4-10.5
>> mysql-4.1.16-1.FC4.1
>>
>> I started by trying the 1.1.5 dev release.
>>
>> All seemed to go well, and the first screen appears requesting that I
>> "Please edit your account settings for the initial 'senior_admin'"
>>
>> However, when I enter the new values, and hit "edit" I get this error:
>>
>> Error: passwords do not match
>>
>> (believe me - they do!)
>>
>> I then dropped the vegadns database and started again, only instead of
>> changing the default values I logged out. So, I should be able login
>> using the default settings of test@test.com / test. When I try that I
>> see the following error:
>>
>> Error signing on: incorrect email address or password
>>
>> Any idea what's going wrong? Are there any particular PHP settings that
>> I need to have set or unset?
> 
> Don't use 1.1.5 unless you are developing.  There are several incomplete
> areas.  Use 0.9.9.1.

If 0.9.9.1 behaves the same way, let me know.. I have not tested with
php 5, so that could be related.

Regards,

Bill


Re: [users] Difficulty getting started...

2006-03-25 Thread Bill Shupp
Robin Bowes wrote:
> Hi,
> 
> I'm just checking out vegadns and am having trouble getting started.
> 
> I on a FC4 platform with:
> 
> httpd-2.0.54-10.3
> php-5.0.4-10.5
> mysql-4.1.16-1.FC4.1
> 
> I started by trying the 1.1.5 dev release.
> 
> All seemed to go well, and the first screen appears requesting that I
> "Please edit your account settings for the initial 'senior_admin'"
> 
> However, when I enter the new values, and hit "edit" I get this error:
> 
> Error: passwords do not match
> 
> (believe me - they do!)
> 
> I then dropped the vegadns database and started again, only instead of
> changing the default values I logged out. So, I should be able login
> using the default settings of test@test.com / test. When I try that I
> see the following error:
> 
> Error signing on: incorrect email address or password
> 
> Any idea what's going wrong? Are there any particular PHP settings that
> I need to have set or unset?

Don't use 1.1.5 unless you are developing.  There are several incomplete
areas.  Use 0.9.9.1.

Regards,

Bill