Am Donnerstag 15 Juli 2010 02:50 CEST, Chris Hobbs <[email protected]> schrieb:
> Wolfgang correctly guessed at my error. I was using the > Calendar->Subscribe menu to try to get access to the Calendar. The > correct process was to go to the Account Tab under Preferences and > create a CalDAV account with the appropriate username and password > pointing to https://mail.nhusd.k12.ca.us/SOGo/dav/chobbs/ With iCal 4 (OS X 10.6) you can also trigger the automatic configuration if you know that Apple iCal first tries to connect to port 8443 (using ssl) of the server you typed in in the "new account"-wizard. It does a PROPFIND on /principals/users/<username>/ The "dirty" solution is to use a RedirectMatch on an apache port 8443 virtual host on ^/principals/users/(.*) to /SOGo/dav/$1/Calendar/ iCal honors this Redirect and then jumps to the correct top-CalDAV-URL. It will then find your calendar in its 2nd try which is acceptable. If you want to find him the calendar in his 1st try (because you're frightened that iCal 5 will expose this behaviour (like the OS X address book.. (!)), then things get more complicated. The first iCal guess is /principals/users/ Problem 1: You can't redirect it nor rewrite it because you don't have any auth in this stage (so you won't be able to tell which username is provided). So you must use Apache auth using the same(!) auth data source (LDAP, SQL) and the same authentication name ("SOGo"). So then you may hack a RewriteCond %{LA-U:REMOTE_USER} ..* RewriteRule ^/principals/(.*) /SOGo/dav/%{LA-U:REMOTE_USER}/ [PT] using a <Location /> AuthType basic Authname "SOGo" AuthBasicProvider ldap AuthLDAPURL "ldap://ldap-server:389/dc=mybase,dc=com?uid?sub?(objectClass=*)" Require valid-user </Location> (as an example for ldap auth, the auth user id is "uid"). This is NOT a beautiful solution because of two different authentification processes (apache and Sogo). It was only a "will it work like this"-try. Children don't try this at home. And yes, it works. The rest of the virtual host is the same as in "SOGo.conf" (ProxyPass /SOGo http://127.0.0.1:20000/SOGo interpolate and so on...). Background: The apple address book only features a "username", "password" and "servername" configuration screen for a new carddav account. I strongly believe that Apple will do the same thing on their next iCal. Apple addressbook is worse, it does a PROPFIND / as first try and breaks if it fails... But even that you can tackle with rewrites as Apple addressbook first tries to contact Port 8843 (with ssl). These are the standard ports of apple calendar server. -- Pascal Gienger, Rechenzentrum, Gruppe "Informationsdienste" Tel. +49 7531 88 5048, Fax +49 7531 88 3739, Mail [email protected]
-- [email protected] https://inverse.ca/sogo/lists
