Hello Ludovic,
I'm sorry, I'm losing track of what I did myslef, but let my try to to
clear things up.
What I am aiming for is the following scenario (items marked '+' are
done and working):
+ using our LDAP as global addressbook and primary authentication source
(uid is the login name for the central IMAP server)
- members of one OU in LDAP should be allowed to authenticate, others
shouldn't (so far all are allowed)
+ an additional authentication source/addressbook for "resources" with
email addresses in a separate mail(sub)domain in SQL (because we can't
write to the central LDAP)
+ local SMTP server on the SOGo host intercepts mails for the maildomain
of those resources and pipes them to a script accepting appointments via
curl, hands over other mail to our central smtp for delivery => no IMAP
account for resources (mail tab in webinterface is deactivated via defaults)
- both addressbooks (LDAP and SQL) should be used for autocompletion in
TB (so far only LDAP works)
My biggest pain-in-the-%!# right now is, that free/busy in Thunderbird
only flashes appointments of LDAP users and then shows them as free.
When fiddling with the appointment time in the "invite attendee" dialog,
appointments reappear and disappear one by one after a seemingly random
delay.
Appointments of SQL users show up consistently and in the web interface
everything works perfectly.
In a previous email, you mentioned "So it's either sending out
invitations without a working free/busy or a working free/busy
without any invitations... "
Just forget that, I thought free/busy would work when using the uid as
mailaddress.
After purging the database and starting over this assumed workaround
just shows "no information available", so I guess it was because of
remnant tables of older experiments with different authentication
schemes and fiddling with user ids.
Regards,
Stefan
*This is my LDAP entry* (some names changed, additional fields (address
etc.) removed)*:*
# extended LDIF
#
# LDAPv3
# base <ou=dept, o=my org, c=de> with scope subtree
# filter: (cn=Stefan Helms)
# requesting: ALL
#
# 12345, dept, my org, de
dn: uidNumber=12345,ou=dept,o=my org,c=de
sn: Helms
cn: Stefan Helms
givenName: Stefan
uid: shelms
uidNumber: 12345
mail: [email protected]
ou: DEPT
*SQL entries in sogo_auth_view (both working fine):*
c_uid c_name c_password
c_cn mail ou telephonenumber street postalcode
l
title
room2016 room2016 xxx Konferenzraum (2016)
[email protected] DEPT Somestreet 2 54321 City
laptop-edv
laptop-edv xxx Laptop EDV [email protected]
DEPT
Somestreet 2 54321 City
*Our defaults:*
sogod SOGoDraftsFolderName INBOX/Drafts
sogod SOGoSMTPServer localhost
sogod SOGoUserSources '(
{
canAuthenticate = YES;
displayName = Ressourcen;
id = resources;
isAddressBook = YES;
type = sql;
userPasswordAlgorithm = md5;
viewURL =
"mysql://sogo:sogo@localhost:3306/sogo/sogo_auth_view";
},
{
CNFieldName = cn;
SOGoLDAPQueryTimeout = 1;
SearchFieldNames = (
cn,
sn,
mail
);
UIDFieldName = uid;
baseDN = "o=my org,c=de";
bindAsCurrentUser = YES;
bindFields = (
uid
);
canAuthenticate = YES;
displayName = LDAP;
filter = "(objectClass=person)";
hostname = "ldap.intra.my-org.de";
id = ldap;
isAddressBook = YES;
port = 389;
scope = SUB;
type = ldap;
}
)'
sogod SOGoIMAPServer imaps://imap.intra.my-org.de:993
sogod SOGoLanguage German
sogod OCSEMailAlarmsFolderURL
mysql://sogo:sogo@localhost:3306/sogo/sogo_alarms_folder
sogod SOGoCalendarDefaultRoles '(
PublicViewer,
ConfidentialDAndTViewer
)'
sogod SOGoFirstDayOfWeek 1
sogod SOGoProfileURL
mysql://sogo:sogo@localhost:3306/sogo/sogo_user_profile
sogod SOGoTimeZone Europe/Berlin
sogod SOGoFoldersSendEMailNotifications YES
sogod SOGoFreeBusyDefaultInterval '(
3,
30
)'
sogod LDAPDebugEnabled YES
sogod SOGoLoginModule Calendar
sogod SOGoMailingMechanism smtp
sogod OCSSessionsFolderURL
mysql://sogo:sogo@localhost:3306/sogo/sogo_sessions_folder
sogod SOGoTrashFolderName INBOX/Trash
sogod SOGoSieveServer sieve://imap.intra.my-org.de
sogod SOGoSuperUsernames '(
sogoadmin
)'
sogod SOGoMailDomain sogo.dept.my-org.de
sogod OCSFolderInfoURL
mysql://sogo:sogo@localhost:3306/sogo/sogo_folder_info
sogod SOGoMailAuxiliaryUserAccountsEnabled YES
sogod SOGoSieveScriptsEnabled NO
sogod SOGoDebugRequests YES
sogod SOGoACLsSendEMailNotifications YES
sogod SOGoSentFolderName INBOX/Sent
sogod SOGoAppointmentSendEMailNotifications YES
Am 07.02.2011 17:15, schrieb Ludovic Marcotte:
Hello Stefan,
I'm getting desperate. 4 days to deadline, so here's another cry for
help:
I still can't get free/busy in Lightning to work, while it's working
fine in the web interface.
So far I found out that it works only if the local part of the email
address matches the folder name for the user, which in our
environment ist not the common case.
Our users have a short login name (some short form of their full
names, but following no consistent pattern) while the local part of
the official email address is /almost/ always <givenname>.<sn>.
(Before you ask: No, I have no influence on this. Our LDAP, IMAP and
SMTP servers are centrally managed by the computing center for the
whole university.)
Now, the problem is that SOGo seems to default to naming database
tables and folders after the login.
There is one user in our database for whom both tables and folders
named after the login (uid) and named after his email exist, so i
presume this is doable and at some point during my experiments I've
been almost there.
How can I force SOGo to consistently name user folders according to
the local part of the email address, or alternatively Lightning to
look up and use the uid to the mail address entered in free/busy?
In a previous email, you mentioned "So it's either sending out
invitations without a working free/busy or a working free/busy
without any invitations... "
So, it's not clear what you did. Also, it's not clear if you still use
SQL-based authentication as you mention "LDAP" above.
Please clear up what you did to achieve what and share your
.GNUstepDefaults, together with LDAP's ldif entries of a few users
and/or SQL rows for users.
Regards,
--
Stefan Helms
Fachinformatiker für Systemintegration
(IT Specialist for Systems Integration)
--
[email protected]
https://inverse.ca/sogo/lists
