RT3 and LDAP

Hi people,

I’m new to this list and I couldn’t find my answer in (recent) archives.
Is there a way to have RT3 connect to an LDAP db for authentication? Any
help is appreciated.

Gegroet,
Tim

You can say to rt to do an external authentication this means using the
web server, normally apache.

You will find very much informations in the archive if you search.

Samuel-----Original Message-----
From: Tim Stoop [mailto:cvd@il.fontys.nl]
Sent: Wednesday,29 October,2003 11:46
To: rt-users@lists.fsck.com

Hi people,

I’m new to this list and I couldn’t find my answer in (recent) archives.
Is there a way to have RT3 connect to an LDAP db for authentication? Any
help is appreciated.

Gegroet,
Tim
rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm

Hi …

I was in the same position as you, a few months ago. I did a lot of
digging, asked a lot of questions (some more stupid than others, I
suppose) and came to a conclusion that is being used now.

I believe there are about 4 things you need to get rt3 working with LDAP:
a few modifications to $RT_BASE/etc/RT_SiteConfig.pm, the addition of an
$RT_BASE/lib/RT/EmailParser_Local.pm, modifying
$RT_BASE/var/mason_data/obj/standard/autohandler, and an appropriate
httpd.conf.

I’ve included sanitized versions of my files, working on rt 3.0.4, to
demonstrate.

To use: change LDAPSERVER to your values, change DOMAIN to your values,
and change CHANGEME! to a real password.

Let me know if these are too confusing.On Wed, 29 Oct 2003, Senoner Samuel wrote:

You can say to rt to do an external authentication this means using the
web server, normally apache.

You will find very much informations in the archive if you search.

Samuel

-----Original Message-----
From: Tim Stoop [mailto:cvd@il.fontys.nl]
Sent: Wednesday,29 October,2003 11:46
To: rt-users@lists.fsck.com

Hi people,

I’m new to this list and I couldn’t find my answer in (recent) archives.
Is there a way to have RT3 connect to an LDAP db for authentication? Any
help is appreciated.


Gegroet,
Tim


rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm


rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm

httpd.conf (3.48 KB)

autohandler (6.87 KB)

EmailParser_Local.pm (3.84 KB)

RT_SiteConfig.pm (11.4 KB)

Cool.
This is a part of the script I sent some months ago.
(In autohandler there is a comment added by SeS, that’s me! :wink: )
I will take a look at your changes.
Which LDAP source do you use?

Thanks.

SamuelFrom: John Jasen [mailto:jjasen@datafoundation.com]
Sent: Wednesday,29 October,2003 16:58
To: Senoner Samuel
Cc: Tim Stoop; rt-users@lists.fsck.com

Hi …

I was in the same position as you, a few months ago. I did a lot of
digging, asked a lot of questions (some more stupid than others, I
suppose) and came to a conclusion that is being used now.

I believe there are about 4 things you need to get rt3 working with
LDAP:
a few modifications to $RT_BASE/etc/RT_SiteConfig.pm, the addition of an
$RT_BASE/lib/RT/EmailParser_Local.pm, modifying
$RT_BASE/var/mason_data/obj/standard/autohandler, and an appropriate
httpd.conf.

I’ve included sanitized versions of my files, working on rt 3.0.4, to
demonstrate.

To use: change LDAPSERVER to your values, change DOMAIN to your values,
and change CHANGEME! to a real password.

Let me know if these are too confusing.

You can say to rt to do an external authentication this means using
the web server, normally apache.

You will find very much informations in the archive if you search.

Samuel

-----Original Message-----
From: Tim Stoop [mailto:cvd@il.fontys.nl]
Sent: Wednesday,29 October,2003 11:46
To: rt-users@lists.fsck.com

Hi people,

I’m new to this list and I couldn’t find my answer in (recent)
archives.
Is there a way to have RT3 connect to an LDAP db for authentication?
Any help is appreciated.


Gegroet,
Tim


rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

Have you read the FAQ? The RT FAQ Manager lives at
http://fsck.com/rtfm


rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

Have you read the FAQ? The RT FAQ Manager lives at
http://fsck.com/rtfm

This is a part of the script I sent some months ago.
(In autohandler there is a comment added by SeS, that’s me! :wink: )
I will take a look at your changes.
Which LDAP source do you use?

My ldap server is openldap 2.0.27-2.7.3, from RH 7.3 updates. auth_ldap is
-1.6.0-4, same place.

I think I needed to make a change to EmailParser_Local.pm, as the copy I
found searched on email address and then common name – and would fail on
certain people.

For example: john@DOMAIN.com would fail, whereas jjasen@DOMAIN.com would
work.

I changed it to use uid instead of email, as that should be more unique.
(I think …)

John Jasen wrote:

I believe there are about 4 things you need to get rt3 working with LDAP:
a few modifications to $RT_BASE/etc/RT_SiteConfig.pm, the addition of an
$RT_BASE/lib/RT/EmailParser_Local.pm, modifying
$RT_BASE/var/mason_data/obj/standard/autohandler, and an appropriate
httpd.conf.

Modifying data in Mason’s object cache doesn’t sound like
something you should be doing. share/html/autohandler is
probably what you’re looking to modify.
Phil Homewood, Systems Janitor, http://www.SnapGear.com
pdh@snapgear.com Ph: +61 7 3435 2810 Fx: +61 7 3891 3630
SnapGear - Custom Embedded Solutions and Security Appliances

Hi John,

Sorry for taking so long to reply and keep you informed, my own pc is back
to the manufacturer and somehow I resent doing real work from another pc.
My pc is still at the manufacturer, but I felt this itch… :wink:

I’ve included sanitized versions of my files, working on rt 3.0.4, to
demonstrate.

Thanks! This really helps a lot!

Let me know if these are too confusing.

Well, I don’t get the autohandler-file. What should I do with that? Should
I manually alter the lines in the Mason-package or can I put it somewhere
to overrule those parts in the Mason-package?

Thanks for your help so far!

Gegroet,
Tim

You have it in share/html/autohandler
obj dir it’s mason code cache.

Ok, done. But I’m getting an error. Can anyone help? I’m using the same
autohandler as was supplied by John. I can read Perl, but I’m not much of
a Perl-programmer… Any help is appreciated.

The error:
System error
error: Error during compilation of /opt/rt3/share/html/autohandler:
syntax error at /opt/rt3/share/html/autohandler line 228, near "},"
Missing right curly or square bracket at /opt/rt3/share/html/autohandler
line 234, at end of line

context:

224: )
225: ;}
226:
code stack: /usr/local/share/perl/5.6.1/HTML/Mason/Interp.pm:580
g /usr/local/share/perl/5.6.1/HTML/Mason/Interp.pm:317
g /usr/local/share/perl/5.6.1/HTML/Mason/Interp.pm:481
g /usr/local/share/perl/5.6.1/HTML/Mason/Component.pm:321
g /usr/local/share/perl/5.6.1/HTML/Mason/Request.pm:314
g

The raw error:
Error during compilation of /opt/rt3/share/html/autohandler:
syntax error at /opt/rt3/share/html/autohandler line 228, near "},"
Missing right curly or square bracket at /opt/rt3/share/html/autohandler
line 234, at end of line

Trace begun at /usr/local/share/perl/5.6.1/HTML/Mason/Interp.pm line 580
HTML::Mason::Interp::_compilation_error(‘HTML::Mason::Interp=HASH(0x8abfe40)’,
’/opt/rt3/share/html/autohandler’, ‘Error during compilation of :^Jsyntax
error at /opt/rt3/share/html/autohandler line 228, near “},”^JMissing
right curly or square bracket at /opt/rt3/share/html/autohandler line 234,
at end of line^J^J^JStack:^J
[/usr/local/share/perl/5.6.1/HTML/Mason/Interp.pm:557]^J
[/usr/local/share/perl/5.6.1/HTML/Mason/Interp.pm:311]^J
[/usr/local/share/perl/5.6.1/HTML/Mason/Interp.pm:481]^J
[/usr/local/share/perl/5.6.1/HTML/Mason/Component.pm:321]^J
[/usr/local/share/perl/5.6.1/HTML/Mason/Request.pm:314]^J’) called at
/usr/local/share/perl/5.6.1/HTML/Mason/Interp.pm line 317
HTML::Mason::Interp::load(‘HTML::Mason::Interp=HASH(0x8abfe40)’,
’/autohandler’) called at /usr/local/share/perl/5.6.1/HTML/Mason/Interp.pm
line 481
HTML::Mason::Interp::find_comp_upwards(‘HTML::Mason::Interp=HASH(0x8abfe40)’,
’/’, ‘autohandler’) called at
/usr/local/share/perl/5.6.1/HTML/Mason/Component.pm line 321
HTML::Mason::Component::parent(‘HTML::Mason::Component::FileBased=HASH(0x8a3e0f4)’)
called at /usr/local/share/perl/5.6.1/HTML/Mason/Request.pm line 314
eval {…}(‘HTML::Mason::Component::FileBased=HASH(0x8a3e0f4)’) called at
/usr/local/share/perl/5.6.1/HTML/Mason/Request.pm line 297
HTML::Mason::Request::exec(‘HTML::Mason::Request::ApacheHandler=HASH(0x8a61158)’)
called at /usr/local/share/perl/5.6.1/HTML/Mason/ApacheHandler.pm line 134
eval {…}(‘HTML::Mason::Request::ApacheHandler=HASH(0x8a61158)’) called
at /usr/local/share/perl/5.6.1/HTML/Mason/ApacheHandler.pm line 134
HTML::Mason::Request::ApacheHandler::exec(‘HTML::Mason::Request::ApacheHandler=HASH(0x8a61158)’)
called at /usr/local/share/perl/5.6.1/HTML/Mason/ApacheHandler.pm line 792
HTML::Mason::ApacheHandler::handle_request(‘HTML::Mason::ApacheHandler=HASH(0x8ac00e8)’,
‘Apache=SCALAR(0x8abfbc4)’) called at /opt/rt3/bin/webmux.pl line 135
eval {…}(‘HTML::Mason::ApacheHandler=HASH(0x8ac00e8)’,
‘Apache=SCALAR(0x8abfbc4)’) called at /opt/rt3/bin/webmux.pl line 135
RT::Mason::handler(‘Apache=SCALAR(0x8abfbc4)’) called at /dev/null line 0
eval {…}(‘Apache=SCALAR(0x8abfbc4)’) called at /dev/null line 0

Gegroet,
Tim