September 15, 2010

164 words 1 min read

RT, WebExternalAuth and SpeedyCGI don't mix

The title basically sums it all up.  I made the mistake of setting up a new install of Request Tracker (RT), against a server running SpeedyCGI.  I’ll be honest, it’s been so long since I’ve run any perl apps, that I had no idea what interface to pick.  Anyways, on top of the RT/SpeedyCGI I wanted to use my Apache mod_ldap, like I did with WebDAV.

I spent a number of hours attempting to debug why it wasn’t working.  I added Set($WebFallbackToInternalAuth , 0); which should have prevented the normal RT login screen from showing up.  Even with that, and myself authenticated to Apache, I got a proper login screen.  I tried every combination of WebExternalAuth options, all to no avail.  Eventually, I had to ask the rt-users mailing list in which they informed me that almost no one uses SpeedyCGI.

I switched over to mod_perl2 and BAM, it worked the first try.  So… don’t use WebExternalAuth with SpeedyCGI — it just doesn’t work.

Request Tracker RT SpeedyCGI WebDAV WebExternalAuth

WebDAV Client – Windows 7

August 26, 2010

Since I’ve already got Linux & OSX talking to my LDAP/WebDAV enabled Apache, I needed to finish my trifecta… Windows. Specifically, Windows 7. I had heard that it is possible to map WebDAV shares as network drives, just like you would with Samba. Of course, what you hear, what you hope for, and what Windows actually lets you do aren’t always the same (and usually ends with pain).

WebDAV Clients – Linux & OSX

August 25, 2010

After getting LDAP, Apache & WebDAV working together in perfect harmony, I needed to get clients accessing the “shares” I was setting up. Fortunately Linux & OSX make this extremely easy. Windows… is another story, a story which can only be told… tomorrow.

Samba and LDAP DO NOT MIX

August 18, 2010

Recently I was tasked with helping a company implement a centralized authentication system, and they wanted to go all open source. This isn’t unreasonable in my book, though it is a little unusual. Of course the words “Open Source Authentication” directly translates to LDAP, the only question is which LDAP software you’re going to use. There are a number of options including OpenLDAP (slapd), Fedora Directory Server (389), OpenDS, Apache Directory Server, and a handful of smaller projects. On top of the LDAP directory they wanted me to add a number of services including email and file sharing. This is the story of how Samba sucks…