Login Form
67 views
Skip to first unread message
Matteo Tiraferri
Jan 9, 2013, 11:39:00 AM1/9/13
to trac-...@googlegroups.com
Dear all,
i install trac with account manager, connected with subversion. The strange
behaviuor is that the user will be autenticated inserting any password
different by an empty string.
Subversion work's correctly, i mean it use the same password inserted in
trac, if i change password in trac change also in svn.
This is my trac.ini:
# -*- coding: utf-8 -*-
[account-manager]
account_changes_notify_addresses =
allow_delete_account = false
autentication_url =
authentication_url =
cookie_refresh_pct = 10
db_htdigest_realm = PrimaPowerRealm
force_passwd_change = true
generated_password_length = 8
hash_method = HtDigestHashMethod
htdigest_file = /var/www/trac/trac.htpasswd
htdigest_realm = PrimaPowerRealm
htpasswd_file = /var/www/trac/trac.htpasswd
htpasswd_hash_type = crypt
login_attempt_max_count = 0
login_opt_list = true
notify_actions = new,delete
password_file =
password_store =
HtDigestStore,HtPasswdStore,HttpAuthStore,SessionStore,SvnServePasswordStore
persistent_sessions = true
refresh_passwd = false
register_check = BasicCheck, EmailCheck, BotTrapCheck, RegExpCheck,
UsernamePermCheck
reset_password = false
user_lock_max_time = 0
verify_email = true
[components]
acct_mgr.admin.accountmanageradminpanel = enabled
acct_mgr.api.accountmanager = enabled
acct_mgr.db.sessionstore = enabled
acct_mgr.guard.accountguard = enabled
acct_mgr.htfile.htdigeststore = enabled
acct_mgr.htfile.htpasswdstore = enabled
acct_mgr.http.httpauthstore = enabled
acct_mgr.macros.accountmanagerwikimacros = enabled
acct_mgr.notification.accountchangelistener = enabled
acct_mgr.notification.accountchangenotificationadminpanel = enabled
acct_mgr.pwhash.htdigesthashmethod = enabled
acct_mgr.register.basiccheck = enabled
acct_mgr.register.bottrapcheck = enabled
acct_mgr.register.emailcheck = enabled
acct_mgr.register.emailverificationmodule = enabled
acct_mgr.register.regexpcheck = enabled
acct_mgr.svnserve.svnservepasswordstore = enabled
acct_mgr.web_ui.accountmodule = enabled
acct_mgr.web_ui.loginmodule = enabled
acct_mgr.web_ui.resetpwstore = disabled
ganttcalendar.admin.holidayadminpanel = enabled
ganttcalendar.complete_by_close.completeticketobserver = enabled
ganttcalendar.ticketcalendar.ticketcalendarplugin = enabled
ganttcalendar.ticketgantt.ticketganttchartplugin = enabled
ganttcalendar.ticketvalidator.ticketvalidator = enabled
googleappsauth.plugin.googleappspasswordstore = disabled
iniadmin.iniadmin.iniadminplugin = enabled
simplemultiproject.admin_component.smpcomponentadminpanel = enabled
simplemultiproject.environmentsetup.smpenvironmentsetupparticipant = enabled
simplemultiproject.milestone.smpmilestoneproject = enabled
simplemultiproject.model.smpmodel = disabled
simplemultiproject.roadmap.smproadmapproject = enabled
simplemultiproject.roadmap.smproadmapprojectfilter = enabled
simplemultiproject.ticket.smpticketproject = enabled
simplemultiproject.timeline.smptimelineprojectfilter = enabled
simplemultiproject.version.smpversionproject = enabled
svnauthz.admin_ui.svnauthzadminpage = enabled
trac.db.mysql_backend.mysqlconnector = disabled
trac.db.postgres_backend.postgresqlconnector = disabled
trac.notification.sendmailemailsender = disabled
trac.web.auth.loginmodule = disabled
tracopt.ticket.clone.ticketclonebutton = enabled
tracopt.ticket.commit_updater.committicketupdater = enabled
tracopt.versioncontrol.svn.svn_fs.subversionconnector = enabled
tracopt.versioncontrol.svn.svn_prop.subversionmergepropertydiffrenderer =
enabled
tracopt.versioncontrol.svn.svn_prop.subversionmergepropertyrenderer =
enabled
tracopt.versioncontrol.svn.svn_prop.subversionpropertyrenderer = enabled
tracwysiwyg.wysiwygmodule = enabled
---------------------------------------------
What's i'm wrong?
Best regards Matteo
--
Caselle da 1GB, trasmetti allegati fino a 3GB e in piu' IMAP, POP3 e SMTP
autenticato? GRATIS solo con Email.it: http://www.email.it/f
Sponsor:
Stampa le tue FOTO SU TELA! Su MisterCupido.com puoi creare Quadri
Personalizzati a partire da soli euro 18.90 - Consegne in tutta Italia in
soli 2-3 giorni
Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=12388&d=20130109
--
Caselle da 1GB, trasmetti allegati fino a 3GB e in piu' IMAP, POP3 e SMTP autenticato? GRATIS solo con Email.it http://www.email.it/f
Sponsor:
Ami l'arte e vuoi arredare casa con stile? Su MisterCupido.com puoi acquistare le RIPRODUZIONI DEI QUADRI di: Van Gogh, Monet, Klimt, Modigliani, Cezanne, Hayez, Michelangelo, Raffaello, ecc
Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=12386&d=9-1
i install trac with account manager, connected with subversion. The strange
behaviuor is that the user will be autenticated inserting any password
different by an empty string.
Subversion work's correctly, i mean it use the same password inserted in
trac, if i change password in trac change also in svn.
This is my trac.ini:
# -*- coding: utf-8 -*-
[account-manager]
account_changes_notify_addresses =
allow_delete_account = false
autentication_url =
authentication_url =
cookie_refresh_pct = 10
db_htdigest_realm = PrimaPowerRealm
force_passwd_change = true
generated_password_length = 8
hash_method = HtDigestHashMethod
htdigest_file = /var/www/trac/trac.htpasswd
htdigest_realm = PrimaPowerRealm
htpasswd_file = /var/www/trac/trac.htpasswd
htpasswd_hash_type = crypt
login_attempt_max_count = 0
login_opt_list = true
notify_actions = new,delete
password_file =
password_store =
HtDigestStore,HtPasswdStore,HttpAuthStore,SessionStore,SvnServePasswordStore
persistent_sessions = true
refresh_passwd = false
register_check = BasicCheck, EmailCheck, BotTrapCheck, RegExpCheck,
UsernamePermCheck
reset_password = false
user_lock_max_time = 0
verify_email = true
[components]
acct_mgr.admin.accountmanageradminpanel = enabled
acct_mgr.api.accountmanager = enabled
acct_mgr.db.sessionstore = enabled
acct_mgr.guard.accountguard = enabled
acct_mgr.htfile.htdigeststore = enabled
acct_mgr.htfile.htpasswdstore = enabled
acct_mgr.http.httpauthstore = enabled
acct_mgr.macros.accountmanagerwikimacros = enabled
acct_mgr.notification.accountchangelistener = enabled
acct_mgr.notification.accountchangenotificationadminpanel = enabled
acct_mgr.pwhash.htdigesthashmethod = enabled
acct_mgr.register.basiccheck = enabled
acct_mgr.register.bottrapcheck = enabled
acct_mgr.register.emailcheck = enabled
acct_mgr.register.emailverificationmodule = enabled
acct_mgr.register.regexpcheck = enabled
acct_mgr.svnserve.svnservepasswordstore = enabled
acct_mgr.web_ui.accountmodule = enabled
acct_mgr.web_ui.loginmodule = enabled
acct_mgr.web_ui.resetpwstore = disabled
ganttcalendar.admin.holidayadminpanel = enabled
ganttcalendar.complete_by_close.completeticketobserver = enabled
ganttcalendar.ticketcalendar.ticketcalendarplugin = enabled
ganttcalendar.ticketgantt.ticketganttchartplugin = enabled
ganttcalendar.ticketvalidator.ticketvalidator = enabled
googleappsauth.plugin.googleappspasswordstore = disabled
iniadmin.iniadmin.iniadminplugin = enabled
simplemultiproject.admin_component.smpcomponentadminpanel = enabled
simplemultiproject.environmentsetup.smpenvironmentsetupparticipant = enabled
simplemultiproject.milestone.smpmilestoneproject = enabled
simplemultiproject.model.smpmodel = disabled
simplemultiproject.roadmap.smproadmapproject = enabled
simplemultiproject.roadmap.smproadmapprojectfilter = enabled
simplemultiproject.ticket.smpticketproject = enabled
simplemultiproject.timeline.smptimelineprojectfilter = enabled
simplemultiproject.version.smpversionproject = enabled
svnauthz.admin_ui.svnauthzadminpage = enabled
trac.db.mysql_backend.mysqlconnector = disabled
trac.db.postgres_backend.postgresqlconnector = disabled
trac.notification.sendmailemailsender = disabled
trac.web.auth.loginmodule = disabled
tracopt.ticket.clone.ticketclonebutton = enabled
tracopt.ticket.commit_updater.committicketupdater = enabled
tracopt.versioncontrol.svn.svn_fs.subversionconnector = enabled
tracopt.versioncontrol.svn.svn_prop.subversionmergepropertydiffrenderer =
enabled
tracopt.versioncontrol.svn.svn_prop.subversionmergepropertyrenderer =
enabled
tracopt.versioncontrol.svn.svn_prop.subversionpropertyrenderer = enabled
tracwysiwyg.wysiwygmodule = enabled
---------------------------------------------
What's i'm wrong?
Best regards Matteo
--
Caselle da 1GB, trasmetti allegati fino a 3GB e in piu' IMAP, POP3 e SMTP
autenticato? GRATIS solo con Email.it: http://www.email.it/f
Sponsor:
Stampa le tue FOTO SU TELA! Su MisterCupido.com puoi creare Quadri
Personalizzati a partire da soli euro 18.90 - Consegne in tutta Italia in
soli 2-3 giorni
Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=12388&d=20130109
--
Caselle da 1GB, trasmetti allegati fino a 3GB e in piu' IMAP, POP3 e SMTP autenticato? GRATIS solo con Email.it http://www.email.it/f
Sponsor:
Ami l'arte e vuoi arredare casa con stile? Su MisterCupido.com puoi acquistare le RIPRODUZIONI DEI QUADRI di: Van Gogh, Monet, Klimt, Modigliani, Cezanne, Hayez, Michelangelo, Raffaello, ecc
Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=12386&d=9-1
RjOllos
Jan 9, 2013, 5:15:06 PM1/9/13
to trac-...@googlegroups.com, Matteo Tiraferri
On Wednesday, January 9, 2013 8:39:00 AM UTC-8, Ueo wrote:
Dear all,
i install trac with account manager, connected with subversion. The strange
behaviuor is that the user will be autenticated inserting any password
different by an empty string.
Which version of AccountManager are you running with?
I suspect the problem is with your specification of `password_store`, where you've listed every password store, with SvnServePasswordStore at the end. Are you attempting to use multiple password stores, or do you only want to use SvnServePasswordStore?
Steffen Hoffmann
Jan 9, 2013, 5:31:07 PM1/9/13
to trac-...@googlegroups.com
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 09.01.2013 17:39, Matteo Tiraferri wrote:
> Dear all,
> i install trac with account manager, connected with subversion. The strange
> behaviuor is that the user will be autenticated inserting any password
> different by an empty string.
Strange indeed.
> Subversion work's correctly, i mean it use the same password inserted in
> trac, if i change password in trac change also in svn.
>
> This is my trac.ini:
> # -*- coding: utf-8 -*-
>
> [account-manager]
> account_changes_notify_addresses =
> allow_delete_account = false
> autentication_url =
?
htpasswd format with such valid in htdigest files. Hence the different
file path. I've been very serious about making these separate, yet I
didn't dream that someone would point it to the same file.
Would you like to force another configuration sanity check up-on you and
me?
be finally removed in upcoming acct_mgr-0.5 (already done in current
'trunk' development branch).
> password_store =
> HtDigestStore,HtPasswdStore,HttpAuthStore,SessionStore,SvnServePasswordStore
Huh, do you really require the chain of all these password stores?
Reasons? Which on actually contains user credentials?
Note, that
> refresh_passwd = false
is essential in your case to prevent (gradual) migration of user records
to the first store supporting password changes, HtDigestStore here.
Declare the exact plugin version for further discussion on the issue,
please.
Steffen Hoffmann
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAlDt76UACgkQ31DJeiZFuHf/0ACg1DRqjCG36Hw8uceBfzPYytH+
OhEAn1cby94xS7/VidR390Vw/MIfHCvU
=gWXO
-----END PGP SIGNATURE-----
Hash: SHA1
On 09.01.2013 17:39, Matteo Tiraferri wrote:
> Dear all,
> i install trac with account manager, connected with subversion. The strange
> behaviuor is that the user will be autenticated inserting any password
> different by an empty string.
> Subversion work's correctly, i mean it use the same password inserted in
> trac, if i change password in trac change also in svn.
>
> This is my trac.ini:
> # -*- coding: utf-8 -*-
>
> [account-manager]
> account_changes_notify_addresses =
> allow_delete_account = false
> autentication_url =
> authentication_url =
> cookie_refresh_pct = 10
> db_htdigest_realm = PrimaPowerRealm
> force_passwd_change = true
> generated_password_length = 8
> hash_method = HtDigestHashMethod
> htdigest_file = /var/www/trac/trac.htpasswd
> htdigest_realm = PrimaPowerRealm
> htpasswd_file = /var/www/trac/trac.htpasswd
> htpasswd_hash_type = crypt
Don't do that, because we do not support mixing of lines valid in
> cookie_refresh_pct = 10
> db_htdigest_realm = PrimaPowerRealm
> force_passwd_change = true
> generated_password_length = 8
> hash_method = HtDigestHashMethod
> htdigest_file = /var/www/trac/trac.htpasswd
> htdigest_realm = PrimaPowerRealm
> htpasswd_file = /var/www/trac/trac.htpasswd
> htpasswd_hash_type = crypt
htpasswd format with such valid in htdigest files. Hence the different
file path. I've been very serious about making these separate, yet I
didn't dream that someone would point it to the same file.
Would you like to force another configuration sanity check up-on you and
me?
> login_attempt_max_count = 0
> login_opt_list = true
> notify_actions = new,delete
> password_file =
Depreciated, is overwritten by htdigest_file _and_ htpasswd_file, will
> login_opt_list = true
> notify_actions = new,delete
> password_file =
be finally removed in upcoming acct_mgr-0.5 (already done in current
'trunk' development branch).
> password_store =
> HtDigestStore,HtPasswdStore,HttpAuthStore,SessionStore,SvnServePasswordStore
Huh, do you really require the chain of all these password stores?
Reasons? Which on actually contains user credentials?
Note, that
> refresh_passwd = false
is essential in your case to prevent (gradual) migration of user records
to the first store supporting password changes, HtDigestStore here.
Declare the exact plugin version for further discussion on the issue,
please.
Steffen Hoffmann
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iEYEARECAAYFAlDt76UACgkQ31DJeiZFuHf/0ACg1DRqjCG36Hw8uceBfzPYytH+
OhEAn1cby94xS7/VidR390Vw/MIfHCvU
=gWXO
-----END PGP SIGNATURE-----
Matteo Tiraferri
Jan 10, 2013, 3:28:32 AM1/10/13
to trac-...@googlegroups.com
--------- Original Message --------
Da: RjOllos <ry...@physiosonics.com>
To: trac-...@googlegroups.com <trac-...@googlegroups.com>
Oggetto: Re: Login Form
Data: 09/01/13 22:15
>
> On Wednesday, January 9, 2013 8:39:00 AM UTC-8, Ueo wrote:Dear all,
> i install trac with account manager, connected with subversion. The
strange
> behaviuor is that the user will be autenticated inserting any password
> different by an empty string.Which version of AccountManager are you
strange
> behaviuor is that the user will be autenticated inserting any password
running with?I suspect the problem is with your specification of
`password_store`, where you've listed every password store,
with SvnServePasswordStore at the end. Are you attempting to use multiple
password stores, or do you only want to use SvnServePasswordStore?
>
>
Thank's you for your support. This is my setup:
with SvnServePasswordStore at the end. Are you attempting to use multiple
password stores, or do you only want to use SvnServePasswordStore?
>
>
System Information
Package Version
Trac 1.0
Genshi 0.6 (with speedups)
mod_wsgi 3.3 (WSGIProcessGroup WSGIApplicationGroup
srvjira.primaindustrie.gpi|/trac)
pysqlite 2.4.1
Python 2.6.6 (r266:84292, Dec 27 2010, 00:18:12) [GCC 4.4.5]
setuptools 0.6
SQLite 3.7.3
Subversion 1.6.12 (r955767)
jQuery 1.7.2
Installed Plugins
Name Version Location
IniAdmin 0.3-r12307
/usr/local/lib/python2.6/dist-packages/IniAdmin-0.3_r12307-py2.6.egg
ScreenshotPaste 0.1.2 /var/trac/plugins/ScreenshotPaste-0.1.2-py2.6.egg
SimpleMultiProject 0.0.3dev-r12347
/var/trac/plugins/SimpleMultiProject-0.0.3dev_r12347-py2.6.egg
SvnAuthzAdminPlugin 0.2
/usr/local/lib/python2.6/dist-packages/SvnAuthzAdminPlugin-0.2-py2.6.egg
TracAccountManager 0.4
/usr/local/lib/python2.6/dist-packages/TracAccountManager-0.4-py2.6.egg
TracGanttCalendarPlugin 0.6.2-r820
/usr/local/lib/python2.6/dist-packages/TracGanttCalendarPlugin-0.6.2_r820-py2.6.egg
TracGoogleAppsAuthPlugin 0.3.1
/usr/local/lib/python2.6/dist-packages/TracGoogleAppsAuthPlugin-0.3.1-py2.6.egg
TracWysiwyg 0.12.0.4-r11158
/usr/local/lib/python2.6/dist-packages/TracWysiwyg-0.12.0.4_r11158-py2.6.egg
and this is my new configuration:
[account-manager]
account_changes_notify_addresses = matteo.t...@primapower.com
allow_delete_account = false
autentication_url =
autentication_url =
authentication_url =
cookie_refresh_pct = 10
db_htdigest_realm = PrimaPowerRealm
force_passwd_change = true
generated_password_length = 8
hash_method = HtDigestHashMethod
htdigest_file = /var/www/trac/trac.htpasswd
htdigest_realm = PrimaPowerRealm
htpasswd_file =
htpasswd_hash_type = crypt
cookie_refresh_pct = 10
db_htdigest_realm = PrimaPowerRealm
force_passwd_change = true
generated_password_length = 8
hash_method = HtDigestHashMethod
htdigest_file = /var/www/trac/trac.htpasswd
htdigest_realm = PrimaPowerRealm
htpasswd_file =
login_attempt_max_count = 0
login_opt_list = true
notify_actions = new,delete
password_file =
password_store = HtDigestStore
login_opt_list = true
notify_actions = new,delete
password_file =
persistent_sessions = true
refresh_passwd = false
register_check = BasicCheck, EmailCheck, BotTrapCheck, RegExpCheck,
UsernamePermCheck
reset_password = false
user_lock_max_time = 0
verify_email = false
refresh_passwd = false
register_check = BasicCheck, EmailCheck, BotTrapCheck, RegExpCheck,
UsernamePermCheck
reset_password = false
user_lock_max_time = 0
[trac]
auth_cookie_lifetime = 0
auth_cookie_path =
authz_file = /var/svn-repos/svnroot/conf/authz
authz_module_name =
auto_preview_timeout = 2.0
auto_reload = False
backup_dir = db
base_url =
check_auth_ip = false
database = sqlite:db/trac.db
debug_sql = False
default_charset = utf-8
default_date_format =
default_dateinfo_format = relative
default_language =
default_timezone = GMT +1:00
genshi_cache_size = 128
htdocs_location =
ignore_auth_case = false
jquery_location =
jquery_ui_location =
jquery_ui_theme_location =
mainnav = wiki, timeline, roadmap, browser, tickets, newticket, search
metanav = login, logout, prefs, help, about
mysqldump_path = mysqldump
never_obfuscate_mailto = false
permission_policies = DefaultPermissionPolicy, LegacyAttachmentPolicy
permission_store = DefaultPermissionStore
pg_dump_path = pg_dump
repository_dir =
repository_sync_per_request = (default)
repository_type = svn
resizable_textareas = true
secure_cookies = False
show_email_addresses = false
show_ip_addresses = false
timeout = 20
use_base_url_for_redirect = False
Now the login form works correctly but subversion not. The trac working
password doesn't work in subversion.
Best regards Matteo
--
Caselle da 1GB, trasmetti allegati fino a 3GB e in piu' IMAP, POP3 e SMTP
autenticato? GRATIS solo con Email.it: http://www.email.it/f
Sponsor:
Quality" a partire da soli euro 8,30
Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=12676&d=20130110
--
Caselle da 1GB, trasmetti allegati fino a 3GB e in piu' IMAP, POP3 e SMTP autenticato? GRATIS solo con Email.it http://www.email.it/f
Sponsor:
Ami l'arte e vuoi arredare casa con stile? Su MisterCupido.com puoi acquistare le RIPRODUZIONI DEI QUADRI di: Van Gogh, Monet, Klimt, Modigliani, Cezanne, Hayez, Michelangelo, Raffaello, ecc
RjOllos
Jan 10, 2013, 3:36:57 AM1/10/13
to trac-...@googlegroups.com, Matteo Tiraferri
On Thursday, January 10, 2013 12:28:32 AM UTC-8, Ueo wrote:
[...]
Now the login form works correctly but subversion not. The trac working
password doesn't work in subversion.
Are you wishing to use SvnServerPasswordStore as your password store? Your configuration is currently set to use HtDigestStore. Please take a look at:
It really seems like you've just copied and pasted several configurations into your setup, and it doesn't make much sense at all. We can best help you if you can explain exactly what you want to do. Are you trying to use a SvnServerPasswordStore as the one and only password store for your Trac instance?
Matteo Tiraferri
Jan 10, 2013, 7:50:29 AM1/10/13
to RjOllos, trac-...@googlegroups.com
--------- Original Message --------
Da: RjOllos <ry...@physiosonics.com>
To: trac-...@googlegroups.com <trac-...@googlegroups.com>
Oggetto: Re: Login Form
I've installed trac on apache and subversion,what i'd like to do is just
have the same
username and password beetwen trac e subversion.
In trac i'd like to use for multiple project bug tracking, but in this
moment the goal is just to have the common user and password in svn and trac
Probably also SVNServerPasswordStore is wrong.
Best Regards Matteo
--
Caselle da 1GB, trasmetti allegati fino a 3GB e in piu' IMAP, POP3 e SMTP
autenticato? GRATIS solo con Email.it: http://www.email.it/f
Sponsor:
centinaia di IDEE REGALO per tutte le tasche! Consegne in tutta Italia in
soli 2-3 giorni
Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=12387&d=20130110
--
Caselle da 1GB, trasmetti allegati fino a 3GB e in piu' IMAP, POP3 e SMTP autenticato? GRATIS solo con Email.it http://www.email.it/f
Sponsor:
Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=12385&d=10-1
Reply all
Reply to author
Forward
0 new messages