AccountManager Plugin w digest, wrong method?

18 views
Skip to first unread message

Hr. Johannes Loose

unread,
Jun 3, 2008, 11:38:02 AM6/3/08
to trac-...@googlegroups.com
Hello,

We have the current development version of trac (012dev, from today's trunk) running, on an
apache v 2.2.3 webserver using mod_wsgi. The user auth is done by apache, using the
digest method and the fine grained permissions, using the authz plugin. The corresponding
lines in my sites-available/default file are those:

<Location "/migration/login">
AuthType Digest
AuthName "migration"
AuthDigestDomain /migration
AuthDigestProvider file
AuthUserFile /opt/trac/www/trac.htpasswd
Require valid-user
</Location>

We are able to create users, using 'htdigest /opt/trac/www/trac.htpasswd migration newuser'.
Now we installed the Account Manager plugin, that lists all available users. Deleting users
also works fine.

Now, on creation of a new user, (name test, pw test) with the the AccountManager Plugin,
the following line is added to my trac.htpasswd file:

test:migration:0000000091706f12da9a78d6dd3ac202

But: Login is not possible with test/test. I tried it with 'basic' instead of 'digest', too, same
result. I noticed, that the password strings differ, if I create the same user using htdigest and
AccountManagerPlugin.

I'm stuck here. Have I misconfigured something (I believe so, but what?), or is a bug / version
issue? What can I do to fix this? Should I file a ticket or is it fully my fault?

The corresponding lines from my trac.ini are those (omitted some lines):

[account-manager]
htdigest_realm = migration
password_file = /opt/trac/www/trac.htpasswd
password_store = HtDigestStore

[authz_policy]
authz_file = /opt/trac/env/conf/authzpolicy.conf

[components]
acct_mgr.admin.* = enabled
acct_mgr.api.* = enabled
acct_mgr.db.* = enabled
acct_mgr.db.sessionstore = disabled
acct_mgr.htfile.* = enabled
acct_mgr.htfile.abstractpasswordfilestore = disabled
acct_mgr.htfile.htdigeststore = enabled
acct_mgr.htfile.htpasswdstore = disabled
acct_mgr.http.* = enabled
acct_mgr.http.httpauthstore = disabled
acct_mgr.notification.* = enabled
acct_mgr.notification.accountchangelistener = disabled
acct_mgr.pwhash.* = enabled
acct_mgr.pwhash.htdigesthashmethod = disabled
acct_mgr.pwhash.htpasswdhashmethod = disabled
acct_mgr.svnserve.* = enabled
acct_mgr.svnserve.svnservepasswordstore = disabled
acct_mgr.web_ui.* = enabled
acct_mgr.web_ui.registrationmodule = disabled
authz_policy = enabled
authz_policy.* = enabled
trac.versioncontrol.web_ui.log.logmodule = enabled

[trac]
authz_file = /opt/trac/env/conf/authzpolicy.conf
authz_module_name =
check_auth_ip = true
database = postgres://migration:MYPASSWORD@localhost/migration
permission_policies = AuthzPolicy, DefaultPermissionPolicy,
LegacyAttachmentPolicy
permission_store = DefaultPermissionStore

Any ideas?

Thank you in andvance

Johannes

John Hampton

unread,
Jun 3, 2008, 7:25:20 PM6/3/08
to trac-...@googlegroups.com
Hr. Johannes Loose wrote:

> I'm stuck here. Have I misconfigured something (I believe so, but what?), or is a bug / version
> issue? What can I do to fix this? Should I file a ticket or is it fully my fault?

Would you please submit a ticket on trac-hacks.org against
AccountManager. You configuration looks fine, though I'm not sure what
the problem is right now.

-John

Hr. Johannes Loose

unread,
Jun 4, 2008, 2:41:17 AM6/4/08
to trac-...@googlegroups.com
Hello John

The ticket ID is #3132.

http://trac-hacks.org/ticket/3132

If I could help in any manner (without python programming knowledge), please let me know.

Best regards

Johannes

Reply all
Reply to author
Forward
0 new messages