Opened 13 years ago
Last modified 12 years ago
#8659 closed defect
WinXP HtDigestStore disables AccountModule because the password store does not support writing — at Version 10
| Reported by: | Andreas | Owned by: | Steffen Hoffmann |
|---|---|---|---|
| Priority: | normal | Component: | AccountManagerPlugin |
| Severity: | major | Keywords: | htdigest file AccountModule disabled |
| Cc: | Trac Release: | 0.12 |
Description (last modified by )
When switching to htdigest authentication mode webui disables AccountModule and RegistrationModule. Login does no longer work.
Windows XP SP3
Apache/2.2.17 (Win32)
Python 2.7.1
trac 0.12.2
tracaccountmanager 0.2.1dev-r4679 0.3dev-r9929
trachttpauth 1.1
tracloginrequiredplugin 0.1.0
tracmercurial 0.12.0.26
Change History (11)
comment:1 Changed 13 years ago by
- Windows XP SP3
- Apache/2.2.17 (Win32)
- Python 2.7.1
- trac 0.12.2
- tracaccountmanager 0.2.1dev-r4679
- trachttpauth 1.1
- tracloginrequiredplugin 0.1.0
- tracmercurial 0.12.0.26
Changed 13 years ago by
| Attachment: | trac.ini.zip added |
|---|
comment:2 Changed 13 years ago by
| Keywords: | htdigest file AccountModule disabled added |
|---|
What actions do you expect? If I understand correctly from the trac.log snippet in #8660, you've got a read-only htdigest password file, right? At least this is just a local installation and configuration problem.
You still want to use it that way? Do you feel the action taken by AcctMgr is just too harsh, or anything else? And last but not least, as you're using Trac 0.12: Why don't you try a more recent revision of this plugin? :-)
comment:3 Changed 13 years ago by
I have upgraded to "tracaccountmanager 0.3dev-r9929".
What actions do I expect?
- login fails with a "Invalid username or password". I have created the password file with
htdigest -c htdigest trac baloan
Login works fine with htpasswd.
- htdigest is read-write so I was wondering whether updating the password is not supported by tracaccountmanager with htdigest?
D:\Home\web\trac>attrib htdigest A D:\Home\web\trac\htdigest
comment:4 Changed 13 years ago by
I don't use AcctMgr with htdigest right now, but still don't know, why it shouldn't work.
Currently you can't use two or more files on parallel, whether it might might be htpasswd, htdigest or a mix of them. This might lead to confusion, even unintended misconfiguration, so please double-check, what is you effective configuration.
LoginRequiredPlugin is another candidate for disturbance, as it states clearly on the wiki page. Redirection issues have been fixed for AcctMgr lately, dunno, how that suites to LoginRequiredPlugin.
You mentioned "webui disables AccountModule and RegistrationModule" initially. Can you proof such behavior, i.e. by DEBUG log of a Trac environment reload?
comment:6 Changed 13 years ago by
| Keywords: | needinfo added |
|---|
comment:7 Changed 13 years ago by
This could even be related to #4677 in your case. Please make sure you don't have conflicting configuration - there can be only one of HtDigestStore and HtPasswdStore working.
Unless you use the latest code from trunk. If you do, please read the commit message of changeset [10396] really careful. Would be great to get test feedback for this new code here.
comment:8 Changed 12 years ago by
After such a long time without feedback it might be reasonable to assume, that the issue has been resolved meanwhile, right? If so, tell us as well, please.
However I'll let the next release happen before I finally close this ticket.
comment:9 Changed 12 years ago by
Not fixed. Using tracd on Debian, so perhaps that's a conflict between the trac.ini parameters and the command-line --auth option and its parameters. As for the proof, well the name of the report is pretty much the line of the log (found this report by googling the corresponding log line).
2012-09-27 21:57:56,102 Trac[web_ui] WARNING: AccountModule is disabled because the password store does not support writing. 2012-09-27 21:57:56,103 Trac[web_ui] WARNING: RegistrationModule is disabled because the password store does not support writing.
I tried without authentication info in trac.ini, without --auth on the command line (that disabled authentication as expected), with the same info on the command line and in trac.ini, with a distinct (but similar) copy of the password file in each, and a few other even dumber things (same or different realms etc). Nothing worked. I think I'll just conclude that tracd is not compatible with the Registration or Account modules, install a minimalist web server such as boa an let it deal with the passwords. That would be consistent with the need to manually hash the passwords for tracd command-line options...
comment:10 Changed 12 years ago by
| Description: | modified (diff) |
|---|
Did you try acct_mgr-0.3 or better: latest development code of acct_mgr-0.4dev aka trunk yet?
But I suspect there's no issue with AcctMgr at all. You want to use tracd with HTTP Basic Auth, but manage the htdigest file with AcctMgr, right? Make sure, that tracd process is running with a suitable UID, so you have r/w access to that file. You didn't talk about that by now. It seems that you continue to fail with that in your configuration - nothing that AcctMgr could be blamed for. If you're sure, that you'll be able to write to the file from tracd, post your [account-manager] configuration here, please.
Login is yet a different topic. For tracd with HTTP Basic Auth you need to follow t:wiki:TracStandalone#UsingAuthentication. Make sure to not enable AcctMgr's login form.
Btw, what is HttpAuthPlugin (you listed trachttpauth) meant to be fore? It's not needed for normal login as mentioned in the wiki docs, and I think you have more, than you need, or you don't know exactly what to do, so you risk interfering plugin actions. Try to build you setup step-by-step. Activating multiple plugins while having issues is a bad idea - just sort out each one on it's own, ok?
