View Issue Details

IDProjectCategoryView StatusLast Update
0003746SOGoWeb Generalpublic2016-06-28 17:19
Reportersogo.dienste.sst@sst-net.de Assigned Toludovic  
PrioritynormalSeveritymajorReproducibilityalways
Status closedResolutionno change required 
Platform[Server] LinuxOSUbuntuOS Version14.04 LTS
Product Version3.1.3 
Summary0003746: Cannot invite (LDAP-)Groups in Web for Adressbooks and Calendars
Description

I'm not able to invite groups to access calendars or addressbooks. (Open)LDAP-Server contains group-definition as "groupofentries" - definied in sogo.conf as 'GroupObjectClasses = (groupofentries)'. In globale adressbook > all groups I can see definied groups.
How can I search for groups and not only for users in acl dialog? What am I missing?

TagsNo tags attached.

Activities

Christian Mack

Christian Mack

2016-06-28 14:11

developer   ~0010441

Are those groups in the same ou your person objects are in or a sub of that?
If not, did you set a SOGoUserSources entry for those?
Do your groups have valid email addresses?

sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:02

reporter  

sogo.conf.example (1,053 bytes)
sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:02

reporter  

schema.schema (182 bytes)
sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:02

reporter  

sst.schema (106 bytes)
sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:03

reporter  

user-example.ldif (246 bytes)
sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:03

reporter  

group-example.ldif (620 bytes)
sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:08

reporter   ~0010448

My entries are all under the same "organization" (o). Under this organization i have a organizationalUnit (ou) for the users and another one for the groups. Of course I have two SOGoUserSources. And my groups do have a (syntactical valid) email address.

See attached files:
sogo.conf.example: these are my SogoUserSources
schema.schema: the openLDAP Schema File for "groupOfEntries"
sst.schema: my openLDAP Schema to provide "mail" attribute in "groupOfEntries" instances
user-example.ldif: A sample user
group-example.ldif: A sample group

sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:14

reporter  

screen-acl.png (35,865 bytes)   
screen-acl.png (35,865 bytes)   
sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:16

reporter   ~0010449

In screen-acl.png I have attached a screenshot. At this point I enter the name of my group. As search-results I only get those users(!) where the group-name is contained (typical here in mail-address) but not the according group.

sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:23

reporter  

extract-sogo.log (459 bytes)
sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:24

reporter   ~0010450

As you can see in extract-sogo.log the search for "abc" does only search the SOGoUserSource concerning the users. A search in the ou concerning the groups doesn't exist

Christian Mack

Christian Mack

2016-06-28 16:44

developer   ~0010451

Set
canAuthenticate = YES;
for your group SOGoUserSource.
Else it will not be used for ACLs.

sogo.dienste.sst@sst-net.de

sogo.dienste.sst@sst-net.de

2016-06-28 16:54

reporter   ~0010452

You are right. Setting to YES, restarting sogo service and I can find groups. Thanks for your help.

But: I set this to NO because of not wanting "groups" as login-able accounts. Now I think this is ok, because groups do not have userPassword field. Right?

You can close this issue

Issue History

Date Modified Username Field Change
2016-06-25 10:12 sogo.dienste.sst@sst-net.de New Issue
2016-06-28 14:11 Christian Mack Note Added: 0010441
2016-06-28 16:02 sogo.dienste.sst@sst-net.de File Added: sogo.conf.example
2016-06-28 16:02 sogo.dienste.sst@sst-net.de File Added: schema.schema
2016-06-28 16:02 sogo.dienste.sst@sst-net.de File Added: sst.schema
2016-06-28 16:03 sogo.dienste.sst@sst-net.de File Added: user-example.ldif
2016-06-28 16:03 sogo.dienste.sst@sst-net.de File Added: group-example.ldif
2016-06-28 16:08 sogo.dienste.sst@sst-net.de Note Added: 0010448
2016-06-28 16:14 sogo.dienste.sst@sst-net.de File Added: screen-acl.png
2016-06-28 16:16 sogo.dienste.sst@sst-net.de Note Added: 0010449
2016-06-28 16:23 sogo.dienste.sst@sst-net.de File Added: extract-sogo.log
2016-06-28 16:24 sogo.dienste.sst@sst-net.de Note Added: 0010450
2016-06-28 16:44 Christian Mack Note Added: 0010451
2016-06-28 16:54 sogo.dienste.sst@sst-net.de Note Added: 0010452
2016-06-28 17:19 ludovic Status new => closed
2016-06-28 17:19 ludovic Assigned To => ludovic
2016-06-28 17:19 ludovic Resolution open => no change required