Evolution cannot authenticate against caldavd

Bug #160190 reported by Steven McCoy
8
Affects Status Importance Assigned to Milestone
evolution (Ubuntu)
Invalid
Low
Ubuntu Desktop Bugs

Bug Description

Binary package hint: evolution

Mozilla Thunderbird works fine, but caldavd (svn export of Darwin Calendar Server) doesn't work with Evolution on Ubuntu 7.10.

2007-11-05 13:57:49+0000 [-] [caldav-8008] [HTTPChannel,0,127.0.0.1] REPORT /calendars/users/steve-o/calendar/ HTTP/1.1
2007-11-05 13:57:49+0000 [-] [caldav-8008] [-] 'Authentication failed: nonce-count value out of sequence: 3 should be one more than 1'

Example install how-to:
http://blog.jl42.de/index.php?/archives/231-Installation-of-the-Apple-Calendar-Server-on-Ubuntu-Edgy.html

Revision history for this message
Sammy Spets (sammys) wrote :

I confirm this bug exists with Evolution on Ubuntu 7.10. I have Calendar Server installed on Debian Etch.

Revision history for this message
Sammy Spets (sammys) wrote :

2007-11-24 18:57:12+1100 [-] [caldav-8008] [HTTPChannel,0,192.168.2.28] REPORT /calendars/users/sammys/calendar/ HTTP/1.1
2007-11-24 18:57:12+1100 [-] [caldav-8008] [-] 'Authentication failed: nonce-count value out of sequence: 3 should be one more than 1'

Revision history for this message
matt1980 (matt1980) wrote :

Same issue, exact same symptoms. Mozilla Thunderbird/Lightning works fine.

Found a workaround though! May not be acceptable for everyone. On your calendar server installation, disable Digest authentication. Evolution works fine with only Basic authentication. The "nonce count" error is Digest authentication specific. You can do so by changing caldav-dev.plist as follows:

    <!-- Digest challenge/response -->
    <key>Digest</key>
    <dict>
      <key>Enabled</key>
      <false/> <!-- CHANGED -->
      <key>Algorithm</key>
      <string>md5</string>
      <key>Qop</key>
      <string></string>
    </dict>
    <!-- Kerberos/SPNEGO -->
    <key>Kerberos</key>
    <dict>
      <key>Enabled</key>
      <false/> <!-- CHANGED -->
      <key>ServicePrincipal</key>
      <string></string>
    </dict>

Note the "<false/>" tags, which used to be "<true/>".

Also note that if you do this, you REALLY should also disable or block non-SSL service, and only use HTTPS (e.g. port 443 or 8443). Otherwise, your passwords will be sent in clear-text across the network.

Running both Apple Calendar Server and Evolution 2.12.1 on Ubuntu 7.10 (2 different machines). Using Apache 2.2 as a reverse proxy to access Calendar Server via SSL. With the workaround, both viewing and adding items works. Without the workaround (with Digest authentication enabled on the server), no items appear and items cannot be added. Same log messages as experienced by other reporters.

Revision history for this message
Onno Benschop (onno-itmaze) wrote :

FYI: We're in the process of writing a HowTo to document the installation of the DCS: https://wiki.ubuntu.com/CalendarServer

Revision history for this message
Pedro Villavicencio (pedro) wrote :

does it works fine on hardy heron?

Changed in evolution:
assignee: nobody → desktop-bugs
status: New → Incomplete
Revision history for this message
Sebastien Bacher (seb128) wrote :

We are closing this bug report as it lacks the information, described in the previous comments, we need to investigate the problem further. However, please reopen it if you can give us the missing information and don't hesitate to submit bug reports in the future.

Changed in evolution:
importance: Undecided → Low
status: Incomplete → Invalid
Revision history for this message
Steven McCoy (fnjordy) wrote :

Hardy functionality is dependent upon [Bug 224658], which Evolution hangs before authentication.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers