[rt-users] ExternalAuth and AutoCreateNonExternalUsers

Fri Mar 18 10:46:58 EDT 2011

On 18 Mar 2011 10:39, Brian Dial wrote:
> i thik i figured out the problem.  It seems ExternalAuth was matching me to an existing ldap user based on the real name.
> 
> I sent the message to rt queue from my comcast account and it appears as Brian Dial <briandial at comcast.net>
> My ldap entry is real name Brian Dial and mail bdial at rkk.com
> 
> in the logs i see
> 
> [Thu Mar 17 20:37:36 2011] [error] [client 192.168.93.195] FastCGI: server "/opt/rt/bin/mason_handler.fcgi" stderr: [Fri Mar 18 00:37:36 2011] [info]: RT::Authen::ExternalAuth::CanonicalizeUserInfo returning Comments: Autocreated on ticket submission, Disabled: 0, EmailAddress: bdial at rkk.com, Name: bdial, Password: , Privileged: 0, RealName: Brian Dial (/opt/rt/local/plugins/RT-Authen-ExternalAuth/lib/RT/Authen/ExternalAuth.pm:536)
> [Thu Mar 17 20:37:36 2011] [error] [client 192.168.93.195] FastCGI: server "/opt/rt/bin/mason_handler.fcgi" stderr: [Fri Mar 18 00:37:36 2011] [crit]: User creation failed in mailgateway: Name in use (/opt/rt/bin/../lib/RT/Interface/Email.pm:244)
> 
> is htis because i have the following in my config?
> 
>                                 'attr_match_list' => [ 'Name',
>                                                        'EmailAddress',
>                                                        'RealName',
>                                                      ],

As the example ExternalAuth config says above attr_match_list:

# The list of RT attributes that uniquely identify a user

If RealName isn't supposed to be unique, then you probably shouldn't
include it in that list.

Thomas

> I tested it from a random msn.com address that has no real name and the autocreate worked fine.
> 
> ----- Original Message -----
> On 17 Mar 2011 20:53, Brian Dial wrote:
>> typical "i want people who aren't authenticated via ldap to be autocreated".
>>
>> seems every problem is solved with 
>>
>> Set($AutoCreateNonExternalUsers,    1);
>>
>> I just can't get it to go.  I always get the emails back from mailer-daemon "Could not load a valid user". I am running rt 3.8.9 with ExternaulAuth 0.08_01.  externalauth was working fine for me auth'ing to ldap even wtihout upgrading to the latest version but i decided to try it anyway to see if it would fix.  my config is below.  Am i doing something unobviously wrong?
> 
> You also need to make sure that the newly created users would be able to
> CreateTicket or Reply, etc.  Look at your RT logs too.
> 
> Thomas
> 
> 
> "RK&K" and "RK&K Engineers" are registered trade names of Rummel, Klepper & Kahl, LLP, a Maryland 
> limited liability partnership.  This message contains confidential information intended only for
> the person or persons named above.  If you have received this message in error, please immediately 
> notify the sender by return email and delete the message.  Thank you.