Page 1 of 1

Authentication usage.

Posted: Wed Jan 26, 2011 5:24 am
by scrtmtl
Hi,
It has been awhile since I played with relational database. Currently, I am doing a calendar installation and I got an error 404 I am trying to dissect the calendar installation and I am trying to understand something about authentication.
Database
Database Connection String[/td][td] mysql://root:@localhost/calendarsmt
It has the format: mysql://user:password@host/databasename as an input field,
Above is my mandatory DB called calendarsmt with root being the user and password being null.

Since it has DB security with user name root and password, why the authentication data entry? Is authentication mandatory from deducing the authentication data layout? That is, must I select one of the three checkbox? ( Newbie to this installation and documentiation is a joke). Lol, I just realize I did not enteri a user id(pre-usage checking requirement nearly non-existent). I am trying to troubleshoot by having an understanding of my clueness (apache and authentication).

Why is user id required for authentication and how will it be use in the calendar? Will that user id be the admin id for the calendar program? Hmm. Going back on track to my topic. This is the first time I have come across an installation whereby authentication data required and I do not know why or how it will be use in the calendar program. (Different users can enter information into the calendar? ). Any help in understanding with educated guesses appreciated for it is an unsupported product. If I can understand how authentication is related to this calendar help.
Tx for taking the time to read my post and to share your understanding.

User ID Regular Expression: INPUT FIELD
This regular expression defines what is considered a valid user-ID.
Database Authentication: checkbox for yes
Authenticate users against the database.
If enabled, this is always performed before any other authentication.
(quote boxes displayed upon clicking yes)
Prefix for Database Usernames: iNPUT FIELD
Example: db_
OPTIONAL. This prefix is used when creating/editing a local user-ID (in the DB "user" table), e.g. "calendar."
If you only use auth_db just leave it an empty string.
Its purpose is to avoid name-space conflicts with the users authenticated via LDAP or HTTP.

Database Authentication Notice: INPUT FIELD
OPTIONAL. This displays a text (or nothing) on the Update tab behind the user user management options.
It could be used if you employ both, AUTH_DB and AUTH_LDAP at the same time to let users know that they should create local users only if they are not in the LDAP.
LDAP Authentication: checkbox for yes
Authenticate users against a LDAP server.
If enabled, HTTP authenticate will be ignored.

Verify LDAP Settings: checkbox for yes
Check this box if you would like to verify the LDAP settings when submitting this form.
Uncheck this box if you know the settings are correct, but your LDAP server is currently unavailable.
LDAP Host Name:

Re: Authentication usage.

Posted: Wed Jan 26, 2011 4:50 pm
by Doug G
There are two separate, independent authentications going on.

The calendar application must authenticate itself to the database server in order to access the database

The user must authenticate to the application.

A side note: A mysql database with no password for user root isn't secure at all. Setting a root password should be the first thing you do after installing mysql.

Re: Authentication usage.

Posted: Fri Jan 28, 2011 6:58 am
by scrtmtl
Thank you for your reply Doug. Application is poorly documented and so many new variables learning curve - install pear, install server and mysql, and install application.Questions. Since I have an install error, I was dissecting the install process and could not figure out on my first encounter why user authentication required when I have forum login mentality. Since I had to deinstall and reinstall in test environment, I was using mysql defaults. I am leaning toward Db authentication fro user or should I go for DB and L D A P authentication for users to post events in calendar?

Tx in advance for your reply.

Re: Authentication usage.

Posted: Fri Jan 28, 2011 12:01 pm
by Doug G
I am leaning toward Db authentication fro user or should I go for DB and L D A P authentication for users to post events in calendar?
You need to decide which method fits best in your computing environment and choose accordingly. There is no "right" answer.