Evolution Exchange does not authenticate to Exchange servers with a relative path in the form action, e.g. "owaauth.dll"

Patched evolution-data-server packages can be found in http://launchpad.net/~hyperair/+archive. See version 2.24.2-0ubuntu2~hyper2. I will attach a debdiff with the patch from the upstream bug report included once it is accepted.

Alright, here's a debdiff. Package is available for testing at my PPA
(https://launchpad.net/~hyperair/+archive -- see
2.24.2-0ubuntu2~hyper3).

Patch obtained from revision 9924 of evolution-data-server trunk.
--
Chow Loong Jin

This bug was fixed in the package evolution-data-server - 2.24.3-0ubuntu2

---------------
evolution-data-server (2.24.3-0ubuntu2) jaunty; urgency=low

   [ Chow Loong Jin <email address hidden> ]
   * debian/patches/70_evolution_exchange_fix.patch:
     + Fixed issue where Evolution cannot authenticate to custom Exchange login
       forms with form action as owaauth.dll (LP: #248705)

 -- Alexander Sack <email address hidden> Mon, 19 Jan 2009 10:41:09 +0100

I seem to be having this bug on a fresh install of Ubuntu 8.10. Synaptic shows that I have version 2.24.3-0ubuntu1 of evolution-data-server. How do I get 2.24.3-0ubuntu2? Is there a difference? I'm a linux vet, ubuntu newbie.

On Thu, 2009-01-29 at 04:57 +0000, Mike Gibson wrote:
> I seem to be having this bug on a fresh install of Ubuntu 8.10.
> Synaptic shows that I have version 2.24.3-0ubuntu1 of evolution-data-
> server. How do I get 2.24.3-0ubuntu2? Is there a difference? I'm a
> linux vet, ubuntu newbie.
>
It's in my PPA for now. https://launchpad.net/~hyperair/+archive/ppa
--
Chow Loong Jin

Could anyone verify whether this bugfix works? I installed evolution-data-server from hyperair's PPA:
krz@astus:~$ dpkg -s evolution-data-server | grep Version
Version: 2.24.3-0ubuntu2~hyper1

Just in case, I rebooted the system. However, I keep having the same problem ending with Invalid URI (I'm attaching the debuging output).

On Mon, 2009-02-02 at 07:37 +0000, Krzysztof Rzadca wrote:
> Could anyone verify whether this bugfix works? I installed evolution-data-server from hyperair's PPA:
> krz@astus:~$ dpkg -s evolution-data-server | grep Version
> Version: 2.24.3-0ubuntu2~hyper1
>
> Just in case, I rebooted the system. However, I keep having the same
> problem ending with Invalid URI (I'm attaching the debuging output).
>
> ** Attachment added: "evolution.txt"
> http://launchpadlibrarian.net/21893021/evolution.txt
>
I can verify that it works. However, it is strange that you're still
getting the issues regarding owaauth.dll. By right, it shouldn't happen
once you've installed all of the evolution-data-server packages
(including the plethora of other .deb files produced). I'm not very sure
exactly which binary package is the affected one, just that the source
package is definitely evolution-data-server.
--
Chow Loong Jin

Hi,

Thanks for your reply. Yes, the problem was with "the plethora of other .deb
files produced" :) I installed only evolution-data-server from your ppa
repository (I thought the other ones are ; after installing other related
files, it works now. I'll post a comment for this bug.

thanks again and best regards,
Krzysztof

2009/2/2 hyperair <email address hidden>

> On Mon, 2009-02-02 at 07:37 +0000, Krzysztof Rzadca wrote:
> > Could anyone verify whether this bugfix works? I installed
> evolution-data-server from hyperair's PPA:
> > krz@astus:~$ dpkg -s evolution-data-server | grep Version
> > Version: 2.24.3-0ubuntu2~hyper1
> >
> > Just in case, I rebooted the system. However, I keep having the same
> > problem ending with Invalid URI (I'm attaching the debuging output).
> >
> > ** Attachment added: "evolution.txt"
> > http://launchpadlibrarian.net/21893021/evolution.txt
> >
> I can verify that it works. However, it is strange that you're still
> getting the issues regarding owaauth.dll. By right, it shouldn't happen
> once you've installed all of the evolution-data-server packages
> (including the plethora of other .deb files produced). I'm not very sure
> exactly which binary package is the affected one, just that the source
> package is definitely evolution-data-server.
> --
> Chow Loong Jin
>
> --
> Evolution Exchange does not authenticate to Exchange servers with a
> relative path in the form action, e.g. "owaauth.dll"
> https://bugs.launchpad.net/bugs/248705
> You received this bug notification because you are a direct subscriber
> of the bug.
>
> Status in Evolution Data Server: Fix Released
> Status in Evolution Exchange - Exchange Plugin for Exchange: Invalid
> Status in "evolution-data-server" source package in Ubuntu: Fix Released
>
> Bug description:
> Evolution fails to authenticate with Exchange servers with web interface
> login form action set to "owaauth.dll" or any other relative path (no
> leading /, or protocol specified). An example of a form can be found here:
> https://webmail.ntu.edu.sg/exchange/
>
> Version of evolution-data-server this happens in: 2.24.3-0ubuntu1
> (intrepid-updates)
> This is fixed in version 2.24.3-0ubuntu2, which is in Jaunty.
>
> TEST CASE: Attempt to create a new account in Evolution to said Exchange
> server. Credentials must be valid, and have been verified by attempting the
> web login. Evolution will prompt for the password endlessly, as though the
> password is wrong.
>
> E2K_DEBUG=4 evolution will show the a HTTP/1.1 302 response, followed by a
> GET request to /exchweb/bin/auth/owalogon.asp?something, and then a HTTP/1.1
> 200 response, and a warning message about an invalid URI 'owaauth.dll'.
>
> What should happen: Instead of a warning message regarding invalid URI
> owaauth.dll, there should be a POST request to
> /exchweb/bin/auth/owaauth.dll. With E2K_DEBUG=5, this request is shown to
> contain the username and password.
>
> Regression Potential: None that I can think of.
>

Yes, it indeed works when you upgrade all the related .debs and not only the evolution-data-server. Somehow, upgrading only evolution-data-server doesn't trigger the update of the rest of the packages. I'm sorry for the noise.

Just in case anyone has the same problem, the packages to update from hyperair's PPA are:
sudo apt-get install evolution-data-server evolution-data-server-common evolution-data-server-dbg libcamel1.2-14 libebackend1.2-0 libebook1.2-9 libecal1.2-7 libedata-book1.2-2 libedata-cal1.2-6 libedataserver1.2-11 libedataserverui1.2-8 libegroupwise1.2-13 libexchange-storage1.2-3 libgdata-google1.2-1 libgdata1.2-1

On Tue, 2009-02-03 at 10:22 +0000, Krzysztof Rzadca wrote:
> Yes, it indeed works when you upgrade all the related .debs and not only
> the evolution-data-server. Somehow, upgrading only evolution-data-server
> doesn't trigger the update of the rest of the packages. I'm sorry for
> the noise.
>
> Just in case anyone has the same problem, the packages to update from hyperair's PPA are:
> sudo apt-get install evolution-data-server evolution-data-server-common evolution-data-server-dbg libcamel1.2-14 libebackend1.2-0 libebook1.2-9 libecal1.2-7 libedata-book1.2-2 libedata-cal1.2-6 libedataserver1.2-11 libedataserverui1.2-8 libegroupwise1.2-13 libexchange-storage1.2-3 libgdata-google1.2-1 libgdata1.2-1
>

Alright, I've figured this out. The exact package which must be upgraded
is libexchange-storage1.2-3. The rest you can safely ignore.
--
Chow Loong Jin

Here's a debdiff for Hardy
--
Chow Loong Jin

as discussed on IRC, I will look into pushing the SRUs. Thanks for the patches.

This has partially fixed the problem, but now alas I am getting a 5.5 support error despite using exchange 2007...

Exchange 2007 is not supported unless I'm mistaken

Definitively way below the SRU barrier for intrepid. If someone wants to pick that up for Hardy, that's okay.

sponsored

Accepted evolution-data-server into hardy-proposed, the package will build now and be available in a few hours. Please test and give feedback here. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you in advance!

Any testers? I'll remove this from -proposed soon if we don't get any feedback. Thank you!

Removed from hardy-proposed due to lack of testing for half a year.