Note: Maintenance of Zarafa was ceased in 2017 in favor of Kopano. Therefor this repository is no longer maintained. There is a fork available which was created for Kopano specifically: https://github.com/markVnl/kopano-sabre.

Sabre-Zarafa

The aim of this project is to provide a full CardDav backend for SabreDAV to connect with Zarafa groupware.

Tarballs and zipfiles of the source can be downloaded here. See below for installation instructions, you will also need to download and install SabreDAV and log4php. For an overview of the changes, see the ChangeLog.

Sabre-Zarafa is a backend for the SabreDAV server. SabreDAV is a generic DAV server that processes CardDAV, CalDAV and WebDAV requests. It handles all the intricate parts of the DAV protocols and client communication, but doesn't know anything about databases or stores. It defers the responsibility for providing abstract objects like "cards" and "address books" to backend software like Sabre-Zarafa, which is free to implement retrieval and storage however it likes.

Sabre-Zarafa knows nothing about DAV, but does know how to get data from the Zarafa server and convert it to VCard format. Together, the SabreDAV frontend and the Sabre-Zarafa backend combine to form a Zarafa-based CardDAV server.

Sabre-Zarafa is pretty useable, but it's not all the way there yet. Patches and improvements are welcome.

This particular repository is a continuation of the original Sabre-Zarafa project, which is hosted at Google Code, and which has not been maintained for a while. This repository is not really a fork, but is intended to be the new mainline tree. Work on Sabre-Zarafa was sponsored by 1A First Alternative.

License

Sabre-Zarafa is licensed under the terms of the GNU Affero General Public License, version 3.

Install

Introduction

This installs as any SabreDAV server. Unpack the source into a directory. This readme will assume that /var/www/htdocs/sabre-zarafa is the root directory of the install.

Download and install Composer

Composer is required to install Sabre-Zarafa's dependencies. Installation instructions can be found on the Composer website.

After installation is done, run the following two commands:

# cd /var/www/htdocs/sabre-zarafa
# composer install

Configure permissions and logging

The webserver needs to write to the data directory, since it is used by SabreDAV to store DAV locks. (NB, the author is not convinced that CardDAV actually uses locking.) The log file, called debug.txt, should also be writable. If your server runs as the user apache:

# chown apache:apache /var/www/htdocs/sabre-zarafa/data
# chmod 0750 /var/www/htdocs/sabre-zarafa/data
# chown apache:apache /var/www/htdocs/sabre-zarafa/debug.txt
# chmod 0640 /var/www/htdocs/sabre-zarafa/debug.txt

Sabre-Zarafa logs using log4php. To configure logging you need to edit log4php.xml. Default setup is to log WARN, ERROR and FATAL messages to debug.txt with a maximum size of 5MB for logfile and 3 backup indexes (debug.txt.1). If you want to log to some other file, insert the proper filename here. (The default config file uses debug.txt in the application dir, which is probably not what you want.) To disable debugging simply set the root appender to noDebug. Optionally, choose a max logging level to observe. In order from less to more logging, you can specify FATAL, ERROR, WARN, INFO, DEBUG, and TRACE.

Example config for logging all errors at or higher than INFO to /var/log/sabrezarafa.log:

<?xml version="1.0" encoding="UTF-8"?>
<configuration xmlns="http://logging.apache.org/log4php/">
	<appender name="fileAppender" class="LoggerAppenderRollingFile">
		<layout class="LoggerLayoutPattern">
			<param name="conversionPattern" value="%d{Y-m-d H:i:s} %-5p %c %x - %m%n" />
		</layout>
		<param name="file" value="/var/log/sabrezarafa.log" />
		<param name="maxFileSize" value="5MB" />
		<param name="maxBackupIndex" value="3" />
	</appender>
	<root>
		<appender_ref ref="fileAppender" />
		<level value="INFO" />
	</root>
</configuration>

Example config for suppressing all logging by specifying the null appender:

<?xml version="1.0" encoding="UTF-8"?>
<configuration xmlns="http://logging.apache.org/log4php/">
	<appender name="noDebug" class="loggerAppenderNull" />
        <root>
		<appender_ref ref="noDebug" />
	</root>
</configuration>

Sabre-Zarafa configuration

Sabre-Zarafa needs additional configuration in config.inc.php. You must set CARDDAV_ROOT_URI to the proper value. This is the path from the root of the webserver to Sabre-Zarafa. If Sabre-Zarafa is installed in the webserver root, then use /. If Sabre-Zarafa is installed in /var/www/htdocs/sabre-zarafa and /var/www/htdocs is the server root, then put /sabre-zarafa. If you're not using mod_redirect to redirect requests to server.php, use /sabre-zarafa/server.php.

You can also adjust other settings, some are highly experimental (non-UTF8 vcards for instance) and should be used only for testing.

If you prefer to only use read operations and not make any edits to the database, set READ_ONLY to true.

Running from the root of the webserver

According to the SabreDAV documentation, you get the least issues if you run the service straight from the root of the webserver. You can run it on a standard port like 80 or 443, but for CardDAV, it makes some sense to use port 8843, since that's what OSX Addressbook uses by default. Always enable SSL in production environments, since Sabre-Zarafa uses Basic authentication, and that's only secure when used over an encrypted connection.

To configure Apache to listen to port 8843 and use a virtual host to serve Sabre-Zarafa, put something like the following configuration in httpd.conf:

Listen 8843

<VirtualHost *:8843>

    # ...general server options, enable PHP parsing, SSL setup, etc...

    DocumentRoot /var/www/htdocs/sabre-zarafa
    <Directory /var/www/htdocs/sabre-zarafa>
        DirectoryIndex server.php
        RewriteEngine On
        RewriteBase /

        # If the request does not reference an actual plain file or
        # directory (such as server.php), interpret it as a "virtual path"
        # and pass it to server.php:
        RewriteCond %{REQUEST_FILENAME} !-f
        RewriteCond %{REQUEST_FILENAME} !-d
        RewriteRule ^.*$ /server.php

        # If you're getting 412 Precondition Failed errors, try stripping the ETag headers:
        # RequestHeader unset If-None-Match
        # Header unset ETag
        # FileETag None
    </Directory>

    # Files and directories writable by the server should never be public:
    <Directory /var/www/htdocs/sabre-zarafa/data>
        Deny from all
    </Directory>
    <Files /var/www/htdocs/sabre-zarafa/debug.txt>
        Deny from all
    </Files>

    # Deny access to application directories:
    <Directory /var/www/htdocs/sabre-zarafa/lib>
        Deny from all
    </Directory>
    <Directory /var/www/htdocs/sabre-zarafa/vendor>
        Deny from all
    </Directory>
</VirtualHost>

Don't forget to edit config.inc.php and change CARDDAV_ROOT_URI to /.

Running from a subdirectory

You can also run Sabre-Zarafa in a subdirectory of your webserver. In that case, use a variant of this configuration:

<Directory /var/www/htdocs/sabre-zarafa>
    DirectoryIndex server.php
    RewriteEngine On
    RewriteBase /sabre-zarafa

    # If the request does not reference an actual plain file or directory
    # (such as server.php), interpret it as a "virtual path" and pass it to
    # server.php:
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule ^.*$ /sabre-zarafa/server.php

    # If you're getting 412 Precondition Failed errors, try stripping the ETag headers:
    # RequestHeader unset If-None-Match
    # Header unset ETag
    # FileETag None
</Directory>

# Files and directories writable by the server should never be public:
<Directory /var/www/htdocs/sabre-zarafa/data>
    Deny from all
</Directory>
<Files /var/www/htdocs/sabre-zarafa/debug.txt>
    Deny from all
</Files>

# Deny access to application directories:
<Directory /var/www/htdocs/sabre-zarafa/lib>
    Deny from all
</Directory>
<Directory /var/www/htdocs/sabre-zarafa/vendor>
    Deny from all
</Directory>

Edit config.inc.php and change CARDDAV_ROOT_URI to /sabre-zarafa.

Testing and troubleshooting

Before testing with a CardDAV client, surf to the Sabre-Zarafa URL with a browser and check that you can log in and get a listing of your contacts. Pointing a web browser at Sabre-Zarafa is the easiest way to check that the install works; only then should you try real CardDAV clients. If things don't work in the browser, start there first.

If you're not seeing any output on the screen, check your PHP error logs. Maybe your PHP does not have all the required extensions enabled. SabreDAV uses quite a few extensions, such as ctype and dom. Googling any error messages should shed light on the problem.

If you're still fairly certain that things should be working but they don't, try changing the error output statements in server.php to:

ini_set('display_errors', true);
ini_set('html_errors', true);

PHP should now complain loudly when something goes wrong. Also, make sure log4php is installed and enable very verbose logging by setting the log level to INFO, DEBUG or even TRACE in log4php.xml. You will get very chatty logs that should point out any problems.

Problems with OS X Contacts.app can often be diagnosed by running the program from a terminal; it prints quite a lot of helpful output when things aren't working. Type this command in a terminal to launch Contacts.app:

/Applications/Contacts.app/Contents/MacOS/Contacts

Filing bugs, getting support

Bugs and issues can be filed at GitHub on the Sabre-Zarafa project page. You'll need a GitHub account. Alternatively, you can post to the Sabre-Zarafa thread at the Zarafa forums; the author checks it regularly.

If you want to request support for certain VCard properties, be sure to include a traffic dump that shows the exact format of the field.

If your client is having trouble talking to Sabre-Zarafa, please include a traffic dump that shows the network conversation, if at all possible. Seeing what goes wrong "on the wire" is indispensable for debugging.

In general, if you get any errors, be as specific as possible about what is going wrong and how to reproduce the problem. Include as much relevant logs as possible (both from PHP and Sabre-Zarafa). Bug reports such as "I tried it on a Mac and it doesn't work" are good to know (the author can perhaps try to reproduce the problem), but are not directly actionable.

Authentication

Please note that the authentication backend uses Basic authentication exclusively. It is not possible to use Digest authentication, because Sabre-Zarafa needs the user's plaintext password to log in to the Zarafa server. Some clients will only work with Basic auth if the host uses SSL. You should always enable SSL on the server, since sending plaintext passwords over an unencrypted connection is a security risk.

Some detailed information about SabreDAV setup are available in SabreDAV documentation. Do not hesitate to read it!

Upgrading

0.22 to 0.23

Sabre-Zarafa now depends on SabreDAV 2.1. Run composer update to update the dependencies.

0.21 to 0.22

Sabre-Zarafa is now installed completely by running Composer in the toplevel directory. Run composer update to update the dependencies (such as SabreDAV). If you visit the application in a browser, you'll notice a new design. Internally, the file and class structure of Sabre-Zarafa received a thorough reworking, but that should be invisible from the outside.

0.20 to 0.21

Sabre-Zarafa 0.21 is written for SabreDAV 1.8.6 and Sabre-VObject 3.0.0 (the production release, not the alpha or beta versions). You must install at least those versions of both packages, or newer. Some small API changes have been introduced between Sabre-VObject 3.0.0-alpha4 and the 3.0.0 release (as well as many internal fixes), so you must upgrade. The old SabreDAV 1.8.5 can apparently not handle the Sabre-VObject 3.x branch and must also be updated to version 1.8.6, which has support for both 2.x and 3.x branches.

This version introduces a new config option, called FOLDER_RENAME_PATTERN. This variable allows you to define a rename pattern for folders. You can define certain formatting variables; refer to the comments in the config file for particulars. Updating the config file to set this variable is not required; if the option is not specified, the previous behaviour is used (folder names are not rewritten).

0.19 to 0.20

Sabre-Zarafa 0.20 is written against the Sabre-VObject 3.x branch, which isn't yet included in SabreDAV and must be installed manually. Please refer to the installation instructions above. Because Sabre-VObject 3.x is in its early days, it's possible that some things don't quite work. Please report any bugs and issues you find.

0.18 to 0.19

Sabre-Zarafa 0.19 adds the ETAG_ENABLE config variable to config.inc.php. This variable controls the optional generation of ETags. If Sabre-Zarafa notices that the variable is not set, it will default to true. So users with an existing config file don't absolutely need to update their config, though it is advised.

Sabre-Zarafa 0.19 no longer requires log4php; it will run without logging if log4php is not installed. This makes it a little bit easier for new users to get Sabre-Zarafa up and running (less moving parts).

Other improvements in version 0.19 are all "under the hood" and should require no special action on the administrator's part.

PHP < 5.4

As of version 0.22, Sabre-Zarafa requires SabreDAV 2.0, which requires PHP 5.4.

As of version 0.18, Sabre-Zarafa requires SabreDAV 1.8, which in turn requires PHP 5.3.

Debugging

Log4Php

Starting with release 0.10 log4php is used for debugging. Release 0.19 made the installation of log4php optional: logging is done by the SabreZarafa\Logger class, and if it can't find log4php, it will silently discard all log messages.