Hey all -
We're in the process of FINALLY migrating away from an old server of ours running osTicket 1.10, and I figured we'd march all the way right up to 1.18.2. Might as well get on the latest!
In any case, after much gnashing of teeth, I figured out where I was going wrong, managed to get the database exported and the files correctly overlaid atop our initial install. We also wanted to go ahead and get SSL/TLS running on this instance of osTicket, since "pRoPeR sEcUrItY" is what all you youths and rapscallions are getting into these days. I set up our instance under an apache config file (sanitized), which is set to have our osTicket instance respond to a subdomain (helpdesk.example.com), and automagically redirect to HTTPS.
Trouble is, NOW, when I attempt to log on... it fails. Most of our accounts are LDAP accounts, authenticating against our FreeIPA server - but ONE of our accounts is a local one, for EXACTLY this sort of issue. When we attempt to login to our LDAP accounts, we get "Access denied" (and I've tried both with AND without the auth_ldap.phar file in the include/plugins directory). Even when we attempt to login with our one LOCAL account, I get "Valid CSRF Token Required", which I'd never gotten before with this exact same configuration on previous trial migration runs.
I've even turned off SSL/TLS entirely, and tried to login. It doesn't seem to work.
