Re: AUTH= !*, what to do...

bug-mailutils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AUTH= !*, what to do...

From:	Alain Magloire
Subject:	Re: AUTH= !*, what to do...
Date:	Fri, 3 Aug 2001 11:02:12 -0400 (EDT)

Bonjour

> Currently if auth is not known, we just move into the authorized state.
> This leads to bad commands being issued, they aren't valid yet:

Yes. I forgot about that.

> 
> ==
> $ ./sieve -vvvf "imap://;address@hidden/archive.info-cyrus" 
> examples/ex-save-all.sv
> imap_open (cyrus.andrew.cmu.edu:143)
> * OK mail1.andrew.cmu.edu Cyrus IMAP4 v2.0.16-045 server ready
> g0 SELECT archive.info-cyrus
> NO/Bad Tagged: BAD Please login first
> 
> mbox has 0 messages...
> g1 SELECT archive.info-cyrus
> NO/Bad Tagged: BAD Please login first
> 
> mailbox_expunge failed: Invalid argument
> ==
> 
> I made it return ENOTSUP, so at least things fail gracefully.
> 
> ==
> $ ./sieve -vvvf "imap://;address@hidden/archive.info-cyrus" 
> examples/ex-save-all.sv
> imap_open (cyrus.andrew.cmu.edu:143)
> * OK mail1.andrew.cmu.edu Cyrus IMAP4 v2.0.16-045 server ready
> mailbox open <imap://;address@hidden/archive.info-cyrus> failed: Not supported
> ==
> 
> 
> However, I think:
> 
> - we should initialize the authority when we create the mailbox and
>   parse the url, that way we can fail early

I think my view back then was, "let it through, they may no what
there are doing".

For example sometimes (imap)servers are preconfigured(although I've
never seen an actual case) to let through without authentication
some clients, it may be base on the IP etc .. it's call PREAUTH.

So failing early many not be a good choice.

How about this

- open the connection
- Check if authentication is required
  if server says PREAUTH, let it through.
- else check the authententication scheme
  try to create it.
  if (failed) because can not recognise
  or instanciate the auth
   - close connection
   - return EPERM

> - I want to support AUTH=ANONYMOUS, so I need an anonymous authentication
>   object, I'll look at this over the weekend.
> 
> I mentions this in case anybody has some ideas about how to do this
> that they haven't had the time to code, now would be the time to
> mention it!

Well I do not know what you meant by
AUTH=pwd
nor
AUTH=ANONYMOUS
I do remember one of your ideas was to let AUTH take a file name
that will be parse to retreive the information, which sounded fine
but no one came forward with a formal syntax.

> 
> Sam
> 
> p.s. I committed some stuff, in case I'm still invisible!

You are invisible.

p.p.s. : Is it as hot an humid, in Toronto?  I can barely move here.

--
alain

[Prev in Thread]

Current Thread

[Next in Thread]

AUTH= !*, what to do..., Sam Roberts, 2001/08/03
- Re: AUTH= !*, what to do..., Alain Magloire <=
- Message not available
  - Re: AUTH= !*, what to do..., Sam Roberts, 2001/08/09
    - Re: AUTH= !*, what to do..., Alain Magloire, 2001/08/10

Prev by Date: AUTH= !*, what to do...
Next by Date: Sieve library
Previous by thread: AUTH= !*, what to do...
Next by thread: Re: AUTH= !*, what to do...
Index(es):
- Date
- Thread