cURL / Mailing Lists / curl-library / Single Mail

curl-library

RE: [bagder/curl] 0d24f6: sasl: implement EXTERNAL authentication mechanism.

From: Steve Holme <steve_holme_at_hotmail.com>
Date: Wed, 28 Jan 2015 20:29:27 +0000

On Tue, 27 Jan 2015, GitHub wrote:

> sasl: implement EXTERNAL authentication mechanism.

Many thanks for adding this and for knocking another TODO off the list ;-)

I have often thought about adding this myself as I believed it was relatively easy to do, due to the authentication identifier being in the same format as the username in LOGIN, however I had always had the following concerns:

* Do we need to limit this to TLS upgraded sessions - the examples in the RFC seem to use this as the EXTERNAL authentication mechanism?
* Are there other EXTERNAL mechanisms that can be used rather than client certificates?
* Should we implement support for an empty authentication identifier (via an empty username) as I believe is allowed in the RFC or do your modifications already cater for this?

Kind Regards

Steve

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html

text/plain attachment: Untitled_attachment_00156.txt

Received on 2015-01-28

This message: [ Message body ]
Next message: Steve Holme: "RE: SMTP connection ends with HELP command"
Previous message: Patrick Monnerat: "RE: SMTP connection ends with HELP command"
Next in thread: Patrick Monnerat: "RE�: [bagder/curl] 0d24f6: sasl: implement EXTERNAL authentication mechanism."
Reply: Patrick Monnerat: "RE�: [bagder/curl] 0d24f6: sasl: implement EXTERNAL authentication mechanism."

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]