djtms / prosody-modules

Automatically exported from code.google.com/p/prosody-modules
0 stars 0 forks source link

mod_auth_dovecot (0.10): first part of PLAIN auth string has to be removed #69

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
mod_auth_dovecot should remove first part of PLAIN auth string before 
authentification against dovecot service

the format of the auth string for PLAIN auth is defined as 
  base64(jid+'\0'+userid+'\0'+password)
dovecot auth only works if auth string is
  base64('\0'+userid+'\0'+password) 

pidgin send the second format, even when authenticating ober BOSH,
but most web clients send the first form and fail.

What steps will reproduce the problem?
1. install dovecot and make sure it works
2. install prosody and make sure you can connect with pidgin 
3. enable bosh and make sure you can connect to it using pidgin 
i.e. set the bosh url in the account settings, page two.
4. install jappix or other web client and recognise: you can't connect

What is the expected output? What do you see instead?
successful login is expected
but login is denied using correct credentials

What version of the product are you using? On what operating system?
prosody 0.10 on ubuntu linux

Please provide any additional information below.

mod_auth_dovecot: should decode the auth string, remove everithing in front of 
the first '\0' (leving the zero itself alone) and recode it to base64 before 
authenticating against the dovecot service.

Original issue reported on code.google.com by ggsai...@googlemail.com on 5 Feb 2015 at 5:05