search

jsxc / xmpp-cloud-auth

:key: Authentication hub for Nextcloud+JSXC→Prosody, ejabberd, saslauthd, Postfix
https://www.jsxc.org
MIT License
60 stars 18 forks source link

Support SCRAM #14

Closed MarcelWaldvogel closed 4 years ago

MarcelWaldvogel commented 7 years ago

When changing the authentication mechanism of e.g. ejabberd from sql to extauth, SCRAM will be disabled. Some clients, notably Conversations, will refuse to connect afterwards, as they assume this is a downgrade attack siacs/Conversations#2498.

A (unfortunately) nontrivial solution would be to offer SCRAM support. (Requiring in-depth changes to ejabberd, Prosody, extauth, JSXC, and ownCloud/Nextcloud.)

(The current proposal is to delete the account in the Conversations app and then immediately add it again.)

MarcelWaldvogel commented 4 years ago

Probably not worth the hassle; closing.