Closed dgw closed 7 months ago
@dgw: To follow this ticket :)
@Neustradamus Please just use the button to subscribe to an issue instead of mentioning people for no reason
(This also goes for https://github.com/sopel-irc/sopel/issues/2501#issuecomment-1807072947 but I won't comment the same twice)
Description
SASL EXTERNAL doesn't work correctly unless e.g.
auth_password
is set.Big capability refactor (#2341, specifically 0401ae9f9e6745ee7b899f8620fcea0d0a61c056) likely caused this, but I didn't go back and test an older revision. Just building on @half-duplex's sleuthing from a session working on #2362 earlier tonight.
Reproduction steps
client_cert_file
path (.pem
file),auth_method = sasl
andauth_target = EXTERNAL
in Sopel's config file. a. I registered the certificate fingerprint with a NickServ account for completeness, but this shouldn't be required to repro.Expected behavior
Successful SASL EXTERNAL authentication:
Relevant logs
No response
Notes
@half-duplex added a very simple patch for this already in #2362 (see below). I'm just opening this issue so we don't forget about this bug, regardless of whether SCRAM-SHA-256 support makes it into 8.0.0 or not.
Sopel version
51300a1ab854d6ec82d90df1bc876188c03335ff
Installation method
pip install
Python version
No response
Operating system
No response
IRCd
No response
Relevant plugins
No response