DIGEST-MD5 authzid question
remko at el-tramo.be
Fri Feb 2 15:27:30 EST 2007
> I would guess that it's to avoid the case where a server
> implementation always rejects any request for an authzid.
Well, I have this problem with an XMPP server, but in XMPP, the
authzid for a user is different from its authid, so the check doesn't
help. Luckily, an authzid in XMPP can never be used as an authid, so
we don't have a problem with the equality check.
More information about the Cyrus-sasl