Password accessing in CRAM-MD5 authentication
dmalyshkin at odesk.com
Wed Feb 7 11:28:40 EST 2007
I'm writing an SMTP-server application that maintain its own
user/password database. How can I use Cyrus-SASL with my application
for CRAM-MD5 (DIGEST-MD5 and so on) authentication ?
For PLAIN & LOGIN mechanisms Cyrus-SASL has a callback
sasl_server_userdb_checkpass_t which allows to check username &
password agains the caller-supplied database.
I think, another callback, which gets an username (and, possible, a
realm) and return plain-text password back to the SASL engine, will be
appropriate for my needs.
An hour later:
I found that SASL 1 had sasl_server_getsecret_t callback which did
something like I need. Why was this callback removed in SASL 2 ?
Does SASL 2 use another way for the caller-supplied database for
CRAM-MD5 mechanism ? I would be very appreciative of examples or any
Thanks for help.
of ISS Art, Ltd., Omsk, Russia.
mailto:dmalyshkin at odesk.com
More information about the Cyrus-sasl