Password accessing in CRAM-MD5 authentication

Denis Malyshkin dmalyshkin at odesk.com
Wed Feb 7 11:28:40 EST 2007


Hello,

  I'm writing an SMTP-server application that maintain its own
user/password database. How can I use Cyrus-SASL with my application
for CRAM-MD5 (DIGEST-MD5 and so on) authentication ?

  For PLAIN & LOGIN mechanisms Cyrus-SASL has a callback
sasl_server_userdb_checkpass_t which allows to check username &
password agains the caller-supplied database.

  I think, another callback, which gets an username (and, possible, a
realm) and return plain-text password back to the SASL engine, will be
appropriate for my needs.

 An hour later:
  I found that SASL 1 had sasl_server_getsecret_t callback which did
something like I need.  Why was this callback removed in SASL 2 ?
Does SASL 2 use another way for the caller-supplied database for
CRAM-MD5 mechanism ?  I would be very appreciative of examples or any
hints.


  Thanks for help.

-- 
Best regards, 
  Denis Malyshkin,
  C++ Developer
  of ISS Art, Ltd., Omsk, Russia.
http://issart.com
http://issart.com/index/Portfolio/cpp&lang=eng
mailto:dmalyshkin at odesk.com



More information about the Cyrus-sasl mailing list