Failing to authenticate on the frontends
Andrew Morgan
morgan at orst.edu
Wed Oct 4 15:17:29 EDT 2006
On Wed, 4 Oct 2006, Michael Loftis wrote:
> --On October 4, 2006 10:17:46 AM -0700 Andrew Morgan <morgan at orst.edu> wrote:
>
>> On Wed, 4 Oct 2006, Michael Loftis wrote:
>>
>>> --On October 4, 2006 4:18:41 PM +0100 Jesus Roncero
>>> <jesus at mxtelecom.com> wrote:
>>>
>>> <...>>
>>>> So, the question is, isn't the frontend supposed to contact the backend
>>>> responsible of that mailbox in order to authenticate the user? or it
>>>> needs to have "joe"'s password at the frontend as well?
>>>
>>> Authentication of the user happens at the frontend. The frontend then
>>> uses the proxy credentials to authorize as the user on the backend.
>>> The backends don't need a full user database, just the proxy
>>> information.
>>
>> Yes and no. If an IMAP client support referrals, the frontends will
>> return a referral to the appropriate backend. So, the client may connect
>> to the backend as well in some cases.
>
> Oops, I forgot about that detail. We locally patched referrals out of our
> IMAP proxies.
We did too. :)
Andy
More information about the Info-cyrus
mailing list