[Tickets #11638] ActiveSync :: The Autodiscover URL must be configurable, not extracted from the email address performing the query.

bugs at horde.org bugs at horde.org
Sun Nov 4 16:53:14 UTC 2012 

BITTE NICHT AUF DIESE NACHRICHT ANTWORTEN. NACHRICHTEN AN DIESE  
E-MAIL-ADRESSE WERDEN NICHT GELESEN.

Ticket-URL: http://bugs.horde.org/ticket/11638
------------------------------------------------------------------------------
  Ticket           | 11638
  Erstellt Von     | torben at dannhauer.info
  Zusammenfassung  | ActiveSync :: The Autodiscover URL must be configurable,
                   | not extracted from the email address performing the
                   | query.
  Warteschlange    | Horde Framework Packages
  Version          | Git master
  Typ              | Bug
  Status           | Unconfirmed
  Priorität        | 3. High
  Milestone        |
  Patch            |
  Zuständige       |
------------------------------------------------------------------------------


torben at dannhauer.info (2012-11-04 16:53) hat geschrieben:

If you have a single horde installation serving a couple of domains,  
you oftne have only one SSL certificate covering the domain of your  
horde installation, not of all virtual domains the horde installation  
serves.

Because the AutoDiscover feature is usually performed via SSL and  
mosts clients quit autodiscovery if the find a untrusted or invalid  
SSL certificate, it is mandatory to return an ActiveSync URL covered  
with that SSL certificate, not with URL derived from the email Domain.

Example:
* Horde installation at https://www.my-horde.tld, covered with a valid  
and trusted SSL certificate.
* Virtual domain and email address user at virtual-customer.tld

The current implementation returns a ActiveSync URL which is:   
https://virtual-customer.tld/Microsoft-Server-ActiveSync
--> this URL is not covered by the SSL certificate of  
https://www.my-horde.tld -> AutoDiscover fails.

The right implementation should be a ActiveSync URL which is  
configurable in the Administration/ActiveSync prefs.
In this example it should be configured as "www.my-horde.tld" which  
would return a URL  
"https://www.dannhauer.de/Microsoft-Server-ActiveSync" which is  
covered by the SSL certificate.


I'm not totally aware of all pref-system details, so I cannot provide  
a working solution. Anyway, I'm sure this is a 5 minutes task if  
someone is aware of the horde pref system.
The relevant function which requires adaption is:  
Horde/Core/ActiveSync/Driver.php :: autoDiscover()

Many thanks,
Torben Dannhauer

More information about the bugs mailing list