[Tickets #12830] horde_alarms using smtp-auth regardless settings in conf

noreply at bugs.horde.org noreply at bugs.horde.org
Mon Nov 11 16:17:58 UTC 2013


DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.

Ticket URL: http://bugs.horde.org/ticket/12830
------------------------------------------------------------------------------
  Ticket             | 12830
  Created By         | heinz at htl-steyr.ac.at
  Summary            | horde_alarms using smtp-auth regardless settings in
                     | conf
  Queue              | Horde Framework Packages
  Version            | Git master
  Type               | Bug
  State              | Unconfirmed
  Priority           | 1. Low
  Milestone          |
  Patch              |
  Owners             |
------------------------------------------------------------------------------


heinz at htl-steyr.ac.at (2013-11-11 16:17) wrote:

Configuring "No authentication" (using smtp as mailer type) leads in a
$conf['mailer']['params']['auth'] = false;

Script horde-alarms is using a Horde_Core_Factory_Mail object for  
notification (eg kronolith events)

In function getConfig() of Horde_Core_Factory_Mail username and  
password are set in case of smtp transport
         /* Add username/password options now, regardless of current value of
          * 'auth'. Will remove in create() if final config doesn't require
          * authentication. */

in function create() of Horde_Core_Factory_Mail code looks like

       if (strcasecmp($transport, 'smtp') === 0) {
             $transport = 'Smtphorde';
         } elseif (empty($params['auth'])) {
             unset($params['username'], $params['password']);
         }

Here, username and password are only removed if
  - transport is NOT set to smtp and
  - auth is EMPTY (not checking for false as set in mailer config)

In my case, transport is smtp and auth is FALSE

So, in further, Horde_Smtp->login() is called with an username set  
(with empty password)
and sending of notification fails with "Server denied authentication."
(despite setting "No authentication")











More information about the bugs mailing list