[horde] An Easy Way For Client Cert Auth?
lst_hoe02 at kwsoft.de
lst_hoe02 at kwsoft.de
Thu Mar 28 09:57:12 UTC 2013
Zitat von Christian Felsing <pug at felsing.net>:
> unfortunately ingo does not seem to read correct horde auth data, so a
> hook must be implemented:
>
> ./ingo/config/hooks.php has following content:
>
> ---cut here---
> <?php
>
> class Ingo_Hooks
> {
> public function transport_auth($driver)
> {
> return array(
> 'euser' => $_SERVER["HTTP_SSL_CLIENT_S_DN_EMAIL"],
> 'password' => sha1(rand()),
> 'username' => $_SERVER["HTTP_SSL_CLIENT_S_DN_EMAIL"]
> );
> }
>
> }
> ---cut here---
>
> password is a random value, because my certificate authentication based
> solution does not need passwords (which are always forgotten by users)
> and does not care about passwords.
>
> The feature "Automatic authentication as a certain user" is a very nice
> feature, if that "certain user" is controlled by a client certificate.
How does it work to authenticate to the IMAP Mailserver in this case?
Is this also possible with certificates or is some mapping needed with
a IMAP master user?
Regards
Andreas
More information about the horde
mailing list