[horde] Getting horde to authenticate against dovecot DB

Coy Hile coy.hile at coyhile.com
Fri Aug 16 21:45:11 UTC 2019 

Hi all,

I'm currently trying to get Horde to authenticate against my Dovecot 
virtual user database, as I want the ActiveSync functionality that is 
missing from other solutions. However, I'm having a hard time getting 
the passwords in a form that both Horde and Dovecot understand.

In the dovecot DB, I have:

    username    |  domain  |                                              
            password
---------------+----------+--------------------------------------------------------------------------------------------------------------------------
  user at test.com | test.com | 
{SHA512-CRYPT}$6$8CK0YWwoEjEvhEwf$58UUMSvPL8fE1p50bfTjHqivp3iwmfk/2sbv9igUT0FhwRc548UaKDWBYCvgrOyDfT81u9dLEJ7ulHLFbvbSq/


conf.php contains (in relevant part):

$conf['auth']['params']['query_auth'] = 'SELECT * FROM users WHERE 
username=\L AND password=\P';
$conf['auth']['params']['encryption'] = 'crypt-sha512';
$conf['auth']['params']['show_encryption'] = false;
$conf['auth']['driver'] = 'customsql';

In syslog, one sees:

Aug 16 21:39:23 8616546e-fcab-e37b-a25a-c746648411f7 HORDE: [horde] SQL  
(0.0014s)  #012#011SELECT * FROM users WHERE username='user at test.com' 
AND#012#011  
password='$6$jCCF2GRqLkldtA6u$NMZosKqif68Ro0HjRTGy7Y/tqUuGEMYq.oZ5OqcX#012#011 
  NAC3PW7jMhsL.ZzdE67vjw6Bx6gIgoQh.d.3syBdYUC4j0' [pid 2321 on line 241 
of "/usr/share/php/Horde/Db/Adapter/Pdo/Base.php"]
Aug 16 21:39:23 8616546e-fcab-e37b-a25a-c746648411f7 HORDE: [horde] 
FAILED LOGIN for user at test.com to horde (10.100.9.20) [pid 2321 on line 
198 of "/usr/share/horde/login.php"]

So, that brings up some questions:
(1) Is the data in the log actually correct? Why are there what appear 
to be "#012#011  " in the middle of the query?
(2) Am I completely taking the wrong approach here? Is there a better 
way to get these two things to play nice, or do I have to finesse 
something in the SQL queries to make this work?

I'll probably only use this as a front end to activesync, which will 
talk to the same Dovecot instance eventually.

Thanks,
-c

-- 
Coy Hile
coy.hile at coyhile.com

More information about the horde mailing list