Mercurial > dovecot > original-hg > dovecot-1.2
comparison doc/auth-protocol.txt @ 3338:e5ce49c8524a HEAD
USER auth command requires now service parameter and supports also others
parameters. Fixes a crash in dovecot-auth with deliver+mysql.
| author | Timo Sirainen <tss@iki.fi> |
|---|---|
| date | Tue, 26 Apr 2005 14:43:30 +0300 |
| parents | 305ac76afcda |
| children | e2fe8222449d |
comparison
equal
deleted
inserted
replaced
| 3337:b47043d0d131 | 3338:e5ce49c8524a |
|---|---|
| 83 | 83 |
| 84 | 84 |
| 85 Authentication Request | 85 Authentication Request |
| 86 ---------------------- | 86 ---------------------- |
| 87 | 87 |
| 88 C: "AUTH" TAB <id> TAB <mechanism> [TAB <parameters>] | 88 C: "AUTH" TAB <id> TAB <mechanism> TAB service=<service> [TAB <parameters>] |
| 89 | 89 |
| 90 S1: "FAIL" TAB <id> [TAB <parameters>] | 90 S1: "FAIL" TAB <id> [TAB <parameters>] |
| 91 S2: "CONT" TAB <id> TAB <base64 data> | 91 S2: "CONT" TAB <id> TAB <base64 data> |
| 92 S3: "OK" TAB <id> [TAB <parameters>] | 92 S3: "OK" TAB <id> [TAB <parameters>] |
| 93 | 93 |
| 94 ID is a connection-specific unique request identifier. It must be a 32bit | 94 ID is a connection-specific unique request identifier. It must be a 32bit |
| 95 number, so typically you'd just increment it by one. | 95 number, so typically you'd just increment it by one. |
| 96 | 96 |
| 97 Service is the service requesting authentication, eg. POP3, IMAP, SMTP. | |
| 98 | |
| 97 AUTH parameters are: | 99 AUTH parameters are: |
| 98 | 100 |
| 99 - lip=<local ip> : Local IP - in standard string format, | 101 - lip=<local ip> : Local IP - in standard string format, |
| 100 - rip=<remote ip> : Remote IP - ie. for IPv4 127.0.0.1 and for IPv6 ::1 | 102 - rip=<remote ip> : Remote IP - ie. for IPv4 127.0.0.1 and for IPv6 ::1 |
| 101 - service=<service> : Service name (eg. POP3, IMAP, SMTP) | |
| 102 - resp=<base64> : Initial response for authentication mechanism | 103 - resp=<base64> : Initial response for authentication mechanism |
| 103 - secured : Remote user has secured transport to auth client | 104 - secured : Remote user has secured transport to auth client |
| 104 (eg. localhost, SSL, TLS) | 105 (eg. localhost, SSL, TLS) |
| 105 - ssl-valid-cert : Remote user has presented a valid SSL certificate. | 106 - ssl-valid-cert : Remote user has presented a valid SSL certificate. |
| 106 | 107 |
| 142 | 143 |
| 143 Master Requests | 144 Master Requests |
| 144 --------------- | 145 --------------- |
| 145 | 146 |
| 146 M: "REQUEST" TAB <id> TAB <client-pid> TAB <client-id> | 147 M: "REQUEST" TAB <id> TAB <client-pid> TAB <client-id> |
| 147 M: "USER" TAB <id> TAB <userid> | 148 M: "USER" TAB <id> TAB <userid> TAB service=<service> [TAB <parameters>] |
| 148 M: "DIE" | 149 M: "DIE" |
| 149 | 150 |
| 150 S: "NOTFOUND" TAB <id> | 151 S: "NOTFOUND" TAB <id> |
| 151 S: "FAIL" TAB <id> TAB <error message> | 152 S: "FAIL" TAB <id> TAB <error message> |
| 152 S: "USER" TAB <id> TAB <userid> [TAB <parameters>] | 153 S: "USER" TAB <id> TAB <userid> [TAB <parameters>] |
| 153 | 154 |
| 154 Master commands can request information about existing authentication | 155 Master commands can request information about existing authentication |
| 155 request, or about a specified user. | 156 request, or about a specified user. |
| 157 | |
| 158 USER command's service and parameters are the same as with AUTH client | |
| 159 request. | |
| 156 | 160 |
| 157 ID is a connection-specific unique request identifier. It must be a 32bit | 161 ID is a connection-specific unique request identifier. It must be a 32bit |
| 158 number, so typically you'd just increment it by one. | 162 number, so typically you'd just increment it by one. |
| 159 | 163 |
| 160 DIE makes the server stop accepting new requests, and as soon as the | 164 DIE makes the server stop accepting new requests, and as soon as the |