auth method doc is misleading #2732

lkppo · 2022-07-19T13:54:30Z

Problem description

The docstring say in PHPMAILER.php:

    /**
     * SMTP auth type.
     * Options are CRAM-MD5, LOGIN, PLAIN, XOAUTH2, attempted in that order if not specified.
     *
     * @var string
     */
    public $AuthType = '';

This is ambiguous. I had previously understood that each authentication method is tried, in the order indicated, until one of them works. But after reading the code of SMTP->authenticate(), it is clear that among the methods announced by the server, the best one also supported by PHPMailer is chosen and tried only once.

I was tricked by a lying server which claims to support CRAM-MD5 but refuses authentication with this method.

Solution?

Can you correct the documentation to disambiguate it please?

Synchro · 2022-07-19T14:47:59Z

How about "If not specified, the first one from that list that the server supports will be selected."?

lkppo · 2022-07-19T15:09:01Z

I like it. Like that?

Options are CRAM-MD5, LOGIN, PLAIN, XOAUTH2. If not specified, the first one from that list that the server supports will be selected.

Synchro · 2022-07-19T15:14:04Z

Done!

lkppo · 2022-07-19T15:19:10Z

All right!

Synchro closed this as completed in a04c4c2 Jul 19, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

auth method doc is misleading #2732

auth method doc is misleading #2732

lkppo commented Jul 19, 2022 •

edited

Synchro commented Jul 19, 2022

lkppo commented Jul 19, 2022

Synchro commented Jul 19, 2022

lkppo commented Jul 19, 2022

auth method doc is misleading #2732

auth method doc is misleading #2732

Comments

lkppo commented Jul 19, 2022 • edited

Problem description

Solution?

Synchro commented Jul 19, 2022

lkppo commented Jul 19, 2022

Synchro commented Jul 19, 2022

lkppo commented Jul 19, 2022

lkppo commented Jul 19, 2022 •

edited