-
-
Notifications
You must be signed in to change notification settings - Fork 6.3k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
curl: --sasl-authzid added to support CURLOPT_SASL_AUTHZID from the tool
- Loading branch information
1 parent
a14d72c
commit a9499ff
Showing
14 changed files
with
358 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,11 @@ | ||
Long: sasl-authzid | ||
Help: Use this identity to act as during SASL PLAIN authentication | ||
Added: 7.66.0 | ||
--- | ||
Use this authorisation identity (authzid), during SASL PLAIN authentication, | ||
in addition to the authentication identity (authcid) as specified by --user. | ||
|
||
If the option isn't specified, the server will derive the authzid from the | ||
authcid, but if specified, and depending on the server implementation, it may | ||
be used to access another user's inbox, that the user has been granted access | ||
to, or a shared mailbox for example. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,56 @@ | ||
<testcase> | ||
<info> | ||
<keywords> | ||
IMAP | ||
SASL | ||
SASL AUTH PLAIN | ||
RFC4616 | ||
</keywords> | ||
</info> | ||
|
||
# | ||
# Server-side | ||
<reply> | ||
<servercmd> | ||
AUTH PLAIN | ||
REPLY AUTHENTICATE + | ||
REPLY c2hhcmVkLW1haWxib3gAdXNlcgBzZWNyZXQ= A002 OK AUTHENTICATE completed | ||
</servercmd> | ||
<data> | ||
From: me@somewhere | ||
To: fake@nowhere | ||
|
||
body | ||
|
||
-- | ||
yours sincerely | ||
</data> | ||
</reply> | ||
|
||
# | ||
# Client-side | ||
<client> | ||
<server> | ||
imap | ||
</server> | ||
<name> | ||
IMAP plain authentication with alternative authorization identity | ||
</name> | ||
<command> | ||
'imap://%HOSTIP:%IMAPPORT/848/;MAILINDEX=1' -u user:secret --sasl-authzid shared-mailbox | ||
</command> | ||
</client> | ||
|
||
# | ||
# Verify data after the test has been "shot" | ||
<verify> | ||
<protocol> | ||
A001 CAPABILITY | ||
A002 AUTHENTICATE PLAIN | ||
c2hhcmVkLW1haWxib3gAdXNlcgBzZWNyZXQ= | ||
A003 SELECT 848 | ||
A004 FETCH 1 BODY[] | ||
A005 LOGOUT | ||
</protocol> | ||
</verify> | ||
</testcase> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,51 @@ | ||
<testcase> | ||
<info> | ||
<keywords> | ||
IMAP | ||
SASL | ||
SASL AUTH PLAIN | ||
RFC4616 | ||
</keywords> | ||
</info> | ||
|
||
# | ||
# Server-side | ||
<reply> | ||
<servercmd> | ||
AUTH PLAIN | ||
REPLY AUTHENTICATE + | ||
REPLY dXJzZWwAa3VydAB4aXBqM3BsbXE= A002 NO Not authorized | ||
</servercmd> | ||
</reply> | ||
|
||
# | ||
# Client-side | ||
<client> | ||
<server> | ||
imap | ||
</server> | ||
<name> | ||
IMAP plain authentication with alternative authorization identity (Not authorized) | ||
</name> | ||
<command> | ||
'imap://%HOSTIP:%IMAPPORT/849/;MAILINDEX=1' -u kurt:xipj3plmq --sasl-authzid ursel | ||
</command> | ||
</client> | ||
|
||
# | ||
# Verify data after the test has been "shot" | ||
<verify> | ||
# 67 - CURLE_LOGIN_DENIED | ||
<errorcode> | ||
67 | ||
</errorcode> | ||
# | ||
# The multi interface considers a broken "CONNECT" as a prematurely broken | ||
# transfer and such a connection will not get a "LOGOUT" | ||
<protocol> | ||
A001 CAPABILITY | ||
A002 AUTHENTICATE PLAIN | ||
dXJzZWwAa3VydAB4aXBqM3BsbXE= | ||
</protocol> | ||
</verify> | ||
</testcase> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,57 @@ | ||
<testcase> | ||
<info> | ||
<keywords> | ||
POP3 | ||
SASL | ||
SASL AUTH PLAIN | ||
RFC1734 | ||
RFC4616 | ||
RFC5034 | ||
</keywords> | ||
</info> | ||
|
||
# | ||
# Server-side | ||
<reply> | ||
<servercmd> | ||
AUTH PLAIN | ||
REPLY AUTH + | ||
REPLY c2hhcmVkLW1haWxib3gAdXNlcgBzZWNyZXQ= +OK Login successful | ||
</servercmd> | ||
<data> | ||
From: me@somewhere | ||
To: fake@nowhere | ||
|
||
body | ||
|
||
-- | ||
yours sincerely | ||
</data> | ||
</reply> | ||
|
||
# | ||
# Client-side | ||
<client> | ||
<server> | ||
pop3 | ||
</server> | ||
<name> | ||
POP3 plain authentication with alternative authorization identity | ||
</name> | ||
<command> | ||
pop3://%HOSTIP:%POP3PORT/892 -u user:secret --sasl-authzid shared-mailbox | ||
</command> | ||
</client> | ||
|
||
# | ||
# Verify data after the test has been "shot" | ||
<verify> | ||
<protocol> | ||
CAPA | ||
AUTH PLAIN | ||
c2hhcmVkLW1haWxib3gAdXNlcgBzZWNyZXQ= | ||
RETR 892 | ||
QUIT | ||
</protocol> | ||
</verify> | ||
</testcase> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,53 @@ | ||
<testcase> | ||
<info> | ||
<keywords> | ||
POP3 | ||
SASL | ||
SASL AUTH PLAIN | ||
RFC1734 | ||
RFC4616 | ||
RFC5034 | ||
</keywords> | ||
</info> | ||
|
||
# | ||
# Server-side | ||
<reply> | ||
<servercmd> | ||
AUTH PLAIN | ||
REPLY AUTH + | ||
REPLY dXJzZWwAa3VydAB4aXBqM3BsbXE= -ERR Not authorized | ||
</servercmd> | ||
</reply> | ||
|
||
# | ||
# Client-side | ||
<client> | ||
<server> | ||
pop3 | ||
</server> | ||
<name> | ||
POP3 plain authentication with alternative authorization identity (Not authorized) | ||
</name> | ||
<command> | ||
pop3://%HOSTIP:%POP3PORT/893 -u kurt:xipj3plmq --sasl-authzid ursel | ||
</command> | ||
</client> | ||
|
||
# | ||
# Verify data after the test has been "shot" | ||
<verify> | ||
# 67 - CURLE_LOGIN_DENIED | ||
<errorcode> | ||
67 | ||
</errorcode> | ||
# | ||
# The multi interface considers a broken "CONNECT" as a prematurely broken | ||
# transfer and such a connection will not get a "QUIT" | ||
<protocol> | ||
CAPA | ||
AUTH PLAIN | ||
dXJzZWwAa3VydAB4aXBqM3BsbXE= | ||
</protocol> | ||
</verify> | ||
</testcase> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,56 @@ | ||
<testcase> | ||
<info> | ||
<keywords> | ||
SMTP | ||
SASL | ||
SASL AUTH PLAIN | ||
RFC4616 | ||
RFC4954 | ||
</keywords> | ||
</info> | ||
|
||
# | ||
# Server-side | ||
<reply> | ||
<servercmd> | ||
AUTH PLAIN | ||
REPLY AUTH 334 PLAIN supported | ||
REPLY dXJzZWwAa3VydAB4aXBqM3BsbXE= 235 Authenticated | ||
</servercmd> | ||
</reply> | ||
|
||
# | ||
# Client-side | ||
<client> | ||
<server> | ||
smtp | ||
</server> | ||
<name> | ||
SMTP plain authentication with alternative authorization identity | ||
</name> | ||
<stdin> | ||
mail body | ||
</stdin> | ||
<command> | ||
smtp://%HOSTIP:%SMTPPORT/953 --mail-rcpt recipient@example.com --mail-from sender@example.com -u kurt:xipj3plmq --sasl-authzid ursel -T - | ||
</command> | ||
</client> | ||
|
||
# | ||
# Verify data after the test has been "shot" | ||
<verify> | ||
<protocol> | ||
EHLO 953 | ||
AUTH PLAIN | ||
dXJzZWwAa3VydAB4aXBqM3BsbXE= | ||
MAIL FROM:<sender@example.com> | ||
RCPT TO:<recipient@example.com> | ||
DATA | ||
QUIT | ||
</protocol> | ||
<upload> | ||
mail body | ||
. | ||
</upload> | ||
</verify> | ||
</testcase> |
Oops, something went wrong.