dovecot - Jun 2016 - password expire warning for dovecot users in IMAP/POP login

Alec-san,

Thanks for your comment.

Please lemme make sure one more thing.

 >IMAP has ALERT response which is supported by some clients.

To make it happen, no need to add any other configurations on LDAP end 
once possword policy is correctly set?

Thanks,
Masaharu Kawada

On 2016?06?08? 17:27, A.L.E.C wrote:
> On 06/08/2016 10:05 AM, mkawada at redhat.com wrote:
>> Whatever ways will do.  For instance, in a thunderbird mail client, a
>> pop-up message or notification email telling client that the password
>> will be expired in XX days, something like this, would be nice.
> IMAP has ALERT response which is supported by some clients. I think
> Thunderbird supports that. I don't think POP has such a feature, but I
> wouldn't care about POP.
>

-- 
Masaharu Kawada

On 06/08/2016 10:39 AM, mkawada at redhat.com wrote:
> To make it happen, no need to add any other configurations on LDAP end
> once possword policy is correctly set?
You've got me wrong. I just responded to Aki's question. ALERT feature
could be used to send the message to the client, but there's no code to
handle such LDAP password policies/notices yet.

-- 
Aleksander 'A.L.E.C' Machniak
Kolab Groupware Developer        [http://kolab.org]
Roundcube Webmail Developer  [http://roundcube.net]
---------------------------------------------------
PGP: 19359DC1 @@ GG: 2275252 @@ WWW: http://alec.pl

Alec-san,

Eexcuse me for my misconception.

Anyway, appreciate your comment.

Thanks,
Masaharu Kawada


On 2016?06?08? 17:51, A.L.E.C wrote:
> On 06/08/2016 10:39 AM, mkawada at redhat.com wrote:
>> To make it happen, no need to add any other configurations on LDAP end
>> once possword policy is correctly set?
> You've got me wrong. I just responded to Aki's question. ALERT
feature
> could be used to send the message to the client, but there's no code to
> handle such LDAP password policies/notices yet.
>

-- 
Masaharu Kawada
Technical Support Engineer
Red Hat K K
Ebisu Neonato 8F
1-18 Ebisu 4-chome, Shibuya-ku
Tokyo 150-0013, Japan
Direct: +81-3-5798-8347

The correct way to handle this IMAP-wise would be to return the EXPIRED response
code (https://tools.ietf.org/html/rfc5530#section-3).  But this requires client
support to report to the end user.  (And also requires that Dovecot would be
able to determine from authentication source that the credentials are expired,
as opposed to incorrect.)

michael
> On June 8, 2016 at 2:51 AM "A.L.E.C" <alec at alec.pl>
wrote:
> 
> On 06/08/2016 10:39 AM, mkawada at redhat.com wrote:
> 
> > To make it happen, no need to add any other configurations on LDAP end
> > once possword policy is correctly set?
> 
> You've got me wrong. I just responded to Aki's question. ALERT
feature
> could be used to send the message to the client, but there's no code to
> handle such LDAP password policies/notices yet.
> 
> --
> Aleksander 'A.L.E.C' Machniak
> Kolab Groupware Developer [http://kolab.org]
> 
> Roundcube Webmail Developer [http://roundcube.net]
> 
> ---------------------------------------------------
> PGP: 19359DC1 @@ GG: 2275252 @@ WWW: http://alec.pl