Displaying 20 results from an estimated 400 matches similar to: "Dovecot Proxy - Oauth2 mech add custom fields"
2019 Apr 19
1
OAuth Passdb Grant
I'm trying to implement the password grant flow, as specified at
https://wiki2.dovecot.org/PasswordDatabase/oauth2,
but am getting an error message. Can you please help?
auth: Fatal: oauth2 /etc/dovecot/dovecot-oauth2.token.conf.ext: Error in
configuration file /etc/dovecot/dovecot-oauth2.token.conf.ext line 1:
Unknown setting: grant_url
$ dovecot -n
# 2.3.5.2 (38c8f1daf):
2011 Mar 19
0
Problems with SSL dependent gems OAuth2 & ActiveMerchant
Hello all,
My application uses the OAuth2 gem (0.1.1) to connect to Facebook, and
the ActiveMerchant gem (1.12.0) to connect to PayPal. Under what is the
current Rails/Ruby distribution, both of these gems throw the following
OpenSSL::SSL::SSLError when used:
* SSL_connect returned=1 errno=0 state=SSLv3 read server certificate
B: certificate verify failed
I did some digging, and found two
2010 Dec 20
0
Server won't start on using authlogic-oauth2
I have included oauth2 and authlogic-oauth2 in the gemfile as I want to
use them and am trying to start the server. It doesn''t start and gives
me the error
/Library/Ruby/Gems/1.8/gems/railties-3.0.3/lib/rails.rb:44:in
`configuration'': undefined method `config'' for nil:NilClass
(NoMethodError)
from
2010 Sep 17
0
ruby's oauth2 grant_type
Hi, i started using oauth2 gem by intridea
(http://github.com/intridea/oauth2) and don''t know how to fix this
problem. I have developed both client and server and on request for
access_token i see no grant_type parameter. My code from client callback
controller
class CallbackController < Devise::OauthCallbacksController
def accounts
access_token =
2018 May 29
1
OAUTH2 + proxying [host=??]
All,
We currently use a proxy configuration with an sql query to authenticate
and discover which backend server an address belongs to and proxy the
connection to that host to authenticate and retrieve mail. We are
looking to move to OAUTH2 for authentication and am just trying to
figure how how to get that extra host information as part of the passdb
query when using this mechanism. Looking at
2014 May 22
0
OAuth2 client credentials grant error UnsupportedAuthorizationScheme
Dear ALL,
Anyone have come accross the following error, your comments
would be of great help, plz suggest on this,OAuth2::Error
({"ErrorCode":"
UnsupportedAuthorizationScheme","ErrorMessage":"Only
'Bearer' scheme is supported for Authorization header."})*
Any help is greatlly appreciated
Thanks & Regards,
Usha
--
You received this message
2019 Dec 10
0
OAuth2 mail client
Hi all,
I'm wondering if there are any IMAP client software alternative to
Thunderbird who can handle OAuth2 other than using gmail, yahoo etc (ex,
talk to local auth provider)? Thunderbird does not seem to support well at
the time being so I'm wondering what other choices we may have for our user
communities.
Thank you very much.
Mizuki
-------------- next part --------------
An HTML
2023 Mar 01
0
OAuth2: local validation with RFC9068 tokens
Hello,
my IdP is kind of progressive and implemented RFC9068, where all access tokens now come with typ "at+JWT".
Since the setup has used local validation, I had to switch and currently use introspection endpoint. Looked around at the src and there seems to be relatively simple check of the token typ checking the only fixed value of "JWT" -- do you think you could consider
2021 Jun 21
0
CVE-2021-29157: oauth2 JWT local validation path traversal
Open-Xchange Security Advisory 2021-06-21
Product: Dovecot
Vendor: OX Software GmbH
Internal reference: DOV-4476 (Bug ID)
Vulnerability type: CWE-24: Path Traversal: '../filedir'
Vulnerable version: 2.3.11-2.3.14
Vulnerable component: imap, pop3, submission, managesieve
Report confidence: Confirmed
Solution status: Fixed by Vendor
Fixed version: 2.3.14.1
Vendor notification: 2021-03-22
2021 Jun 21
0
CVE-2021-29157: oauth2 JWT local validation path traversal
Open-Xchange Security Advisory 2021-06-21
Product: Dovecot
Vendor: OX Software GmbH
Internal reference: DOV-4476 (Bug ID)
Vulnerability type: CWE-24: Path Traversal: '../filedir'
Vulnerable version: 2.3.11-2.3.14
Vulnerable component: imap, pop3, submission, managesieve
Report confidence: Confirmed
Solution status: Fixed by Vendor
Fixed version: 2.3.14.1
Vendor notification: 2021-03-22
2010 May 06
7
Facebook, authlogic, and OAuth2
Has anyone gotten started with getting the OAuth2 replacement for
Facebook Connect working with auth_logic?
I know there is an OAuth2 gem (http://intridea.com/2010/4/22/oauth2-
gem-just-in-time-for-facebook-graph?blog=company), and I''m thinking of
using that to integrate.
Anyone know when the Fb Connect API will be shut down?
--
You received this message because you are subscribed to
2020 Sep 16
2
Cannot load key: Invalid dovecot key version
I am trying to use a newly added Local Validation functionality in dovecot version 2.3.11. I am running dovecot inside a Docker container With base image " debian:buster-slim". When I try to login through below command , a crash is seen. Algorithm Used is RS256 and certificate is self-signed.
'''
a1 login admin
2019 Dec 06
0
Dovecot & OAuth
Hi!
It seems there is a bug in the oauth2 driver, it loads the cert files wrong way. I'll make an internal bug report of this.
Aki
> On 06/12/2019 16:42 mizuki <mizuki0621 at gmail.com> wrote:
>
>
> Hi,
>
> For troubleshooting purposes, I change the read/write permissions on the certs and confirmed 'dovecot' can read them w/o problem, but still seeing the
2019 Dec 10
0
Dovecot & OAuth
Thank you Stephan,
I'm wondering if I can read the track of the status of bug reports? Could
you please advice?
Thanks.
Mizuki
On Sun, Dec 8, 2019 at 6:40 AM Stephan Bosch <stephan at rename-it.nl> wrote:
>
>
> On 06/12/2019 20:54, Aki Tuomi via dovecot wrote:
> > Hi!
> >
> > It seems there is a bug in the oauth2 driver, it loads the cert files
> wrong
2019 Dec 05
0
Dovecot & OAuth
Before declaring it not ready for prime time, did you try setting
tls_ca_cert_file = /etc/ssl/certs/ca-certificates.crt
In the oauth2 configuration file as documented in https://doc.dovecot.org/configuration_manual/authentication/oauth2 ?
Aki
> On 05/12/2019 21:58 mizuki via dovecot <dovecot at dovecot.org> wrote:
>
>
> Hi all,
>
> We'd like to enable OAuth with
2019 Dec 06
4
Dovecot & OAuth
I changed some of the tls options following the document, now config is
following:
tokeninfo_url =
https://keycloak.com/auth/realms/mail/protocol/openid-connect/token
introspection_url =
https://dovecot:7598e21b-ec34-481f-80d0-059bddae0923 at keycloak.com/auth/realms/demo/protocol/openid-connect/token/introspect
introspection_mode = post
debug = yes
rawlog_dir = /tmp/oauth2
#force_introspection
2019 Aug 15
0
Dovecot - Microsoft Azure AD
Hi!
Dovecot supports Lua userdb, which can be used to implement custom user databases, maybe this might work for you? See https://doc.dovecot.org/configuration_manual/authentication/lua_based_authentication for more details.
Aki
> On 15/08/2019 12:16 Lennart Boettcher <lennart.boettcher at secpoint.onmicrosoft.com> wrote:
>
>
> Hello,
>
> Thank you for the quick
2019 Dec 08
2
Dovecot & OAuth
On 06/12/2019 20:54, Aki Tuomi via dovecot wrote:
> Hi!
>
> It seems there is a bug in the oauth2 driver, it loads the cert files wrong way. I'll make an internal bug report of this.
Tracking as DOP-1590.
Regards,
Stephan.
>> On 06/12/2019 16:42 mizuki <mizuki0621 at gmail.com> wrote:
>>
>>
>> Hi,
>>
>> For troubleshooting purposes, I
2021 Aug 06
3
v2.3.16 released
Hi,
One interesting thing in this release is the support for configuring OAUTH2 openid-configuration element. It would be nice if IMAP clients started supporting this feature to enable OAUTH2 for all IMAP servers, not just Gmail and a few others. This would allow all kinds of new authentication methods for IMAP and improve the authentication security in general.
2021 Aug 06
3
v2.3.16 released
Hi,
One interesting thing in this release is the support for configuring OAUTH2 openid-configuration element. It would be nice if IMAP clients started supporting this feature to enable OAUTH2 for all IMAP servers, not just Gmail and a few others. This would allow all kinds of new authentication methods for IMAP and improve the authentication security in general.