mirror of
https://github.com/curl/curl.git
synced 2024-12-27 06:59:43 +08:00
eb84ca3ea8
RFC 4616 specifies the authzid is optional in the client authentication message and that the server will derive the authorisation identity (authzid) from the authentication identity (authcid) when not specified by the client.
68 lines
958 B
Plaintext
68 lines
958 B
Plaintext
<testcase>
|
|
<info>
|
|
<keywords>
|
|
IMAP
|
|
SASL
|
|
SASL AUTH DIGEST-MD5
|
|
SASL AUTH PLAIN
|
|
SASL DOWNGRADE
|
|
RFC2831
|
|
</keywords>
|
|
</info>
|
|
|
|
#
|
|
# Server-side
|
|
<reply>
|
|
<servercmd>
|
|
AUTH DIGEST-MD5 PLAIN
|
|
REPLY "AUTHENTICATE DIGEST-MD5" + Rubbish
|
|
REPLY * A002 NO AUTH exchange cancelled by client
|
|
REPLY "AUTHENTICATE PLAIN" +
|
|
REPLY AHVzZXIAc2VjcmV0 A003 OK AUTHENTICATE completed
|
|
</servercmd>
|
|
<data>
|
|
From: me@somewhere
|
|
To: fake@nowhere
|
|
|
|
body
|
|
|
|
--
|
|
yours sincerely
|
|
</data>
|
|
</reply>
|
|
|
|
#
|
|
# Client-side
|
|
<client>
|
|
<server>
|
|
imap
|
|
</server>
|
|
<features>
|
|
!SSPI
|
|
debug
|
|
crypto
|
|
</features>
|
|
<name>
|
|
IMAP DIGEST-MD5 authentication with SASL downgrade
|
|
</name>
|
|
<command>
|
|
'imap://%HOSTIP:%IMAPPORT/835/;MAILINDEX=1' -u user:secret
|
|
</command>
|
|
</client>
|
|
|
|
#
|
|
# Verify data after the test has been "shot"
|
|
<verify>
|
|
<protocol>
|
|
A001 CAPABILITY
|
|
A002 AUTHENTICATE DIGEST-MD5
|
|
*
|
|
A003 AUTHENTICATE PLAIN
|
|
AHVzZXIAc2VjcmV0
|
|
A004 SELECT 835
|
|
A005 FETCH 1 BODY[]
|
|
A006 LOGOUT
|
|
</protocol>
|
|
</verify>
|
|
</testcase>
|