https://doc.dovecot.org/configuration_manual/authentication/sql/#password-verification-by-sql-server
Perfect. However on Postfix it is more finicky.
https://www.postfix.org/SASL_README.html#auxprop_sql
Tip
If you must store encrypted passwords, you cannot use the sql auxprop plugin. Instead,
see section "Using saslauthd with PAM", and configure PAM to look up the
encrypted passwords with, for example, the pam_mysql module. You will not be able to use
any of the methods that require access to plaintext passwords, such as the shared-secret
methods CRAM-MD5 and DIGEST-MD5.
On Thursday, December 8, 2022 10:17:11 AM AKST, Alessio Cecchi wrote:
Yes,
we are using dovecot, also, for SASL only as authentication provider.
Here some relevants parts of the configuration:
# probably not necessary but dovecot requires it so i set it to /tmp/
mail_location = maildir:/tmp/%u/Maildir:INDEX=memory
# setup a mysql database with your users and password
passdb {
args = /etc/dovecot/dovecot-sql.conf.ext
driver = sql
}
userdb {
args = /etc/dovecot/dovecot-sql.conf.ext
driver = sql
}
# here is the most important part, with this you can query SASL
via port "12345" or via socket
service auth {
inet_listener {
port = 12345
}
unix_listener /var/spool/postfix/private/auth {
group = postfix
mode = 0660
user = postfix
}
}
# SASL don't support SSL
ssl = no
Ciao
Il 08/12/22 05:53, Henry R ha scritto:
can dovecot run as a general sasl service for other apps? such as webdav.
Thanks.