Folks,
I'm trying to configure dovecot SASL with two use cases :
- First with XOAUTH2 : I've managed to get it working, pretty right
out of the box, developers have done a great job :-)
- Second with Client TLS Certificate with no luck.
Let me explain, the certificate brought by the client does not have any
clue of associated email, I have to check that username (=email) sent by
the client is really related to some information included in the
certificate (I have to extract the OU and then lookup into a table of
authorized mails for that OU).
Is it possible to do that with dovecot ? I think yes but I'm looking for
direction to achieve that. Lua maybe ?
Our configuration :
- OS : Debian 11
$ /usr/sbin/dovecot --version
2.3.13 (89f716dc2)
Regards.
--
Philippe MARASSE
Responsable pôle Infrastructures - DSIO
Centre Hospitalier Henri Laborit
CS 10587 - 370 avenue Jacques Cœur
86021 Poitiers Cedex
Tel : 05.49.44.57.19
