mirrors/maddy
1
0
Fork 0
mirror of https://github.com/foxcpp/maddy.git synced 2025-04-05 14:07:38 +03:00
Code Issues Projects Releases Packages Wiki Activity
maddy/internal/auth/dovecot_sasl/dovecot_sasl.go

143 lines
3.2 KiB
Go
Raw Blame History

package dovecotsasl
import (
"fmt"
"net"
"github.com/emersion/go-sasl"
dovecotsasl "github.com/foxcpp/go-dovecot-sasl"
"github.com/foxcpp/maddy/internal/auth"
"github.com/foxcpp/maddy/internal/config"
"github.com/foxcpp/maddy/internal/log"
"github.com/foxcpp/maddy/internal/module"
)
type Auth struct {
instName string
serverEndpoint string
log log.Logger
network string
addr string
mechanisms map[string]dovecotsasl.Mechanism
}
const modName = "dovecot_sasl"
func New(_, instName string, _, inlineArgs []string) (module.Module, error) {
a := &Auth{
instName: instName,
log: log.Logger{Name: modName, Debug: log.DefaultLogger.Debug},
}
switch len(inlineArgs) {
case 0:
case 1:
a.serverEndpoint = inlineArgs[0]
default:
return nil, fmt.Errorf("%s: one or none arguments needed", modName)
}
return a, nil
}
func (a *Auth) Name() string {
return modName
}
func (a *Auth) InstanceName() string {
return a.instName
}
func (a *Auth) getConn() (*dovecotsasl.Client, error) {
// TODO: Connection pooling
conn, err := net.Dial(a.network, a.addr)
if err != nil {
return nil, fmt.Errorf("%s: unable to contact server: %v", modName, err)
}
cl, err := dovecotsasl.NewClient(conn)
if err != nil {
return nil, fmt.Errorf("%s: unable to contact server: %v", modName, err)
}
return cl, nil
}
func (a *Auth) returnConn(cl *dovecotsasl.Client) {
cl.Close()
}
func (a *Auth) Init(cfg *config.Map) error {
cfg.String("endpoint", false, false, a.serverEndpoint, &a.serverEndpoint)
if _, err := cfg.Process(); err != nil {
return err
}
if a.serverEndpoint == "" {
return fmt.Errorf("%s: missing server endpoint", modName)
}
endp, err := config.ParseEndpoint(a.serverEndpoint)
if err != nil {
return fmt.Errorf("%s: invalid server endpoint: %v", modName, err)
}
if endp.Path == "" {
return fmt.Errorf("%s: unexpected path in endpoint ", modName)
}
// Dial once to check usability and also to get list of mechanisms.
conn, err := net.Dial(endp.Scheme, endp.Address())
if err != nil {
return fmt.Errorf("%s: unable to contact server: %v", modName, err)
}
cl, err := dovecotsasl.NewClient(conn)
if err != nil {
return fmt.Errorf("%s: unable to contact server: %v", modName, err)
}
defer cl.Close()
a.mechanisms = make(map[string]dovecotsasl.Mechanism, len(cl.ConnInfo().Mechs))
for name, mech := range cl.ConnInfo().Mechs {
if mech.Private {
continue
}
a.mechanisms[name] = mech
}
a.network = endp.Scheme
a.addr = endp.Address()
return nil
}
func (a *Auth) AuthPlain(username, password string) error {
if _, ok := a.mechanisms[sasl.Plain]; ok {
cl, err := a.getConn()
if err != nil {
return err
}
defer a.returnConn(cl)
// Pretend it is SMTP even though we really don't know.
// We also have no connection information to pass to the server...
return cl.Do("SMTP", sasl.NewPlainClient("", username, password))
}
if _, ok := a.mechanisms[sasl.Login]; ok {
cl, err := a.getConn()
if err != nil {
return err
}
defer a.returnConn(cl)
// Pretend it is SMTP even though we really don't know.
return cl.Do("SMTP", sasl.NewLoginClient(username, password))
}
return auth.ErrUnsupportedMech
}
func init() {
module.Register(modName, New)
}
Reference in a new issue View git blame Copy permalink