You are viewing a plain text version of this content. The canonical link for it is here.

Posted to server-dev@james.apache.org by "Lan Khuat (Jira)" <se...@james.apache.org> on 2020/07/30 04:35:00 UTC

[jira] [Created] (JAMES-3351) JMAP authentication rework

Lan Khuat created JAMES-3351:
--------------------------------

             Summary: JMAP authentication rework
                 Key: JAMES-3351
                 URL: https://issues.apache.org/jira/browse/JAMES-3351
             Project: James Server
          Issue Type: Improvement
            Reporter: Lan Khuat


We mandate at least one authentication strategy to return a valid result. However, this means that if one authentication strategy is valid then others can be invalid, or both are valid but come from different identities.


To avoid this complication, if one of the authentication method is attenpted with wrong credentials the authentication will fail. We should not allow more than one set of credentials.

*DOD:* 
 * Rework authentication strategies.


 * Write a JMAP-Draft and JMAP-RFC-8621 integration test, exercising several authentication strategies, and demonstrating that if any of them fails, then the request is rejected.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org