mirror of
https://github.com/moparisthebest/curl
synced 2024-11-14 05:25:06 -05:00
eb84ca3ea8
RFC 4616 specifies the authzid is optional in the client authentication message and that the server will derive the authorisation identity (authzid) from the authentication identity (authcid) when not specified by the client.
68 lines
976 B
Plaintext
68 lines
976 B
Plaintext
<testcase>
|
|
<info>
|
|
<keywords>
|
|
SMTP
|
|
SASL
|
|
SASL AUTH DIGEST-MD5
|
|
SASL AUTH PLAIN
|
|
SASL DOWNGRADE
|
|
RFC2831
|
|
RFC4954
|
|
</keywords>
|
|
</info>
|
|
|
|
#
|
|
# Server-side
|
|
<reply>
|
|
<servercmd>
|
|
AUTH DIGEST-MD5 PLAIN
|
|
REPLY "AUTH DIGEST-MD5" 334 Rubbish
|
|
REPLY * 501 AUTH exchange cancelled by client
|
|
REPLY "AUTH PLAIN" 334 PLAIN supported
|
|
REPLY AHVzZXIAc2VjcmV0 235 Authenticated
|
|
</servercmd>
|
|
</reply>
|
|
|
|
#
|
|
# Client-side
|
|
<client>
|
|
<server>
|
|
smtp
|
|
</server>
|
|
<features>
|
|
!SSPI
|
|
debug
|
|
crypto
|
|
</features>
|
|
<name>
|
|
SMTP DIGEST-MD5 authentication with SASL downgrade
|
|
</name>
|
|
<stdin>
|
|
mail body
|
|
</stdin>
|
|
<command>
|
|
smtp://%HOSTIP:%SMTPPORT/937 --mail-rcpt recipient@example.com --mail-from sender@example.com -u user:secret -T -
|
|
</command>
|
|
</client>
|
|
|
|
#
|
|
# Verify data after the test has been "shot"
|
|
<verify>
|
|
<protocol>
|
|
EHLO 937
|
|
AUTH DIGEST-MD5
|
|
*
|
|
AUTH PLAIN
|
|
AHVzZXIAc2VjcmV0
|
|
MAIL FROM:<sender@example.com>
|
|
RCPT TO:<recipient@example.com>
|
|
DATA
|
|
QUIT
|
|
</protocol>
|
|
<upload>
|
|
mail body
|
|
.
|
|
</upload>
|
|
</verify>
|
|
</testcase>
|