sharing sso between regular mail client and web applications
I am testing a bit with sso with keycloak, I was wondering if/how it is possible that your logged in session between eg Thunderbird and dovecot can be used as a single sign on in webapplications. So as long as you have an active session with dovecot you can access all your web applications without the need to login.
As far as discussed in this list, the only reasonable way to implement oidc and mail is to use roundcube. Thunderbird does not offer OIDC for other providers than Microsoft,Google because there is no way to build the needed secrets information into Thunderbird clients. Security-wise, email is dead.
Am 18. November 2024 um 09:41 schrieb "Marc via dovecot" <dovecot@dovecot.org mailto:dovecot@dovecot.org?to=%22Marc%20via%20dovecot%22%20%3Cdovecot%40dovecot.org%3E >:
I am testing a bit with sso with keycloak, I was wondering if/how it is possible that your logged in session between eg Thunderbird and dovecot can be used as a single sign on in webapplications. So as long as you have an active session with dovecot you can access all your web applications without the need to login.
dovecot mailing list -- dovecot@dovecot.org To unsubscribe send an email to dovecot-leave@dovecot.org
participants (2)
-
Marc
-
Schulz