Different realm for different listeners?
Mihai Badici
mihai at badici.ro
Tue Mar 10 17:44:35 UTC 2015
On Tuesday 10 March 2015 18:38:40 Tom Hendrikx wrote:
> On 10-03-15 18:20, Chris Adams wrote:
> > I see this has been asked a few times over the years (but not in
> > several years), and the response was along the lines of "maybe
> > someday", so I figured I'd see if someday was here yet...
> >
> > I have a need to have a different default realm for different
> > listeners. Basically, I've a bunch of different domains, and a few
> > of them insist their users not be required to authenticate with
> > "user at domain" and just use "user", and I'm trying to make this work
> > without separate daemons and/or VMs.
> >
> > I'll be using Dovecot 2.2 (most likely 2.2.10 as provided by
> > RHEL/CentOS 7).
> >
> > Thanks. If there's not a way to do this directly in Dovecot, does
> > anybody have any suggestion that doesn't require several different
> > VMs?
>
> You could drop the default realm completely, and create a second
> passdb lookup which uses only the username part to lookup credentials.
> This means that, as long as you have no conflicts as usernames
> 'john at foo.com' vs 'john at bar.com', you'd be able to support username
> 'john'.
Well, I think "conflict" is the keyword here.
Everybody want an e-mail address called "contact" or "office" :)
>
> When you're able to use the password in your sql WHERE statement [1]
> too, you could even work around that, because you'd only have
> mismatches when 'john at foo.com' and 'john at bar.com' have the same
> passphrase.
>
> [1]
> http://wiki2.dovecot.org/AuthDatabase/SQL#Password_verification_by_SQL_serve
> r
>
> Tom
--
Mihai Bădici
http://mihai.badici.ro
More information about the dovecot
mailing list