undefined | Better HN

0 pointsibotty3y ago0 comments

Thank you for your answers.

> The IMAP proxy supports the OAUTHBEARER authentication scheme but using third-party OIDC server is not supported at the moment. However, once the SMTP server is out I plan to add support for other SASL mechanisms on the IMAP proxy (since some of the work will be shared with the SMTP Auth module).

It would be great to allow another OIDC server (to have single sign on and MFA) without having to run another SASL server.

> Yes, the IMAP proxy supports both the LOGIN and AUTH=PLAIN mechanisms.

How are application-device-specific passwords handled? Is there some documentation?

0 comments

1 comments · 1 top-level

StalwartLabs3y ago

> How are application-device-specific passwords handled? Is there some documentation?

Not sure what do you mean with application device specific passwords? Currently Stalwart JMAP only allows registered accounts to login using a password which is stored encrypted with Argon2. Authentication can be done using the OAuth or Basic mechanisms. There are no additional passwords specific to a particular device. Not sure if this answers your question though.

j / k navigate · click thread line to collapse