Hi Dieter, > The auxprop ldapdb combined with an appropriate slapd.conf and a well > defined regex for authTo attribute could do this. I was trying, but not getting anywhere with that. Have you done any of this successfully? > Although there would > be no need to transform nick to userid. Why do you think so? Maybe I have overlooked the obvious and try to go for a way too complex solution? Regards, Torsten -------- Original-Nachricht -------- Datum: Fri, 22 Sep 2006 09:31:31 +0200 Von: "Dieter Kluenter" <dieter@xxxxxxxxxxxx> An: cyrus-sasl@xxxxxxxxxxxxxxxxxxxx Betreff: Re: Looking for canon_user plugin > Torsten Schlabach <tschlabach@xxxxxxx> writes: > > > Hi all! > > > > Does anyone know of any ready made plugins available to canonicalize > > (c14n) usernames on the SASL layer? > > > > What I would be looking for was a plugin which looks up and sets an > > authz (authorization id) from LDAP given a username. > > > > What I want to achieve is this: > > > > I have a Cyrus IMAPd server, which is using SASL (saslauthd, to be > > exact) to handle user logins. I want a user to be able to login using > > a nickname and I would expect such a plugin to do a lookup against > > LDAP to find that user's real userid (=mailbox name) and set it as the > > authorization id. > > > > By default, IMAPd assumes authorization id == authentication id and > > some IMAP clients don't have a proper way to specify different > > authentication and authorization id. > > > > If there was such a plugin, some hints on how to configure such a > > plugin would be nice as well. > > The auxprop ldapdb combined with an appropriate slapd.conf and a well > defined regex for authTo attribute could do this. Although there would > be no need to transform nick to userid. > > -Dieter > > -- > Dieter Klünter | Systemberatung > http://www.dkluenter.de > GPG Key ID:8EF7B6C6
