[
https://issues.apache.org/jira/browse/JAMES-3351?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Benoit Tellier closed JAMES-3351.
---------------------------------
Fix Version/s: 3.6.0
Resolution: Fixed
https://github.com/linagora/james-project/pull/3626 solved this
> JMAP authentication rework
> --------------------------
>
> Key: JAMES-3351
> URL: https://issues.apache.org/jira/browse/JAMES-3351
> Project: James Server
> Issue Type: Improvement
> Reporter: Lan Khuat
> Priority: Major
> Fix For: 3.6.0
>
>
> We mandate at least one authentication strategy to return a valid result.
> However, this means that if one authentication strategy is valid then others
> can be invalid, or both are valid but come from different identities.
> To avoid this complication, if one of the authentication method is attenpted
> with wrong credentials the authentication will fail. We should not allow more
> than one set of credentials.
> *DOD:*
> * Rework authentication strategies.
> * Write a JMAP-Draft and JMAP-RFC-8621 integration test, exercising several
> authentication strategies, and demonstrating that if any of them fails, then
> the request is rejected.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
