[
https://issues.apache.org/jira/browse/JAMES-3842?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17624521#comment-17624521
]
ouvtam commented on JAMES-3842:
-------------------------------
+1
Good one, thanks.
> Access SSLSession from Hooks and Handlers
> -----------------------------------------
>
> Key: JAMES-3842
> URL: https://issues.apache.org/jira/browse/JAMES-3842
> Project: James Server
> Issue Type: Improvement
> Components: protocols
> Affects Versions: master
> Reporter: Karsten Otto
> Priority: Minor
> Time Spent: 40m
> Remaining Estimate: 0h
>
> James supports SMTPS and StartTLS, but currently has no way to
> programmatically access the resulting SSLSession from SMTP Hooks, POP3
> Command Handlers etc. I propose to make the SSLSession accessible through the
> ProtocolSession.
> This way, hooks/handlers can examine the SSL/TLS parameters negotiated with
> the currently connected client. They can check e.g. TLS version and selected
> cipher suite to evaluate the security level of the connection. With
> certificate based client authentication enabled, they can get the provided
> client certificate, e.g. to check against a permission list. Or a
> JamesMessageHook could attach it to the Mail object, so this information
> becomes even available to Mailets after spooling.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscr...@james.apache.org
For additional commands, e-mail: server-dev-h...@james.apache.org
