Courier Authentication Library 0.58 review
DownloadCourier Authentication Library is an API toolkit for implementing password validation and account metadata lookups
|
|
Courier Authentication Library is an API toolkit for implementing password validation and account metadata lookups. Copies of this library code used to exist in other tarballs: Courier, Courier-IMAP, and SqWebMail. Building and installing any of these packages would've automatically installed this authentication code.
The authentication library is now a separate, standalone package. This authentication library must now be installed, separately, before upgrading to the following builds (or if installing them for the first time): Courier 0.48, Courier-IMAP 4.0, and SqWebMail 5.0.
The Courier authentication library provides authentication services for other Courier applications. In this context, the term "authentication" refers to the following functions:
1. Take a userid or a loginid, and a password. Determine whether the loginid and the password are valid.
2. Given a userid, obtain the following information about the userid:
A. The account's home directory.
B. The numeric system userid and groupid that owns all files associated with this account.
C. The location of the account's maildir.
D. Any maildir quota defined for this account. See the Courier documentation for more information on maildir quotas.
E. Other miscellaneous account-specific options.
3. Change the password associated with a loginid.
4. Obain a complete list of all loginids.
The Courier authentication library provides alternative implementations of these authentication services:
1. Use the traditional system password files: /etc/passwd and /etc/shadow, possibly in conjunction with the PAM library.
2. Maintain all this information in a GDBM or a DB database. The GDBM or the DB database is compiled from plain text files. Perl scripts provide a simple interface for creating and editing the authentication information, then a script compiles the plain text files into a database.
3. Use an LDAP server for authentication.
4. Use a table in a MySQL database for authentication.
5. Use a table in a PostgreSQL database for authentication.
All Courier components that use this authentication library, therefore, will be able to authenticate E-mail accounts using any of the above methods.
What's New in This Release:
This release adds minor enhancements to the LDAP and /etc/shadow modules, support for PAM account management hooks, and improved diagnostic messages.
Courier Authentication Library 0.58 search tags