archive/ruby
1
0
Fork 0
mirror of https://github.com/ruby/ruby.git synced 2025-09-23 20:44:00 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 8

[ruby/net-imap] Update AUTH=PLAIN to be a little closer to RFC4616

Browse source 
* Add authzid support
* must not contain NULL chars
* improve rdoc

a587fc71b7
This commit is contained in:
nicholas a. evans 2021-04-27 17:49:22 -04:00 committed by Hiroshi SHIBATA
parent 331005812f
commit 912f39b2c3
No known key found for this signature in database
GPG key ID: F9CF13417264FAC2
2 changed files with 41 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

21
lib/net/imap/authenticators/plain.rb
View file

@ -4,15 +4,30 @@
# #
# See RFC4616[https://tools.ietf.org/html/rfc4616] for the specification. # See RFC4616[https://tools.ietf.org/html/rfc4616] for the specification.
class Net::IMAP::PlainAuthenticator class Net::IMAP::PlainAuthenticator
def process(data) def process(data)
return "\0#{@user}\0#{@password}" return "#@authzid\0#@username\0#@password"
end end
NULL = -"\0".b
private private
def initialize(user, password) # +username+ is the authentication identity, the identity whose +password+ is
@user = user # used. +username+ is referred to as +authcid+ by
# RFC4616[https://tools.ietf.org/html/rfc4616].
#
# +authzid+ is the authorization identity (identity to act as). It can
# usually be left blank. When +authzid+ is left blank (nil or empty string)
# the server will derive an identity from the credentials and use that as the
# authorization identity.
def initialize(username, password, authzid: nil)
raise ArgumentError, "username contains NULL" if username&.include?(NULL)
raise ArgumentError, "password contains NULL" if password&.include?(NULL)
raise ArgumentError, "authzid contains NULL" if authzid&.include?(NULL)
@username = username
@password = password @password = password
@authzid = authzid
end end
Net::IMAP.add_authenticator "PLAIN", self Net::IMAP.add_authenticator "PLAIN", self

23
test/net/imap/test_imap_authenticators.rb Normal file
View file

@ -0,0 +1,23 @@
# frozen_string_literal: true
require "net/imap"
require "test/unit"
class IMAPAuthenticatorsTest < Test::Unit::TestCase
PLAIN = Net::IMAP::PlainAuthenticator
def test_plain
assert_equal("\0authc\0passwd",
PLAIN.new("authc", "passwd").process(nil))
assert_equal("authz\0user\0pass",
PLAIN.new("user", "pass", authzid: "authz").process(nil))
end
def test_plain_no_null_chars
assert_raise(ArgumentError) { PLAIN.new("bad\0user", "pass") }
assert_raise(ArgumentError) { PLAIN.new("user", "bad\0pass") }
assert_raise(ArgumentError) { PLAIN.new("u", "p", authzid: "bad\0authz") }
end
end