[Psi-devel] account defaults don't work for google talk
Justin Karneges
justin-psi2 at affinix.com
Fri Mar 2 01:13:47 PST 2007
On Friday 02 March 2007 12:03 am, Remko Tronçon wrote:
> Next question: is this implementable? I.e. is there a hook in our
> authentication code which allows us to abort or continue based on the
> selected mechanism. Justin?
Yes, QCA::SASL gives you the mechanism name it has selected, which we then
stick in an XML element and shoot to the server. It would take some Iris
hacking, but it should certainly be possible to ask a question and abort the
negotiation, without ever sending the selected mechanism (and potentially the
first SASL packet) to the server.
The messy part that I see is determining what counts as plaintext. I know of
PLAIN and LOGIN. Singling out mechanisms like this defeats the SASL
abstraction. What you might try is not using the AllowPlain flag (which then
fails, with no mechanism selected), and then try again with the flag enabled.
If a mechanism is selected on the second try, then it is probably plaintext,
and you can avoid checking explicit mechanism names.
-Justin
More information about the psi-devel
mailing list