Support SSL for IMAP authentication

Based on Nikita Koshikov's commit: https://github.com/interlegis/Radicale/commit/000fc2a
2013-04-26 00:56:56 +02:00 · 2013-04-26 00:56:56 +02:00 · 2738d10830
commit 2738d10830
parent a01e4d18e1
3 changed files with 20 additions and 8 deletions
--- a/7
+++ b/7
@ -38,7 +38,7 @@ stock = utf-8

 [auth]
 # Authentication method
-# Value: None | htpasswd | LDAP | PAM | courier
+# Value: None | htpasswd | IMAP | LDAP | PAM | courier
 type = None

 # Usernames used for public collections, separated by a comma
@ -71,6 +71,11 @@ ldap_password =
 # LDAP scope of the search
 ldap_scope = OneLevel

+# IMAP Configuration
+imap_hostname = localhost
+imap_port = 143
+imap_ssl = False
+
 # PAM group user should be member of
 pam_group_membership =

--- a/radicale/auth/IMAP.py
+++ b/radicale/auth/IMAP.py
@ -34,20 +34,26 @@ import imaplib

 from .. import config, log

-IMAP_SERVER = config.get("auth", "imap_auth_host_name")
-IMAP_SERVER_PORT = config.get("auth", "imap_auth_host_port")
+IMAP_SERVER = config.get("auth", "imap_hostname")
+IMAP_SERVER_PORT = config.get("auth", "imap_port")
+IMAP_USE_SSL = config.get("auth", "imap_ssl")


 def is_authenticated(user, password):
    """Check if ``user``/``password`` couple is valid."""

    log.LOGGER.debug(
-        "[IMAP AUTH] Connecting to %s:%s." % (IMAP_SERVER, IMAP_SERVER_PORT,))
-    connection = imaplib.IMAP4(host=IMAP_SERVER, port=IMAP_SERVER_PORT)
+        "Connecting to IMAP server %s:%s." % (IMAP_SERVER, IMAP_SERVER_PORT,))
+
+    connection_is_secure = False
+    if IMAP_USE_SSL:
+        connection = imaplib.IMAP4_SSL(host=IMAP_SERVER, port=IMAP_SERVER_PORT)
+        connection_is_secure = True
+    else:
+        connection = imaplib.IMAP4(host=IMAP_SERVER, port=IMAP_SERVER_PORT)

    server_is_local = (IMAP_SERVER == "localhost")

-    connection_is_secure = False
    try:
        connection.starttls()
        log.LOGGER.debug("IMAP server connection changed to TLS.")
--- a/radicale/config.py
+++ b/radicale/config.py
@ -55,8 +55,9 @@ INITIAL_CONFIG = {
        "private_users": "private",
        "htpasswd_filename": "/etc/radicale/users",
        "htpasswd_encryption": "crypt",
-        "imap_auth_host_name": "localhost",
-        "imap_auth_host_port": "143",
+        "imap_hostname": "localhost",
+        "imap_port": "143",
+        "imap_ssl": "False",
        "ldap_url": "ldap://localhost:389/",
        "ldap_base": "ou=users,dc=example,dc=com",
        "ldap_attribute": "uid",