# local exim is SMTP server and clients authenticate to the local exim.
# They allow two styles of plain-text authentication against an
-# CONFDIR/passwd file whose syntax is described in exim_passwd(5).
+# CONFDIR/passwd file whose syntax is described in exim4_passwd(5).
# Hosts that are allowed to use AUTH are defined by the
# auth_advertise_hosts option in the main configuration. The default is
client_name = ${extract{1}{:}{${lookup{$host}nwildlsearch{CONFDIR/passwd.client}{$value}fail}}}
client_secret = ${extract{2}{:}{${lookup{$host}nwildlsearch{CONFDIR/passwd.client}{$value}fail}}}
-# hcoop-change: Authenticate against /etc/courier/exim.dat for plain
-# and login authenticators
+# hcoop-change: Authenticate against either /etc/courier/exim.dat or
+# SASL for plain and login authenticators
-userdb_plain:
+hcoop_plain:
driver = plaintext
public_name = PLAIN
+ server_prompts = :
server_condition = \
- ${if \
- crypteq {$3} \
- {${extract{systempw}{${tr{${lookup{$2} \
+ ${if or {{crypteq {$auth3} \
+ {${extract{systempw}{${tr{${lookup{$auth2} \
dbm{/etc/courier/exim.dat} \
- }}{|}{ }}}}} \
- {yes} \
- {no} \
- }
- server_set_id = $2
+ }}{|}{ }}}}}} \
+ {saslauthd {{$auth2}{$auth3}{exim4}}}}}
+ server_set_id = $auth2
+ server_advertise_condition = ${if eq{$tls_cipher}{}{}{*}}
-userdb_login:
+hcoop_login:
driver = plaintext
public_name = LOGIN
server_prompts = "Username:: : Password::"
server_condition = \
- ${if \
- crypteq {$2} \
- {${extract{systempw}{${tr{${lookup{$1} \
+ ${if or {{crypteq {$auth2} \
+ {${extract{systempw}{${tr{${lookup{$auth1} \
dbm{/etc/courier/exim.dat} \
- }}{|}{ }}}}} \
- {yes} \
- {no} \
- }
- server_set_id = $1
+ }}{|}{ }}}}}} \
+ {saslauthd {{$auth1}{$auth2}{exim4}}}}}
+ server_set_id = $auth1
+ server_advertise_condition = ${if eq{$tls_cipher}{}{}{*}}
# this returns the matching line from passwd.client and doubles all ^
PASSWDLINE=${sg{\