mirror of
https://github.com/0rangebananaspy/authelia.git
synced 2024-09-14 22:47:21 +07:00
Added sec warn, more debug logging detail
- Added a warning for users who attempt authentication on servers that don't allow STARTTLS (they are transmitted in plain text) - Included a note when AUTH fails due to no supported mechanisms including the mechanisms supported (PLAIN and LOGIN)
This commit is contained in:
parent
c4b56a6002
commit
6e946dc859
|
@ -71,6 +71,9 @@ func (n *SMTPNotifier) Send(recipient string, subject string, body string) error
|
||||||
|
|
||||||
// Attempt AUTH if password is specified only
|
// Attempt AUTH if password is specified only
|
||||||
if n.password != "" {
|
if n.password != "" {
|
||||||
|
if !starttls {
|
||||||
|
log.Warn("Authentication is being attempted over an insecure connection. Using a SMTP server that supports STARTTLS is recommended, especially if the server is not on your local network (username and pasword are being transmitted in plain-text).")
|
||||||
|
}
|
||||||
|
|
||||||
// Check the server supports AUTH, and get the mechanisms
|
// Check the server supports AUTH, and get the mechanisms
|
||||||
authExtension, m := c.Extension("AUTH")
|
authExtension, m := c.Extension("AUTH")
|
||||||
|
@ -90,7 +93,7 @@ func (n *SMTPNotifier) Send(recipient string, subject string, body string) error
|
||||||
|
|
||||||
// Throw error since AUTH extension is not supported
|
// Throw error since AUTH extension is not supported
|
||||||
if auth == nil {
|
if auth == nil {
|
||||||
return fmt.Errorf("SMTP server does not advertise a AUTH mechanism that Authelia supports. Advertised mechanisms: %s.", m)
|
return fmt.Errorf("SMTP server does not advertise a AUTH mechanism that Authelia supports (PLAIN or LOGIN). Advertised mechanisms: %s.", m)
|
||||||
}
|
}
|
||||||
|
|
||||||
// Authenticate
|
// Authenticate
|
||||||
|
|
Loading…
Reference in New Issue
Block a user