Results 1 to 7 of 7

Thread: [SOLVED] Log into Zimbra directly passing variables ?

  1. #1
    claude is offline Member
    Join Date
    May 2009
    Posts
    10
    Rep Power
    6

    Default [SOLVED] Log into Zimbra directly passing variables ?

    Hello,

    What a nice day today!

    I'm putting Zimbra into a web appli made of tabbs containing lots of other applications. The aim is to allow a user to enter only one log and pw in order to enter the main appli and no more pw and log will be asked to him.

    All the other pws/logs of all the appli intagrated inside the main appli will be found elsewhere from a DB.

    1- The problem is to find a way to call Zimbra with known creadentials in order to connect to it transparently for the user of the main appli.

    2- The same question occurs when connecting to a calendar via a url like:

    http://zimbra.companyname.com
    /home/userownername@zimbra.companyname.com/
    MyAppliCalendar.htm

    Could it be possible to put arguments inside the url when calling the appli
    like -> http://.......myurl?log=mylog|pw=mypw

    Thank you for any help.
    Its quite a hot issue
    Claude
    Last edited by claude; 05-22-2009 at 02:24 AM.

  2. #2
    uxbod's Avatar
    uxbod is offline Moderator
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    24

  3. #3
    claude is offline Member
    Join Date
    May 2009
    Posts
    10
    Rep Power
    6

    Default

    Thank you,

    I've just tested the "Preauth" as suggested by you. It works fine but coul it be possible to not suppress the use of the pw to log?

    I mean, by the shared key and the mail address it is possible now to open any Zimbra mail account without knowing their pw.

    Do you know how I could add the Zimbra mail account's pw into the Zimbra's connection process in addition to the shared key ?

    Thank you.
    Claude

  4. #4
    uxbod's Avatar
    uxbod is offline Moderator
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    24

    Default

    Why ? unless you know the shared key then why would it be a issue ? Obviously you should *never* expose that key!!!

  5. #5
    claude is offline Member
    Join Date
    May 2009
    Posts
    10
    Rep Power
    6

    Default

    ...I perfectly agree. This is exchanging a secret (pw) for another (sec key).

    The fact is I wonder if there could be authentification tools more 'standardized' as for ex openid....or other working with Zimbra ?

    The idea is to abstract as much as possible the process of loggin for all the app embedded into the portail...as for example 'Highrise' accepting openid....

    Thank you.
    Claude

  6. #6
    uxbod's Avatar
    uxbod is offline Moderator
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    24

    Default

    Only things like AD or another LDAP server. If you have everything setup in a external LDAP and all your other portals apps will authenticate to it you can use pre-auth fine. I take your point though and so do others so please vote for Bug 17147 - OpenID

  7. #7
    claude is offline Member
    Join Date
    May 2009
    Posts
    10
    Rep Power
    6

    Default

    We have an LDAP available :-) . So this will probably be the solution for the moment.

    Many thanx for your nice help.
    Claude

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Zimbra spam system
    By rajahd in forum Administrators
    Replies: 9
    Last Post: 04-16-2008, 07:25 PM
  2. Replies: 12
    Last Post: 02-25-2008, 07:28 PM
  3. /tmp filling
    By Nutz in forum Administrators
    Replies: 8
    Last Post: 02-22-2008, 02:00 AM
  4. Major Issue - 5.0RC2 NE to 5.0GA NE failed
    By DougWare in forum Installation
    Replies: 7
    Last Post: 01-06-2008, 09:56 PM
  5. Cleanup after many upgrades
    By tobru in forum Installation
    Replies: 1
    Last Post: 12-23-2007, 09:21 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •