IETF Logo Mail Archive

Re: [kitten] SASL as authmode for HTTP and SIP

Ken Hornstein <kenh@pobox.com> Sat, 15 October 2022 00:45 UTC

Return-Path: <kenh@pobox.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 08997C14CE3E for <kitten@ietfa.amsl.com>; Fri, 14 Oct 2022 17:45:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.807
X-Spam-Level:
X-Spam-Status: No, score=-2.807 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=pobox.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Z0-hU-CkKjQb for <kitten@ietfa.amsl.com>; Fri, 14 Oct 2022 17:45:23 -0700 (PDT)
Received: from pb-smtp21.pobox.com (pb-smtp21.pobox.com [173.228.157.53]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6A9F8C14F73A for <kitten@ietf.org>; Fri, 14 Oct 2022 17:45:23 -0700 (PDT)
Received: from pb-smtp21.pobox.com (unknown [127.0.0.1]) by pb-smtp21.pobox.com (Postfix) with ESMTP id 622401C2CB1; Fri, 14 Oct 2022 20:45:19 -0400 (EDT) (envelope-from kenh@pobox.com)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=pobox.com; h=from:to:cc :subject:in-reply-to:references:mime-version:content-type:date :message-id; s=sasl; bh=eFhqyth0VoDN5VTZ2FgxYtQpkFrgMGLnErmZkC/1 Xco=; b=Z8exiTFtrC0GTencoevwO2IwSCetoOPG9urUYkse3+TpWbSgUucwn58b 3T2Ohjs7qFJWJl3iy9D4ztut9hzg6kpVDotTkgUu13z8f7i+jJhQc5bDnr1R8Fdm IGtLANyXz++pIo1igAbC2j/1dKmMpyiFjFh1ZqAVh+7TlDC8e8c=
Received: from pb-smtp21.sea.icgroup.com (unknown [127.0.0.1]) by pb-smtp21.pobox.com (Postfix) with ESMTP id 5B6F21C2CB0; Fri, 14 Oct 2022 20:45:19 -0400 (EDT) (envelope-from kenh@pobox.com)
Received: from pietro.internal (unknown [72.66.57.248]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by pb-smtp21.pobox.com (Postfix) with ESMTPSA id 91D431C2CAD; Fri, 14 Oct 2022 20:45:16 -0400 (EDT) (envelope-from kenh@pobox.com)
From: Ken Hornstein <kenh@pobox.com>
To: Stefan Marsiske <03cx8i55f6@ctrlc.hu>
cc: Rick van Rein <rick@openfortress.nl>, kitten@ietf.org
In-Reply-To: <Y0nxyhwV75SoBuvB@localhost>
References: <20221014171909.GB7961@openfortress.nl> <20221014231838.8881E16156F@pb-smtp2.pobox.com> <Y0nxyhwV75SoBuvB@localhost>
X-Face: "Evs"_GpJ]],xS)b$T2#V&{KfP_i2`TlPrY$Iv9+TQ!6+`~+l)#7I)0xr1>4hfd{#0B4 WIn3jU;bql;{2Uq%zw5bF4?%F&&j8@KaT?#vBGk}u07<+6/`.F-3_GA@6Bq5gN9\+s;_d gD\SW #]iN_U0 KUmOR.P<|um5yP<ea#^"SJK;C*}fMI;Mv(aiO2z~9n.w?@\>kEpSD@*e`
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Fri, 14 Oct 2022 20:45:14 -0400
X-Pobox-Relay-ID: A326D51C-4C22-11ED-9A3A-B31D44D1D7AA-90216062!pb-smtp21.pobox.com
Message-Id: <20221015004519.5B6F21C2CB0@pb-smtp21.pobox.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/kitten/bHwT-v8B-bpA1LkBGfks5AFhWEc>
Subject: Re: [kitten] SASL as authmode for HTTP and SIP
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 15 Oct 2022 00:45:28 -0000

>On Fri, Oct 14, 2022 at 07:18:37PM -0400, Ken Hornstein wrote:
>> >The HTTP-SASL spec is mature, and has been implemented for Apache (2x),
>> >Nginx and FireFox.
>
>the missing links:
>https://gitlab.com/arpa2/apachemod/-/tree/master/
>https://github.com/stef/ngx_http_auth_sasl_module/
>https://gitlab.com/arpa2/http_sasl_client

Thank you!  That fills in the missing pieces.

It seems like Manifest V3 supports Native Messaging via
chrome.runtime.connectNative() so in theory (if time was infinite)
you could do something similar for Chrome, right?  Or am I once again
missing something?

--Ken

v2.23.0 | Report a Bug | By Email