Messenger Express Auth SDK SSL Support
I have implemented the Auth SDK as documented in the Messenger Express Customization Guide (http://docs.sun.com/app/docs/doc/819-2653/6n4u79fce?a=view). Everything works over a plain unsecured HTTP connection. However, when I attempt to proxy authenticate to the web mail server with SSL enabled, things don't work. I did use EXP_SetHttpPort(443) to change the port to connect to, but instead of a webmail url that reads https://SERVER.DOMAIN/en/mail.html?sid=SESSIONID&lang=en I get a really long wait time (2 minutes), after a call to EXP_GenerateLoginURL(), and a url that reads http://SERVER.DOMAIN:443 with the status of success (0), ie. no errors are reported by the SDK.
The returned URL, looks to me, is just the SDK's guess as to where the user should login interactively because it was unable to proxy.
Notice that the protocol in the returned url is HTTP instead of HTTPS. This, along with the timeout, looks like it's not even trying SSL. Nowhere in the documentation have I been able to find how to enable SSL. So there are two questions here:
1. Is it possible to enable SSL support in the Auth SDK?
2. How do I enable SSL support in the Auth SDK?
I've been up and down these forums and google to no avail. Help is appreciated.
[1286 byte] By [
kamiljdka] at [2007-11-26 19:03:28]
# 2
The deeper I dig into this "SDK" the more obviously simplistic it appears to be in its "sophistication". If you provide a non existent username to proxy, ie. a username that does not have a mailbox on the mail server you are trying to proxy to, the URL which the SDK returns will put the browser at the default interactive login page for that mail server's web mail interface. That's cool except the error message, "Login incorrect", is accompanied with the ADMIN USER'S USERNAME IN THE USERNAME INPUT BOX! WTF!?
I was under the impression that SDKs were supposed to shorten your road to achieving something. It is beginning to look like it's going to take more lines of code to parse the URL, to make it usable, than there is in VISTA ;-(
I hope Sun support reads this friggin forum!
# 3
Hi,
> The deeper I dig into this "SDK" the more obviously
> simplistic it appears to be in its "sophistication".
> If you provide a non existent username to proxy, ie.
> a username that does not have a mailbox on the mail
> server you are trying to proxy to, the URL which the
> SDK returns will put the browser at the default
> interactive login page for that mail server's web
> mail interface. That's cool except the error
> message, "Login incorrect", is accompanied with the
> ADMIN USER'S USERNAME IN THE USERNAME INPUT BOX!
> WTF!?
This sounds like an issue which should be addressed. I suggest you log a Sun support call.
> I hope Sun support reads this friggin forum!
Reads sure... but if you expect there to be any kind of action with regards to improvement/updates of the SDK, then you should log a Sun support case.
I suspect that the Auth SDK is not used much by customers, so it would get very little developer attention with regards to enhancements. Support cases show the Sun developer groups that there is interest - squeaky wheel and all that.
Regards,
Shane.
