summaryrefslogtreecommitdiff
path: root/imap/src/c-client
AgeCommit message (Collapse)Author
2021-05-08 * Clear out some gcc warnings, and code improvement. Work in progress.Eduardo Chappa
2021-04-29 * Crash in the ntlm authenticator when no domain was specified in theEduardo Chappa
username. Reported and fixed by Anders Skargren.
2021-04-17 * Add new variable ssl-ciphers to list the ciphers that will be used whenEduardo Chappa
negotiating a secure connection with a SSL server. Work in collaboration with professor Martin Trusler.
2021-04-10 * New alpha version 2.24.1Eduardo Chappa
2021-04-04 * http debug support sets debug flag before checking if stream is open and ↵Eduardo Chappa
might be closed.
2021-03-28 * Many spelling errors corrected by Jens Schleusener. Thank you!Eduardo Chappa
2021-03-27 * Remove the ability to choose between the device and authorize methodsEduardo Chappa
to login to outlook, since the original client-id can only be used for the device method. One needs a special client-id and client-secret to use the authorize method in Outlook.
2021-03-27 * new http option for debug. This is mostly useful to debug XOAUTH2Eduardo Chappa
autentication and reveals sensitive login information. Use with care. Remove your .pine-debug file after using this option.
2021-02-25 * Updates to old port for HP-UX 9.X, after work with Martin Trusler.Eduardo Chappa
2020-11-23 * Add support for the base64 URL encoding.Eduardo Chappa
2020-11-01 * The previous commit does not allow clients to login using xoauth2, soEduardo Chappa
this commit fixes that.
2020-11-01 * Improvements to the cancel authentication logic to not to make itEduardo Chappa
have a delay when cancelling authentication.
2020-10-03 * Set up the IMAP ID at the moment of loging in to the server, rather thanEduardo Chappa
as a one time option, in case we need to use a special IMAP ID.
2020-08-29 * When a server expires a refresh token, Alpine needs to cancel itEduardo Chappa
internally. * Fixes to some prototyping for code related to authentication. * Fixes to documentation contributed by Dennis Davis.
2020-08-27 * Ignore non-empty initial challenge in the GSSAPI authenticator.Eduardo Chappa
Some SMTP servers send a non-empty initial challenge, causing Alpine to cancel the authentication (in accordance to RFC). Patch was submitted by Ignacio Reguero, but written by Jarek Polok, to the re-alpine project (see https://sourceforge.net/p/re-alpine/bugs/16/) Patch was resubmitted here, but the code was modified in an equivalent but different way.
2020-07-28 * XOAUTH2: automatic renew of access token and connection to a serverEduardo Chappa
within 60 seconds of expiration of the access token.
2020-07-18 * Addition of the variables User Certs Dir and User Certs File, which allowEduardo Chappa
a user to specify the location of server certificates that the user trusts.
2020-07-09 * Add choice of Authorization flow to Alpine. Alpine supports two ways to getEduardo Chappa
authorization to read email. One is called "Authorize" and the other "Device". Some servers support both, some only one. For servers that support both, Alpine will ask if it does not know which method to choose. Inspired by a conversation with Pieter Jacques.
2020-07-02 * Fix some compilation warnings in Windows. Reported by Barry Landy.Eduardo Chappa
2020-06-29 * Modifications to protect the privacy of users:Eduardo Chappa
+ Alpine does not generate Sender or X-X-Sender by default by making [X] Do Not Generate Sender Header the default. + Alpine does not disclose User Agent by default by making [X] Suppress User Agent When Sending the default. + Alpine uses the domain in the From: header of a message to generate a message-id and suppresses all information about Alpine, version, revision, and time of generation of the message-id from this header. This information is replaced by a random string.
2020-06-26 * When Alpine starts a PREAUTH connection, it might still ask the userEduardo Chappa
to login. Reported by Frank Tobin.
2020-06-26 * Expansion of the configuration screen for XOAUTH2 to includeEduardo Chappa
username, and tenant. * If a user has more than one client-id for a service, Alpine tries to asks the user which client-id to use and associates that client-id to the credentials in the XOAUTH2 configuration screen.
2020-06-18 * Crash if Privacy Policy is not accessible.Eduardo Chappa
2020-06-18 * Compilation error in Alpine when using the ntlm authenticator.Eduardo Chappa
Reported by Marco Beishuizen.
2020-06-18 * Security Bug: Alpine can be configured to start a secure connection ↵Eduardo Chappa
using /tls on an insecure connection. However, if the connection is PREAUTH, Alpine will not upgrade the connection to a secure connection, because a client must not issue a STARTTLS to a server that supports it in authenticated state. This makes Alpine continue to use an insecure connection with the server, exposing user data. Reported by Damian Poddebniak and Fabian Ising, from Münster University of Applied Sciences.
2020-06-12 * Additional addition of doucmentation for XOAUTH2, some fixes in the ↵Eduardo Chappa
documentation, fixes in the configuration screen, and documentation on what is needed in each structure defining each service.
2020-06-12 * Initial implementation of XOAUTH2 authentication support for Outlook.Eduardo Chappa
Based on documentation suggested by Andrew C Aitchison.
2020-06-08 * Corrections to spelling errors, contributed by Jens Schleusener.Eduardo Chappa
2020-06-08 * Remove some compilation warnings given by clang7.Eduardo Chappa
2020-06-08 * Remove some compilation warnings given by gcc9.Eduardo Chappa
2020-05-21 * Update to some http_* functions to return status code returned by server.Eduardo Chappa
2020-05-18 * Further modifications to http.c to account for differences in which ↵Eduardo Chappa
http replies can come, so that http_* functions return the body and not the headers of a reply.
2020-05-18 * A few improvements to the http code, which make the http_* functions not ↵Eduardo Chappa
return the headers of a http reply. So, http_get returns the text retrieved retrieverd, without headers. This allows for simplification of the mm_login_oauth2_c_client function.
2020-05-14 * Create /starttls as a synonym of /tls. Update the documentation to useEduardo Chappa
/starttls instead of /tls. This should cause less confusion in Alpine users in the future.
2020-05-13 * Avoid error messages or tcp timeouts when cancelling imap authentication.Eduardo Chappa
2020-05-13 * Clear a few compilations warnings, produced by gcc.Eduardo Chappa
2020-05-11 * When using single trip authenticators, still report we used them,Eduardo Chappa
even though we do not report the full command used.
2020-05-09 * Several improvements to Alpine's support of XOAUTH2. In the case of Gmail,Eduardo Chappa
a text explaining the basic steps on how to configure fully Alpine with Gmail was added. In addition, some issues introduced while included OAUTHBEARER were also fixed.
2020-05-08 * Bug prevented development version from establishing a XOAUTH2 ↵Eduardo Chappa
authentication.
2020-02-20 * Remove debug information in net_soutr(), which makes Alpine printEduardo Chappa
extra debug information as messages in the screen.
2020-02-19 * Correct the NTLM authenticator to make sure Alpine compiles whenEduardo Chappa
support for the NTLM authenticator is compiled into Alpine.
2020-02-19 * Added support for SALS-IR (rfc 4959) and similar support for otherEduardo Chappa
protocols (SMTP, NNTP, POP3) as some SMTP servers do not support a round-trip two step authentication. For example, davmail does not support PLAIN authentication in SMTP using the challenge-response scheme. Implemented after a report by Geoffrey Bodwin.
2020-02-03 * Add variable system-certs-file to indicate the location of a containerEduardo Chappa
of CA certificates. This complements the variable system-certs-path that gives the location the directory that containes CA certificates.
2020-01-26 * Add the file imap/src/c-client/auth_bea.c, needed for the compilationEduardo Chappa
of Alpine. Reported by Bob Bernstein.
2020-01-26 * Add support for the OAUTHBEARER authentication method in Gmail. Thanks toEduardo Chappa
Alexander Perlis for suggesting it and explaining how the method works.
2020-01-19 * Initial release of Alpine version 2.22.Eduardo Chappa
2020-01-18 * Various fixes to copyright notices, make sure we allocate enoughEduardo Chappa
memory in file http.c, and move Pico version to 5.10.
2020-01-17 * Add file imap/src/osdep/nt/nt_libressl.c, which is useful to buildEduardo Chappa
the windows version of Alpine in a 32-bit environment.
2020-01-15 * Fix a number of misspellings in the source code of Alpine. I hav onlyEduardo Chappa
fixed those that belong to the source code of Alpine and do not come from an external source. List contributed by Jens Schleusener.
2020-01-15 * Add configuration screen for XOAUTH, so users can configure their ownEduardo Chappa
client-id and client-secret information.