Index Index for
Section 3
Index Alphabetical
listing for S
Bottom of page Bottom of
page		 

sasl_server_new(3)


NAME

  sasl_server_new - Create a new server authentication object


SYNOPSIS

  #include <sasl.h>

  int sasl_server_new(
	  const char *service,
	  const char *local_domain,
	  const char *user_domain,
	  const sasl_callback_t *callbacks,
	  int secflags,
	  sasl_conn_t **pconn);


DESCRIPTION

  sasl_server_new creates a new SASL context. This context will be used for
  all SASL calls for one connection. It handles both authentication and
  integrity/encryption layers after authentication.

  service is the registered name of the service (usually the protocol name)
  using SASL (e.g. "imap").  local_domain is the domain that the server
  wishes to support.  user_domain is the domain of the user agent. This is
  usually not necessary.  secflags are security flags (see below).  pconn is
  the connection context allocated by the library. This structure will be
  used for all future SASL calls for this connection.

  Security Flags

  Security flags that may be passed to sasl_server_new include:

  NOPLAINTEXT
       Don't permit mechanisms susceptible to simple passive attack (e.g.
       PLAIN, LOGIN)

  NOACTIVE
       Protection from active (non-dictionary) attacks during authentication
       exchange.  Authenticates server.

  NODICTIONARY
       Don't permit mechanisms susceptible to passive dictionary attack

  FORWARD_SECURITY
       Require forward secrecy between sessions (breaking one won't help
       break next)

  PASS_CREDENTIALS
       Require mechanisms which pass client credentials, and allow mechanisms
       which can pass credentials to do so.


RETURN VALUE

  sasl_server_new returns an integer which corresponds to one of the
  following codes. SASL_OK is the only one that indicates success. All others
  indicate errors and should either be handled or the authentication session
  should be quit.


ERRORS

  SASL_OK
       Success

  SASL_BADVERS
       Mechanism version mismatch

  SASL_BADPARAM
       error in config file

  SASL_NOMEM
       not enough memory to complete operation


CONFORMING TO

  RFC 2222


SEE ALSO

  sasl(3), sasl_errors(3), sasl_server_init(3), sasl_server_start(3),
  sasl_server_step(3), sasl_setprop(3)

Index Index for
Section 3
Index Alphabetical
listing for S
Top of page Top of
page