This means that there is no choice for an administrator who might want to distribute users to the domains _only_ according to the IP address of the server that users connect to? I would not like my users to have the ability to choose a domain only by appending a @domain to their userid.
But authentication should fail in this case, unless the user's in two different domains have the same userid and password.
Are there any negatives consequences for implementing a byipaddress only option too?
Don't know. Rob and I wondered what would be the reasonable thing to do if byipaddess was configured and a user used a fully qualified userid to log in.
I would like to see it implemented in cyrus, if this is not a problem.
Its not a problem to implement it. I'd like to get some more discussion on how the two methods can/should interact.
Ken Murchison wrote:
I just committed some code to CVS which changes the virtdomains option from a SWITCH to an ENUM having 3 options:
off/no/0/false/f (disabled) userid (fully qualified userids only) on/yes/1/true/t (current behavior)
What this means (hopefully) is that existing installations of 2.2 code (whether virtdomains is enabled or not) should be unaffected. Those that don't want the reverse IP address lookup can use the "userid" option.
-- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key-- http://www.oceana.com/~ken/ksm.pgp
