В Чтв, 19/04/2012 в 10:04 -0300, Federico Alberto Sayd пишет: > Hello > > I am trying to integrate a jabber chat client into SOGo[1]. Both jabber > server (openfire) and SOGo uses the same authentication backend (ldap). > > I load the chat client that is a javascript aplication modifying the > UIxPageFrame.wox template in the sogo user home and including the javascript > > My question is if is there any method to retrieve user and password from > session and then pass them to javascript to authenticate the user in the > chat server? > > Thanks for any answer
Passing username/password server-side to client-side (sogo->js) is a bad idea because of the security of js. We've recently implemented js chat client in portal, we used this technic: 1. Loging to portal, retrieve OTP 2. Use this OTP to login to XMPP 3. Rewrite auth plugin to check OTP first and in case of failure also check pass -- [email protected] https://inverse.ca/sogo/lists
