Page MenuHomePhorge
Files F120824254

kolab_smtp_access_policy.py
No OneTemporary
Actions

Authored By
Unknown
Size
34 KB
Referenced Files
None
Subscribers
None

kolab_smtp_access_policy.py
View Options

#!/usr/bin/python
#
# Copyright 2010-2011 Kolab Systems AG (http://www.kolabsys.com)
#
# Jeroen van Meeuwen (Kolab Systems) <vanmeeuwen a kolabsys.com>
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; version 3 or, at your option, any later version
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU Library General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
#
import datetime
import os
import sys
import time
from optparse import OptionParser
from ConfigParser import SafeConfigParser
cache = None
import sqlalchemy
from sqlalchemy import Boolean
from sqlalchemy import Column
from sqlalchemy import Date
from sqlalchemy import DateTime
from sqlalchemy import Integer
from sqlalchemy import MetaData
from sqlalchemy import String
from sqlalchemy import Table
from sqlalchemy import create_engine
from sqlalchemy.orm import mapper
try:
from sqlalchemy.orm import sessionmaker
except:
from sqlalchemy.orm import create_session
from sqlalchemy.schema import Index
from sqlalchemy.schema import UniqueConstraint
sys.path.append('..')
sys.path.append('../..')
import pykolab
from pykolab.auth import Auth
from pykolab.constants import KOLAB_LIB_PATH
from pykolab.translate import _
# TODO: Figure out how to make our logger do some syslogging as well.
log = pykolab.getLogger('pykolab.smtp_access_policy')
# TODO: Removing the stdout handler would mean one can no longer test by
# means of manual execution in debug mode.
#log.remove_stdout_handler()
conf = pykolab.getConf()
auth = Auth()
#
# Caching routines using MySQL-python.
#
# If creating the cache fails, we continue without any caching, significantly
# increasing the load on LDAP.
#
cache_expire = 3600
try:
metadata = MetaData()
except:
cache = False
session = None
policy_result_table = Table(
'policy_result', metadata,
Column('id', Integer, primary_key=True),
Column('key', String(16), nullable=False),
Column('value', Boolean, nullable=False),
Column('sender', String(64), nullable=False),
Column('recipient', String(64), nullable=False),
Column('sasl_username', String(64)),
Column('sasl_sender', String(64)),
Column('created', Integer, nullable=False),
)
Index(
'fsrss',
policy_result_table.c.key,
policy_result_table.c.sender,
policy_result_table.c.recipient,
policy_result_table.c.sasl_username,
policy_result_table.c.sasl_sender,
unique=True
)
class PolicyResult(object):
def __init__(
self,
key=None,
value=None,
sender=None,
recipient=None,
sasl_username=None,
sasl_sender=None
):
self.key = key
self.value = value
self.sender = sender
self.sasl_username = sasl_username
self.sasl_sender = sasl_sender
self.recipient = recipient
self.created = (int)(time.time())
mapper(PolicyResult, policy_result_table)
statistic_table = Table(
'statistic', metadata,
Column('id', Integer, primary_key=True),
Column('sender', String(64), nullable=False),
Column('recipient', String(64), nullable=False),
Column('date', Date, nullable=False),
Column('count', Integer, nullable=False),
)
Index(
'srd',
statistic_table.c.sender,
statistic_table.c.recipient,
statistic_table.c.date,
unique=True
)
class Statistic(object):
def __init__(self, sender, recipient, date=datetime.date.today(), count=0):
self.sender = sender
self.recipient = recipient
self.date = date
self.count = count
mapper(Statistic, statistic_table)
def cache_cleanup():
if not cache == True:
return
log.debug(_("Cleaning up the cache"), level=8)
session.query(
PolicyResult
).filter(
PolicyResult.created < ((int)(time.time()) - cache_expire)
).delete()
def cache_init():
global cache, cache_expire, session
if conf.has_section('kolab_smtp_access_policy'):
if conf.has_option('kolab_smtp_access_policy', 'uri'):
cache_uri = conf.get('kolab_smtp_access_policy', 'uri')
cache = True
if conf.has_option('kolab_smtp_access_policy', 'retention'):
cache_expire = (int)(conf.get('kolab_smtp_access_policy', 'retention'))
else:
return False
else:
return False
engine = create_engine(cache_uri, echo=True)
try:
metadata.create_all(engine)
except sqlalchemy.exc.OperationalError, e:
log.error(_("Operational Error in caching: %s" %(e)))
return False
Session = sessionmaker(bind=engine)
session = Session()
return cache
def cache_select(sender, recipient, function, sasl_username='',sasl_sender=''):
if not cache == True:
return None
return session.query(
PolicyResult
).filter_by(
key=function,
sender=sender,
recipient=recipient,
sasl_username=sasl_username,
sasl_sender=sasl_sender
).filter(
PolicyResult.created >= ((int)(time.time()) - cache_expire)
).first()
def cache_insert(sender, recipient, function, result, sasl_username='',sasl_sender=''):
if not cache == True:
return []
log.debug(_("Caching the policy result with timestamp %d") %((int)(time.time())), level=8)
cache_cleanup()
session.add(
PolicyResult(
key=function,
value=result,
sender=sender,
recipient=recipient,
sasl_username=sasl_username,
sasl_sender=sasl_sender
)
)
if result == 1:
if not sasl_username == "":
stat_update(sasl_username, recipient)
else:
stat_update(sender, recipient)
session.commit()
def stat_update(sender, recipient):
if not cache == True:
return
statistic = session.query(
Statistic
).filter_by(
sender=parse_address(sender),
recipient=parse_address(recipient),
date=datetime.date.today()
).first()
if not statistic == None:
statistic.count += 1
else:
session.add(
Statistic(
sender=parse_address(sender),
recipient=parse_address(recipient),
date=datetime.date.today(),
count=1
)
)
session.commit()
def defer_if_permit(message, policy_request=None):
log.info(_("Returning action DEFER_IF_PERMIT: %s") %(message))
print "action=DEFER_IF_PERMIT %s\n\n" %(message)
def dunno(message, policy_request=None):
log.info(_("Returning action DUNNO: %s") %(message))
print "action=DUNNO %s\n\n" %(message)
def hold(message, policy_request=None):
log.info(_("Returning action HOLD: %s") %(message))
print "action=HOLD %s\n\n" %(message)
def permit(message, policy_request=None):
log.info(_("Returning action PERMIT: %s") %(message))
print "action=PERMIT\n\n"
def reject(message, policy_request=None):
log.info(_("Returning action REJECT: %s") %(message))
print "action=REJECT %s\n\n" %(message)
def parse_address(email_address):
"""
Parse an address; Strip off anything after a recipient delimiter.
"""
# TODO: Recipient delimiter is configurable.
if len(email_address.split("+")) > 1:
# Take the first part split by recipient delimiter and the last part
# split by '@'.
return "%s@%s" %(
email_address.split("+")[0],
# TODO: Under some conditions, the recipient may not be fully
# qualified. We'll cross that bridge when we get there, though.
email_address.split('@')[1]
)
else:
return email_address
def parse_policy(sender, recipient, policy):
# TODO: A future feature is to allow special values to be expanded
#special_rule_values = {
# '$mydomains': 'expand_mydomains'
# ]
rules = { 'allow': [], 'deny': [] }
for rule in policy:
if rule.startswith("-"):
rules['deny'].append(rule[1:])
else:
rules['allow'].append(rule)
#print "From:", sender, "To:", recipient, "Rules:", rules
allowed = False
for rule in rules['allow']:
# TODO: Example implementation of getting the special values to expand.
# Note that the append works to extend the for loop.
#if rule in special_rule_values:
## TODO: Expand the special rule value and do something
## intelligent.
#if rule == '$mydomains':
#mydomains = auth.list_domains()
#for mydomain in mydomains:
#rules['allow'].append(mydomain)
#continue
deny_override = False
if recipient.endswith(rule):
#print "Matched allow rule:", rule
for deny_rule in rules['deny']:
if deny_rule.endswith(rule):
deny_override = True
if not deny_override:
allowed = True
denied = False
for rule in rules['deny']:
allow_override = False
if recipient.endswith(rule):
#print "Matched deny rule:", rule
if not allowed:
denied = True
continue
else:
for allow_rule in rules['allow']:
if allow_rule.endswith(rule):
allow_override = True
if not allow_override:
denied = True
if not denied:
allowed = True
return allowed
def read_request_input():
"""
Read a single policy request from sys.stdin, and return a dictionary
containing the request.
"""
policy_request = {}
end_of_request = False
while not end_of_request:
request_line = sys.stdin.readline().strip()
if request_line == '':
end_of_request = True
else:
policy_request[request_line.split('=')[0]] = \
'='.join(request_line.split('=')[1:]).lower()
return policy_request
def verify_alias(policy_request, sender_domain, sender_user):
sender_uses_alias = None
search_attrs = conf.get_list(
'kolab_smtp_access_policy',
'address_search_attrs'
)
print search_attrs
sender_aliases = auth.get_user_attributes(
sender_domain,
sender_user,
search_attrs
)
# We get back a normalized dictionary
for key in sender_aliases.keys():
if type(sender_aliases[key]) == list:
if policy_request['sender'] in sender_aliases[key]:
sender_uses_alias = True
break
else:
if policy_request['sender'] == sender_aliases[key]:
sender_uses_alias = True
break
return sender_uses_alias
def verify_delegate(policy_request, sender_domain, sender_user):
"""
Use the information passed along to determine whether the authenticated
user can send on behalf of the envelope sender, using the kolabDelegate
attribute value on the envelope sender's LDAP object.
Returns True in case the user is a delegate of the sender, and False in
case the user is NOT a delegate of the sender.
"""
sender_is_delegate = None
# TODO: Whether or not a domain name is in the sasl_username depends on
# whether or not a default realm is specified elsewhere. In other words,
# only attempt to do this and fall back to the primary_domain configured
# for Kolab.
sasl_domain = policy_request['sasl_username'].split('@')[1]
sender_delegates = auth.get_user_attribute(
sender_domain,
sender_user,
'kolabDelegate'
)
if sender_delegates == None:
# No delegates for this sender could be found. The user is definitely
# NOT a delegate of the sender.
log.warning(
_("User %s attempted to use envelope sender address %s without " + \
"authorization") %(
policy_request["sasl_username"],
policy_request["sender"]
)
)
# Got a final answer here, do the cachking thing.
if not cache == False:
result = cache_select(
sender=policy_request['sender'],
recipient=policy_request['recipient'],
sasl_username=policy_request['sasl_username'],
sasl_sender=policy_request['sasl_sender'],
function='verify_sender'
)
if result == None:
record_id = cache_insert(
policy_request['sender'],
policy_request['recipient'],
'verify_sender',
(int)(False),
sasl_username=policy_request['sasl_username'],
sasl_sender=policy_request['sasl_sender']
)
sender_is_delegate = False
else:
# See if we can match the value of the envelope sender delegates to
# the actual sender sasl_username
sasl_user = {
'dn': auth.find_user(
# TODO: Use the configured cyrus-sasl result attribute.
'mail',
parse_address(policy_request['sasl_username']),
domain=sasl_domain
)
}
# Possible values for the kolabDelegate attribute are:
# a 'uid', a 'dn'.
sasl_user['uid'] = auth.get_user_attribute(
sasl_domain,
sasl_user,
'uid'
)
if not type(sender_delegates) == list:
sender_delegates = [ sender_delegates ]
for sender_delegate in sender_delegates:
if sasl_user['dn'] == sender_delegate:
log.debug(
_("Found user %s to be a valid delegate user of %s") %(
policy_request["sasl_username"],
policy_request["sender"]
),
level=8
)
sender_is_delegate = True
elif sasl_user['uid'] == sender_delegate:
log.debug(
_("Found user %s to be a valid delegate user of %s") %(
policy_request["sasl_username"],
policy_request["sender"]
),
level=8
)
sender_is_delegate = True
# If nothing matches sender_is_delegate is still None.
if not sender_is_delegate == True:
sender_is_delegate = False
return sender_is_delegate
def verify_domain(domain):
"""
Verify whether the domain is internal (mine) or external.
"""
domain_verified = False
_mydomains = auth.list_domains()
for primary, secondaries in _mydomains:
if primary == domain:
domain_verified = True
elif domain in secondaries:
domain_verified = True
if domain_verified == None:
domain_verified = False
return domain_verified
def verify_quota(policy_request):
"""
Verify the quota usage for this user.
Attempt to find a folder annotated with Kolab mail.sentitems
Attempt to find a folder with \Sent SPECIAL-USE flag
Use INBOX quota
If above $x percent, bail out. Get $x from the configuration.
If spare space below $y, bail out. Get $y from the policy request.
Typically only used when sending through submission, or when receiving.
"""
global policy_done
if policy_request['sasl_username'] == '':
return True
# TODO: Under some conditions, the recipient may not be fully qualified.
# We'll cross that bridge when we get there, though.
domain = policy_request['sasl_username'].split('@')[1]
# Get the quota setting,
if conf.has_section('kolab_smtp_access_policy'):
if conf.has_option('kolab_smtp_access_policy', 'max_quota_percentage'):
max_quota_percentage = conf.get(
'kolab_smtp_access_policy',
'max_quota_percentage'
)
else:
max_quota_percentage = 101
else:
max_quota_percentage = 101
if verify_domain(domain):
if auth.secondary_domains.has_key(domain):
log.debug(_("Using authentication domain %s instead of %s") %(auth.secondary_domains[domain],domain), level=8)
domain = auth.secondary_domains[domain]
else:
log.debug(_("Domain %s is a primary domain") %(domain), level=8)
else:
log.warning(
_("Checking the recipient for domain %s that is not " + \
"ours. This is probably a configuration error.") %(domain)
)
return True
# Attr search list
search_attrs = conf.get_list(
'kolab_smtp_access_policy',
'address_search_attrs'
)
# Find the user,
user = {
'dn': auth.find_user(
search_attrs,
parse_address(policy_request['sasl_username']),
domain=domain,
# TODO: Get the filter from the configuration.
additional_filter="(&(objectclass=kolabinetorgperson)%(search_filter)s)"
)
}
# Find the mailbox,
mailbox = auth.get_user_attribute(conf.get('cyrus-sasl', 'result_attribute'))
# Get the quota,
(used,current_quota) = self.imap.lq('user/%s' %(folder))
# Compare, and smile or shoot.
if (current_quota - used) <= policy_request['size']:
policy_done = True
reject(_("Not enough storage"))
return False
return True
def verify_recipient(policy_request):
"""
Verify whether the sender is allowed send to this recipient, using the
recipient's kolabAllowSMTPSender.
"""
global policy_done
if not policy_request['sasl_username'] == '':
log.info(_("Verifying authenticated sender '%(sender)s' with " + \
"sasl_username '%(sasl_username)s' for recipient " + \
"'%(recipient)s'") %(policy_request)
)
else:
log.info(_("Verifying unauthenticated sender '%(sender)s' " + \
"for recipient '%(recipient)s'") %(policy_request)
)
recipient_verified = False
if not cache == False:
record = cache_select(
sender=policy_request['sender'],
recipient=policy_request['recipient'],
sasl_username=policy_request['sasl_username'],
sasl_sender=policy_request['sasl_sender'],
function='verify_recipient'
)
if not record == None:
log.info(_("Reproducing verify_recipient(%r) from cache, " + \
"saving you queries, time and thus money.") %(
policy_request
)
)
return record.value
# TODO: Under some conditions, the recipient may not be fully qualified.
# We'll cross that bridge when we get there, though.
domain = policy_request['recipient'].split('@')[1]
if verify_domain(domain):
if auth.secondary_domains.has_key(domain):
log.debug(_("Using authentication domain %s instead of %s") %(auth.secondary_domains[domain],domain), level=8)
domain = auth.secondary_domains[domain]
else:
log.debug(_("Domain %s is a primary domain") %(domain), level=8)
else:
log.warning(
_("Checking the recipient for domain %s that is not " + \
"ours. This is probably a configuration error.") %(domain)
)
return True
search_attrs = conf.get_list(
'kolab_smtp_access_policy',
'address_search_attrs'
)
user = {
'dn': auth.find_user(
search_attrs,
parse_address(policy_request['recipient']),
domain=domain,
# TODO: Get the filter from the configuration.
additional_filter="(&(objectclass=kolabinetorgperson)%(search_filter)s)"
)
}
# We have gotten an invalid recipient. We need to catch this case, because
# testing can input invalid recipients, and so can faulty applications, or
# misconfigured servers.
if not user['dn']:
if not conf.allow_unauthenticated:
reject(_("Invalid recipient"))
policy_done = True
return False
else:
log.debug(_("Could not find this user, accepting"), level=8)
return True
recipient_policy = auth.get_user_attribute(
domain,
user,
'kolabAllowSMTPSender'
)
# If no such attribute has been specified, allow
if recipient_policy == None:
recipient_verified = True
# Otherwise, match the values in allowed_senders to the actual sender
else:
recipient_verified = parse_policy(
policy_request['sasl_username'],
policy_request['recipient'],
recipient_policy
)
if not cache == False:
result = cache_select(
sender=policy_request['sender'],
recipient=policy_request['recipient'],
sasl_username=policy_request['sasl_username'],
sasl_sender=policy_request['sasl_sender'],
function='verify_recipient'
)
if result == None:
record_id = cache_insert(
policy_request['sender'],
policy_request['recipient'],
'verify_recipient',
(int)(recipient_verified),
sasl_username=policy_request['sasl_username'],
sasl_sender=policy_request['sasl_sender']
)
return recipient_verified
def verify_sender(policy_request):
"""
Verify the sender's access policy.
1) Verify whether the sasl_username is allowed to send using the
envelope sender address, with the kolabDelegate attribute associated
with the LDAP object that has the envelope sender address.
2) Verify whether the sender is allowed to send to recipient(s) listed
on the sender's object.
A third potential action could be to check the recipient object to see
if the sender is allowed to send to the recipient by the recipient's
kolabAllowSMTPSender, but this is done in verify_recipient().
"""
if not policy_request['sasl_username'] == '':
log.info(_("Verifying authenticated sender '%(sender)s' with " + \
"sasl_username '%(sasl_username)s'") %(policy_request)
)
else:
log.info(_("Verifying unauthenticated sender '%(sender)s'") %(
policy_request
)
)
sender_verified = False
sender_is_delegate = None
sender_uses_alias = None
sasl_user = False
if not cache == False:
record = cache_select(
sender=policy_request['sender'],
recipient=policy_request['recipient'],
sasl_username=policy_request['sasl_username'],
sasl_sender=policy_request['sasl_sender'],
function='verify_sender'
)
if not record == None:
log.info(_("Reproducing verify_sender(%r) from cache, " + \
"saving you queries, time and thus money.") %(
policy_request
)
)
return record
sender_domain = policy_request['sender'].split('@')[1]
# Obtain 'kolabDelegate' from the envelope sender.
log.debug(
_("Obtaining envelope sender dn for %s") %(
policy_request['sender']
),
level=8
)
search_attrs = conf.get_list(
'kolab_smtp_access_policy',
'address_search_attrs'
)
sender_user = {
'dn': auth.find_user(
search_attrs,
parse_address(policy_request['sender']),
domain=sender_domain
)
}
if not sender_user['dn']:
if conf.allow_unauthenticated:
return True
else:
policy_done = True
reject(_("Not allowing unauthenticated users, but sender not found"))
return False
log.debug(_("Found user object %(dn)s") %(sender_user), level=8)
# Only when a user is authenticated do we have the means to check for
# kolabDelegate functionality.
if not policy_request['sasl_username'] == '':
sender_is_delegate = verify_delegate(
policy_request,
sender_domain,
sender_user
)
sender_uses_alias = verify_alias(
policy_request,
sender_domain,
sender_user
)
# If the authenticated user is using delegate functionality, apply the
# recipient policy attribute for the envelope sender.
if sender_is_delegate == False and sender_uses_alias == False:
return False
elif sender_is_delegate:
recipient_policy_domain = sender_domain
recipient_policy_sender = parse_address(policy_request['sender'])
recipient_policy_user = sender_user
elif not policy_request['sasl_username'] == '':
sasl_domain = policy_request['sasl_username'].split('@')[1]
recipient_policy_domain = sasl_domain
recipient_policy_sender = policy_request['sasl_username']
if not sasl_user:
sasl_user = {
'dn': auth.find_user(
# TODO: Use the configured cyrus-sasl result
# attribute
'mail',
parse_address(policy_request['sasl_username']),
domain=sasl_domain
)
}
recipient_policy_user = sasl_user
else:
if not conf.allow_unauthenticated:
reject(_("Could not verify sender"))
else:
recipient_policy_domain = sender_domain
recipient_policy_sender = parse_address(policy_request['sender'])
recipient_policy_user = sender_user
log.debug(_("Verifying whether sender is allowed to send to recipient " + \
"using sender policy"), level=8)
recipient_policy = auth.get_user_attribute(
recipient_policy_domain,
recipient_policy_user,
'kolabAllowSMTPRecipient'
)
log.debug(_("Result is '%r'") %(recipient_policy), level=8)
# If no such attribute has been specified, allow
if recipient_policy == None:
log.debug(
_("No recipient policy restrictions exist for this sender"),
level=8
)
sender_verified = True
# Otherwise, match the values in allowed_recipients to the actual recipients
else:
log.debug(
_("Found a recipient policy to apply for this sender."),
level=8
)
sender_verified = parse_policy(
recipient_policy_sender,
policy_request['recipient'],
recipient_policy
)
log.debug(
_("Recipient policy evaluated to '%r'.") %(sender_verified),
level=8
)
if not cache == False:
result = cache_select(
sender=policy_request['sender'],
recipient=policy_request['recipient'],
sasl_username=policy_request['sasl_username'],
sasl_sender=policy_request['sasl_sender'],
function='verify_sender'
)
if result == None:
record_id = cache_insert(
policy_request['sender'],
policy_request['recipient'],
'verify_sender',
(int)(sender_verified),
sasl_username=policy_request['sasl_username'],
sasl_sender=policy_request['sasl_sender']
)
return sender_verified
if __name__ == "__main__":
access_policy_group = conf.add_cli_parser_option_group(
_("Access Policy Options")
)
access_policy_group.add_option( "--verify-recipient",
dest = "verify_recipient",
action = "store_true",
default = False,
help = _("Verify the recipient access policy."))
access_policy_group.add_option( "--verify-sender",
dest = "verify_sender",
action = "store_true",
default = False,
help = _("Verify the sender access policy."))
access_policy_group.add_option( "--allow-unauthenticated",
dest = "allow_unauthenticated",
action = "store_true",
default = False,
help = _("Allow unauthenticated senders."))
conf.finalize_conf()
cache = cache_init()
# Start the work
while True:
policy_request = read_request_input()
break
# Set the overall default policy in case nothing attracts any particular
# type of action.
#
# When either is configured or specified to be verified, negate
# that policy to be false by default.
#
policy_done = False
sender_allowed = True
recipient_allowed = True
if conf.has_option('kolab_smtp_access_policy', 'allow_helo_names'):
if policy_request['helo_name'] in conf.get('kolab_smtp_access_policy', 'allow_helo_names'):
permit(_("Trusted HELO sender"))
policy_done = True
if not policy_done:
if conf.verify_sender:
sender_allowed = False
log.debug(_("Verifying sender."), level=8)
# If no sender is specified, we bail out.
if policy_request['sender'] == "":
log.debug(_("No sender specified."), level=8)
reject(_("Invalid sender"))
policy_done = True
# If no sasl username exists, ...
if policy_request['sasl_username'] == "":
log.debug(_("No SASL username in request."), level=8)
if not conf.allow_unauthenticated:
log.debug(
_("Not allowing unauthenticated senders."),
level=8
)
reject(_("Access denied for unauthenticated senders"))
policy_done = True
else:
log.debug(_("Allowing unauthenticated senders."), level=8)
if not verify_domain(policy_request['sender'].split('@')[1]):
sender_allowed = True
permit(_("External sender"))
policy_done = True
else:
sender_allowed = verify_sender(policy_request)
# If the authenticated username is the sender...
elif policy_request["sasl_username"] == policy_request["sender"]:
log.debug(
_("Allowing authenticated sender %s to send as %s.") %(
policy_request["sasl_username"],
policy_request["sender"]
),
level=8
)
sender_allowed = True
permit(
_("Authenticated as sender %s") %(
policy_request['sender']
)
)
policy_done = True
# Or if the authenticated username is the sender but the sender address
# lists an address with a recipient delimiter...
#
# TODO: The recipient delimiter is configurable!
elif policy_request["sasl_username"] == \
parse_address(
policy_request["sender"]
):
sender_allowed = True
permit(
_("Authenticated as sender %s") %(
parse_address(policy_request["sender"])
)
)
policy_done = True
else:
sender_allowed = verify_sender(policy_request)
if conf.verify_recipient:
recipient_allowed = False
log.debug(_("Verifying recipient."), level=8)
if policy_request['recipient'] == "":
reject(_("Invalid recipient"))
policy_done = True
if policy_request['sasl_username'] == "":
log.debug(_("No SASL username in request."), level=8)
if not conf.allow_unauthenticated:
log.debug(_("Not allowing unauthenticated senders."), level=8)
reject(_("Access denied for unauthenticated senders"))
policy_done = True
else:
recipient_allowed = verify_recipient(policy_request)
else:
recipient_allowed = verify_recipient(policy_request)
if not policy_done:
# TODO: Insert whitelists.
if conf.verify_sender and not sender_allowed:
reject(_("Sender access denied"), policy_request)
elif conf.verify_recipient and not recipient_allowed:
reject(_("Recipient access denied"), policy_request)
else:
permit(_("No objections"))
if cache:
cache_cleanup()

File Metadata

Mime Type
text/x-script.python
Expires
Fri, Apr 24, 10:19 AM (3 h, 36 m)
Storage Engine
local-disk
Storage Format
Raw Data
Storage Handle
75/b7/16f4b339f8c85110af24cd3f6b0e
Default Alt Text
kolab_smtp_access_policy.py (34 KB)

Event Timeline