[Standards] Proposed XMPP Extension: Client Certificate Management for SASL EXTERNAL

Kurt Zeilenga Kurt.Zeilenga at Isode.com
Fri Dec 5 17:09:28 UTC 2008


On Dec 5, 2008, at 8:18 AM, Dirk Meyer wrote:
>> Some XMPP server implementations already support multiple passwords
>> per user.   Of course, the server has no clue how such passwords are
>> shared amongst a user's clients, likewise for user certificates.
>
> They do? What XEP handles that?

Yes.  No XEP needed (if it's not specifically precluded, it's  
allowed).  SASL mechanisms do not restrict users to single passwords.

For instance, a server checking passwords against a directory using  
LDAP Bind or Compare will naturally have multiple passwords per user,  
as password attributes in the directory have traditionally been multi- 
valued.

-- Kurt




More information about the Standards mailing list