-
Notifications
You must be signed in to change notification settings - Fork 89
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Closes SourceForge #85 LDAP userCertificate #98
base: master
Are you sure you want to change the base?
Conversation
Implemented user certificate retrieval from GAL
Formatting improved in order to see diff better
First, thank you for your contribution. I have a few questions:
Regards, |
Added support for multiline user certificate value
Hello,
Do you expect to write new tests in src/test? |
I've experimented with FindPeople method, which has similar attributes as FindItem. So it looks like, that method ResolveNames with ContactDataShape="AllProperties" is the only way how to retrieve user certificate from GAL via EWS. |
Sorry for the delay, should be able to look into this again soon. I will probably make it an optional feature first as I faced regressions during my initial tests |
I can confirm that this patch fixes the certificate retrieval issue over LDAP for my exchange server which works over office365. Thanks @krutelp now i can send Mime encrypted mails easily |
I can confirm this patch partially works when rebased against 3b79fdb It misses the UserSMIMECertificate entry, which is easy to add. I first want to see if I can do it without ContactDataShape.AllProperties, if not I'll submit a new PR against HEAD with the extra parts giving credit to @krutelp. Is there anything else needed since this PR has been on hold for very long? |
It's possible to add a public S/MIME certificate for a user to the GAL. These are used when a user wants to encrypt a mail to another user, or validate their signature. The public certificate of the recipient is required. Being able to look them up rather than engage in a manual or offline synchornisation process makes this easier, as well as fetching updated certificates when they're changed. The bulk of this work was done by @krutelp in mguessan#98 I merely extended it to support the UserSMIMECertificate field in addition to the MSExchangeCertificate field. These are both part of the EWS Contact: https://learn.microsoft.com/en-us/dotnet/api/microsoft.exchange.webservices.data.contact?view=exchange-ews-api I tried to do it without using ContactDataShape.AllProperties but like @krutelp couldn't find a method that would return the certificates. I extended the ignored tags based on what was returned by our Microsoft365 instance, but not all of the fields listed under the Contact type above. I slightly modified the original PR to use Dos line endings in ResolveNamesMethod.java so exact changes could be observed instead of the entire file being changed. I also added the keys to the contact in ExchangeSession.java as KEY1 and KEY2. Finally, I undid the small changes in LdapConnection.java to the isMatch() methods to have them take an ExchangeSession.Contact and put them back to Map<String, String>. This was mostly done to limit the changes in the patch to those necessary.
Done and submitted as #353 |
It's possible to add a public S/MIME certificate for a user to the GAL. These are used when a user wants to encrypt a mail to another user, or validate their signature. The public certificate of the recipient is required. Being able to look them up rather than engage in a manual or offline synchornisation process makes this easier, as well as fetching updated certificates when they're changed. The bulk of this work was done by @krutelp in mguessan#98 I merely extended it to support the UserSMIMECertificate field in addition to the MSExchangeCertificate field. These are both part of the EWS Contact: https://learn.microsoft.com/en-us/dotnet/api/microsoft.exchange.webservices.data.contact?view=exchange-ews-api I tried to do it without using ContactDataShape.AllProperties but like @krutelp couldn't find a method that would return the certificates. I extended the ignored tags based on what was returned by our Microsoft365 instance, but not all of the fields listed under the Contact type above. I slightly modified the original PR to use Dos line endings in ResolveNamesMethod.java so exact changes could be observed instead of the entire file being changed. I also added the keys to the contact in ExchangeSession.java as KEY1 and KEY2. Finally, I undid the small changes in LdapConnection.java to the isMatch() methods to have them take an ExchangeSession.Contact and put them back to Map<String, String>. This was mostly done to limit the changes in the patch to those necessary.
Implemented user certificate retrieval from GAL