Hello! I’m new here, just recently discovered KumoMTA and it looks like it would solve a great many headaches, I’m excited to start playing with it and looking at moving things over.
Credentials here are stored as bcrypt hashes, stored on a filesystem, so I’m looking into how I can authenticate against them. I see the kumo.digest hash functions, but nothing more password orientated.
Is there any easy way of loading in additional Lua modules (e.g. lua-bcrypt)?
I think worst case we can just knock up a HTTP authentication microservice that will do the actual password hash verification and make calls out to that via kumo.http, which will be fine, but being new to Kumo I just wanted to double check things before I got too ahead of myself.
We don’t support loading in external compiled lua modules, so a micro service is likely the most expedient way to go right now. I think adding some password oriented hashing functions would be a nice addition to kumomta.
Thanks for confirming If KumoMTA looks like something we’ll move to, I might look at doing a PR to add some password hashing functions, I’ve been meaning to learn some Rust and it looks like a very well organised codebase.
If KumoMTA looks like something we’ll move to, I might look at doing a PR to add some password hashing functions, I’ve been meaning to learn some Rust and it looks like a very well organised codebase.