Created attachment 7052
Check for CRAM-MD5 capability before checking for LOGINDISABLED
I can't use the plugin to check for new mail on my local dovecot server, which doesn't support encryption but hashed passwords (cram-md5) and has disabled plaintext logins as per dovecot default (disable_plaintext_auth=yes).
To prevent clients from sending credentials over an unencrypted connection when plaintext logins are disabled, it includes "LOGINDISABLED" in its capabilities if queried over an unsecure connection.
It also includes "CRAM-MD5" in the capabilities, but unfortunately that doesn't work with the mailwatch plugin because it checks for "LOGINDISABLED" *first*.
So I suggest to move the check for "LOGINDISABLED" behind the check for "CRAM-MD5" in libmailwatch-core/mailwatch-mailbox-imap.c.
The plugin works for me with this change and I can't see a harm in doing so.
-- GitLab Migration Automatic Message --
This bug has been migrated to xfce.org's GitLab instance and has been closed from further activity.
You can subscribe and participate further through the new bug through this link to our GitLab instance: https://gitlab.xfce.org/panel-plugins/xfce4-mailwatch-plugin/-/issues/49.
Please create an account or use an existing account on one of our supported OAuth providers.
If you want to fork to submit patches and merge requests please continue reading here: https://docs.xfce.org/contribute/dev/git/start#gitlab_forks_and_merge_requests
Also feel free to reach out to us on the mailing list https://mail.xfce.org/mailman/listinfo/xfce4-dev