outlookcaldavsynchronizer icon indicating copy to clipboard operation
outlookcaldavsynchronizer copied to clipboard

Published 20 hours ago verified publisher icon aluxnimm

request: better auth-fail recovery

Open r2evans opened this issue 6 years ago • 2 comments

A co-worker recently updated their domain password but not the password stored in this. It tried (and obviously was unable to successfully connect), and then repeatedly tried again for days. By this time, of course, his IP was locked out due to the brute-force perceived by the CALDAV server. (Side-effect: because of the nature of the network and proxy, it also locked out the rest of the office, but that's another issue :-)

He reports no notification that it was failing.

Would it be possible for the sync to behave a little differently on auth fail? For instance, once the auth fails, then disable auto-sync until the user either (a) manually syncs successfully, or (b) reselects auto-sync.

Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.

r2evans avatar Sep 07 '17 18:09 r2evans

Do you have a central LDAP or AD account and use an IMAP mail account in Outlook with the same username? Then you could just use the account password instead of manually entering it for the sync profile and it will stay in sync with the outlook mail password.

aluxnimm avatar Sep 09 '17 18:09 aluxnimm

The caldav account is different than the IMAP account (different servers/domains). That would be convenient, but unfortunately not shared. (I could of course recommend that he keep the two passwords in sync to enjoy that benefit, but that goes against some security best-practices ...)

r2evans avatar Sep 09 '17 20:09 r2evans