I would like to allow users to sign up using a on SASL based, but non-standard conforming authentication method by using public/private key method. Development of the authorization process isn’t any problem. The issue is how to catch the auth- and response- queries when the mechanism is set to something line “X-MY-PLATFORM”.
Using AuthProvider is not an option for that kind of authentication, since it doesn’t use a password. I’ve tried to implement a packet filter using PacketInterceptor. But I’ve had to learn that is not possible since the PacketInterceptor only filters IQ, MESSAGE and PRESENCE packets. AUTH and RESPONSE packets are immediatly routed to the SASLMechanism.
Does anybody has a workarround for authentication processes when there is no username/password combination used?
@Openfire Devs: It would be very, very helpful if you could make developing custom authentication processes easier in a future Openfire release.