123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385 |
- # -*- test-case-name: twisted.mail.test.test_mail -*-
- # Copyright (c) Twisted Matrix Laboratories.
- # See LICENSE for details.
- """
- Mail protocol support.
- """
- from zope.interface import implementer
- from twisted.copyright import longversion
- from twisted.cred.credentials import CramMD5Credentials, UsernamePassword
- from twisted.cred.error import UnauthorizedLogin
- from twisted.internet import defer, protocol
- from twisted.mail import pop3, relay, smtp
- from twisted.python import log
- @implementer(smtp.IMessageDelivery)
- class DomainDeliveryBase:
- """
- A base class for message delivery using the domains of a mail service.
- @ivar service: See L{__init__}
- @ivar user: See L{__init__}
- @ivar host: See L{__init__}
- @type protocolName: L{bytes}
- @ivar protocolName: The protocol being used to deliver the mail.
- Sub-classes should set this appropriately.
- """
- service = None
- protocolName: bytes = b"not-implemented-protocol"
- def __init__(self, service, user, host=smtp.DNSNAME):
- """
- @type service: L{MailService}
- @param service: A mail service.
- @type user: L{bytes} or L{None}
- @param user: The authenticated SMTP user.
- @type host: L{bytes}
- @param host: The hostname.
- """
- self.service = service
- self.user = user
- self.host = host
- def receivedHeader(self, helo, origin, recipients):
- """
- Generate a received header string for a message.
- @type helo: 2-L{tuple} of (L{bytes}, L{bytes})
- @param helo: The client's identity as sent in the HELO command and its
- IP address.
- @type origin: L{Address}
- @param origin: The origination address of the message.
- @type recipients: L{list} of L{User}
- @param recipients: The destination addresses for the message.
- @rtype: L{bytes}
- @return: A received header string.
- """
- authStr = heloStr = b""
- if self.user:
- authStr = b" auth=" + self.user.encode("xtext")
- if helo[0]:
- heloStr = b" helo=" + helo[0]
- fromUser = b"from " + helo[0] + b" ([" + helo[1] + b"]" + heloStr + authStr
- by = (
- b"by "
- + self.host
- + b" with "
- + self.protocolName
- + b" ("
- + longversion.encode("ascii")
- + b")"
- )
- forUser = (
- b"for <" + b" ".join(map(bytes, recipients)) + b"> " + smtp.rfc822date()
- )
- return b"Received: " + fromUser + b"\n\t" + by + b"\n\t" + forUser
- def validateTo(self, user):
- """
- Validate the address for which a message is destined.
- @type user: L{User}
- @param user: The destination address.
- @rtype: L{Deferred <defer.Deferred>} which successfully fires with
- no-argument callable which returns L{IMessage <smtp.IMessage>}
- provider.
- @return: A deferred which successfully fires with a no-argument
- callable which returns a message receiver for the destination.
- @raise SMTPBadRcpt: When messages cannot be accepted for the
- destination address.
- """
- # XXX - Yick. This needs cleaning up.
- if self.user and self.service.queue:
- d = self.service.domains.get(user.dest.domain, None)
- if d is None:
- d = relay.DomainQueuer(self.service, True)
- else:
- d = self.service.domains[user.dest.domain]
- return defer.maybeDeferred(d.exists, user)
- def validateFrom(self, helo, origin):
- """
- Validate the address from which a message originates.
- @type helo: 2-L{tuple} of (L{bytes}, L{bytes})
- @param helo: The client's identity as sent in the HELO command and its
- IP address.
- @type origin: L{Address}
- @param origin: The origination address of the message.
- @rtype: L{Address}
- @return: The origination address.
- @raise SMTPBadSender: When messages cannot be accepted from the
- origination address.
- """
- if not helo:
- raise smtp.SMTPBadSender(origin, 503, "Who are you? Say HELO first.")
- if origin.local != b"" and origin.domain == b"":
- raise smtp.SMTPBadSender(origin, 501, "Sender address must contain domain.")
- return origin
- class SMTPDomainDelivery(DomainDeliveryBase):
- """
- A domain delivery base class for use in an SMTP server.
- """
- protocolName = b"smtp"
- class ESMTPDomainDelivery(DomainDeliveryBase):
- """
- A domain delivery base class for use in an ESMTP server.
- """
- protocolName = b"esmtp"
- class SMTPFactory(smtp.SMTPFactory):
- """
- An SMTP server protocol factory.
- @ivar service: See L{__init__}
- @ivar portal: See L{__init__}
- @type protocol: no-argument callable which returns a L{Protocol
- <protocol.Protocol>} subclass
- @ivar protocol: A callable which creates a protocol. The default value is
- L{SMTP}.
- """
- protocol = smtp.SMTP
- portal = None
- def __init__(self, service, portal=None):
- """
- @type service: L{MailService}
- @param service: An email service.
- @type portal: L{Portal <twisted.cred.portal.Portal>} or
- L{None}
- @param portal: A portal to use for authentication.
- """
- smtp.SMTPFactory.__init__(self)
- self.service = service
- self.portal = portal
- def buildProtocol(self, addr):
- """
- Create an instance of an SMTP server protocol.
- @type addr: L{IAddress <twisted.internet.interfaces.IAddress>} provider
- @param addr: The address of the SMTP client.
- @rtype: L{SMTP}
- @return: An SMTP protocol.
- """
- log.msg(f"Connection from {addr}")
- p = smtp.SMTPFactory.buildProtocol(self, addr)
- p.service = self.service
- p.portal = self.portal
- return p
- class ESMTPFactory(SMTPFactory):
- """
- An ESMTP server protocol factory.
- @type protocol: no-argument callable which returns a L{Protocol
- <protocol.Protocol>} subclass
- @ivar protocol: A callable which creates a protocol. The default value is
- @type context: L{IOpenSSLContextFactory
- <twisted.internet.interfaces.IOpenSSLContextFactory>} or L{None}
- @ivar context: A factory to generate contexts to be used in negotiating
- encrypted communication.
- @type challengers: L{dict} mapping L{bytes} to no-argument callable which
- returns L{ICredentials <twisted.cred.credentials.ICredentials>}
- subclass provider.
- @ivar challengers: A mapping of acceptable authorization mechanism to
- callable which creates credentials to use for authentication.
- """
- protocol = smtp.ESMTP
- context = None
- def __init__(self, *args):
- """
- @param args: Arguments for L{SMTPFactory.__init__}
- @see: L{SMTPFactory.__init__}
- """
- SMTPFactory.__init__(self, *args)
- self.challengers = {b"CRAM-MD5": CramMD5Credentials}
- def buildProtocol(self, addr):
- """
- Create an instance of an ESMTP server protocol.
- @type addr: L{IAddress <twisted.internet.interfaces.IAddress>} provider
- @param addr: The address of the ESMTP client.
- @rtype: L{ESMTP}
- @return: An ESMTP protocol.
- """
- p = SMTPFactory.buildProtocol(self, addr)
- p.challengers = self.challengers
- p.ctx = self.context
- return p
- class VirtualPOP3(pop3.POP3):
- """
- A virtual hosting POP3 server.
- @type service: L{MailService}
- @ivar service: The email service that created this server. This must be
- set by the service.
- @type domainSpecifier: L{bytes}
- @ivar domainSpecifier: The character to use to split an email address into
- local-part and domain. The default is '@'.
- """
- service = None
- domainSpecifier = b"@" # Gaagh! I hate POP3. No standardized way
- # to indicate user@host. '@' doesn't work
- # with NS, e.g.
- def authenticateUserAPOP(self, user, digest):
- """
- Perform APOP authentication.
- Override the default lookup scheme to allow virtual domains.
- @type user: L{bytes}
- @param user: The name of the user attempting to log in.
- @type digest: L{bytes}
- @param digest: The challenge response.
- @rtype: L{Deferred} which successfully results in 3-L{tuple} of
- (L{IMailbox <pop3.IMailbox>}, L{IMailbox <pop3.IMailbox>}
- provider, no-argument callable)
- @return: A deferred which fires when authentication is complete.
- If successful, it returns an L{IMailbox <pop3.IMailbox>} interface,
- a mailbox and a logout function. If authentication fails, the
- deferred fails with an L{UnauthorizedLogin
- <twisted.cred.error.UnauthorizedLogin>} error.
- """
- user, domain = self.lookupDomain(user)
- try:
- portal = self.service.lookupPortal(domain)
- except KeyError:
- return defer.fail(UnauthorizedLogin())
- else:
- return portal.login(
- pop3.APOPCredentials(self.magic, user, digest), None, pop3.IMailbox
- )
- def authenticateUserPASS(self, user, password):
- """
- Perform authentication for a username/password login.
- Override the default lookup scheme to allow virtual domains.
- @type user: L{bytes}
- @param user: The name of the user attempting to log in.
- @type password: L{bytes}
- @param password: The password to authenticate with.
- @rtype: L{Deferred} which successfully results in 3-L{tuple} of
- (L{IMailbox <pop3.IMailbox>}, L{IMailbox <pop3.IMailbox>}
- provider, no-argument callable)
- @return: A deferred which fires when authentication is complete.
- If successful, it returns an L{IMailbox <pop3.IMailbox>} interface,
- a mailbox and a logout function. If authentication fails, the
- deferred fails with an L{UnauthorizedLogin
- <twisted.cred.error.UnauthorizedLogin>} error.
- """
- user, domain = self.lookupDomain(user)
- try:
- portal = self.service.lookupPortal(domain)
- except KeyError:
- return defer.fail(UnauthorizedLogin())
- else:
- return portal.login(UsernamePassword(user, password), None, pop3.IMailbox)
- def lookupDomain(self, user):
- """
- Check whether a domain is among the virtual domains supported by the
- mail service.
- @type user: L{bytes}
- @param user: An email address.
- @rtype: 2-L{tuple} of (L{bytes}, L{bytes})
- @return: The local part and the domain part of the email address if the
- domain is supported.
- @raise POP3Error: When the domain is not supported by the mail service.
- """
- try:
- user, domain = user.split(self.domainSpecifier, 1)
- except ValueError:
- domain = b""
- if domain not in self.service.domains:
- raise pop3.POP3Error("no such domain {}".format(domain.decode("utf-8")))
- return user, domain
- class POP3Factory(protocol.ServerFactory):
- """
- A POP3 server protocol factory.
- @ivar service: See L{__init__}
- @type protocol: no-argument callable which returns a L{Protocol
- <protocol.Protocol>} subclass
- @ivar protocol: A callable which creates a protocol. The default value is
- L{VirtualPOP3}.
- """
- protocol = VirtualPOP3
- service = None
- def __init__(self, service):
- """
- @type service: L{MailService}
- @param service: An email service.
- """
- self.service = service
- def buildProtocol(self, addr):
- """
- Create an instance of a POP3 server protocol.
- @type addr: L{IAddress <twisted.internet.interfaces.IAddress>} provider
- @param addr: The address of the POP3 client.
- @rtype: L{POP3}
- @return: A POP3 protocol.
- """
- p = protocol.ServerFactory.buildProtocol(self, addr)
- p.service = self.service
- return p