#1364 mod_auth_dovecot should send more data to dovecot
Description of feature:
Prosody currently only sends username and password to dovecot. However, dovecot's authentication protocol allows much more information to be sent, e.g. client IP, client identification, if TLS was used.
All this information can be used by dovecot to decide whether the authentication is successful. It would allow more authentication methods (e.g. accept only from specific IP, with specific client identifier, only when using TLS). Especially when combining dovecot with a policy server (weakforced) client IP address is required.
Combining dovecot and weakforced is a very powerful setup which is able to detect brute force login attempts.
I would gladly assist in implementing this additional data transfer. To do so, I would however need instructions how to get access to event/session data in auth modules. There does not seem to be any auth module using such data, which leads to the question if an auth module is able to access such information at all.