Uniface User Forum

 View Only
  • 1.  STRATTLS and TLS Profile.

    PARTNER
    Posted 09-13-2022 10:57
    Is it possible to use UStartTLSSMTP with a TLS Profile, rather than having to rely on USYS$TLS_PARAMS. It doesn't seem so from the documentation, but I wondered if I was just missing something? 
    I'd prefer not to set system wide settings for all just to affect SMTP from UPOPMAIL if I can help it. 
    Regards, 
    Iain

    ------------------------------
    Iain Sharp
    Head of Technical Services
    Pci Systems Ltd
    Sheffield GB
    ------------------------------


  • 2.  RE: STRATTLS and TLS Profile.

    ROCKETEER
    Posted 09-13-2022 11:10
    Yes, that should be possible. For details see:

    ===
    Log on to the designated SMTP server via TCP or TLS.

    LogonSMTP(NetworkConnectionString,"","")

    where NetworkConnectionString is:

    {NetworkConnector:}HostId{+PortNumber}{:TLSProfile}

    TCP Example: activate "UPOPMAIL".logonsmtp("smtp.myorg.com", "", "")
    TLS Example: activate "UPOPMAIL".logonsmtp("TLS:smtp.myorg.com+465:smtp_profile", "", "")
    ===

    I hope this helps.

    Regards,
    Daniel

    ------------------------------
    Daniel Iseli
    Principal Technical Support Engineer
    Uniface Services
    Rocket Software, Switzerland
    ------------------------------



  • 3.  RE: STRATTLS and TLS Profile.

    PARTNER
    Posted 09-13-2022 11:21
    Hi Daniel, 
    Okay, my understanding of the documentation I have read, is that if you want to use STARTTLS, then the logonSMTP should not use the TLS connector string, but a TCP one because STARTTLS is supposed to be used to upgrade a TCP connection to a TLS one after  initial connection. 
    I am trying to mail to an AWS SMTP server. 
    I have worked out how to use both the LogonSMTP and the UStartTLSSMTP to make the connection, but the AWS documentation I have found indicates that the TLS Wrapper concept used by the LogonSMTP TLS connection is "Old fashioned" and I am worried that may mean "Obsolete" in the near future. 

    Regards, 
    Iain


    ------------------------------
    Iain Sharp
    Head of Technical Services
    Pci Systems Ltd
    Sheffield GB
    ------------------------------



  • 4.  RE: STRATTLS and TLS Profile.

    ROCKETEER
    Posted 09-13-2022 11:41

    Hi Iain,

    I think that STARTTLS is somewhat "old fashioned". I know that (e.g.) GMail does not support STARTTLS anymore for some time. You need to use a different authorization, like e.g. OAUTH2.

    I now can see that it is explicitly mentioned in the doc that the default connection profile is used that is defined by USYS$TLS_PARAMS. Sorry, missed the fine print. Maybe it is an idea to use a different authorization than STARTTLS? We have a sample (in the Rocket Uniface Community Samples library) that shows how to use OAUTH2 authorization (XOAUTH2 Security Driver):

    Regards,
    Daniel



    ------------------------------
    Daniel Iseli
    Principal Technical Support Engineer
    Uniface Services
    Rocket Software, Switzerland
    ------------------------------