[snap]Thunderbird doesn't authenticate with sssd-kcm
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
sssd (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
thunderbird (Ubuntu) |
New
|
High
|
Unassigned |
Bug Description
I have Kerberos authentication set up in Thunderbird for my mailbox.
My environment contains:
helga@helga-
KRB5CCNAME=KCM:
This means that Kerberos authentication should work through the sssd-kcm server.
I initialize Kerberos and verify that it functions correctly:
helga@helga-
Ticket cache: KCM:1000
Default principal: <email address hidden>
Valid starting Expires Service principal
03/11/24 04:14:24 03/12/24 04:14:24 <email address hidden>
03/11/24 04:15:24 03/12/24 04:14:24 HTTP/redmine.
Ticket server: <email address hidden>
(listing redacted to say example.org instead of the real address. the redmine listing shows that Firefox works correctly with this address)
However, when I open the Snap Thunderbird, it does not recognize this Kerberos setup, showing me "The Kerberos/GSSAPI ticket was not accepted by the IMAP server". klist -A likewise shows no changes.
The exact same setup works when I specify KRB5CCNAME=
The sssd-kcm setup also works in Thunderbird native and Flatpak profiles.
Considering the Flatpak specifically permits access to /run/.heim_
OS version: rashomon: ~$ lsb_release -rd
helga@helga-
No LSB modules are available.
Description: Ubuntu Noble Numbat (development branch)
Release: 24.04
Thunderbird snap version: 115.8.1-2
Apologies for not providing info initially, see: https:/ /bugs.launchpad .net/ubuntu/ +source/ thunderbird/ +bug/2056758
Attached is the output of ubuntu-bug --save