Giters

louislam / uptime-kuma

A fancy self-hosted monitoring tool

Home Page:https://uptime.kuma.pet

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

AWS SES SMTP with special characters in credentials fail authentication

solidterre opened this issue Β· comments

commented

πŸ“‘ I have found these related issues/pull requests

I checked and didn't find similar issue.

πŸ›‘οΈ Security Policy

Description

It seems that when using the Email (SMTP) notification type and using credentials with special characters ("/" or "\" for example), the credentials can not be validated (I keep getting a 535 error).

image

I am sure these credentials are valid (checked multiple times) since they are the same (copy pasted, no additional spaces or invisible characters added) as the ones I use on another website and they work there.

It seems to me like this is due to an encoding issue ?

πŸ‘Ÿ Reproduction steps

  1. Setup notification
  2. Select Email (SMTP)
  3. Fill in SMTP information
  4. Use credentials with a special character (like "/" or "\" f.e.)

πŸ‘€ Expected behavior

It just works.

πŸ˜“ Actual Behavior

"Invalid login" error.

🐻 Uptime-Kuma Version

1.23.13

πŸ’» Operating System and Arch

Debian 12

🌐 Browser

Firefox

πŸ–₯️ Deployment Environment

  • Runtime: Docker 26.1.3 + Caddy
  • Database: SQLite
  • Filesystem used to store the database on:
  • number of monitors: 6

πŸ“ Relevant log output

No response

commented

We don't encode the password or username.

  • Before we go out and try replicating this:
    Have you made sure that ALL the settings (including smtp-hostname+port, auth options, dkim, ...) are identical (not just username+PW)?
  • Why do you think special character (like "/" or "\" f.e.) are at fault? (have you changed the password to be just alphanumeric? What was the result?)
  • What mail provider are you using?

Unrelated:
Database: MariaDB is Conflicting with the version number. In v1, we only support sqlite as a database. See #4500 for further details.

commented

Actually it seems I was mistaken. For "pure" usage of SMTP tokens generated from AWS SES (which is the provider I use), I need to generate the SMTP password using a special script - which I wasn't aware of before searching more thoroughly online.

Very sorry for the inconvenient time lost @CommanderStorm, my mistake.
Will update the title for future people who might have this problem.

You can consider this closed.