00001 /*************************************************************************** 00002 * _ _ ____ _ 00003 * Project ___| | | | _ \| | 00004 * / __| | | | |_) | | 00005 * | (__| |_| | _ <| |___ 00006 * \___|\___/|_| \_\_____| 00007 * 00008 * Copyright (C) 1998 - 2016, Daniel Stenberg, <daniel@haxx.se>, et al. 00009 * 00010 * This software is licensed as described in the file COPYING, which 00011 * you should have received as part of this distribution. The terms 00012 * are also available at https://curl.haxx.se/docs/copyright.html. 00013 * 00014 * You may opt to use, copy, modify, merge, publish, distribute and/or sell 00015 * copies of the Software, and permit persons to whom the Software is 00016 * furnished to do so, under the terms of the COPYING file. 00017 * 00018 * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY 00019 * KIND, either express or implied. 00020 * 00021 ***************************************************************************/ 00022 00023 /* <DESC> 00024 * IMAP example using TLS 00025 * </DESC> 00026 */ 00027 00028 #include <stdio.h> 00029 #include <curl/curl.h> 00030 00031 /* This is a simple example showing how to fetch mail using libcurl's IMAP 00032 * capabilities. It builds on the imap-fetch.c example adding transport 00033 * security to protect the authentication details from being snooped. 00034 * 00035 * Note that this example requires libcurl 7.30.0 or above. 00036 */ 00037 00038 int main(void) 00039 { 00040 CURL *curl; 00041 CURLcode res = CURLE_OK; 00042 00043 curl = curl_easy_init(); 00044 if(curl) { 00045 /* Set username and password */ 00046 curl_easy_setopt(curl, CURLOPT_USERNAME, "user"); 00047 curl_easy_setopt(curl, CURLOPT_PASSWORD, "secret"); 00048 00049 /* This will fetch message 1 from the user's inbox */ 00050 curl_easy_setopt(curl, CURLOPT_URL, 00051 "imap://imap.example.com/INBOX/;UID=1"); 00052 00053 /* In this example, we'll start with a plain text connection, and upgrade 00054 * to Transport Layer Security (TLS) using the STARTTLS command. Be careful 00055 * of using CURLUSESSL_TRY here, because if TLS upgrade fails, the transfer 00056 * will continue anyway - see the security discussion in the libcurl 00057 * tutorial for more details. */ 00058 curl_easy_setopt(curl, CURLOPT_USE_SSL, (long)CURLUSESSL_ALL); 00059 00060 /* If your server doesn't have a valid certificate, then you can disable 00061 * part of the Transport Layer Security protection by setting the 00062 * CURLOPT_SSL_VERIFYPEER and CURLOPT_SSL_VERIFYHOST options to 0 (false). 00063 * curl_easy_setopt(curl, CURLOPT_SSL_VERIFYPEER, 0L); 00064 * curl_easy_setopt(curl, CURLOPT_SSL_VERIFYHOST, 0L); 00065 * 00066 * That is, in general, a bad idea. It is still better than sending your 00067 * authentication details in plain text though. Instead, you should get 00068 * the issuer certificate (or the host certificate if the certificate is 00069 * self-signed) and add it to the set of certificates that are known to 00070 * libcurl using CURLOPT_CAINFO and/or CURLOPT_CAPATH. See docs/SSLCERTS 00071 * for more information. */ 00072 curl_easy_setopt(curl, CURLOPT_CAINFO, "/path/to/certificate.pem"); 00073 00074 /* Since the traffic will be encrypted, it is very useful to turn on debug 00075 * information within libcurl to see what is happening during the 00076 * transfer */ 00077 curl_easy_setopt(curl, CURLOPT_VERBOSE, 1L); 00078 00079 /* Perform the fetch */ 00080 res = curl_easy_perform(curl); 00081 00082 /* Check for errors */ 00083 if(res != CURLE_OK) 00084 fprintf(stderr, "curl_easy_perform() failed: %s\n", 00085 curl_easy_strerror(res)); 00086 00087 /* Always cleanup */ 00088 curl_easy_cleanup(curl); 00089 } 00090 00091 return (int)res; 00092 }