GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-11 09:16:59 +08:00
Code Issues Packages Projects Releases Wiki Activity

disallow mixing multiple username/password authentication methods

Browse Source
This commit is contained in:
Nikos Mavrogiannopoulos
2013-07-01 12:23:01 +02:00
parent 126c52ab5c
commit a7eb7b2e6e
1 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
src/config.c
View File

@@ -121,7 +121,12 @@ unsigned j;
READ_MULTI_LINE("auth", auth, auth_size, 1);
for (j=0;j<auth_size;j++) {
if (strcasecmp(auth[j], "pam") == 0) {
if (config->auth_types & AUTH_TYPE_USERNAME_PASS != 0) {
fprintf(stderr, "You cannot mix multiple username/password authentication methods\n");
exit(1);
}
#ifdef HAVE_PAM
config->auth_types |= AUTH_TYPE_USERNAME_PASS;
config->auth_types |= AUTH_TYPE_PAM;
#else
fprintf(stderr, "PAM support is disabled\n");
@@ -129,6 +134,12 @@ unsigned j;
#endif
} else if (strncasecmp(auth[j], "plain[", 6) == 0) {
char* p;
if (config->auth_types & AUTH_TYPE_USERNAME_PASS != 0) {
fprintf(stderr, "You cannot mix multiple username/password authentication methods\n");
exit(1);
}
config->plain_passwd = strdup(auth[j]+6);
p = strchr(config->plain_passwd, ']');
if (p == NULL) {
@@ -136,6 +147,7 @@ unsigned j;
exit(1);
}
*p = 0;
config->auth_types |= AUTH_TYPE_USERNAME_PASS;
config->auth_types |= AUTH_TYPE_PLAIN;
} else if (strcasecmp(auth[j], "certificate") == 0) {
config->auth_types |= AUTH_TYPE_CERTIFICATE;