9 Apr
2006
9 Apr
'06
8:29 p.m.
On Tue, 2006-03-07 at 23:41 +0200, Lior Okman wrote:
I think I've found the problem with the non-plain ldap authentication.
I tried DIGEST-MD5 authentication with LDAP, and it also failed when the password in LDAP wasn't in PLAIN. It seems that if the password in LDAP wasn't PLAIN, then instead of providing a copy of the encrypted password onwards, the password cached inside auth_request was being used. This meant that it was being cleared a bit later in auth_request_handle_passdb_callback, before being passed to the mech-??? callbacks.
Thanks, committed the patch to CVS.