100 -- we are processing client_first_message |
100 -- we are processing client_first_message |
101 local client_first_message = message; |
101 local client_first_message = message; |
102 |
102 |
103 -- TODO: fail if authzid is provided, since we don't support them yet |
103 -- TODO: fail if authzid is provided, since we don't support them yet |
104 self.state["client_first_message"] = client_first_message; |
104 self.state["client_first_message"] = client_first_message; |
105 self.state["gs2_cbind_flag"], self.state["authzid"], self.state["name"], self.state["clientnonce"] = client_first_message:match("^(%a),(.*),n=(.*),r=([^,]*).*"); |
105 self.state["gs2_cbind_flag"], self.state["authzid"], self.state["name"], self.state["clientnonce"] |
|
106 = client_first_message:match("^(%a),(.*),n=(.*),r=([^,]*).*"); |
106 |
107 |
107 -- we don't do any channel binding yet |
108 -- we don't do any channel binding yet |
108 if self.state.gs2_cbind_flag ~= "n" and self.state.gs2_cbind_flag ~= "y" then |
109 if self.state.gs2_cbind_flag ~= "n" and self.state.gs2_cbind_flag ~= "y" then |
109 return "failure", "malformed-request"; |
110 return "failure", "malformed-request"; |
110 end |
111 end |