util/sasl/digest-md5.lua

changeset 2568
25e1a544a096
parent 2207
6094a4e2b6f3
child 2569
8474ea768c89
--- a/util/sasl/digest-md5.lua	Thu Nov 19 17:20:38 2009 +0100
+++ b/util/sasl/digest-md5.lua	Fri Feb 05 17:46:46 2010 +0000
@@ -214,7 +214,8 @@
 			KD = HA1..":"..response["nonce"]..":"..response["nc"]..":"..response["cnonce"]..":"..response["qop"]..":"..HA2
 			local rspauth = md5(KD, true);
 			self.authenticated = true;
-			return "success", serialize({rspauth = rspauth});
+			--TODO: considering sending the rspauth in a success node for saving one roundtrip; allowed according to http://tools.ietf.org/html/draft-saintandre-rfc3920bis-09#section-7.3.6
+			return "challenge", serialize({rspauth = rspauth});
 		else
 			return "failure", "not-authorized", "The response provided by the client doesn't match the one we calculated."
 		end

mercurial