Mercurial > lxmppd-hg-xmllex / file diff

--- a/util/sasl.lua	Mon Dec 08 03:19:11 2008 +0500
+++ b/util/sasl.lua	Mon Dec 08 03:23:37 2008 +0500
@@ -176,7 +176,11 @@
 			if not response["cnonce"] then return "failure", "malformed-request", "Missing entry for cnonce in SASL message." end
 			if not response["qop"] then response["qop"] = "auth" end
 			
-			if response["realm"] == nil then response["realm"] = "" end
+			if response["realm"] == nil then
+				response["realm"] = ""
+			elseif response["realm"] ~= self.realm then
+				return "failure", "not-authorized", "Incorrect realm value";
+			end
 			local decoder;
 			
 			if response["charset"] == nil then