Thu, 19 Nov 2009 16:43:38 +0100
Allow SASL PLAIN over unsecure connections when intended by admin.
plugins/mod_saslauth.lua | file | annotate | diff | comparison | revisions |
--- a/plugins/mod_saslauth.lua Thu Nov 19 15:29:09 2009 +0100 +++ b/plugins/mod_saslauth.lua Thu Nov 19 16:43:38 2009 +0100 @@ -141,7 +141,7 @@ session.sasl_handler = new_sasl(session.host, anonymous_authentication_profile); else session.sasl_handler = new_sasl(session.host, default_authentication_profile); - if not session.secure then + if not (module:get_option("allow_unencrypted_plain_auth")) and not session.secure then session.sasl_handler:forbidden({"PLAIN"}); end end