Thu, 08 Jul 2010 20:59:53 +0100
mod_auth_internal, mod_auth_internal_hashed: Remove checking for nil or empty password and pretending it means the user doesn't exist. Hopefully with more success than Custer.
plugins/mod_auth_internal.lua | file | annotate | diff | comparison | revisions | |
plugins/mod_auth_internal_hashed.lua | file | annotate | diff | comparison | revisions |
--- a/plugins/mod_auth_internal.lua Thu Jul 08 18:59:17 2010 +0100 +++ b/plugins/mod_auth_internal.lua Thu Jul 08 20:59:53 2010 +0100 @@ -63,10 +63,6 @@ log("debug", "account not found for username '%s' at host '%s'", username, module.host); return nil, "Auth failed. Invalid username"; end - if account.password == nil or string.len(account.password) == 0 then - log("debug", "account password not set or zero-length for username '%s' at host '%s'", username, module.host); - return nil, "Auth failed. Password invalid."; - end return true; end
--- a/plugins/mod_auth_internal_hashed.lua Thu Jul 08 18:59:17 2010 +0100 +++ b/plugins/mod_auth_internal_hashed.lua Thu Jul 08 20:59:53 2010 +0100 @@ -121,10 +121,6 @@ log("debug", "account not found for username '%s' at host '%s'", username, module.host); return nil, "Auth failed. Invalid username"; end - --[[if (account.hashpass == nil or string.len(account.hashpass) == 0) and (account.password == nil or string.len(account.password) == 0) then - log("debug", "account password not set or zero-length for username '%s' at host '%s'", username, module.host); - return nil, "Auth failed. Password invalid."; - end]] return true; end