Feature #430: xauth_pam: mangling email addresses should be optional - strongSwan

Feature #430

xauth_pam: mangling email addresses should be optional

Added by Peter Sagerson almost 7 years ago. Updated almost 7 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Tobias Brunner

Category:

charon

Target version:

5.1.1

Start date:

04.10.2013

Due date:

Estimated time:

Resolution:

Fixed

Description

xauth_pam takes the liberty of detecting email addresses submitted as usernames and stripping off everything from '@' on. This may be appropriate in some cases when authenticating against the system user database, but it's certainly not correct in the general case.

The attached diff adds the charon.plugins.xauth-pam.trim_email option, which can be used to turn this off. It defaults to TRUE for backwards compatibility.

xauth-pam-trim-email copy.diff (1.54 KB) xauth-pam-trim-email copy.diff

Diff against 5.1.0

Peter Sagerson, 04.10.2013 01:42

Associated revisions

Revision 3e3db374 (diff)
Added by Tobias Brunner almost 7 years ago

xauth-pam: Make trimming of email addresses optional

Fixes #430.

History

#1 Updated by Tobias Brunner almost 7 years ago

Tracker changed from Issue to Feature
Status changed from New to Closed
Assignee set to Tobias Brunner
Target version set to 5.1.1
Resolution set to Fixed

Makes sense. Applied with the associated commit.

Thanks!

Also available in: Atom PDF

Project

General

Profile

strongSwan

Issues

New issues

Feature #430

xauth_pam: mangling email addresses should be optional

Associated revisions

History

#1 Updated by Tobias Brunner almost 7 years ago