sasl: remove XOAUTH2 from default enabled authentication mechanism.

diff --git a/lib/curl_sasl.c b/lib/curl_sasl.c
index 2d55836cd3eaccf8580501a43f2976f2cedd791a..3fa6f344df85151aabc494b1c86e3a5649e9803b 100644 (file)
--- a/lib/curl_sasl.c
+++ b/lib/curl_sasl.c
@@ -1440,8 +1440,7 @@ CURLcode Curl_sasl_start(struct SASL *sasl, struct connectdata *conn,
       }
     else
 #endif
-    if((((enabledmechs & SASL_MECH_XOAUTH2) &&
-        sasl->prefmech != SASL_AUTH_DEFAULT)) || conn->xoauth2_bearer) {
+    if((enabledmechs & SASL_MECH_XOAUTH2) || conn->xoauth2_bearer) {
       mech = SASL_MECH_STRING_XOAUTH2;
       state1 = SASL_XOAUTH2;
       sasl->authused = SASL_MECH_XOAUTH2;

diff --git a/lib/curl_sasl.h b/lib/curl_sasl.h
index 985ca416ee1b3238bed302b38b130d560f32a09f..0dc73770fc577284d0c2bf8bbcfe61b7690b8a9c 100644 (file)
--- a/lib/curl_sasl.h
+++ b/lib/curl_sasl.h
@@ -52,7 +52,8 @@ struct kerberos5data;
 /* Authentication mechanism values */
 #define SASL_AUTH_NONE          0
 #define SASL_AUTH_ANY           ~0U
-#define SASL_AUTH_DEFAULT       (SASL_AUTH_ANY & ~SASL_MECH_EXTERNAL)
+#define SASL_AUTH_DEFAULT       (SASL_AUTH_ANY & \
+                                 ~(SASL_MECH_EXTERNAL | SASL_MECH_XOAUTH2))
 
 /* Authentication mechanism strings */
 #define SASL_MECH_STRING_LOGIN      "LOGIN"