]> granicus.if.org Git - ejabberd/commitdiff
projects / ejabberd / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 5010cea)
Don't use cached passwords if "extauth_cache: 0"
authorHolger Weiss <holger@zedat.fu-berlin.de>
Tue, 20 May 2014 21:00:28 +0000 (23:00 +0200)
committerHolger Weiss <holger@zedat.fu-berlin.de>
Tue, 20 May 2014 21:00:28 +0000 (23:00 +0200)
Regarding "extauth_cache", the guide says: "The integer 0 (zero) enables
caching for statistics, but doesn't use that cached information to
authenticate users."  Make sure the cached password isn't used even if
the user is currently logged in with another resource.

src/ejabberd_auth_external.erl patch | blob | history

diff --git a/src/ejabberd_auth_external.erl b/src/ejabberd_auth_external.erl
index 51c1c620a49c28515154a77def37f51a39799016..74263f748ad1661d61ccea72dce5f1f9a05806f4 100644 (file)
--- a/src/ejabberd_auth_external.erl
+++ b/src/ejabberd_auth_external.erl
@@ -186,6 +186,8 @@ check_password_extauth(User, Server, Password) ->
 try_register_extauth(User, Server, Password) ->
     extauth:try_register(User, Server, Password).
 
+check_password_cache(User, Server, Password, 0) ->
+    check_password_external_cache(User, Server, Password);
 check_password_cache(User, Server, Password,
                     CacheTime) ->
     case get_last_access(User, Server) of
Unnamed repository; edit this file 'description' to name the repository.