# HG changeset patch
# User Timo Sirainen <tss@iki.fi>
# Date 1446027908 -7200
# Node ID 3a6e503c9ee68f01e2687a949e76bcafbd6583a6
# Parent  c02969e65b6492253f18b6d852a99c249dd8b9b7
auth: nopassword field is specific to a single passdb, remove before next passdb is processed

diff -r c02969e65b64 -r 3a6e503c9ee6 src/auth/auth-request.c
--- a/src/auth/auth-request.c	Tue Oct 27 23:56:48 2015 +0200
+++ b/src/auth/auth-request.c	Wed Oct 28 12:25:08 2015 +0200
@@ -610,6 +610,9 @@
 		request->passdb_success = FALSE;
 		break;
 	}
+	/* nopassword check is specific to a single passdb and shouldn't leak
+	   to the next one. we already added it to cache. */
+	auth_fields_remove(request->extra_fields, "nopassword");
 
 	if (request->requested_login_user != NULL &&
 	    *result == PASSDB_RESULT_OK) {