Mercurial > dovecot > core-2.2
changeset 19335:3a6e503c9ee6
auth: nopassword field is specific to a single passdb, remove before next passdb is processed
author | Timo Sirainen <tss@iki.fi> |
---|---|
date | Wed, 28 Oct 2015 12:25:08 +0200 |
parents | c02969e65b64 |
children | 9654ab4c337c |
files | src/auth/auth-request.c |
diffstat | 1 files changed, 3 insertions(+), 0 deletions(-) [+] |
line wrap: on
line diff
--- a/src/auth/auth-request.c Tue Oct 27 23:56:48 2015 +0200 +++ b/src/auth/auth-request.c Wed Oct 28 12:25:08 2015 +0200 @@ -610,6 +610,9 @@ request->passdb_success = FALSE; break; } + /* nopassword check is specific to a single passdb and shouldn't leak + to the next one. we already added it to cache. */ + auth_fields_remove(request->extra_fields, "nopassword"); if (request->requested_login_user != NULL && *result == PASSDB_RESULT_OK) {