PLAIN SASL now accepts and validates bare JIDs as authcID. JM-962

git-svn-id: http://svn.igniterealtime.org/svn/repos/wildfire/trunk@7040 b35dd754-fafc-0310-a699-88a17e54d16e

PLAIN SASL now accepts and validates bare JIDs as authcID. JM-962
git-svn-id: http://svn.igniterealtime.org/svn/repos/wildfire/trunk@7040 b35dd754-fafc-0310-a699-88a17e54d16e
2682cf2b · Gaston Dombiak · gato · 01d0b5a7 · 2682cf2b
Commit 2682cf2b authored Feb 07, 2007 by Gaston Dombiak Committed by gato Feb 07, 2007
Hide whitespace changes
Inline Side-by-side

Showing with 14 additions and 0 deletions

SASLAuthentication.java ...ava/org/jivesoftware/wildfire/net/SASLAuthentication.java +14 -0

No files found.
--- a/src/java/org/jivesoftware/wildfire/net/SASLAuthentication.java
+++ b/src/java/org/jivesoftware/wildfire/net/SASLAuthentication.java
@@ -456,6 +456,20 @@ public class SASLAuthentication {
            tokens.nextToken();
        }
        username = tokens.nextToken();
+        if (username != null && username.contains("@")) {
+            // Check that the specified domain matches the server's domain
+            int index = username.indexOf("@");
+            String domain = username.substring(index + 1);
+            if (domain.equals(XMPPServer.getInstance().getServerInfo().getName())) {
+                // Domains match. Store in username just the username
+                username = username.substring(0, index);
+            }
+            else {
+                // Unknown domain. Return authentication failed
+                authenticationFailed(session);
+                return Status.failed;
+            }
+        }
        password = tokens.nextToken();
        try {
            AuthToken token = AuthFactory.authenticate(username, password);