i'm answering my own question. after reading the code, i
noticed that
unlike authreg_ldap, authreg_pam didn't use realm parameter
at all.
enclosed find a diff to authreg_pam.c of
jabberd-2.0s11.tar.gz that
includes realm into username if realm has been defined and
is not empty.
i'll cc this to jabberd list, which may be more appropriate
for the
diff. please let me know if you can commit this patch to
CVS or if not,
how it should be modified in order to be accepted.
-- juha
Juha Heinanen writes:
> i tried to make jabberd2 authenticate using pam with
radius backend.
> radius server gets access request without realm in
User-Name:
>
> User-Name = "jh"
> User-Password = "xxxxxx"
> NAS-IP-Address = yyy.yyy.yyy.yyy
> NAS-Identifier = "jabberd"
> NAS-Port = 24489
> NAS-Port-Type = Virtual
> Service-Type = Authenticate-Only
>
> even when i have configured <id
realm='test.fi'>test.fi</id> in
> local section of c2s.xml.
>
> i have tried this with both gaim and emacs jabber
clients where i have
> configured username = 'jh' and server='test.fi'.
neither allowed me to
> configure realm.
>
> in syslog i get debug output:
>
> Oct 3 11:45:29 rautu jabberd/c2s[13511]:
pam_radius_auth: Got user name jh
>
> which sort of lets me understand that jabberd didn't
include realm in
> username.
>
> does anyone know if there is way to get realm included
in radius access
> request from jabberd/pam-radius-auth?
>
> -- juha
> _______________________________________________
> JAdmin mailing list
> JAdmin jabber.org
> http:/
/mail.jabber.org/mailman/listinfo/jadmin
> FAQ: http://ww
w.jabber.org/about/jadminfaq.shtml
> _______________________________________________
_______________________________________________
jabberd mailing list
jabberdjabberstudio.org
http:
//mail.jabber.org/mailman/listinfo/jabberd
|