aboutsummaryrefslogtreecommitdiffstats
path: root/main
diff options
context:
space:
mode:
authorfile <file@f38db490-d61c-443f-a65b-d21fe96a405b>2008-01-14 20:01:19 +0000
committerfile <file@f38db490-d61c-443f-a65b-d21fe96a405b>2008-01-14 20:01:19 +0000
commitb562c9525981dfc1826a8648e192aa40e63cfa4a (patch)
treeb37d89f787562c89446896cf67be37b8fcc70ab6 /main
parent2cdb1993af52b1eccfc7aaadf7e860f074c962bb (diff)
Make sure the user's manager secret exists, even if it is blank.
(closes issue #11749) Reported by: srt git-svn-id: http://svn.digium.com/svn/asterisk/trunk@98830 f38db490-d61c-443f-a65b-d21fe96a405b
Diffstat (limited to 'main')
-rw-r--r--main/manager.c2
1 files changed, 1 insertions, 1 deletions
diff --git a/main/manager.c b/main/manager.c
index 0016cd903..8e87af713 100644
--- a/main/manager.c
+++ b/main/manager.c
@@ -997,7 +997,7 @@ static int authenticate(struct mansession *s, const struct message *m)
ast_log(LOG_NOTICE, "%s failed to pass IP ACL as '%s'\n", ast_inet_ntoa(s->sin.sin_addr), username);
} else if (!strcasecmp(astman_get_header(m, "AuthType"), "MD5")) {
const char *key = astman_get_header(m, "Key");
- if (!ast_strlen_zero(key) && !ast_strlen_zero(s->challenge)) {
+ if (!ast_strlen_zero(key) && !ast_strlen_zero(s->challenge) && user->secret) {
int x;
int len = 0;
char md5key[256] = "";