From 4262db951e84928cef57271537508a8ba83482a7 Mon Sep 17 00:00:00 2001
From: Matthew Wild <mwild1@gmail.com>
Date: Fri, 5 Feb 2010 17:46:46 +0000
Subject: util.sasl.digest-md5: Revert changeset 6094a4e2b6f3 as it breaks some
 clients, re-visit some time down the line

---
 util/sasl/digest-md5.lua | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/util/sasl/digest-md5.lua b/util/sasl/digest-md5.lua
index e80ed63a..1429a5c6 100644
--- a/util/sasl/digest-md5.lua
+++ b/util/sasl/digest-md5.lua
@@ -214,7 +214,8 @@ local function digest(self, message)
 			KD = HA1..":"..response["nonce"]..":"..response["nc"]..":"..response["cnonce"]..":"..response["qop"]..":"..HA2
 			local rspauth = md5(KD, true);
 			self.authenticated = true;
-			return "success", serialize({rspauth = rspauth});
+			--TODO: considering sending the rspauth in a success node for saving one roundtrip; allowed according to http://tools.ietf.org/html/draft-saintandre-rfc3920bis-09#section-7.3.6
+			return "challenge", serialize({rspauth = rspauth});
 		else
 			return "failure", "not-authorized", "The response provided by the client doesn't match the one we calculated."
 		end
-- 
cgit v1.2.3