From 5ee762728b5acc38906ae3ba5523ded1f0d7005c Mon Sep 17 00:00:00 2001
From: Tobias Markmann <tm@ayena.de>
Date: Thu, 19 Nov 2009 16:43:38 +0100
Subject: Allow SASL PLAIN over unsecure connections when intended by admin.

---
 plugins/mod_saslauth.lua | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'plugins')

diff --git a/plugins/mod_saslauth.lua b/plugins/mod_saslauth.lua
index d595fd24..2223f056 100644
--- a/plugins/mod_saslauth.lua
+++ b/plugins/mod_saslauth.lua
@@ -141,7 +141,7 @@ module:add_event_hook("stream-features",
 					session.sasl_handler = new_sasl(session.host, anonymous_authentication_profile);
 				else
 					session.sasl_handler = new_sasl(session.host, default_authentication_profile);
-					if not session.secure then 
+					if not (module:get_option("allow_unencrypted_plain_auth")) and not session.secure then
 						session.sasl_handler:forbidden({"PLAIN"});
 					end
 				end
-- 
cgit v1.2.3