lib-auth, auth: Include auth_allow_weak_schemes setting in related log messages

Makes it easier to understand how to change the behavior.

diff --git a/src/auth/main.c b/src/auth/main.c
index 8a867333fd55784bc8377c6999e2e35f9fe72af6..c3b01becad75c6a980296094081fa605d42510a8 100644 (file)
--- a/src/auth/main.c
+++ b/src/auth/main.c
@@ -241,7 +241,8 @@ static void main_init(void)
                /* caching is handled only by the main auth process */
                passdb_cache_init(global_auth_settings);
                if (global_auth_settings->allow_weak_schemes)
-                       i_warning("Weak password schemes are allowed");
+                       i_warning("Weak password schemes are allowed "
+                                 "(auth_allow_weak_schemes=yes)");
        }
 }
 

diff --git a/src/lib-auth/password-scheme.c b/src/lib-auth/password-scheme.c
index 40a0ebb5d770130e02bc5fc1215fc9493edcc04e..796feac7023128cc259a0267b98695ea0ff45f79 100644 (file)
--- a/src/lib-auth/password-scheme.c
+++ b/src/lib-auth/password-scheme.c
@@ -92,7 +92,8 @@ int password_verify(const char *plaintext,
        }
 
        if (s->weak && !g_allow_weak) {
-               *error_r = t_strdup_printf("Weak password scheme '%s' used and refused",
+               *error_r = t_strdup_printf("Weak password scheme '%s' used and refused "
+                                          "(Set auth_allow_weak_schemes=yes to allow)",
                                           s->name);
                return -1;
        }