Use allow_retry for expired passwords, too

author Alan T. DeKok <aland@freeradius.org>

Wed, 27 May 2015 14:04:56 +0000 (10:04 -0400)

committer Alan T. DeKok <aland@freeradius.org>

Wed, 27 May 2015 14:04:56 +0000 (10:04 -0400)
author Alan T. DeKok <aland@freeradius.org>
Wed, 27 May 2015 14:04:56 +0000 (10:04 -0400)
committer Alan T. DeKok <aland@freeradius.org>
Wed, 27 May 2015 14:04:56 +0000 (10:04 -0400)
diff --git a/src/modules/rlm_mschap/rlm_mschap.c b/src/modules/rlm_mschap/rlm_mschap.c

index 9cac6d04e018111e2506b5bc95cdb12b88c252e7..6d7be374cbd520688f571ce9d5c728bd9dc825fb 100644 (file)
--- a/src/modules/rlm_mschap/rlm_mschap.c
+++ b/src/modules/rlm_mschap/rlm_mschap.c
@@ -1888,7 +1888,8 @@ static rlm_rcode_t CC_HINT(nonnull) mod_authenticate(void * instance, REQUEST *r
                                 snprintf(newchal + (i * 2), 3, "%02x", fr_rand() & 0xff);
                         }
  
-                       snprintf(buffer, sizeof(buffer), "E=648 R=0 C=%s V=3 M=Password Expired", newchal);
+                       snprintf(buffer, sizeof(buffer), "E=648 R=%d C=%s V=3 M=Password Expired",
+                                inst->allow_retry, newchal);
  
                         RDEBUG("Password has expired.  The user should retry authentication");
                         mschap_add_reply(request, *response->vp_octets, "MS-CHAP-Error", buffer, strlen(buffer));
author	Alan T. DeKok <aland@freeradius.org>
	Wed, 27 May 2015 14:04:56 +0000 (10:04 -0400)
committer	Alan T. DeKok <aland@freeradius.org>
	Wed, 27 May 2015 14:04:56 +0000 (10:04 -0400)