auth: Add a default auth-token UNIX socket

The permissions are 0666, so everyone can connect to it. This should be
safe enough, because only token authentication is allowed and failures are
delayed. Someone might flood the socket with connections, but auth-userdb
socket already has the same potential issue.

diff --git a/src/auth/auth-settings.c b/src/auth/auth-settings.c
index 7d7aca108287e9bf515a16a029f5628ed08e97c8..a16a91bdd57352429b37c80140c3ad369fa30da7 100644 (file)
--- a/src/auth/auth-settings.c
+++ b/src/auth/auth-settings.c
@@ -39,7 +39,7 @@ struct service_settings auth_service_settings = {
 };
 
 const struct setting_keyvalue auth_service_settings_defaults[] = {
-       { "unix_listener", "auth-client auth-login auth-master auth-userdb login\\slogin token-login\\stokenlogin" },
+       { "unix_listener", "auth-client auth-login auth-token auth-master auth-userdb login\\slogin token-login\\stokenlogin" },
 
        { "unix_listener/auth-client/path", "auth-client" },
        { "unix_listener/auth-client/type", "auth" },
@@ -51,6 +51,10 @@ const struct setting_keyvalue auth_service_settings_defaults[] = {
        { "unix_listener/auth-login/mode", "0600" },
        { "unix_listener/auth-login/user", "$SET:default_internal_user" },
 
+       { "unix_listener/auth-token/path", "auth-token" },
+       { "unix_listener/auth-token/type", "token" },
+       { "unix_listener/auth-token/mode", "0666" },
+
        { "unix_listener/auth-master/path", "auth-master" },
        { "unix_listener/auth-master/type", "master" },
        { "unix_listener/auth-master/mode", "0600" },