.TP
.BR charon.plugins.xauth-pam.pam_service " [login]"
PAM service to be used for authentication
+.TP
+.BR charon.plugins.xauth-pam.trim_email " [yes]"
+If an email address is given as an XAuth username, trim it to just the
+username part.
.SS libstrongswan section
.TP
.BR libstrongswan.cert_cache " [yes]"
switch (attr->get_type(attr))
{
case XAUTH_USER_NAME:
- /* trim to username part if email address given */
chunk = attr->get_chunk(attr);
- pos = memchr(chunk.ptr, '@', chunk.len);
- if (pos)
+ /* trim to username part if email address given */
+ if (lib->settings->get_bool(lib->settings,
+ "%s.plugins.xauth-pam.trim_email",
+ TRUE, charon->name))
{
- chunk.len = (u_char*)pos - chunk.ptr;
+ pos = memchr(chunk.ptr, '@', chunk.len);
+ if (pos)
+ {
+ chunk.len = (u_char*)pos - chunk.ptr;
+ }
}
attr2string(user, sizeof(user), chunk);
break;