fix a bug

In the previous commit, the client would receive a failure message but would actually remain logged in after an authzid/authcid mismatch. This was a correctness rather than a security issue, but now it's fixed so that the client never logs in in the first place.
2019-12-25 15:06:26 -05:00 · 2019-12-25 15:06:26 -05:00 · 33c8b2177e
commit 33c8b2177e
parent c8ccf94936
4 changed files with 28 additions and 19 deletions
--- a/irc/nickserv.go
+++ b/irc/nickserv.go
@ -536,7 +536,7 @@ func nsIdentifyHandler(server *Server, client *Client, command string, params []

 	// try certfp
 	if !loginSuccessful && client.certfp != "" {
-		err := server.accounts.AuthenticateByCertFP(client)
+		err := server.accounts.AuthenticateByCertFP(client, "")
 		loginSuccessful = (err == nil)
 	}