ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity

android: Don't enforce the server address as AAA identity for EAP-PEAP/TTLS 

This is similar to EAP-TLS.  We could probably make this configurable
later.
This commit is contained in:
Tobias Brunner 2018-07-04 11:17:04 +02:00
parent 07237f94e2
commit 485d202adc
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
src/frontends/android/app/src/main/jni/libandroidbridge/backend/android_service.c
View File

@ -640,6 +640,9 @@ static void add_auth_cfg_pw(private_android_service_t *this,
{ /* use EAP-TTLS if BYOD is enabled */
auth->add(auth, AUTH_RULE_EAP_TYPE, EAP_TTLS);
}
/* in case EAP-PEAP or EAP-TTLS is used we currently accept any identity */
auth->add(auth, AUTH_RULE_AAA_IDENTITY,
identification_create_from_string("%any"));
username = this->settings->get_str(this->settings, "connection.username",
NULL);