server session FEATURE handle expired accounts Fixes #267

commit: 22b4fe75c2da6989fc88d279317b3c6476a6b099 [log] [tgz]
author: Michal Vasko <mvasko@cesnet.cz> Wed Nov 04 08:52:29 2020 +0100
committer: Michal Vasko <mvasko@cesnet.cz> Wed Nov 04 08:52:29 2020 +0100
tree: c3a6b9a332975961c29dd38d9990dedacc98e5a1
parent: b4ff2fd09b8dfb44c9a2935a01fc993768b999b2 [diff]
diff --git a/src/session_server_ssh.c b/src/session_server_ssh.c
index 4f0c321..a93a080 100644
--- a/src/session_server_ssh.c
+++ b/src/session_server_ssh.c

@@ -700,6 +700,9 @@
         if (!spwd) {
             VRB("Failed to retrieve the shadow entry for \"%s\".", username);
             return NULL;
+        } else if ((spwd->sp_expire > -1) && (spwd->sp_expire <= (time(NULL) / (60 * 60 * 24)))) {
+            WRN("User \"%s\" account has expired.", username);
+            return NULL;
         }
 
         pass_hash = spwd->sp_pwdp;
commit	22b4fe75c2da6989fc88d279317b3c6476a6b099	[log] [tgz]
author	Michal Vasko <mvasko@cesnet.cz>	Wed Nov 04 08:52:29 2020 +0100
committer	Michal Vasko <mvasko@cesnet.cz>	Wed Nov 04 08:52:29 2020 +0100
tree	c3a6b9a332975961c29dd38d9990dedacc98e5a1
parent	b4ff2fd09b8dfb44c9a2935a01fc993768b999b2 [diff]