From 7b0d0d7f084465e71ac2fcfbe4efffa71a69a8d0 Mon Sep 17 00:00:00 2001
From: Sebastian Harl <sh@tokkee.org>
Date: Wed, 5 Feb 2014 22:08:54 +0100
Subject: [PATCH] frontend/connection: Require authentication before allowing
 any commands.

---
 src/frontend/connection.c | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/src/frontend/connection.c b/src/frontend/connection.c
index f780979..24735de 100644
--- a/src/frontend/connection.c
+++ b/src/frontend/connection.c
@@ -173,6 +173,13 @@ command_handle(sdb_conn_t *conn)
 	sdb_log(SDB_LOG_DEBUG, "frontend: Handling command %u (len: %u)",
 			conn->cmd, conn->cmd_len);
 
+	if ((! conn->username) && (conn->cmd != CONNECTION_STARTUP)) {
+		const char *errmsg = "Authentication required";
+		sdb_connection_send(conn, CONNECTION_ERROR,
+				(uint32_t)strlen(errmsg), errmsg);
+		return -1;
+	}
+
 	/* reset */
 	sdb_strbuf_sprintf(conn->errbuf, "");
 
-- 
2.30.2