From 0a4aac255670e767ab036790b57578d0abf2d8f2 Mon Sep 17 00:00:00 2001
From: Stefan Becker <chemobejk@gmail.com>
Date: Sun, 24 Feb 2013 09:01:37 +0200
Subject: [PATCH] security: allow / and \ as Kerberos realm seperators

This makes it the same as is for the SIP login name. This only applies
when the user has not selected Single Sign-On.
---
 src/core/sip-sec-krb5.c | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/core/sip-sec-krb5.c b/src/core/sip-sec-krb5.c
index c3aeb493..934a105e 100644
--- a/src/core/sip-sec-krb5.c
+++ b/src/core/sip-sec-krb5.c
@@ -357,10 +357,10 @@ sip_sec_krb5_obtain_tgt(const char *username_in,
 	memset(&credentials, 0, sizeof(krb5_creds));
 
 	/* extracts realm as domain part of username
-	 * either before '\' or after '@'
+	 * either before '/' & '\' or after '@'
 	 */
-	domain_user = g_strsplit(username_in, "\\", 2);
-	if (domain_user && domain_user[1]) {
+	domain_user = g_strsplit_set(username_in, "/\\", 2);
+	if (domain_user[1]) {
 		realm = g_ascii_strup(domain_user[0], -1);
 		username = g_strdup(domain_user[1]);
 	} else {
-- 
2.11.4.GIT