From 53e8d0a33d09ffc08e07b4caa46f65253ddbc122 Mon Sep 17 00:00:00 2001
From: Jose Luis Duran <jlduran@users.noreply.github.com>
Date: Sat, 21 Nov 2015 22:10:58 -0200
Subject: Escape RADIUS secret in strongswan.conf

If a RADIUS secret is, for example, `#secret-key#`, EAP-RADIUS
authentication will fail, as the `#` can be interpreted by the
strongswan.conf parser as a comment.

To avoid this from happening, set the key within double quotes.
---
 src/etc/inc/vpn.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src')

diff --git a/src/etc/inc/vpn.inc b/src/etc/inc/vpn.inc
index 0f9689f..937aba1 100644
--- a/src/etc/inc/vpn.inc
+++ b/src/etc/inc/vpn.inc
@@ -504,7 +504,7 @@ EOD;
 			$radius_server_txt .= <<<EOD
 				{$nice_user_source} {
 					address = {$auth_server['host']}
-					secret = {$auth_server['radius_secret']}
+					secret = "{$auth_server['radius_secret']}"
 					auth_port = {$auth_server['radius_auth_port']}
 					acct_port = {$auth_server['radius_acct_port']}
 				}
-- 
cgit v1.1