- /* check for root dn/passwd */
- if ( be_isroot_pw( be, conn, ndn, cred ) ) {
- /* front end will send result */
- if(edn->bv_val != NULL) free( edn->bv_val );
- ber_dupbv( edn, be_root_dn( be ) );
- rc = LDAP_SUCCESS;
- goto done;
- }
-
- if ( ! access_allowed( be, conn, op, e,
- password, NULL, ACL_AUTH ) )
- {
- send_ldap_result( conn, op, rc = LDAP_INSUFFICIENT_ACCESS,
- NULL, NULL, NULL, NULL );
+ rs->sr_err = access_allowed( op, e,
+ password, NULL, ACL_AUTH, NULL );
+ if ( ! rs->sr_err ) {
+#if 1
+ rs->sr_err = LDAP_INVALID_CREDENTIALS;
+#else
+ rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
+#endif