[strongSwan-dev] Pull request for external-authorization plugin

[Martin Willi]

> So what you propose is to just use get_other_eap_id? 

Yes, that is sufficient for almost all cases. Usually if EAP is used,
the EAP-Identity is the user identity that matters. If not, it is the
IKE identity. And this is exactly what that call returns.

> Does strongswan *know* what type the identity is or is it just a string
> for it? 

It does, and it can be queried by the get_type() identification_t
method.

Regards
Martin