From 0a2b21962b9f9048d779ecb6c79a2cf9f9e752ec Mon Sep 17 00:00:00 2001
From: ghost <ma-koenig@gmx.net>
Date: Sun, 28 Dec 2025 22:13:23 +0100
Subject: [PATCH] Show A1-MD5 key in bad credentials warning.

---
 src/auth.rs | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/auth.rs b/src/auth.rs
index 1ade8dc..5dff906 100644
--- a/src/auth.rs
+++ b/src/auth.rs
@@ -181,7 +181,8 @@ impl<S: CredentialStore + Clone> AuthManager<S> {
 
         let key = self.derive_long_term_key(&username, &password);
         if !validate_message_integrity(msg, &key) {
-            warn!("auth reject: bad credentials username={} realm={} peer={}", username, realm, peer);
+            let key_hex = hex::encode(&key);
+            warn!("auth reject: bad credentials username={} realm={} peer={} a1_md5={} (debug)", username, realm, peer, key_hex);
             return AuthStatus::Reject {
                 code: 401,
                 reason: "Bad Credentials",