From 58977936c1160b7bf002a1a839cb46d475260810 Mon Sep 17 00:00:00 2001
From: Aki Tuomi <aki.tuomi@open-xchange.com>
Date: Wed, 4 Mar 2026 14:39:43 +0200
Subject: [PATCH] [PATCH 18/24] doveadm: client-connection - Get API key from
 per-connection settings

Gbp-Pq: Name CVE-2026-27856-3.patch
---
 src/doveadm/client-connection-http.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/doveadm/client-connection-http.c b/src/doveadm/client-connection-http.c
index 5d927d1..dfbc352 100644
--- a/src/doveadm/client-connection-http.c
+++ b/src/doveadm/client-connection-http.c
@@ -987,7 +987,7 @@ doveadm_http_server_auth_api_key(struct client_request_http *req,
 				 const struct http_auth_credentials *creds)
 {
 	struct client_connection_http *conn = req->conn;
-	const struct doveadm_settings *set = doveadm_settings;
+	const struct doveadm_settings *set = conn->conn.set;
 	string_t *b64_value;
 
 	if (*set->doveadm_api_key == '\0') {
-- 
2.30.2