public Boolean auth(ServerSession session, String username, Buffer buffer) throws Exception {
boolean newPassword = buffer.getBoolean();
if (newPassword) {
throw new IllegalStateException("Password changes are not supported");
}
String password = buffer.getString();
return checkPassword(session, username, password);
}
