c099f9b
When a token is configured in password file only authenticate once There is no need to spam a token with PIN attempts. Some tokens have a limit of auth failures before locking. https://pagure.io/mod_nss/issue/42