File

mod_ipcheck/mod_ipcheck.lua @ 1304:9f24ccaa66a6

mod_firewall: Do not cache conditions with only a single use
author Florian Zeitz <florob@babelmonkeys.de>
date Sun, 16 Feb 2014 18:19:12 +0100
parent 1245:a1287d1f8a1f
child 1945:e5039f14e2a7
line wrap: on
line source


-- mod_ipcheck.lua
-- Implementation of XEP-0279: Server IP Check <http://xmpp.org/extensions/xep-0279.html>

local st = require "util.stanza";

module:add_feature("urn:xmpp:sic:0");

module:hook("iq/bare/urn:xmpp:sic:0:ip", function(event)
	local origin, stanza = event.origin, event.stanza;
	if stanza.attr.type == "get" then
		if stanza.attr.to then
			origin.send(st.error_reply(stanza, "auth", "forbidden", "You can only ask about your own IP address"));
		elseif origin.ip then
			origin.send(st.reply(stanza):tag("ip", {xmlns='urn:xmpp:sic:0'}):text(origin.ip));
		else
			-- IP addresses should normally be available, but in case they are not
			origin.send(st.error_reply(stanza, "cancel", "service-unavailable", "IP address for this session is not available"));
		end
		return true;
	end
end);

module:add_feature("urn:xmpp:sic:1");

module:hook("iq/bare/urn:xmpp:sic:1:address", function(event)
	local origin, stanza = event.origin, event.stanza;
	if stanza.attr.type == "get" then
		if stanza.attr.to then
			origin.send(st.error_reply(stanza, "auth", "forbidden", "You can only ask about your own IP address"));
		elseif origin.ip then
			local reply = st.reply(stanza):tag("address", {xmlns='urn:xmpp:sic:0'})
				:tag("ip"):text(origin.ip):up()
			if origin.conn and origin.conn.port then -- server_event
				reply:tag("port"):text(tostring(origin.conn:port()))
			elseif origin.conn and origin.conn.clientport then -- server_select
				reply:tag("port"):text(tostring(origin.conn:clientport()))
			end
			origin.send(reply);
		else
			-- IP addresses should normally be available, but in case they are not
			origin.send(st.error_reply(stanza, "cancel", "service-unavailable", "IP address for this session is not available"));
		end
		return true;
	end
end);