Software /
code /
prosody-modules
File
mod_require_otr/mod_require_otr.lua @ 5406:b86d80e21c60
mod_http_oauth2: Validate consistency of response and grant types
Ensure that these correlated fields make sense per RFC 7591 § 2.1, even
though we currently only check the response type during authorization.
This could probably all be deleted if (when!) we remove the implicit
grant, since then these things don't make any sense anymore.
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Tue, 02 May 2023 16:34:31 +0200 |
parent | 1295:dfe1818962f5 |
line wrap: on
line source
local st = require "util.stanza"; local block_groupchat = module:get_option_boolean("otr_block_groupchat", false); function reject_plaintext_messages(event) local body = event.stanza:get_child_text("body"); if body and body:sub(1,4) ~= "?OTR" or (not block_groupchat and event.stanza.attr.type == "groupchat") then return event.origin.send(st.error_reply(event.stanza, "modify", "policy-violation", "OTR encryption is required for conversations on this server")); end end module:hook("pre-message/bare", reject_plaintext_messages, 300); module:hook("pre-message/full", reject_plaintext_messages, 300); module:hook("pre-message/host", reject_plaintext_messages, 300);