prosody
25e1a544a096
util/sasl/digest-md5.lua
Software / code / prosody
Comparison
util/sasl/digest-md5.lua @ 2568:25e1a544a096
util.sasl.digest-md5: Revert changeset 6094a4e2b6f3 as it breaks some clients, re-visit some time down the line
| author | Matthew Wild <mwild1@gmail.com> |
|---|---|
| date | Fri, 05 Feb 2010 17:46:46 +0000 |
| parent | 2211:6094a4e2b6f3 |
| child | 2569:8474ea768c89 |
comparison
equal
deleted
inserted
replaced
| 2211:6094a4e2b6f3 | 2568:25e1a544a096 |
|---|---|
| 212 HA2 = md5(A2, true); | 212 HA2 = md5(A2, true); |
| 213 | 213 |
| 214 KD = HA1..":"..response["nonce"]..":"..response["nc"]..":"..response["cnonce"]..":"..response["qop"]..":"..HA2 | 214 KD = HA1..":"..response["nonce"]..":"..response["nc"]..":"..response["cnonce"]..":"..response["qop"]..":"..HA2 |
| 215 local rspauth = md5(KD, true); | 215 local rspauth = md5(KD, true); |
| 216 self.authenticated = true; | 216 self.authenticated = true; |
| 217 return "success", serialize({rspauth = rspauth}); | 217 --TODO: considering sending the rspauth in a success node for saving one roundtrip; allowed according to http://tools.ietf.org/html/draft-saintandre-rfc3920bis-09#section-7.3.6 |
| 218 return "challenge", serialize({rspauth = rspauth}); | |
| 218 else | 219 else |
| 219 return "failure", "not-authorized", "The response provided by the client doesn't match the one we calculated." | 220 return "failure", "not-authorized", "The response provided by the client doesn't match the one we calculated." |
| 220 end | 221 end |
| 221 elseif self.step == 3 then | 222 elseif self.step == 3 then |
| 222 if self.authenticated ~= nil then return "success" | 223 if self.authenticated ~= nil then return "success" |
