Comparison

core/usermanager.lua @ 228:875842235836

Updated usermanager with DIGEST-MD5 support
author Waqas Hussain <waqas20@gmail.com>
date Sun, 09 Nov 2008 03:33:38 +0500
parent 60:44800be871f5
child 449:c0a4a1e63d70
comparison
equal deleted inserted replaced
227:211c2e04c82b 228:875842235836
1 1
2 require "util.datamanager" 2 require "util.datamanager"
3 local datamanager = datamanager; 3 local datamanager = datamanager;
4 local log = require "util.logger".init("usermanager"); 4 local log = require "util.logger".init("usermanager");
5 local error = error;
6 local hashes = require "util.hashes";
5 7
6 module "usermanager" 8 module "usermanager"
7 9
8 function validate_credentials(host, username, password) 10 function validate_credentials(host, username, password, method)
9 log("debug", "User '%s' is being validated", username); 11 log("debug", "User '%s' is being validated", username);
10 local credentials = datamanager.load(username, host, "accounts") or {}; 12 local credentials = datamanager.load(username, host, "accounts") or {};
11 if password == credentials.password then return true; end 13 if method == nil then method = "PLAIN"; end
12 return false; 14 if method == "PLAIN" and credentials.password then -- PLAIN, do directly
15 if password == credentials.password then
16 return true;
17 else
18 return nil, "Auth failed. Invalid username or password.";
19 end
20 end
21 -- must do md5
22 if not hashes.md5 then
23 return nil, "Server misconfiguration, the md5 library is not available.";
24 end
25 -- make credentials md5
26 local pwd = credentials.password;
27 if not pwd then pwd = credentials.md5; else pwd = hashes.md5(pwd); end
28 -- make password md5
29 if method == "PLAIN" then
30 password = hashes.md5(password or "");
31 elseif method ~= "DIGEST-MD5" then
32 return nil, "Unsupported auth method";
33 end
34 -- compare
35 if password == pwd then
36 return true;
37 else
38 return nil, "Auth failed. Invalid username or password.";
39 end
13 end 40 end
14 41
15 function user_exists(username, host) 42 function user_exists(username, host)
16 return datamanager.load(username, host, "accounts") ~= nil; 43 return datamanager.load(username, host, "accounts") ~= nil; -- FIXME also check for empty credentials
17 end 44 end
18 45
19 function create_user(username, password, host) 46 function create_user(username, password, host)
20 return datamanager.store(username, host, "accounts", {password = password}); 47 return datamanager.store(username, host, "accounts", {password = password});
21 end 48 end
22 49
50 function get_supported_methods(host)
51 local methods = {["PLAIN"] = true}; -- TODO this should be taken from the config
52 if hashes.md5 then
53 methods["DIGEST-MD5"] = true;
54 end
55 return methods;
56 end
57
23 return _M; 58 return _M;