Software / code / prosody
Diff
plugins/mod_saslauth.lua @ 5843:fb6573e191cf
Merge Tobias SCRAM-PLUS work
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Sun, 22 Sep 2013 00:44:20 +0200 |
| parent | 5776:bd0ff8ae98a8 |
| parent | 5838:a2659baf8332 |
| child | 5860:87e2fafba5df |
line wrap: on
line diff
--- a/plugins/mod_saslauth.lua Mon Sep 16 18:41:30 2013 +0100 +++ b/plugins/mod_saslauth.lua Sun Sep 22 00:44:20 2013 +0200 @@ -242,6 +242,16 @@ return; end origin.sasl_handler = usermanager_get_sasl_handler(module.host, origin); + if origin.secure then + -- check wether LuaSec has the nifty binding to the function needed for tls-unique + -- FIXME: would be nice to have this check only once and not for every socket + if origin.conn:socket().getpeerfinished then + origin.sasl_handler:add_cb_handler("tls-unique", function(self) + return self.userdata:getpeerfinished(); + end); + origin.sasl_handler["userdata"] = origin.conn:socket(); + end + end local mechanisms = st.stanza("mechanisms", mechanisms_attr); for mechanism in pairs(origin.sasl_handler:mechanisms()) do if mechanism ~= "PLAIN" or origin.secure or allow_unencrypted_plain_auth then
