Software /
code /
prosody
File
plugins/mod_auth_anonymous.lua @ 3218:032b81731f0f
usermanager: Handle checking for global admins on behalf of providers
author | Matthew Wild <mwild1@gmail.com> |
---|---|
date | Wed, 09 Jun 2010 21:24:20 +0100 |
parent | 3191:b6388c4f9250 |
child | 3270:4710fd513f94 |
line wrap: on
line source
-- Prosody IM -- Copyright (C) 2008-2010 Matthew Wild -- Copyright (C) 2008-2010 Waqas Hussain -- Copyright (C) 2010 Jeff Mitchell -- -- This project is MIT/X11 licensed. Please see the -- COPYING file in the source package for more information. -- local log = require "util.logger".init("usermanager"); local type = type; local ipairs = ipairs; local jid_bare = require "util.jid".bare; local config = require "core.configmanager"; local new_sasl = require "util.sasl".new; local datamanager = require "util.datamanager"; function new_default_provider(host) local provider = { name = "anonymous" }; function provider.test_password(username, password) return nil, "Password based auth not supported."; end function provider.get_password(username) return nil, "Password not available."; end function provider.set_password(username, password) return nil, "Password based auth not supported."; end function provider.user_exists(username) return nil, "Only anonymous users are supported."; -- FIXME check if anonymous user is connected? end function provider.create_user(username, password) return nil, "Account creation/modification not supported."; end function provider.get_sasl_handler() local realm = module:get_option("sasl_realm") or module.host; local anonymous_authentication_profile = { anonymous = function(username, realm) return true; -- for normal usage you should always return true here end }; return new_sasl(realm, anonymous_authentication_profile); end function provider.is_admin(jid) local admins = config.get(host, "core", "admins"); if admins ~= config.get("*", "core", "admins") and type(admins) == "table" then jid = jid_bare(jid); for _,admin in ipairs(admins) do if admin == jid then return true; end end elseif admins then log("error", "Option 'admins' for host '%s' is not a table", host); end return is_admin(jid); -- Test whether it's a global admin instead end return provider; end local function dm_callback(username, host, datastore, data) if host == module.host then return false; end return username, host, datastore, data; end local host = hosts[module.host]; local _saved_disallow_s2s = host.disallow_s2s; function module.load() _saved_disallow_s2s = host.disallow_s2s; host.disallow_s2s = module:get_option("disallow_s2s") ~= false; datamanager.add_callback(dm_callback); end function module.unload() host.disallow_s2s = _saved_disallow_s2s; datamanager.remove_callback(dm_callback); end module:add_item("auth-provider", new_default_provider(module.host));