mod_saslauth: Set a nicer bounce error explaining SASL EXTERNAL failures
|
Kim Alvefur |
2019-12-07 |
mod_saslauth: Collect SASL EXTERNAL failures into an util.error object
|
Kim Alvefur |
2019-12-07 |
mod_saslauth: Advertise correct set of mechanisms
|
Kim Alvefur |
2019-12-02 |
mod_saslauth: Demote "no SASL mechanisms" error back to warning
|
Kim Alvefur |
2019-10-15 |
mod_saslauth: Improve logging of why no SASL mechanisms were offered
|
Kim Alvefur |
2019-10-15 |
mod_saslauth: Use the power of Set Theory to mange sets of SASL mechanisms
|
Kim Alvefur |
2019-10-15 |
mod_saslauth: Log (debug) messages about channel binding
|
Kim Alvefur |
2019-10-15 |
mod_saslauth: Remove useless debug log line
|
Kim Alvefur |
2019-10-12 |
mod_saslauth: Remove commented-out debug log line
|
Kim Alvefur |
2019-10-12 |
plugins: Remove tostring call from logging
|
Kim Alvefur |
2019-07-30 |
Fix various spelling mistakes [codespell]
|
Kim Alvefur |
2019-05-03 |
mod_saslauth: Improve log message when no SASL mechanisms offered (thanks hexa)
|
Kim Alvefur |
2018-11-24 |
mod_saslauth: Ignore unused argument [luacheck]
|
Kim Alvefur |
2018-02-04 |
mod_saslauth: Use renamed API for hooking non-stanzas
|
Kim Alvefur |
2018-02-04 |
mod_saslauth: Pass SASL EXTERNAL failure reason on to be used in error bounces
|
Kim Alvefur |
2018-02-04 |
mod_saslauth: Close connection if no fallback kicks in on SASL EXTERNAL failure
|
Kim Alvefur |
2018-02-03 |
Backed out changeset 89c42aff8510: The problem in ejabberd has reportedly been resolved and this change causes more problems than it solves (fixes #1006)
|
Kim Alvefur |
2018-02-04 |
mod_saslauth: Log which mechanisms are offered
|
Kim Alvefur |
2017-12-21 |
Merge 0.9->0.10
|
Kim Alvefur |
2017-09-14 |
mod_saslauth: Use correct varible name (thanks Roi)
|
Kim Alvefur |
2017-07-08 |
mod_saslauth: Remove unused argument [luacheck]
|
Kim Alvefur |
2017-04-01 |
mod_saslauth: Fix typoed variable name [luacheck]
|
Kim Alvefur |
2017-03-06 |
mod_saslauth: Switch to hook_tag from hook_stanza which was renamed in 2087d42f1e77
|
Kim Alvefur |
2017-03-06 |
Merge 0.9->0.10
|
Kim Alvefur |
2017-03-02 |
mod_saslauth: Log SASL failure reason
|
Kim Alvefur |
2017-03-02 |
mod_saslauth: Ignore shadowing of logger [luacheck]
|
Kim Alvefur |
2017-02-15 |
mod_saslauth: Improve logging as to why when SASL is not offered
|
Kim Alvefur |
2017-02-15 |
mod_saslauth: Cache logger in local for less typing
|
Kim Alvefur |
2017-02-15 |
core.sessionmanager, mod_saslauth: Introduce intermediate session type for authenticated but unbound sessions so that resource binding is not treated as a normal stanza
|
Kim Alvefur |
2016-12-13 |
mod_saslauth: Disable DIGEST-MD5 by default (closes #515)
|
Kim Alvefur |
2016-03-18 |
mod_saslauth: Make it easier to support multiple channel binding methonds
|
Kim Alvefur |
2014-11-19 |
mod_saslauth: Break out tls-unique channel binding callback so it is instantiated once
|
Kim Alvefur |
2014-11-19 |
mod_saslauth: Keep sasl_handler in a local variable
|
Kim Alvefur |
2014-11-19 |
mod_saslauth: Better name for config option
|
Kim Alvefur |
2014-10-21 |
mod_saslauth: Make it possible to disable certain mechanisms
|
Kim Alvefur |
2014-10-21 |
mod_saslauth: Add LOGIN to mechanisms not allowed over unencrypted connections as it may be offered by 3rd party authentication plugins
|
Kim Alvefur |
2014-10-21 |
mod_saslauth: Use a configurable set of mechanisms to not allow over unencrypted connections
|
Kim Alvefur |
2014-10-21 |
mod_saslauth: Log warning if no SASL mechanisms were offered
|
Kim Alvefur |
2014-10-21 |
mod_saslauth: Use type-specific config option getters
|
Kim Alvefur |
2014-10-21 |
mod_legacyauth, mod_saslauth, mod_tls: Pass require_encryption as default option to s2s_require_encryption so the later overrides the former
|
Kim Alvefur |
2014-10-21 |
mod_saslauth: Fix encoding of missing vs empty SASL reply messages
|
Kim Alvefur |
2014-09-23 |
mod_saslauth: Stricter SASL EXTERNAL handling more in line with XEP-0178
|
Kim Alvefur |
2014-09-23 |
mod_dialback, mod_saslauth: Remove broken fallback to dialback on SASL EXTERNAL failure
|
Kim Alvefur |
2014-09-23 |
mod_lastactivity, mod_legacyauth, mod_presence, mod_saslauth, mod_tls: Use the newer stanza:get_child APIs and optimize away some table lookups
|
Kim Alvefur |
2014-07-04 |
Merge 0.9->0.10
|
Kim Alvefur |
2014-03-25 |
mod_saslauth: Only do c2s SASL on normal VirtualHosts
|
Kim Alvefur |
2014-03-22 |
mod_saslauth: Make sure sasl handler has add_cb_handler (fixes #392)
|
Kim Alvefur |
2014-02-12 |
mod_saslauth: Collect data for channel binding only if we know for sure that the stream is encrypted
|
Kim Alvefur |
2013-10-07 |
Merge Tobias SCRAM-PLUS work
|
Kim Alvefur |
2013-09-21 |
mod_saslauth: Check whether LuaSec supports getpeerfinished() binding.
|
Tobias Markmann |
2011-01-17 |
mod_saslauth: Add channel binding handler for tls-unique channel binding.
|
Tobias Markmann |
2011-01-17 |
mod_saslauth: Set secure socket as SASL object user data for secure sessions.
|
Tobias Markmann |
2011-01-17 |
Remove all trailing whitespace
|
Florian Zeitz |
2013-08-09 |
mod_saslauth, mod_compression: Fix some cases where open_stream() was not being passed to/from (see df3c78221f26 and issue #338)
|
Matthew Wild |
2013-04-29 |
s2smanager, mod_s2s, mod_dialback, mod_saslauth: Move s2smanager.make_authenticated() to mod_s2s, and plugins now signal authentication via the s2s-authenticated event
|
Matthew Wild |
2013-03-22 |
mod_s2s, mod_saslauth, mod_compression: Refactor to have common code for opening streams
|
Kim Alvefur |
2013-03-16 |
mod_saslauth: Pass session to usermanager.get_sasl_handler()
|
Matthew Wild |
2012-07-04 |
mod_saslauth: Remove unused declaration of xmlns_stanzas
|
Matthew Wild |
2012-04-28 |
mod_saslauth: Remove useless import of, and call to nodeprep.
|
Kim Alvefur |
2012-02-12 |
mod_saslauth: Fire authentication-failure if make_authenticated() failed.
|
Kim Alvefur |
2012-02-12 |
mod_saslauth: Move authentication-success event to after session has been made authenticated.
|
Kim Alvefur |
2012-02-12 |
mod_saslauth: "" ~= nil (thanks, Zash!)
|
Paul Aurich |
2012-01-24 |
mod_saslauth: Never send empty <mechanisms/>, for real this time.
|
Waqas Hussain |
2011-10-12 |
mod_saslauth: Never send empty <mechanisms/>.
|
Waqas Hussain |
2011-10-12 |
mod_saslauth: Fire authentication-success and authentication-failure events (thanks scitor)
|
Matthew Wild |
2011-08-29 |
Merge 0.8->trunk
|
Matthew Wild |
2011-01-06 |
mod_saslauth: Remove special handling for SASL ANONYMOUS, and let mod_auth_anonymous handle it.
|
Waqas Hussain |
2010-12-28 |
util.sasl.*, mod_auth_*, mod_saslauth: Pass SASL handler as first parameter to SASL profile callbacks.
|
Waqas Hussain |
2010-12-27 |
mod_saslauth: Handle session bind requests to the host, fixes OneTeam login
|
Matthew Wild |
2010-12-24 |
mod_saslauth: Remove special handling for SASL ANONYMOUS, and let mod_auth_anonymous handle it.
|
Waqas Hussain |
2010-12-28 |
util.sasl.*, mod_auth_*, mod_saslauth: Pass SASL handler as first parameter to SASL profile callbacks.
|
Waqas Hussain |
2010-12-27 |
mod_saslauth: Handle session bind requests to the host, fixes OneTeam login
|
Matthew Wild |
2010-12-24 |
core.s2smanager, mod_console, mod_saslauth, util.certverification: rename util.certverification to util.x509
|
Kim Alvefur |
2010-12-12 |
s2s: SASL EXTERNAL
|
Paul Aurich |
2010-11-22 |
mod_saslauth: Allow restarting SASL negotiation from scratch.
|
Waqas Hussain |
2010-11-02 |
mod_saslauth: Separated processing of <auth/> and <response/> elements, and return proper error on out-of-order <response/> elements.
|
Waqas Hussain |
2010-11-02 |
mod_saslauth: Moved SASL mechanism selection and CDATA handling into separate functions.
|
Waqas Hussain |
2010-11-02 |
mod_saslauth: Handle SASL <abort/> properly.
|
Waqas Hussain |
2010-11-02 |
mod_saslauth: Updated to use the new events API.
|
Waqas Hussain |
2010-10-16 |
mod_saslauth: Improved logging a bit.
|
Waqas Hussain |
2010-10-16 |
mod_saslauth: Updated to use the new events API.
|
Waqas Hussain |
2010-10-16 |
mod_saslauth, mod_auth_cyrus, util.sasl_cyrus: Moved cyrus account provisioning check out of mod_saslauth.
|
Waqas Hussain |
2010-08-23 |
mod_saslauth: Get rid of the sasl_backend option (use auth modules instead).
|
Waqas Hussain |
2010-08-23 |
mod_saslauth: Get rid of most Cyrus SASL related code (use authentication='cyrus' instead).
|
Waqas Hussain |
2010-08-23 |
mod_saslauth: Fixed a nil global access.
|
Waqas Hussain |
2010-07-31 |
mod_saslauth: Check for unencrypted PLAIN auth in mod_saslauth instead of the SASL handler (makes it work for Cyrus SASL).
|
Waqas Hussain |
2010-07-31 |
mod_saslauth: Move mandatory encryption enforcement to before sasl_handler:select().
|
Waqas Hussain |
2010-07-31 |
mod_saslauth: Got rid of undocumented and useless 'sasl_realm' config option (was only used for anonymous auth, and that didn't make sense).
|
Waqas Hussain |
2010-07-18 |
mod_saslauth: Cleaned up unused requires.
|
Waqas Hussain |
2010-07-17 |
mod_saslauth: A little cleanup for anonymous_login.
|
Waqas Hussain |
2010-07-17 |
SASL: Simplified sasl_handler:mechanisms() to return a set, and not an array.
|
Waqas Hussain |
2010-07-14 |
mod_saslauth: Rename variable 'aret' to 'ok' as per convention
|
Matthew Wild |
2010-07-12 |
Merge 0.7->trunk
|
Matthew Wild |
2010-06-12 |
mod_saslauth: Return proper error on invalid usernames.
|
Waqas Hussain |
2010-06-11 |
mod_saslauth: Updated to use usermanager.get_sasl_handler.
|
Waqas Hussain |
2010-06-06 |
mod_saslauth: Fix log level
|
Matthew Wild |
2010-06-04 |
Correct out of order logic in mod_hashpassauth
|
Jeff Mitchell |
2010-05-28 |
Check in mod_hashpassauth -- works!
|
Jeff Mitchell |
2010-05-26 |
mod_saslauth: Split out cyrus SASL config options into locals, and add support for cyrus_application_name (default: 'prosody')
|
Matthew Wild |
2010-05-20 |
usermanager, mod_saslauth: Make account provisioning for Cyrus SASL optional (default: not required)
|
Matthew Wild |
2010-05-20 |
mod_saslauth: Add return value and error message to the Cyrus SASL handle_status callback
|
Matthew Wild |
2010-05-20 |
mod_saslauth: Allow the Cyrus SASL realm to be configurable
|
Matthew Wild |
2010-05-20 |
mod_saslauth: Tidier code for SASL backend selection.
|
Waqas Hussain |
2010-03-23 |
mod_saslauth: Fail with an error when the requested SASL backend cannot be used.
|
Waqas Hussain |
2010-03-23 |
Merge 0.6->0.7
|
Matthew Wild |
2010-03-22 |
Update copyright headers for 2010
|
Matthew Wild |
2010-03-22 |
mod_saslauth: Add a sasl_realm option
|
Paul Aurich |
2010-03-17 |
Merge 0.6.2/waqas with 0.6.2/MattJ
|
Matthew Wild |
2010-03-03 |
mod_saslauth: Don't print raw SASL data to avoid logging passwords unnecessarily
|
Matthew Wild |
2010-02-13 |
mod_saslauth: Requiring c2s encryption means requiring c2s encryption... thanks Flo
|
Matthew Wild |
2009-12-21 |
mod_saslauth: Add FIXME to remind myself to fix this as soon as I have time
|
Matthew Wild |
2010-03-01 |
mod_saslauth: Unlock globals while loading cyrus
|
Matthew Wild |
2010-03-01 |
mod_saslauth: Log debug message with full error if cyrussasl couldn't be loaded
|
Matthew Wild |
2010-02-15 |
mod_saslauth: Correct syntax for gracefully handling a missing cyrussasl library
|
Matthew Wild |
2010-02-15 |
mod_saslauth: Warn and fallback gracefully when Cyrus SASL is requested, but missing.
|
Waqas Hussain |
2010-02-14 |
mod_saslauth: Don't print raw SASL data to avoid logging passwords unnecessarily
|
Matthew Wild |
2010-02-13 |
mod_saslauth: Hook stream-features event using new events API.
|
Waqas Hussain |
2010-02-11 |
mod_saslauth: Fixed some indentation and added some semi-colons.
|
Waqas Hussain |
2010-01-11 |
mod_saslauth: Made some variables local to avoid unnecessary global access.
|
Waqas Hussain |
2010-01-11 |
mod_saslauth: Oops.
|
Paul Aurich |
2010-01-03 |
mod_saslauth: Use module:get_option()
|
Paul Aurich |
2010-01-03 |
mod_saslauth: Add sasl_backend config parameter
|
Paul Aurich |
2010-01-03 |
mod_saslauth: Adjust sanitizing.
|
Tobias Markmann |
2009-12-23 |
mod_saslauth: Sanitize debugging information so it won't break terminal emulation when using GSSAPI auth.
|
Tobias Markmann |
2009-12-23 |
added comment to remind us to fix binary output breaking the terminal
|
jorj |
2009-12-23 |
mod_saslauth: Make service_name configurable for CyrusSASL users.
|
Tobias Markmann |
2009-12-22 |
mod_saslauth: Add support for CyrusSASL.
|
Tobias Markmann |
2009-12-22 |
mod_saslauth: Requiring c2s encryption means requiring c2s encryption... thanks Flo
|
Matthew Wild |
2009-12-21 |
mod_saslauth: Fix typo in variable name
|
Matthew Wild |
2009-11-28 |
mod_saslauth: Allow relogins after failed SASL login.
|
Tobias Markmann |
2009-11-26 |
Use new cofig option reading API.
|
Tobias Markmann |
2009-11-19 |
Allow SASL PLAIN over unsecure connections when intended by admin.
|
Tobias Markmann |
2009-11-19 |
Provide SASL PLAIN mechanism only if TLS is active.
|
Tobias Markmann |
2009-11-18 |
Merge with sasl branch.
|
Tobias Markmann |
2009-11-16 |
Making mod_saslauth use the new SASL API.
sasl
|
Tobias Markmann |
2009-08-28 |
mod_saslauth: Fixed access of globals.
|
Waqas Hussain |
2009-10-18 |
mod_saslauth: Marked the im-session stream feature as optional. This allows smart clients to save a round trip.
|
Waqas Hussain |
2009-10-18 |
require_encryption deprecated, use c2s_require_encryption instead
|
Matthew Wild |
2009-10-05 |
Merge with 0.5
|
Matthew Wild |
2009-09-29 |
mod_saslauth: Prep username used for authenticating a session
|
Matthew Wild |
2009-09-29 |
Add NODEprepping to SASL Digest-MD5 authentication handling.
|
Tobias Markmann |
2009-09-06 |
Uncertain merge with 0.5's SASL
|
Matthew Wild |
2009-08-20 |
Use NODEprep for prepping usernames used during SASL logins.
|
Tobias Markmann |
2009-08-19 |
mod_saslauth: Fix coding style and layout, and use of arg[] for vararg
|
Matthew Wild |
2009-08-05 |
mod_saslauth: Fix indentation
|
Matthew Wild |
2009-08-05 |
mod_saslauth: Fix traceback on attempted login for non-existent users
|
Matthew Wild |
2009-08-05 |
Switch to using a more generic credentials_callback/handler for SASL auth.
|
nick |
2009-07-24 |
mod_saslauth, usermanager: Fetch list of mechanisms from usermanager
|
Nick Thomas |
2009-07-23 |
Remove version number from copyright headers
|
Matthew Wild |
2009-07-10 |
Remove to-unicode conversion because it's done in sasl.lua now.
|
Tobias Markmann |
2009-07-05 |
Fixed decoding of parameters.
|
Tobias Markmann |
2009-07-05 |
Making sure the node is in unicode when passing it to password lookup function.
|
Tobias Markmann |
2009-07-01 |
Adding a parameter for realm to the password_callback.
|
Tobias Markmann |
2009-06-20 |
mod_saslauth: Don't offer bind/session when they aren't authenticated yet :) [thanks albert, again...]
|
Matthew Wild |
2009-05-29 |
mod_saslauth, mod_legacyauth: Deny logins to unsecure sessions when require_encryption config option is true
|
Matthew Wild |
2009-05-29 |
mod_saslauth: Fix logic error which prevented SASL ANONYMOUS from working
|
Matthew Wild |
2009-05-18 |
mod_saslauth: Remove 2 instances of raising errors and replacing with more graceful handling
|
Matthew Wild |
2009-04-30 |
mod_saslauth: Various logging fixes
|
Matthew Wild |
2009-04-30 |
mod_saslauth: Use module logger instead of creating a new one
|
Matthew Wild |
2009-04-30 |
mod_*: Fix a load of global accesses
|
Matthew Wild |
2009-04-22 |
Fixed: Some nil access bugs
|
Waqas Hussain |
2009-03-30 |
Fixed: mod_saslauth: "anonymous_login" currently makes SASL ANONYMOUS an exclusive mechanism. Corrected advertised mechanisms and error replies.
|
Waqas Hussain |
2009-03-29 |
Fixed: mod_saslauth: Changed anonymous host option from "sasl_anonymous" to "anonymous_login"
|
Waqas Hussain |
2009-03-29 |
0.3->0.4
|
Matthew Wild |
2009-03-20 |
mod_saslauth: Disable SASL ANONYMOUS unless explicitly enabled with sasl_anonymous = true
|
Matthew Wild |
2009-03-07 |
Adding inital support for ANONYMOUS mechanism in SASL.
|
Tobias Markmann |
2009-02-14 |
Update copyright notices for 2009
|
Matthew Wild |
2009-01-30 |
0.2->0.3
|
Matthew Wild |
2009-01-30 |
GPL->MIT!
|
Matthew Wild |
2009-01-30 |
Fix invalid loglevels in mod_saslauth
|
Matthew Wild |
2009-01-16 |
mod_saslauth, mod_tls: minor code cleanup
|
Waqas Hussain |
2009-01-13 |
0.1 -> 0.2
|
Matthew Wild |
2008-12-10 |
Latin1 support for SASL DIGEST-MD5 (second, and possibly final commit)
|
Waqas Hussain |
2008-12-07 |
Latin1 support for SASL DIGEST-MD5 (initial commit)
|
Waqas Hussain |
2008-12-07 |
Backed out changeset 099d8a102deb (committed too much)
|
Matthew Wild |
2008-12-05 |
Add TLS socket to readlist before handshake starts, fixes major slow-down on TLS connections
|
Matthew Wild |
2008-12-05 |
Fix for handling latin1 encoded hostnames in SASL
|
Waqas Hussain |
2008-12-03 |
Insert copyright/license headers
|
Matthew Wild |
2008-12-03 |
Completely switched to new hashes library from the old md5 library
|
Waqas Hussain |
2008-11-27 |
Stopped using the lbase64 library
|
Waqas Hussain |
2008-11-27 |
Bumper commit for the new modulemanager API \o/ Updates all the modules, though some more changes may be in store.
|
Matthew Wild |
2008-11-27 |
Use a stanza for c2s stream features instead of an array of strings. Removes a FIXME.
|
Matthew Wild |
2008-11-20 |
Fixed mod_saslauth to use session.send for sending stanzas
|
Waqas Hussain |
2008-11-15 |
Code cleanup for resource binding
|
Waqas Hussain |
2008-11-15 |
Providing some human readable error messages and some fixes.
|
Tobias Markmann |
2008-11-15 |
Using md5.sum rather than hashes.md5 because we don't want hexadecimal
|
Waqas Hussain |
2008-11-15 |
mod_saslauth: Code cleanup
|
Waqas Hussain |
2008-11-15 |
Made SASL module fit the new interface.
|
Tobias Markmann |
2008-11-15 |
base64 encode the sasl responses
|
Waqas Hussain |
2008-11-15 |
Started using realm in password hashing, and added support for error message replies from sasl
|
Waqas Hussain |
2008-11-15 |
Comment out DIGEST-MD5 until it is fully implemented
|
Matthew Wild |
2008-11-15 |
Merging with Waqas' code.
|
Tobias Markmann |
2008-11-15 |
Set username in a SASL object.
|
Tobias Markmann |
2008-11-15 |
Set username on SASL success
|
Waqas Hussain |
2008-11-15 |
Merge with Waqas changes to mod_saslauth.
|
Tobias Markmann |
2008-11-15 |
mod_saslauth: Added base64 decoding, encoding check, and cleaned the code up.
|
Waqas Hussain |
2008-11-15 |
Adding some TODO for some security issue.
|
Tobias Markmann |
2008-11-15 |
Merging my new SASL code with Waqas' adjusted saslauth module.
|
Tobias Markmann |
2008-11-15 |
mod_saslauth updated for digest-md5
|
Waqas Hussain |
2008-11-15 |
Forward response stanzas to sasl.lua and some other stuff.
|
Tobias Markmann |
2008-11-10 |
TLS/SASL no longer should include the connhandler module
|
Matthew Wild |
2008-10-23 |
Abstract connections with "connection listeners"
|
Matthew Wild |
2008-10-22 |
Fix for destruction of unauthed SASL sessions
|
Matthew Wild |
2008-10-04 |
Use xmlns for matching auth tag too
|
Matthew Wild |
2008-10-04 |
Resource binding, XMPP sessions (whatever they're for...)
|
Matthew Wild |
2008-10-04 |
SASL!
|
Matthew Wild |
2008-10-02 |