Log

plugins/mod_saslauth.lua @ 10593:079b31c8dbf2

description author age
mod_saslauth: Set a nicer bounce error explaining SASL EXTERNAL failures Kim Alvefur 2019-12-07
mod_saslauth: Collect SASL EXTERNAL failures into an util.error object Kim Alvefur 2019-12-07
mod_saslauth: Advertise correct set of mechanisms Kim Alvefur 2019-12-02
mod_saslauth: Demote "no SASL mechanisms" error back to warning Kim Alvefur 2019-10-15
mod_saslauth: Improve logging of why no SASL mechanisms were offered Kim Alvefur 2019-10-15
mod_saslauth: Use the power of Set Theory to mange sets of SASL mechanisms Kim Alvefur 2019-10-15
mod_saslauth: Log (debug) messages about channel binding Kim Alvefur 2019-10-15
mod_saslauth: Remove useless debug log line Kim Alvefur 2019-10-12
mod_saslauth: Remove commented-out debug log line Kim Alvefur 2019-10-12
plugins: Remove tostring call from logging Kim Alvefur 2019-07-30
Fix various spelling mistakes [codespell] Kim Alvefur 2019-05-03
mod_saslauth: Improve log message when no SASL mechanisms offered (thanks hexa) Kim Alvefur 2018-11-24
mod_saslauth: Ignore unused argument [luacheck] Kim Alvefur 2018-02-04
mod_saslauth: Use renamed API for hooking non-stanzas Kim Alvefur 2018-02-04
mod_saslauth: Pass SASL EXTERNAL failure reason on to be used in error bounces Kim Alvefur 2018-02-04
mod_saslauth: Close connection if no fallback kicks in on SASL EXTERNAL failure Kim Alvefur 2018-02-03
Backed out changeset 89c42aff8510: The problem in ejabberd has reportedly been resolved and this change causes more problems than it solves (fixes #1006) Kim Alvefur 2018-02-04
mod_saslauth: Log which mechanisms are offered Kim Alvefur 2017-12-21
Merge 0.9->0.10 Kim Alvefur 2017-09-14
mod_saslauth: Use correct varible name (thanks Roi) Kim Alvefur 2017-07-08
mod_saslauth: Remove unused argument [luacheck] Kim Alvefur 2017-04-01
mod_saslauth: Fix typoed variable name [luacheck] Kim Alvefur 2017-03-06
mod_saslauth: Switch to hook_tag from hook_stanza which was renamed in 2087d42f1e77 Kim Alvefur 2017-03-06
Merge 0.9->0.10 Kim Alvefur 2017-03-02
mod_saslauth: Log SASL failure reason Kim Alvefur 2017-03-02
mod_saslauth: Ignore shadowing of logger [luacheck] Kim Alvefur 2017-02-15
mod_saslauth: Improve logging as to why when SASL is not offered Kim Alvefur 2017-02-15
mod_saslauth: Cache logger in local for less typing Kim Alvefur 2017-02-15
core.sessionmanager, mod_saslauth: Introduce intermediate session type for authenticated but unbound sessions so that resource binding is not treated as a normal stanza Kim Alvefur 2016-12-13
mod_saslauth: Disable DIGEST-MD5 by default (closes #515) Kim Alvefur 2016-03-18
mod_saslauth: Make it easier to support multiple channel binding methonds Kim Alvefur 2014-11-19
mod_saslauth: Break out tls-unique channel binding callback so it is instantiated once Kim Alvefur 2014-11-19
mod_saslauth: Keep sasl_handler in a local variable Kim Alvefur 2014-11-19
mod_saslauth: Better name for config option Kim Alvefur 2014-10-21
mod_saslauth: Make it possible to disable certain mechanisms Kim Alvefur 2014-10-21
mod_saslauth: Add LOGIN to mechanisms not allowed over unencrypted connections as it may be offered by 3rd party authentication plugins Kim Alvefur 2014-10-21
mod_saslauth: Use a configurable set of mechanisms to not allow over unencrypted connections Kim Alvefur 2014-10-21
mod_saslauth: Log warning if no SASL mechanisms were offered Kim Alvefur 2014-10-21
mod_saslauth: Use type-specific config option getters Kim Alvefur 2014-10-21
mod_legacyauth, mod_saslauth, mod_tls: Pass require_encryption as default option to s2s_require_encryption so the later overrides the former Kim Alvefur 2014-10-21
mod_saslauth: Fix encoding of missing vs empty SASL reply messages Kim Alvefur 2014-09-23
mod_saslauth: Stricter SASL EXTERNAL handling more in line with XEP-0178 Kim Alvefur 2014-09-23
mod_dialback, mod_saslauth: Remove broken fallback to dialback on SASL EXTERNAL failure Kim Alvefur 2014-09-23
mod_lastactivity, mod_legacyauth, mod_presence, mod_saslauth, mod_tls: Use the newer stanza:get_child APIs and optimize away some table lookups Kim Alvefur 2014-07-04
Merge 0.9->0.10 Kim Alvefur 2014-03-25
mod_saslauth: Only do c2s SASL on normal VirtualHosts Kim Alvefur 2014-03-22
mod_saslauth: Make sure sasl handler has add_cb_handler (fixes #392) Kim Alvefur 2014-02-12
mod_saslauth: Collect data for channel binding only if we know for sure that the stream is encrypted Kim Alvefur 2013-10-07
Merge Tobias SCRAM-PLUS work Kim Alvefur 2013-09-21
mod_saslauth: Check whether LuaSec supports getpeerfinished() binding. Tobias Markmann 2011-01-17
mod_saslauth: Add channel binding handler for tls-unique channel binding. Tobias Markmann 2011-01-17
mod_saslauth: Set secure socket as SASL object user data for secure sessions. Tobias Markmann 2011-01-17
Remove all trailing whitespace Florian Zeitz 2013-08-09
mod_saslauth, mod_compression: Fix some cases where open_stream() was not being passed to/from (see df3c78221f26 and issue #338) Matthew Wild 2013-04-29
s2smanager, mod_s2s, mod_dialback, mod_saslauth: Move s2smanager.make_authenticated() to mod_s2s, and plugins now signal authentication via the s2s-authenticated event Matthew Wild 2013-03-22
mod_s2s, mod_saslauth, mod_compression: Refactor to have common code for opening streams Kim Alvefur 2013-03-16
mod_saslauth: Pass session to usermanager.get_sasl_handler() Matthew Wild 2012-07-04
mod_saslauth: Remove unused declaration of xmlns_stanzas Matthew Wild 2012-04-28
mod_saslauth: Remove useless import of, and call to nodeprep. Kim Alvefur 2012-02-12
mod_saslauth: Fire authentication-failure if make_authenticated() failed. Kim Alvefur 2012-02-12
mod_saslauth: Move authentication-success event to after session has been made authenticated. Kim Alvefur 2012-02-12
mod_saslauth: "" ~= nil (thanks, Zash!) Paul Aurich 2012-01-24
mod_saslauth: Never send empty <mechanisms/>, for real this time. Waqas Hussain 2011-10-12
mod_saslauth: Never send empty <mechanisms/>. Waqas Hussain 2011-10-12
mod_saslauth: Fire authentication-success and authentication-failure events (thanks scitor) Matthew Wild 2011-08-29
Merge 0.8->trunk Matthew Wild 2011-01-06
mod_saslauth: Remove special handling for SASL ANONYMOUS, and let mod_auth_anonymous handle it. Waqas Hussain 2010-12-28
util.sasl.*, mod_auth_*, mod_saslauth: Pass SASL handler as first parameter to SASL profile callbacks. Waqas Hussain 2010-12-27
mod_saslauth: Handle session bind requests to the host, fixes OneTeam login Matthew Wild 2010-12-24
mod_saslauth: Remove special handling for SASL ANONYMOUS, and let mod_auth_anonymous handle it. Waqas Hussain 2010-12-28
util.sasl.*, mod_auth_*, mod_saslauth: Pass SASL handler as first parameter to SASL profile callbacks. Waqas Hussain 2010-12-27
mod_saslauth: Handle session bind requests to the host, fixes OneTeam login Matthew Wild 2010-12-24
core.s2smanager, mod_console, mod_saslauth, util.certverification: rename util.certverification to util.x509 Kim Alvefur 2010-12-12
s2s: SASL EXTERNAL Paul Aurich 2010-11-22
mod_saslauth: Allow restarting SASL negotiation from scratch. Waqas Hussain 2010-11-02
mod_saslauth: Separated processing of <auth/> and <response/> elements, and return proper error on out-of-order <response/> elements. Waqas Hussain 2010-11-02
mod_saslauth: Moved SASL mechanism selection and CDATA handling into separate functions. Waqas Hussain 2010-11-02
mod_saslauth: Handle SASL <abort/> properly. Waqas Hussain 2010-11-02
mod_saslauth: Updated to use the new events API. Waqas Hussain 2010-10-16
mod_saslauth: Improved logging a bit. Waqas Hussain 2010-10-16
mod_saslauth: Updated to use the new events API. Waqas Hussain 2010-10-16
mod_saslauth, mod_auth_cyrus, util.sasl_cyrus: Moved cyrus account provisioning check out of mod_saslauth. Waqas Hussain 2010-08-23
mod_saslauth: Get rid of the sasl_backend option (use auth modules instead). Waqas Hussain 2010-08-23
mod_saslauth: Get rid of most Cyrus SASL related code (use authentication='cyrus' instead). Waqas Hussain 2010-08-23
mod_saslauth: Fixed a nil global access. Waqas Hussain 2010-07-31
mod_saslauth: Check for unencrypted PLAIN auth in mod_saslauth instead of the SASL handler (makes it work for Cyrus SASL). Waqas Hussain 2010-07-31
mod_saslauth: Move mandatory encryption enforcement to before sasl_handler:select(). Waqas Hussain 2010-07-31
mod_saslauth: Got rid of undocumented and useless 'sasl_realm' config option (was only used for anonymous auth, and that didn't make sense). Waqas Hussain 2010-07-18
mod_saslauth: Cleaned up unused requires. Waqas Hussain 2010-07-17
mod_saslauth: A little cleanup for anonymous_login. Waqas Hussain 2010-07-17
SASL: Simplified sasl_handler:mechanisms() to return a set, and not an array. Waqas Hussain 2010-07-14
mod_saslauth: Rename variable 'aret' to 'ok' as per convention Matthew Wild 2010-07-12
Merge 0.7->trunk Matthew Wild 2010-06-12
mod_saslauth: Return proper error on invalid usernames. Waqas Hussain 2010-06-11
mod_saslauth: Updated to use usermanager.get_sasl_handler. Waqas Hussain 2010-06-06
mod_saslauth: Fix log level Matthew Wild 2010-06-04
Correct out of order logic in mod_hashpassauth Jeff Mitchell 2010-05-28
Check in mod_hashpassauth -- works! Jeff Mitchell 2010-05-26
mod_saslauth: Split out cyrus SASL config options into locals, and add support for cyrus_application_name (default: 'prosody') Matthew Wild 2010-05-20
usermanager, mod_saslauth: Make account provisioning for Cyrus SASL optional (default: not required) Matthew Wild 2010-05-20
mod_saslauth: Add return value and error message to the Cyrus SASL handle_status callback Matthew Wild 2010-05-20
mod_saslauth: Allow the Cyrus SASL realm to be configurable Matthew Wild 2010-05-20
mod_saslauth: Tidier code for SASL backend selection. Waqas Hussain 2010-03-23
mod_saslauth: Fail with an error when the requested SASL backend cannot be used. Waqas Hussain 2010-03-23
Merge 0.6->0.7 Matthew Wild 2010-03-22
Update copyright headers for 2010 Matthew Wild 2010-03-22
mod_saslauth: Add a sasl_realm option Paul Aurich 2010-03-17
Merge 0.6.2/waqas with 0.6.2/MattJ Matthew Wild 2010-03-03
mod_saslauth: Don't print raw SASL data to avoid logging passwords unnecessarily Matthew Wild 2010-02-13
mod_saslauth: Requiring c2s encryption means requiring c2s encryption... thanks Flo Matthew Wild 2009-12-21
mod_saslauth: Add FIXME to remind myself to fix this as soon as I have time Matthew Wild 2010-03-01
mod_saslauth: Unlock globals while loading cyrus Matthew Wild 2010-03-01
mod_saslauth: Log debug message with full error if cyrussasl couldn't be loaded Matthew Wild 2010-02-15
mod_saslauth: Correct syntax for gracefully handling a missing cyrussasl library Matthew Wild 2010-02-15
mod_saslauth: Warn and fallback gracefully when Cyrus SASL is requested, but missing. Waqas Hussain 2010-02-14
mod_saslauth: Don't print raw SASL data to avoid logging passwords unnecessarily Matthew Wild 2010-02-13
mod_saslauth: Hook stream-features event using new events API. Waqas Hussain 2010-02-11
mod_saslauth: Fixed some indentation and added some semi-colons. Waqas Hussain 2010-01-11
mod_saslauth: Made some variables local to avoid unnecessary global access. Waqas Hussain 2010-01-11
mod_saslauth: Oops. Paul Aurich 2010-01-03
mod_saslauth: Use module:get_option() Paul Aurich 2010-01-03
mod_saslauth: Add sasl_backend config parameter Paul Aurich 2010-01-03
mod_saslauth: Adjust sanitizing. Tobias Markmann 2009-12-23
mod_saslauth: Sanitize debugging information so it won't break terminal emulation when using GSSAPI auth. Tobias Markmann 2009-12-23
added comment to remind us to fix binary output breaking the terminal jorj 2009-12-23
mod_saslauth: Make service_name configurable for CyrusSASL users. Tobias Markmann 2009-12-22
mod_saslauth: Add support for CyrusSASL. Tobias Markmann 2009-12-22
mod_saslauth: Requiring c2s encryption means requiring c2s encryption... thanks Flo Matthew Wild 2009-12-21
mod_saslauth: Fix typo in variable name Matthew Wild 2009-11-28
mod_saslauth: Allow relogins after failed SASL login. Tobias Markmann 2009-11-26
Use new cofig option reading API. Tobias Markmann 2009-11-19
Allow SASL PLAIN over unsecure connections when intended by admin. Tobias Markmann 2009-11-19
Provide SASL PLAIN mechanism only if TLS is active. Tobias Markmann 2009-11-18
Merge with sasl branch. Tobias Markmann 2009-11-16
Making mod_saslauth use the new SASL API. sasl Tobias Markmann 2009-08-28
mod_saslauth: Fixed access of globals. Waqas Hussain 2009-10-18
mod_saslauth: Marked the im-session stream feature as optional. This allows smart clients to save a round trip. Waqas Hussain 2009-10-18
require_encryption deprecated, use c2s_require_encryption instead Matthew Wild 2009-10-05
Merge with 0.5 Matthew Wild 2009-09-29
mod_saslauth: Prep username used for authenticating a session Matthew Wild 2009-09-29
Add NODEprepping to SASL Digest-MD5 authentication handling. Tobias Markmann 2009-09-06
Uncertain merge with 0.5's SASL Matthew Wild 2009-08-20
Use NODEprep for prepping usernames used during SASL logins. Tobias Markmann 2009-08-19
mod_saslauth: Fix coding style and layout, and use of arg[] for vararg Matthew Wild 2009-08-05
mod_saslauth: Fix indentation Matthew Wild 2009-08-05
mod_saslauth: Fix traceback on attempted login for non-existent users Matthew Wild 2009-08-05
Switch to using a more generic credentials_callback/handler for SASL auth. nick 2009-07-24
mod_saslauth, usermanager: Fetch list of mechanisms from usermanager Nick Thomas 2009-07-23
Remove version number from copyright headers Matthew Wild 2009-07-10
Remove to-unicode conversion because it's done in sasl.lua now. Tobias Markmann 2009-07-05
Fixed decoding of parameters. Tobias Markmann 2009-07-05
Making sure the node is in unicode when passing it to password lookup function. Tobias Markmann 2009-07-01
Adding a parameter for realm to the password_callback. Tobias Markmann 2009-06-20
mod_saslauth: Don't offer bind/session when they aren't authenticated yet :) [thanks albert, again...] Matthew Wild 2009-05-29
mod_saslauth, mod_legacyauth: Deny logins to unsecure sessions when require_encryption config option is true Matthew Wild 2009-05-29
mod_saslauth: Fix logic error which prevented SASL ANONYMOUS from working Matthew Wild 2009-05-18
mod_saslauth: Remove 2 instances of raising errors and replacing with more graceful handling Matthew Wild 2009-04-30
mod_saslauth: Various logging fixes Matthew Wild 2009-04-30
mod_saslauth: Use module logger instead of creating a new one Matthew Wild 2009-04-30
mod_*: Fix a load of global accesses Matthew Wild 2009-04-22
Fixed: Some nil access bugs Waqas Hussain 2009-03-30
Fixed: mod_saslauth: "anonymous_login" currently makes SASL ANONYMOUS an exclusive mechanism. Corrected advertised mechanisms and error replies. Waqas Hussain 2009-03-29
Fixed: mod_saslauth: Changed anonymous host option from "sasl_anonymous" to "anonymous_login" Waqas Hussain 2009-03-29
0.3->0.4 Matthew Wild 2009-03-20
mod_saslauth: Disable SASL ANONYMOUS unless explicitly enabled with sasl_anonymous = true Matthew Wild 2009-03-07
Adding inital support for ANONYMOUS mechanism in SASL. Tobias Markmann 2009-02-14
Update copyright notices for 2009 Matthew Wild 2009-01-30
0.2->0.3 Matthew Wild 2009-01-30
GPL->MIT! Matthew Wild 2009-01-30
Fix invalid loglevels in mod_saslauth Matthew Wild 2009-01-16
mod_saslauth, mod_tls: minor code cleanup Waqas Hussain 2009-01-13
0.1 -> 0.2 Matthew Wild 2008-12-10
Latin1 support for SASL DIGEST-MD5 (second, and possibly final commit) Waqas Hussain 2008-12-07
Latin1 support for SASL DIGEST-MD5 (initial commit) Waqas Hussain 2008-12-07
Backed out changeset 099d8a102deb (committed too much) Matthew Wild 2008-12-05
Add TLS socket to readlist before handshake starts, fixes major slow-down on TLS connections Matthew Wild 2008-12-05
Fix for handling latin1 encoded hostnames in SASL Waqas Hussain 2008-12-03
Insert copyright/license headers Matthew Wild 2008-12-03
Completely switched to new hashes library from the old md5 library Waqas Hussain 2008-11-27
Stopped using the lbase64 library Waqas Hussain 2008-11-27
Bumper commit for the new modulemanager API \o/ Updates all the modules, though some more changes may be in store. Matthew Wild 2008-11-27
Use a stanza for c2s stream features instead of an array of strings. Removes a FIXME. Matthew Wild 2008-11-20
Fixed mod_saslauth to use session.send for sending stanzas Waqas Hussain 2008-11-15
Code cleanup for resource binding Waqas Hussain 2008-11-15
Providing some human readable error messages and some fixes. Tobias Markmann 2008-11-15
Using md5.sum rather than hashes.md5 because we don't want hexadecimal Waqas Hussain 2008-11-15
mod_saslauth: Code cleanup Waqas Hussain 2008-11-15
Made SASL module fit the new interface. Tobias Markmann 2008-11-15
base64 encode the sasl responses Waqas Hussain 2008-11-15
Started using realm in password hashing, and added support for error message replies from sasl Waqas Hussain 2008-11-15
Comment out DIGEST-MD5 until it is fully implemented Matthew Wild 2008-11-15
Merging with Waqas' code. Tobias Markmann 2008-11-15
Set username in a SASL object. Tobias Markmann 2008-11-15
Set username on SASL success Waqas Hussain 2008-11-15
Merge with Waqas changes to mod_saslauth. Tobias Markmann 2008-11-15
mod_saslauth: Added base64 decoding, encoding check, and cleaned the code up. Waqas Hussain 2008-11-15
Adding some TODO for some security issue. Tobias Markmann 2008-11-15
Merging my new SASL code with Waqas' adjusted saslauth module. Tobias Markmann 2008-11-15
mod_saslauth updated for digest-md5 Waqas Hussain 2008-11-15
Forward response stanzas to sasl.lua and some other stuff. Tobias Markmann 2008-11-10
TLS/SASL no longer should include the connhandler module Matthew Wild 2008-10-23
Abstract connections with "connection listeners" Matthew Wild 2008-10-22
Fix for destruction of unauthed SASL sessions Matthew Wild 2008-10-04
Use xmlns for matching auth tag too Matthew Wild 2008-10-04
Resource binding, XMPP sessions (whatever they're for...) Matthew Wild 2008-10-04
SASL! Matthew Wild 2008-10-02