|
Merge 0.11->trunk
|
Kim Alvefur |
2020-11-23 |
|
mod_saslauth: Only advertise channel binding if a finished message is available
0.11
|
Kim Alvefur |
2020-11-23 |
|
mod_saslauth: Disable 'tls-unique' channel binding with TLS 1.3 (closes #1542)
0.11
|
Kim Alvefur |
2020-11-23 |
|
mod_saslauth: Pass through any auth scope from the SASL handler to sessionmanager.make_authenticated()
|
Matthew Wild |
2020-02-05 |
|
mod_saslauth: Set a nicer bounce error explaining SASL EXTERNAL failures
|
Kim Alvefur |
2019-12-07 |
|
mod_saslauth: Collect SASL EXTERNAL failures into an util.error object
|
Kim Alvefur |
2019-12-07 |
|
mod_saslauth: Advertise correct set of mechanisms
|
Kim Alvefur |
2019-12-02 |
|
mod_saslauth: Demote "no SASL mechanisms" error back to warning
|
Kim Alvefur |
2019-10-15 |
|
mod_saslauth: Improve logging of why no SASL mechanisms were offered
|
Kim Alvefur |
2019-10-15 |
|
mod_saslauth: Use the power of Set Theory to mange sets of SASL mechanisms
|
Kim Alvefur |
2019-10-15 |
|
mod_saslauth: Log (debug) messages about channel binding
|
Kim Alvefur |
2019-10-15 |
|
mod_saslauth: Remove useless debug log line
|
Kim Alvefur |
2019-10-12 |
|
mod_saslauth: Remove commented-out debug log line
|
Kim Alvefur |
2019-10-12 |
|
plugins: Remove tostring call from logging
|
Kim Alvefur |
2019-07-30 |
|
Fix various spelling mistakes [codespell]
|
Kim Alvefur |
2019-05-03 |
|
mod_saslauth: Improve log message when no SASL mechanisms offered (thanks hexa)
|
Kim Alvefur |
2018-11-24 |
|
mod_saslauth: Ignore unused argument [luacheck]
|
Kim Alvefur |
2018-02-04 |
|
mod_saslauth: Use renamed API for hooking non-stanzas
|
Kim Alvefur |
2018-02-04 |
|
mod_saslauth: Pass SASL EXTERNAL failure reason on to be used in error bounces
|
Kim Alvefur |
2018-02-04 |
|
mod_saslauth: Close connection if no fallback kicks in on SASL EXTERNAL failure
|
Kim Alvefur |
2018-02-03 |
|
Backed out changeset 89c42aff8510: The problem in ejabberd has reportedly been resolved and this change causes more problems than it solves (fixes #1006)
|
Kim Alvefur |
2018-02-04 |
|
mod_saslauth: Log which mechanisms are offered
|
Kim Alvefur |
2017-12-21 |
|
Merge 0.9->0.10
|
Kim Alvefur |
2017-09-14 |
|
mod_saslauth: Use correct varible name (thanks Roi)
|
Kim Alvefur |
2017-07-08 |
|
mod_saslauth: Remove unused argument [luacheck]
|
Kim Alvefur |
2017-04-01 |
|
mod_saslauth: Fix typoed variable name [luacheck]
|
Kim Alvefur |
2017-03-06 |
|
mod_saslauth: Switch to hook_tag from hook_stanza which was renamed in 2087d42f1e77
|
Kim Alvefur |
2017-03-06 |
|
Merge 0.9->0.10
|
Kim Alvefur |
2017-03-02 |
|
mod_saslauth: Log SASL failure reason
|
Kim Alvefur |
2017-03-02 |
|
mod_saslauth: Ignore shadowing of logger [luacheck]
|
Kim Alvefur |
2017-02-15 |
|
mod_saslauth: Improve logging as to why when SASL is not offered
|
Kim Alvefur |
2017-02-15 |
|
mod_saslauth: Cache logger in local for less typing
|
Kim Alvefur |
2017-02-15 |
|
core.sessionmanager, mod_saslauth: Introduce intermediate session type for authenticated but unbound sessions so that resource binding is not treated as a normal stanza
|
Kim Alvefur |
2016-12-13 |
|
mod_saslauth: Disable DIGEST-MD5 by default (closes #515)
|
Kim Alvefur |
2016-03-18 |
|
mod_saslauth: Make it easier to support multiple channel binding methonds
|
Kim Alvefur |
2014-11-19 |
|
mod_saslauth: Break out tls-unique channel binding callback so it is instantiated once
|
Kim Alvefur |
2014-11-19 |
|
mod_saslauth: Keep sasl_handler in a local variable
|
Kim Alvefur |
2014-11-19 |
|
mod_saslauth: Better name for config option
|
Kim Alvefur |
2014-10-21 |
|
mod_saslauth: Make it possible to disable certain mechanisms
|
Kim Alvefur |
2014-10-21 |
|
mod_saslauth: Add LOGIN to mechanisms not allowed over unencrypted connections as it may be offered by 3rd party authentication plugins
|
Kim Alvefur |
2014-10-21 |
|
mod_saslauth: Use a configurable set of mechanisms to not allow over unencrypted connections
|
Kim Alvefur |
2014-10-21 |
|
mod_saslauth: Log warning if no SASL mechanisms were offered
|
Kim Alvefur |
2014-10-21 |
|
mod_saslauth: Use type-specific config option getters
|
Kim Alvefur |
2014-10-21 |
|
mod_legacyauth, mod_saslauth, mod_tls: Pass require_encryption as default option to s2s_require_encryption so the later overrides the former
|
Kim Alvefur |
2014-10-21 |
|
mod_saslauth: Fix encoding of missing vs empty SASL reply messages
|
Kim Alvefur |
2014-09-23 |
|
mod_saslauth: Stricter SASL EXTERNAL handling more in line with XEP-0178
|
Kim Alvefur |
2014-09-23 |
|
mod_dialback, mod_saslauth: Remove broken fallback to dialback on SASL EXTERNAL failure
|
Kim Alvefur |
2014-09-23 |
|
mod_lastactivity, mod_legacyauth, mod_presence, mod_saslauth, mod_tls: Use the newer stanza:get_child APIs and optimize away some table lookups
|
Kim Alvefur |
2014-07-04 |
|
Merge 0.9->0.10
|
Kim Alvefur |
2014-03-25 |
|
mod_saslauth: Only do c2s SASL on normal VirtualHosts
|
Kim Alvefur |
2014-03-22 |
|
mod_saslauth: Make sure sasl handler has add_cb_handler (fixes #392)
|
Kim Alvefur |
2014-02-12 |
|
mod_saslauth: Collect data for channel binding only if we know for sure that the stream is encrypted
|
Kim Alvefur |
2013-10-07 |
|
Merge Tobias SCRAM-PLUS work
|
Kim Alvefur |
2013-09-21 |
|
mod_saslauth: Check whether LuaSec supports getpeerfinished() binding.
|
Tobias Markmann |
2011-01-17 |
|
mod_saslauth: Add channel binding handler for tls-unique channel binding.
|
Tobias Markmann |
2011-01-17 |
|
mod_saslauth: Set secure socket as SASL object user data for secure sessions.
|
Tobias Markmann |
2011-01-17 |
|
Remove all trailing whitespace
|
Florian Zeitz |
2013-08-09 |
|
mod_saslauth, mod_compression: Fix some cases where open_stream() was not being passed to/from (see df3c78221f26 and issue #338)
|
Matthew Wild |
2013-04-29 |
|
s2smanager, mod_s2s, mod_dialback, mod_saslauth: Move s2smanager.make_authenticated() to mod_s2s, and plugins now signal authentication via the s2s-authenticated event
|
Matthew Wild |
2013-03-22 |
|
mod_s2s, mod_saslauth, mod_compression: Refactor to have common code for opening streams
|
Kim Alvefur |
2013-03-16 |
|
mod_saslauth: Pass session to usermanager.get_sasl_handler()
|
Matthew Wild |
2012-07-04 |
|
mod_saslauth: Remove unused declaration of xmlns_stanzas
|
Matthew Wild |
2012-04-28 |
|
mod_saslauth: Remove useless import of, and call to nodeprep.
|
Kim Alvefur |
2012-02-12 |
|
mod_saslauth: Fire authentication-failure if make_authenticated() failed.
|
Kim Alvefur |
2012-02-12 |
|
mod_saslauth: Move authentication-success event to after session has been made authenticated.
|
Kim Alvefur |
2012-02-12 |
|
mod_saslauth: "" ~= nil (thanks, Zash!)
|
Paul Aurich |
2012-01-24 |
|
mod_saslauth: Never send empty <mechanisms/>, for real this time.
|
Waqas Hussain |
2011-10-12 |
|
mod_saslauth: Never send empty <mechanisms/>.
|
Waqas Hussain |
2011-10-12 |
|
mod_saslauth: Fire authentication-success and authentication-failure events (thanks scitor)
|
Matthew Wild |
2011-08-29 |
|
Merge 0.8->trunk
|
Matthew Wild |
2011-01-06 |
|
mod_saslauth: Remove special handling for SASL ANONYMOUS, and let mod_auth_anonymous handle it.
|
Waqas Hussain |
2010-12-28 |
|
util.sasl.*, mod_auth_*, mod_saslauth: Pass SASL handler as first parameter to SASL profile callbacks.
|
Waqas Hussain |
2010-12-27 |
|
mod_saslauth: Handle session bind requests to the host, fixes OneTeam login
|
Matthew Wild |
2010-12-24 |
|
mod_saslauth: Remove special handling for SASL ANONYMOUS, and let mod_auth_anonymous handle it.
|
Waqas Hussain |
2010-12-28 |
|
util.sasl.*, mod_auth_*, mod_saslauth: Pass SASL handler as first parameter to SASL profile callbacks.
|
Waqas Hussain |
2010-12-27 |
|
mod_saslauth: Handle session bind requests to the host, fixes OneTeam login
|
Matthew Wild |
2010-12-24 |
|
core.s2smanager, mod_console, mod_saslauth, util.certverification: rename util.certverification to util.x509
|
Kim Alvefur |
2010-12-12 |
|
s2s: SASL EXTERNAL
|
Paul Aurich |
2010-11-22 |
|
mod_saslauth: Allow restarting SASL negotiation from scratch.
|
Waqas Hussain |
2010-11-02 |
|
mod_saslauth: Separated processing of <auth/> and <response/> elements, and return proper error on out-of-order <response/> elements.
|
Waqas Hussain |
2010-11-02 |
|
mod_saslauth: Moved SASL mechanism selection and CDATA handling into separate functions.
|
Waqas Hussain |
2010-11-02 |
|
mod_saslauth: Handle SASL <abort/> properly.
|
Waqas Hussain |
2010-11-02 |
|
mod_saslauth: Updated to use the new events API.
|
Waqas Hussain |
2010-10-16 |
|
mod_saslauth: Improved logging a bit.
|
Waqas Hussain |
2010-10-16 |
|
mod_saslauth: Updated to use the new events API.
|
Waqas Hussain |
2010-10-16 |
|
mod_saslauth, mod_auth_cyrus, util.sasl_cyrus: Moved cyrus account provisioning check out of mod_saslauth.
|
Waqas Hussain |
2010-08-23 |
|
mod_saslauth: Get rid of the sasl_backend option (use auth modules instead).
|
Waqas Hussain |
2010-08-23 |
|
mod_saslauth: Get rid of most Cyrus SASL related code (use authentication='cyrus' instead).
|
Waqas Hussain |
2010-08-23 |
|
mod_saslauth: Fixed a nil global access.
|
Waqas Hussain |
2010-07-31 |
|
mod_saslauth: Check for unencrypted PLAIN auth in mod_saslauth instead of the SASL handler (makes it work for Cyrus SASL).
|
Waqas Hussain |
2010-07-31 |
|
mod_saslauth: Move mandatory encryption enforcement to before sasl_handler:select().
|
Waqas Hussain |
2010-07-31 |
|
mod_saslauth: Got rid of undocumented and useless 'sasl_realm' config option (was only used for anonymous auth, and that didn't make sense).
|
Waqas Hussain |
2010-07-18 |
|
mod_saslauth: Cleaned up unused requires.
|
Waqas Hussain |
2010-07-17 |
|
mod_saslauth: A little cleanup for anonymous_login.
|
Waqas Hussain |
2010-07-17 |
|
SASL: Simplified sasl_handler:mechanisms() to return a set, and not an array.
|
Waqas Hussain |
2010-07-14 |
|
mod_saslauth: Rename variable 'aret' to 'ok' as per convention
|
Matthew Wild |
2010-07-12 |
|
Merge 0.7->trunk
|
Matthew Wild |
2010-06-12 |
|
mod_saslauth: Return proper error on invalid usernames.
|
Waqas Hussain |
2010-06-11 |
|
mod_saslauth: Updated to use usermanager.get_sasl_handler.
|
Waqas Hussain |
2010-06-06 |
|
mod_saslauth: Fix log level
|
Matthew Wild |
2010-06-04 |
|
Correct out of order logic in mod_hashpassauth
|
Jeff Mitchell |
2010-05-28 |
|
Check in mod_hashpassauth -- works!
|
Jeff Mitchell |
2010-05-26 |
|
mod_saslauth: Split out cyrus SASL config options into locals, and add support for cyrus_application_name (default: 'prosody')
|
Matthew Wild |
2010-05-20 |
|
usermanager, mod_saslauth: Make account provisioning for Cyrus SASL optional (default: not required)
|
Matthew Wild |
2010-05-20 |
|
mod_saslauth: Add return value and error message to the Cyrus SASL handle_status callback
|
Matthew Wild |
2010-05-20 |
|
mod_saslauth: Allow the Cyrus SASL realm to be configurable
|
Matthew Wild |
2010-05-20 |
|
mod_saslauth: Tidier code for SASL backend selection.
|
Waqas Hussain |
2010-03-23 |
|
mod_saslauth: Fail with an error when the requested SASL backend cannot be used.
|
Waqas Hussain |
2010-03-23 |
|
Merge 0.6->0.7
|
Matthew Wild |
2010-03-22 |
|
Update copyright headers for 2010
|
Matthew Wild |
2010-03-22 |
|
mod_saslauth: Add a sasl_realm option
|
Paul Aurich |
2010-03-17 |
|
Merge 0.6.2/waqas with 0.6.2/MattJ
|
Matthew Wild |
2010-03-03 |
|
mod_saslauth: Don't print raw SASL data to avoid logging passwords unnecessarily
|
Matthew Wild |
2010-02-13 |
|
mod_saslauth: Requiring c2s encryption means requiring c2s encryption... thanks Flo
|
Matthew Wild |
2009-12-21 |
|
mod_saslauth: Add FIXME to remind myself to fix this as soon as I have time
|
Matthew Wild |
2010-03-01 |
|
mod_saslauth: Unlock globals while loading cyrus
|
Matthew Wild |
2010-03-01 |
|
mod_saslauth: Log debug message with full error if cyrussasl couldn't be loaded
|
Matthew Wild |
2010-02-15 |
|
mod_saslauth: Correct syntax for gracefully handling a missing cyrussasl library
|
Matthew Wild |
2010-02-15 |
|
mod_saslauth: Warn and fallback gracefully when Cyrus SASL is requested, but missing.
|
Waqas Hussain |
2010-02-14 |
|
mod_saslauth: Don't print raw SASL data to avoid logging passwords unnecessarily
|
Matthew Wild |
2010-02-13 |
