s2s: SASL EXTERNAL
|
Paul Aurich |
Sun, 21 Nov 2010 21:10:43 -0800 |
mod_saslauth: Allow restarting SASL negotiation from scratch.
|
Waqas Hussain |
Tue, 02 Nov 2010 22:23:07 +0500 |
mod_saslauth: Separated processing of <auth/> and <response/> elements, and return proper error on out-of-order <response/> elements.
|
Waqas Hussain |
Tue, 02 Nov 2010 22:05:19 +0500 |
mod_saslauth: Moved SASL mechanism selection and CDATA handling into separate functions.
|
Waqas Hussain |
Tue, 02 Nov 2010 21:19:50 +0500 |
mod_saslauth: Handle SASL <abort/> properly.
|
Waqas Hussain |
Tue, 02 Nov 2010 15:07:25 +0500 |
mod_saslauth: Updated to use the new events API.
|
Waqas Hussain |
Sat, 16 Oct 2010 07:18:01 +0500 |
mod_saslauth: Improved logging a bit.
|
Waqas Hussain |
Sat, 16 Oct 2010 05:16:45 +0500 |
mod_saslauth: Updated to use the new events API.
|
Waqas Hussain |
Sat, 16 Oct 2010 05:03:00 +0500 |
mod_saslauth, mod_auth_cyrus, util.sasl_cyrus: Moved cyrus account provisioning check out of mod_saslauth.
|
Waqas Hussain |
Mon, 23 Aug 2010 16:54:56 +0500 |
mod_saslauth: Get rid of the sasl_backend option (use auth modules instead).
|
Waqas Hussain |
Mon, 23 Aug 2010 16:28:06 +0500 |
mod_saslauth: Get rid of most Cyrus SASL related code (use authentication='cyrus' instead).
|
Waqas Hussain |
Mon, 23 Aug 2010 16:22:58 +0500 |
mod_saslauth: Fixed a nil global access.
|
Waqas Hussain |
Sat, 31 Jul 2010 15:16:15 +0500 |
mod_saslauth: Check for unencrypted PLAIN auth in mod_saslauth instead of the SASL handler (makes it work for Cyrus SASL).
|
Waqas Hussain |
Sat, 31 Jul 2010 13:55:46 +0500 |
mod_saslauth: Move mandatory encryption enforcement to before sasl_handler:select().
|
Waqas Hussain |
Sat, 31 Jul 2010 13:49:22 +0500 |
mod_saslauth: Got rid of undocumented and useless 'sasl_realm' config option (was only used for anonymous auth, and that didn't make sense).
|
Waqas Hussain |
Sun, 18 Jul 2010 17:50:38 +0500 |
mod_saslauth: Cleaned up unused requires.
|
Waqas Hussain |
Sat, 17 Jul 2010 19:02:56 +0500 |
mod_saslauth: A little cleanup for anonymous_login.
|
Waqas Hussain |
Sat, 17 Jul 2010 18:58:25 +0500 |
SASL: Simplified sasl_handler:mechanisms() to return a set, and not an array.
|
Waqas Hussain |
Wed, 14 Jul 2010 19:56:57 +0500 |
mod_saslauth: Rename variable 'aret' to 'ok' as per convention
|
Matthew Wild |
Mon, 12 Jul 2010 16:44:56 +0100 |
Merge 0.7->trunk
|
Matthew Wild |
Sat, 12 Jun 2010 02:39:18 +0100 |
mod_saslauth: Return proper error on invalid usernames.
|
Waqas Hussain |
Fri, 11 Jun 2010 21:01:17 +0500 |
mod_saslauth: Updated to use usermanager.get_sasl_handler.
|
Waqas Hussain |
Mon, 07 Jun 2010 02:40:14 +0500 |
mod_saslauth: Fix log level
|
Matthew Wild |
Fri, 04 Jun 2010 13:55:39 +0100 |
Correct out of order logic in mod_hashpassauth
|
Jeff Mitchell |
Fri, 28 May 2010 14:47:32 -0400 |
Check in mod_hashpassauth -- works!
|
Jeff Mitchell |
Wed, 26 May 2010 18:16:58 -0400 |
mod_saslauth: Split out cyrus SASL config options into locals, and add support for cyrus_application_name (default: 'prosody')
|
Matthew Wild |
Thu, 20 May 2010 11:51:55 +0100 |
usermanager, mod_saslauth: Make account provisioning for Cyrus SASL optional (default: not required)
|
Matthew Wild |
Thu, 20 May 2010 11:32:24 +0100 |
mod_saslauth: Add return value and error message to the Cyrus SASL handle_status callback
|
Matthew Wild |
Thu, 20 May 2010 11:08:51 +0100 |
mod_saslauth: Allow the Cyrus SASL realm to be configurable
|
Matthew Wild |
Thu, 20 May 2010 11:05:43 +0100 |
mod_saslauth: Tidier code for SASL backend selection.
|
Waqas Hussain |
Tue, 23 Mar 2010 20:17:46 +0500 |
mod_saslauth: Fail with an error when the requested SASL backend cannot be used.
|
Waqas Hussain |
Tue, 23 Mar 2010 20:11:39 +0500 |
Merge 0.6->0.7
|
Matthew Wild |
Mon, 22 Mar 2010 17:24:55 +0000 |
Update copyright headers for 2010
|
Matthew Wild |
Mon, 22 Mar 2010 17:06:15 +0000 |
mod_saslauth: Add a sasl_realm option
|
Paul Aurich |
Wed, 17 Mar 2010 15:29:14 -0700 |
Merge 0.6.2/waqas with 0.6.2/MattJ
|
Matthew Wild |
Wed, 03 Mar 2010 22:05:05 +0000 |
mod_saslauth: Don't print raw SASL data to avoid logging passwords unnecessarily
|
Matthew Wild |
Sat, 13 Feb 2010 19:35:12 +0000 |
mod_saslauth: Requiring c2s encryption means requiring c2s encryption... thanks Flo
|
Matthew Wild |
Mon, 21 Dec 2009 22:00:49 +0000 |
mod_saslauth: Add FIXME to remind myself to fix this as soon as I have time
|
Matthew Wild |
Mon, 01 Mar 2010 16:23:26 +0000 |
mod_saslauth: Unlock globals while loading cyrus
|
Matthew Wild |
Mon, 01 Mar 2010 16:02:59 +0000 |
mod_saslauth: Log debug message with full error if cyrussasl couldn't be loaded
|
Matthew Wild |
Mon, 15 Feb 2010 22:56:36 +0000 |
mod_saslauth: Correct syntax for gracefully handling a missing cyrussasl library
|
Matthew Wild |
Mon, 15 Feb 2010 22:56:15 +0000 |
mod_saslauth: Warn and fallback gracefully when Cyrus SASL is requested, but missing.
|
Waqas Hussain |
Mon, 15 Feb 2010 02:51:07 +0500 |
mod_saslauth: Don't print raw SASL data to avoid logging passwords unnecessarily
|
Matthew Wild |
Sat, 13 Feb 2010 19:35:12 +0000 |
mod_saslauth: Hook stream-features event using new events API.
|
Waqas Hussain |
Fri, 12 Feb 2010 04:25:37 +0500 |
mod_saslauth: Fixed some indentation and added some semi-colons.
|
Waqas Hussain |
Mon, 11 Jan 2010 19:17:26 +0500 |
mod_saslauth: Made some variables local to avoid unnecessary global access.
|
Waqas Hussain |
Mon, 11 Jan 2010 19:05:08 +0500 |
mod_saslauth: Oops.
|
Paul Aurich |
Sun, 03 Jan 2010 10:07:20 -0800 |
mod_saslauth: Use module:get_option()
|
Paul Aurich |
Sun, 03 Jan 2010 09:51:01 -0800 |
mod_saslauth: Add sasl_backend config parameter
|
Paul Aurich |
Sat, 02 Jan 2010 20:03:24 -0800 |
mod_saslauth: Adjust sanitizing.
|
Tobias Markmann |
Wed, 23 Dec 2009 23:13:39 +0100 |
mod_saslauth: Sanitize debugging information so it won't break terminal emulation when using GSSAPI auth.
|
Tobias Markmann |
Wed, 23 Dec 2009 23:09:44 +0100 |
added comment to remind us to fix binary output breaking the terminal
|
jorj |
Wed, 23 Dec 2009 16:45:03 -0500 |
mod_saslauth: Make service_name configurable for CyrusSASL users.
|
Tobias Markmann |
Tue, 22 Dec 2009 20:20:37 +0100 |
mod_saslauth: Add support for CyrusSASL.
|
Tobias Markmann |
Tue, 22 Dec 2009 19:27:19 +0100 |
mod_saslauth: Requiring c2s encryption means requiring c2s encryption... thanks Flo
|
Matthew Wild |
Mon, 21 Dec 2009 22:00:49 +0000 |
mod_saslauth: Fix typo in variable name
|
Matthew Wild |
Sat, 28 Nov 2009 15:12:07 +0000 |
mod_saslauth: Allow relogins after failed SASL login.
|
Tobias Markmann |
Thu, 26 Nov 2009 23:18:26 +0100 |
Use new cofig option reading API.
|
Tobias Markmann |
Thu, 19 Nov 2009 16:44:37 +0100 |
Allow SASL PLAIN over unsecure connections when intended by admin.
|
Tobias Markmann |
Thu, 19 Nov 2009 16:43:38 +0100 |
Provide SASL PLAIN mechanism only if TLS is active.
|
Tobias Markmann |
Wed, 18 Nov 2009 23:26:35 +0100 |
Merge with sasl branch.
|
Tobias Markmann |
Mon, 16 Nov 2009 21:43:57 +0100 |
Making mod_saslauth use the new SASL API.
sasl
|
Tobias Markmann |
Fri, 28 Aug 2009 13:04:38 +0200 |
mod_saslauth: Fixed access of globals.
|
Waqas Hussain |
Sun, 18 Oct 2009 18:50:35 +0500 |
mod_saslauth: Marked the im-session stream feature as optional. This allows smart clients to save a round trip.
|
Waqas Hussain |
Sun, 18 Oct 2009 18:48:34 +0500 |
require_encryption deprecated, use c2s_require_encryption instead
|
Matthew Wild |
Mon, 05 Oct 2009 14:59:30 +0100 |
Merge with 0.5
|
Matthew Wild |
Tue, 29 Sep 2009 19:56:23 +0100 |
mod_saslauth: Prep username used for authenticating a session
|
Matthew Wild |
Tue, 29 Sep 2009 19:54:31 +0100 |
Add NODEprepping to SASL Digest-MD5 authentication handling.
|
Tobias Markmann |
Sun, 06 Sep 2009 22:07:59 +0200 |
Uncertain merge with 0.5's SASL
|
Matthew Wild |
Thu, 20 Aug 2009 13:57:50 +0100 |
Use NODEprep for prepping usernames used during SASL logins.
|
Tobias Markmann |
Wed, 19 Aug 2009 21:59:16 +0200 |
mod_saslauth: Fix coding style and layout, and use of arg[] for vararg
|
Matthew Wild |
Wed, 05 Aug 2009 16:37:28 +0100 |
mod_saslauth: Fix indentation
|
Matthew Wild |
Wed, 05 Aug 2009 16:35:13 +0100 |
mod_saslauth: Fix traceback on attempted login for non-existent users
|
Matthew Wild |
Wed, 05 Aug 2009 16:31:56 +0100 |
Switch to using a more generic credentials_callback/handler for SASL auth.
|
nick |
Fri, 24 Jul 2009 01:34:25 +0100 |
mod_saslauth, usermanager: Fetch list of mechanisms from usermanager
|
Nick Thomas |
Thu, 23 Jul 2009 22:15:06 +0100 |
Remove version number from copyright headers
|
Matthew Wild |
Fri, 10 Jul 2009 03:11:45 +0100 |
Remove to-unicode conversion because it's done in sasl.lua now.
|
Tobias Markmann |
Sun, 05 Jul 2009 19:05:03 +0200 |
Fixed decoding of parameters.
|
Tobias Markmann |
Sun, 05 Jul 2009 18:59:46 +0200 |
Making sure the node is in unicode when passing it to password lookup function.
|
Tobias Markmann |
Wed, 01 Jul 2009 15:14:44 +0200 |
Adding a parameter for realm to the password_callback.
|
Tobias Markmann |
Sat, 20 Jun 2009 19:34:30 +0200 |
mod_saslauth: Don't offer bind/session when they aren't authenticated yet :) [thanks albert, again...]
|
Matthew Wild |
Fri, 29 May 2009 18:03:48 +0100 |
mod_saslauth, mod_legacyauth: Deny logins to unsecure sessions when require_encryption config option is true
|
Matthew Wild |
Fri, 29 May 2009 14:33:55 +0100 |
mod_saslauth: Fix logic error which prevented SASL ANONYMOUS from working
|
Matthew Wild |
Mon, 18 May 2009 04:48:35 +0100 |
mod_saslauth: Remove 2 instances of raising errors and replacing with more graceful handling
|
Matthew Wild |
Thu, 30 Apr 2009 01:46:36 +0100 |
mod_saslauth: Various logging fixes
|
Matthew Wild |
Thu, 30 Apr 2009 01:39:39 +0100 |
mod_saslauth: Use module logger instead of creating a new one
|
Matthew Wild |
Thu, 30 Apr 2009 01:38:52 +0100 |
mod_*: Fix a load of global accesses
|
Matthew Wild |
Wed, 22 Apr 2009 21:32:23 +0100 |
Fixed: Some nil access bugs
|
Waqas Hussain |
Mon, 30 Mar 2009 05:26:10 +0500 |
Fixed: mod_saslauth: "anonymous_login" currently makes SASL ANONYMOUS an exclusive mechanism. Corrected advertised mechanisms and error replies.
|
Waqas Hussain |
Mon, 30 Mar 2009 03:51:37 +0500 |
Fixed: mod_saslauth: Changed anonymous host option from "sasl_anonymous" to "anonymous_login"
|
Waqas Hussain |
Mon, 30 Mar 2009 03:42:47 +0500 |
0.3->0.4
|
Matthew Wild |
Fri, 20 Mar 2009 20:16:25 +0000 |
mod_saslauth: Disable SASL ANONYMOUS unless explicitly enabled with sasl_anonymous = true
|
Matthew Wild |
Sat, 07 Mar 2009 20:17:09 +0000 |
Adding inital support for ANONYMOUS mechanism in SASL.
|
Tobias Markmann |
Sat, 14 Feb 2009 18:57:50 +0100 |
Update copyright notices for 2009
|
Matthew Wild |
Fri, 30 Jan 2009 17:59:26 +0000 |
0.2->0.3
|
Matthew Wild |
Fri, 30 Jan 2009 17:40:25 +0000 |
GPL->MIT!
|
Matthew Wild |
Fri, 30 Jan 2009 17:22:56 +0000 |
Fix invalid loglevels in mod_saslauth
|
Matthew Wild |
Fri, 16 Jan 2009 04:19:47 +0000 |
mod_saslauth, mod_tls: minor code cleanup
|
Waqas Hussain |
Tue, 13 Jan 2009 19:37:12 +0500 |
0.1 -> 0.2
|
Matthew Wild |
Wed, 10 Dec 2008 15:44:03 +0000 |
Latin1 support for SASL DIGEST-MD5 (second, and possibly final commit)
|
Waqas Hussain |
Mon, 08 Dec 2008 00:18:01 +0500 |
Latin1 support for SASL DIGEST-MD5 (initial commit)
|
Waqas Hussain |
Sun, 07 Dec 2008 23:43:08 +0500 |
Backed out changeset 099d8a102deb (committed too much)
|
Matthew Wild |
Fri, 05 Dec 2008 19:49:16 +0000 |
Add TLS socket to readlist before handshake starts, fixes major slow-down on TLS connections
|
Matthew Wild |
Fri, 05 Dec 2008 19:24:01 +0000 |
Fix for handling latin1 encoded hostnames in SASL
|
Waqas Hussain |
Wed, 03 Dec 2008 22:08:49 +0500 |
Insert copyright/license headers
|
Matthew Wild |
Wed, 03 Dec 2008 14:39:07 +0000 |
Completely switched to new hashes library from the old md5 library
|
Waqas Hussain |
Fri, 28 Nov 2008 01:16:26 +0500 |
Stopped using the lbase64 library
|
Waqas Hussain |
Fri, 28 Nov 2008 00:48:16 +0500 |
Bumper commit for the new modulemanager API \o/ Updates all the modules, though some more changes may be in store.
|
Matthew Wild |
Thu, 27 Nov 2008 03:12:12 +0000 |
Use a stanza for c2s stream features instead of an array of strings. Removes a FIXME.
|
Matthew Wild |
Thu, 20 Nov 2008 01:33:25 +0000 |
Fixed mod_saslauth to use session.send for sending stanzas
|
Waqas Hussain |
Sun, 16 Nov 2008 04:47:34 +0500 |
Code cleanup for resource binding
|
Waqas Hussain |
Sun, 16 Nov 2008 03:16:53 +0500 |
Providing some human readable error messages and some fixes.
|
Tobias Markmann |
Sat, 15 Nov 2008 22:36:22 +0100 |
Using md5.sum rather than hashes.md5 because we don't want hexadecimal
|
Waqas Hussain |
Sun, 16 Nov 2008 02:28:32 +0500 |
mod_saslauth: Code cleanup
|
Waqas Hussain |
Sun, 16 Nov 2008 02:27:22 +0500 |
Made SASL module fit the new interface.
|
Tobias Markmann |
Sat, 15 Nov 2008 22:30:09 +0100 |
base64 encode the sasl responses
|
Waqas Hussain |
Sun, 16 Nov 2008 02:10:01 +0500 |
Started using realm in password hashing, and added support for error message replies from sasl
|
Waqas Hussain |
Sun, 16 Nov 2008 01:54:14 +0500 |
Comment out DIGEST-MD5 until it is fully implemented
|
Matthew Wild |
Sat, 15 Nov 2008 19:50:22 +0000 |
Merging with Waqas' code.
|
Tobias Markmann |
Sat, 15 Nov 2008 20:28:49 +0100 |
Set username in a SASL object.
|
Tobias Markmann |
Sat, 15 Nov 2008 20:28:09 +0100 |