util.paseto: Do strict type check in pae() function
|
Kim Alvefur |
2022-07-11 |
util.crypto: Use Lua 5.2 API for predictable buffer size
|
Kim Alvefur |
2022-07-11 |
util.crypto: Use stack space buffers
|
Kim Alvefur |
2022-07-11 |
util.paseto: Drop custom wrappers around key objects
|
Matthew Wild |
2022-07-11 |
util.paseto: Add tests based on official PASETO test vectors
|
Matthew Wild |
2022-07-11 |
util.paseto: Export similar API to new util.jwt for ease and consistency
|
Matthew Wild |
2022-07-11 |
util.paseto: Error early on invalid keys
|
Matthew Wild |
2022-07-11 |
util.paseto: Fix to decode footer before comparison
|
Matthew Wild |
2022-07-11 |
mod_http_file_share: Switch to new util.jwt API
|
Matthew Wild |
2022-07-11 |
util.jwt: Add new init() convenience method to obtain both signer and verifier
|
Matthew Wild |
2022-07-11 |
util.jwt: Consolidate payload parsing, ensure it's always a valid object
|
Matthew Wild |
2022-07-11 |
util.jwt: Provide built-in token expiry support (defaults to 3600s lifetime)
|
Matthew Wild |
2022-07-11 |
util.jwt: All the algorithms (+ all the tests!)
|
Matthew Wild |
2022-07-02 |
util.crypto: tests: fix some tests that didn't do much (thanks luacheck!)
|
Matthew Wild |
2022-07-02 |
util.crypto: More digests for sign/verify, use macros for clarity/consistency
|
Matthew Wild |
2022-07-02 |
util.jwt: Overhaul of tests to use declarative approach
|
Matthew Wild |
2022-07-02 |
spec: Move test crypto keys to a shared file for clarity and easy maintenance
|
Matthew Wild |
2022-07-02 |
util.jwt: Add support for RSA-based algorithms (RS256, PS256)
|
Matthew Wild |
2022-07-02 |
util.crypto: Friendlier error message on incorrect key types
|
Matthew Wild |
2022-07-02 |
util.crypto: Add support for RSA signatures (PKCS1-v1.5 + PSS)
|
Matthew Wild |
2022-07-02 |
util.jwt: Add support/tests for ES256 via improved API and using util.crypto
|
Matthew Wild |
2022-07-01 |
util.crypto: Add Teal type specification
|
Kim Alvefur |
2022-06-30 |
util.paseto: Implementation of PASETO v4.public tokens
|
Matthew Wild |
2022-06-24 |
util.crypto: New wrapper for some operations in OpenSSL's libcrypto
|
Matthew Wild |
2022-06-24 |
util-src: Add new utility header managed_pointer.h
|
Matthew Wild |
2022-07-01 |
mod_smacks: Set session.smacks after sending <enabled/> to fix traceback
|
Matthew Wild |
2022-08-29 |
core.moduleapi: Check for local role-aware sessions before e.g. s2s
|
Kim Alvefur |
2022-08-29 |
mod_smacks: Use new :add_error() in last remaining error result construction
|
Matthew Wild |
2022-08-29 |
mod_smacks: Split enable handling to stages, to allow easier SASL2 integration
|
Matthew Wild |
2022-08-29 |
util.stanza: Add add_error() to simplify adding error tags to existing stanzas
|
Matthew Wild |
2022-08-29 |
mod_component: Require 'from' attribute on stanzas by default
|
Matthew Wild |
2022-08-28 |
mod_external_services: Update tools.ietf.org URL
|
Kim Alvefur |
2022-08-27 |
doap: Update for XEP-0215 advancement to Stable
|
Kim Alvefur |
2022-08-27 |
core.usermanager: Link to docs for new role API to make warning more actionable
|
Kim Alvefur |
2022-08-27 |
mod_smacks: Split resumption into multiple stages, to simplify ISR integration
|
Matthew Wild |
2022-08-26 |
mod_s2s: Simplify conditionals since all sessions should have .host now
|
Kim Alvefur |
2022-08-26 |
Merge 0.12->trunk
|
Kim Alvefur |
2022-08-26 |
mod_s2s: Fix firing buffer drain events
0.12
|
Kim Alvefur |
2022-08-26 |
mod_smacks: Don't close resuming session when failed due to overflow
|
Matthew Wild |
2022-08-26 |
mod_smacks: Long overdue cleanup of resumption code, fixes some old TODOs
|
Matthew Wild |
2022-08-26 |
mod_admin_shell: Rename variable to avoid confusion with global function
|
Kim Alvefur |
2022-08-25 |
mod_admin_shell: Fix output from user:roles()
|
Kim Alvefur |
2022-08-25 |
Merge role-auth->trunk
|
Matthew Wild |
2022-08-22 |
CHANGES: Add role auth
|
Matthew Wild |
2022-08-22 |
mod_admin_shell: Ensure account has role before it is usable
|
Kim Alvefur |
2022-08-18 |
mod_auth_insecure: Store creation and update timestamps on account
|
Kim Alvefur |
2022-08-18 |
mod_admin_shell: Update help for user:create to reflect singular role argument
|
Kim Alvefur |
2022-08-18 |
mod_auth_internal_hashed: Allow creating disabled account without password
|
Kim Alvefur |
2022-08-18 |
mod_admin_shell: Update with new role management commands and help text
|
Matthew Wild |
2022-08-18 |
core.usermanager: Update argument name in authz fallback method
|
Kim Alvefur |
2022-08-18 |
core.usermanager: Remove obsolete authz fallback method
|
Kim Alvefur |
2022-08-18 |
core.usermanager: Add missing methods to fallback authz provider
|
Kim Alvefur |
2022-08-18 |
core.usermanager: Add scoped luacheck ignore rule to reduce clutter
|
Kim Alvefur |
2022-08-18 |
mod_authz_internal: Expose convenience method to test if user can assume role
|
Matthew Wild |
2022-08-18 |
mod_authz_internal, and more: New iteration of role API
|
Matthew Wild |
2022-08-17 |
util.roles: Add Teal interface declaration
|
Kim Alvefur |
2022-08-12 |
mod_admin_shell: Show session role in c2s:show
|
Kim Alvefur |
2022-08-15 |
usermanager: Add back temporary is_admin to warn about deprecated API usage
|
Matthew Wild |
2022-08-15 |
usermanager: Remove concept of global authz provider
|
Matthew Wild |
2022-08-12 |
usermanager: Fix method name of global authz provider (thanks Zash)
|
Matthew Wild |
2022-08-12 |