Log

description author age
util.paseto: Fix to decode footer before comparison Matthew Wild Mon, 11 Jul 2022 13:51:39 +0100
mod_http_file_share: Switch to new util.jwt API Matthew Wild Mon, 11 Jul 2022 13:49:47 +0100
util.jwt: Add new init() convenience method to obtain both signer and verifier Matthew Wild Mon, 11 Jul 2022 13:43:01 +0100
util.jwt: Consolidate payload parsing, ensure it's always a valid object Matthew Wild Mon, 11 Jul 2022 13:42:08 +0100
util.jwt: Provide built-in token expiry support (defaults to 3600s lifetime) Matthew Wild Mon, 11 Jul 2022 13:28:29 +0100
util.jwt: All the algorithms (+ all the tests!) Matthew Wild Sat, 02 Jul 2022 15:29:04 +0100
util.crypto: tests: fix some tests that didn't do much (thanks luacheck!) Matthew Wild Sat, 02 Jul 2022 15:27:44 +0100
util.crypto: More digests for sign/verify, use macros for clarity/consistency Matthew Wild Sat, 02 Jul 2022 14:59:52 +0100
util.jwt: Overhaul of tests to use declarative approach Matthew Wild Sat, 02 Jul 2022 14:22:20 +0100
spec: Move test crypto keys to a shared file for clarity and easy maintenance Matthew Wild Sat, 02 Jul 2022 12:36:52 +0100
util.jwt: Add support for RSA-based algorithms (RS256, PS256) Matthew Wild Sat, 02 Jul 2022 12:26:43 +0100
util.crypto: Friendlier error message on incorrect key types Matthew Wild Sat, 02 Jul 2022 11:51:24 +0100
util.crypto: Add support for RSA signatures (PKCS1-v1.5 + PSS) Matthew Wild Sat, 02 Jul 2022 11:50:56 +0100
util.jwt: Add support/tests for ES256 via improved API and using util.crypto Matthew Wild Fri, 01 Jul 2022 18:51:15 +0100
util.crypto: Add Teal type specification Kim Alvefur Thu, 30 Jun 2022 15:38:22 +0200
util.paseto: Implementation of PASETO v4.public tokens Matthew Wild Fri, 24 Jun 2022 17:03:28 +0100
util.crypto: New wrapper for some operations in OpenSSL's libcrypto Matthew Wild Fri, 24 Jun 2022 16:56:16 +0100
util-src: Add new utility header managed_pointer.h Matthew Wild Fri, 01 Jul 2022 15:11:08 +0100
mod_smacks: Set session.smacks after sending <enabled/> to fix traceback Matthew Wild Mon, 29 Aug 2022 15:58:51 +0100
core.moduleapi: Check for local role-aware sessions before e.g. s2s Kim Alvefur Mon, 29 Aug 2022 11:47:31 +0200
mod_smacks: Use new :add_error() in last remaining error result construction Matthew Wild Mon, 29 Aug 2022 15:48:07 +0100
mod_smacks: Split enable handling to stages, to allow easier SASL2 integration Matthew Wild Mon, 29 Aug 2022 15:45:52 +0100
util.stanza: Add add_error() to simplify adding error tags to existing stanzas Matthew Wild Mon, 29 Aug 2022 14:59:46 +0100
mod_component: Require 'from' attribute on stanzas by default Matthew Wild Sun, 28 Aug 2022 07:51:50 +0100
mod_external_services: Update tools.ietf.org URL Kim Alvefur Sat, 27 Aug 2022 17:19:13 +0200
doap: Update for XEP-0215 advancement to Stable Kim Alvefur Sat, 27 Aug 2022 17:16:18 +0200
core.usermanager: Link to docs for new role API to make warning more actionable Kim Alvefur Sat, 27 Aug 2022 17:01:36 +0200
mod_smacks: Split resumption into multiple stages, to simplify ISR integration Matthew Wild Fri, 26 Aug 2022 19:07:36 +0100
mod_s2s: Simplify conditionals since all sessions should have .host now Kim Alvefur Fri, 26 Aug 2022 19:10:15 +0200
Merge 0.12->trunk Kim Alvefur Fri, 26 Aug 2022 19:03:23 +0200
mod_s2s: Fix firing buffer drain events 0.12 Kim Alvefur Fri, 26 Aug 2022 18:53:00 +0200
mod_smacks: Don't close resuming session when failed due to overflow Matthew Wild Fri, 26 Aug 2022 17:28:06 +0100
mod_smacks: Long overdue cleanup of resumption code, fixes some old TODOs Matthew Wild Fri, 26 Aug 2022 17:04:15 +0100
mod_admin_shell: Rename variable to avoid confusion with global function Kim Alvefur Thu, 25 Aug 2022 22:42:41 +0200
mod_admin_shell: Fix output from user:roles() Kim Alvefur Thu, 25 Aug 2022 22:40:41 +0200
Merge role-auth->trunk Matthew Wild Mon, 22 Aug 2022 13:53:35 +0100
CHANGES: Add role auth Matthew Wild Mon, 22 Aug 2022 13:03:10 +0100
mod_admin_shell: Ensure account has role before it is usable Kim Alvefur Thu, 18 Aug 2022 19:00:01 +0200
mod_auth_insecure: Store creation and update timestamps on account Kim Alvefur Thu, 18 Aug 2022 18:10:44 +0200
mod_admin_shell: Update help for user:create to reflect singular role argument Kim Alvefur Thu, 18 Aug 2022 18:10:18 +0200
mod_auth_internal_hashed: Allow creating disabled account without password Kim Alvefur Thu, 18 Aug 2022 17:50:56 +0200
mod_admin_shell: Update with new role management commands and help text Matthew Wild Thu, 18 Aug 2022 16:46:07 +0100
core.usermanager: Update argument name in authz fallback method Kim Alvefur Thu, 18 Aug 2022 15:42:07 +0200
core.usermanager: Remove obsolete authz fallback method Kim Alvefur Thu, 18 Aug 2022 15:38:18 +0200
core.usermanager: Add missing methods to fallback authz provider Kim Alvefur Thu, 18 Aug 2022 14:10:21 +0200
core.usermanager: Add scoped luacheck ignore rule to reduce clutter Kim Alvefur Thu, 18 Aug 2022 14:07:54 +0200
mod_authz_internal: Expose convenience method to test if user can assume role Matthew Wild Thu, 18 Aug 2022 10:37:59 +0100
mod_authz_internal, and more: New iteration of role API Matthew Wild Wed, 17 Aug 2022 16:38:53 +0100
util.roles: Add Teal interface declaration Kim Alvefur Fri, 12 Aug 2022 22:09:09 +0200
mod_admin_shell: Show session role in c2s:show Kim Alvefur Mon, 15 Aug 2022 16:36:00 +0200
usermanager: Add back temporary is_admin to warn about deprecated API usage Matthew Wild Mon, 15 Aug 2022 15:25:07 +0100
usermanager: Remove concept of global authz provider Matthew Wild Fri, 12 Aug 2022 16:21:57 +0100
usermanager: Fix method name of global authz provider (thanks Zash) Matthew Wild Fri, 12 Aug 2022 11:58:25 +0100
usermanager: Remove obsolete function from global authz provider Matthew Wild Thu, 11 Aug 2022 16:56:59 +0100
features: Add "permissions" feature for role-auth Matthew Wild Thu, 11 Aug 2022 16:47:09 +0100
usermanager: Handle local JIDs being passed to get/set_jid_role() Matthew Wild Mon, 01 Aug 2022 20:26:00 +0100
core.usermanager: Add missing stub authz methods to global authz provider Kim Alvefur Wed, 20 Jul 2022 13:10:47 +0200
moduleapi: Stricter type check for actor in permission check Kim Alvefur Wed, 20 Jul 2022 13:08:07 +0200
moduleapi: Remove redundant expansion of ':' prefix in permission names Kim Alvefur Wed, 20 Jul 2022 13:07:04 +0200
moduleapi: Distribute permissions set from global modules to all hosts Kim Alvefur Wed, 20 Jul 2022 13:05:35 +0200
mod_tokenauth: New API that better fits how modules are using token auth Matthew Wild Wed, 20 Jul 2022 10:52:17 +0100
mod_authz_internal: Use util.roles, some API changes and config support Matthew Wild Tue, 19 Jul 2022 18:02:02 +0100
util.roles: Add new utility module to consolidate role objects and methods Matthew Wild Tue, 19 Jul 2022 17:44:26 +0100
usermanager, mod_auth_*: Add get_account_info() returning creation/update time Matthew Wild Tue, 12 Jul 2022 13:14:47 +0100