prosody/plugins/mod_auth_anonymous.lua

-- Prosody IM
-- Copyright (C) 2008-2010 Matthew Wild
-- Copyright (C) 2008-2010 Waqas Hussain
--
-- This project is MIT/X11 licensed. Please see the
-- COPYING file in the source package for more information.
--
-- luacheck: ignore 212

local new_sasl = require "prosody.util.sasl".new;
local datamanager = require "prosody.util.datamanager";
local hosts = prosody.hosts;

local allow_storage = module:get_option_boolean("allow_anonymous_storage", false);

-- define auth provider
local provider = {};

function provider.test_password(username, password)
	return nil, "Password based auth not supported.";
end

function provider.get_password(username)
	return nil, "Password not available.";
end

function provider.set_password(username, password)
	return nil, "Password based auth not supported.";
end

function provider.user_exists(username)
	return nil, "Only anonymous users are supported."; -- FIXME check if anonymous user is connected?
end

function provider.create_user(username, password)
	return nil, "Account creation/modification not supported.";
end

function provider.get_sasl_handler()
	local anonymous_authentication_profile = {
		anonymous = function(sasl, username, realm)
			return true; -- for normal usage you should always return true here
		end
	};
	return new_sasl(module.host, anonymous_authentication_profile);
end

function provider.users()
	return next, hosts[module.host].sessions, nil;
end

-- datamanager callback to disable writes
local function dm_callback(username, host, datastore, data)
	if host == module.host then
		return false;
	end
	return username, host, datastore, data;
end

if not module:get_option_boolean("allow_anonymous_s2s", false) then
	module:hook("route/remote", function (event)
		return false; -- Block outgoing s2s from anonymous users
	end, 300);
end

function module.load()
	if not allow_storage then
		datamanager.add_callback(dm_callback);
	end
end
function module.unload()
	if not allow_storage then
		datamanager.remove_callback(dm_callback);
	end
end

module:provides("auth", provider);
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`-- Prosody IM`
			`-- Copyright (C) 2008-2010 Matthew Wild`
			`-- Copyright (C) 2008-2010 Waqas Hussain`
			`--`
			`-- This project is MIT/X11 licensed. Please see the`
			`-- COPYING file in the source package for more information.`
			`--`
mod_auth_anonymous: Ignore unused arguments to various not actually implemented functions [luacheck] 9 years ago			`-- luacheck: ignore 212`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago
plugins: Prefix module imports with prosody namespace 3 years ago			`local new_sasl = require "prosody.util.sasl".new;`
			`local datamanager = require "prosody.util.datamanager";`
mod_announce, mod_auth_anonymous, mod_c2s, mod_c2s, mod_component, mod_iq, mod_message, mod_presence, mod_tls: Access prosody.{hosts,bare_sessions,full_sessions} instead of the old globals 13 years ago			`local hosts = prosody.hosts;`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago
mod_auth_anonymous: Add config option to allow/disallow storage writes 5 years ago			`local allow_storage = module:get_option_boolean("allow_anonymous_storage", false);`

mod_auth_{internal_plain,cyrus,anonymous}: Get rid of useless wrapper function new_default_provider. 13 years ago			`-- define auth provider`
mod_auth_*: Use module:provides(). 13 years ago			`local provider = {};`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago
mod_auth_{internal_plain,cyrus,anonymous}: Get rid of useless wrapper function new_default_provider. 13 years ago			`function provider.test_password(username, password)`
			`return nil, "Password based auth not supported.";`
			`end`
mod_auth_anonymous, mod_auth_cyrus: Removed is_admin(), as usermanager already has a default. 16 years ago
mod_auth_{internal_plain,cyrus,anonymous}: Get rid of useless wrapper function new_default_provider. 13 years ago			`function provider.get_password(username)`
			`return nil, "Password not available.";`
			`end`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago
mod_auth_{internal_plain,cyrus,anonymous}: Get rid of useless wrapper function new_default_provider. 13 years ago			`function provider.set_password(username, password)`
			`return nil, "Password based auth not supported.";`
			`end`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago
mod_auth_{internal_plain,cyrus,anonymous}: Get rid of useless wrapper function new_default_provider. 13 years ago			`function provider.user_exists(username)`
			`return nil, "Only anonymous users are supported."; -- FIXME check if anonymous user is connected?`
			`end`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago
mod_auth_{internal_plain,cyrus,anonymous}: Get rid of useless wrapper function new_default_provider. 13 years ago			`function provider.create_user(username, password)`
			`return nil, "Account creation/modification not supported.";`
			`end`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago
mod_auth_{internal_plain,cyrus,anonymous}: Get rid of useless wrapper function new_default_provider. 13 years ago			`function provider.get_sasl_handler()`
			`local anonymous_authentication_profile = {`
			`anonymous = function(sasl, username, realm)`
			`return true; -- for normal usage you should always return true here`
			`end`
			`};`
			`return new_sasl(module.host, anonymous_authentication_profile);`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`end`

mod_auth_anonymous: Implement user iteration API 13 years ago			`function provider.users()`
mod_auth_anonymous: Fixed a traceback in listing all users (issue#396). 12 years ago			`return next, hosts[module.host].sessions, nil;`
mod_auth_anonymous: Implement user iteration API 13 years ago			`end`

mod_auth_{internal_plain,cyrus,anonymous}: Get rid of useless wrapper function new_default_provider. 13 years ago			`-- datamanager callback to disable writes`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`local function dm_callback(username, host, datastore, data)`
			`if host == module.host then`
			`return false;`
			`end`
			`return username, host, datastore, data;`
			`end`
mod_auth_anonymous: Block s2s when enabled on a host (and disallow_s2s ~= false) 14 years ago
mod_s2s, mod_auth_anonymous, hostmanager: Remove disallow_s2s flag, deprecate the config option of the same name (disable mod_s2s instead), and add 'allow_anonymous_s2s' to separately control s2s for anonymous users 14 years ago			`if not module:get_option_boolean("allow_anonymous_s2s", false) then`
mod_auth_anonymous: Block s2s when enabled on a host (and disallow_s2s ~= false) 14 years ago			`module:hook("route/remote", function (event)`
			`return false; -- Block outgoing s2s from anonymous users`
			`end, 300);`
			`end`

mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`function module.load()`
mod_auth_anonymous: Add config option to allow/disallow storage writes 5 years ago			`if not allow_storage then`
			`datamanager.add_callback(dm_callback);`
			`end`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`end`
			`function module.unload()`
mod_auth_anonymous: Add config option to allow/disallow storage writes 5 years ago			`if not allow_storage then`
			`datamanager.remove_callback(dm_callback);`
			`end`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`end`

mod_auth_*: Use module:provides(). 13 years ago			`module:provides("auth", provider);`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago