apitech
/
prosody
mirror of https://github.com/bjc/prosody
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
IMPORTANT: due to a drive failure, as of 13-Mar-2021, the Mercurial repository had to be re-mirrored, which changed every commit SHA. The old SHAs and trees are backed up in the vault branches. Please migrate to the new branches as soon as you can.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
13887 Commits
12 Branches
101 Tags
54 MiB
Tag: Branch: Tree: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
prosody/plugins/mod_auth_insecure.lua

61 lines
1.7 KiB
Raw Permalink Normal View History Unescape

mod_auth_insecure: Accept any username/password (import of mod_auth_any from prosody-modules)
7 years ago
-- Prosody IM
-- Copyright (C) 2008-2010 Matthew Wild
-- Copyright (C) 2008-2010 Waqas Hussain
--
-- This project is MIT/X11 licensed. Please see the
-- COPYING file in the source package for more information.
--
-- luacheck: ignore 212
plugins: Prefix module imports with prosody namespace
3 years ago
local datamanager = require "prosody.util.datamanager";
local new_sasl = require "prosody.util.sasl".new;
local saslprep = require "prosody.util.encodings".stringprep.saslprep;
mod_auth_insecure: Accept any username/password (import of mod_auth_any from prosody-modules)
7 years ago
local host = module.host;
mod_auth_insecure: Fix module provider name
7 years ago
local provider = { name = "insecure" };
mod_auth_insecure: Accept any username/password (import of mod_auth_any from prosody-modules)
7 years ago
assert(module:get_option_string("insecure_open_authentication") == "Yes please, I know what I'm doing!");
function provider.test_password(username, password)
return true;
end
function provider.set_password(username, password)
local account = datamanager.load(username, host, "accounts");
mod_auth_internal_*: Apply saslprep to passwords Related to #1560
6 years ago
password = saslprep(password);
if not password then
return nil, "Password fails SASLprep.";
end
mod_auth_insecure: Accept any username/password (import of mod_auth_any from prosody-modules)
7 years ago
if account then
mod_auth_insecure: Store creation and update timestamps on account This ensures that the store is not empty in case no password is provided, so the underlying data storage won't consider the store empty.
3 years ago
account.updated = os.time();
mod_auth_insecure: Accept any username/password (import of mod_auth_any from prosody-modules)
7 years ago
account.password = password;
return datamanager.store(username, host, "accounts", account);
end
return nil, "Account not available.";
end
function provider.user_exists(username)
return true;
end
function provider.create_user(username, password)
mod_auth_insecure: Store creation and update timestamps on account This ensures that the store is not empty in case no password is provided, so the underlying data storage won't consider the store empty.
3 years ago
local now = os.time();
return datamanager.store(username, host, "accounts", { created = now; updated = now; password = password });
mod_auth_insecure: Accept any username/password (import of mod_auth_any from prosody-modules)
7 years ago
end
function provider.delete_user(username)
return datamanager.store(username, host, "accounts", nil);
end
function provider.get_sasl_handler()
local getpass_authentication_profile = {
plain_test = function(sasl, username, password, realm)
return true, true;
end
};
return new_sasl(module.host, getpass_authentication_profile);
end
module:add_item("auth-provider", provider);