prosody/plugins/mod_auth_anonymous.lua

-- Prosody IM
-- Copyright (C) 2008-2010 Matthew Wild
-- Copyright (C) 2008-2010 Waqas Hussain
--
-- This project is MIT/X11 licensed. Please see the
-- COPYING file in the source package for more information.
--

local new_sasl = require "util.sasl".new;
local datamanager = require "util.datamanager";

function new_default_provider(host)
	local provider = { name = "anonymous" };

	function provider.test_password(username, password)
		return nil, "Password based auth not supported.";
	end

	function provider.get_password(username)
		return nil, "Password not available.";
	end

	function provider.set_password(username, password)
		return nil, "Password based auth not supported.";
	end

	function provider.user_exists(username)
		return nil, "Only anonymous users are supported."; -- FIXME check if anonymous user is connected?
	end

	function provider.create_user(username, password)
		return nil, "Account creation/modification not supported.";
	end

	function provider.get_sasl_handler()
		local anonymous_authentication_profile = {
			anonymous = function(sasl, username, realm)
				return true; -- for normal usage you should always return true here
			end
		};
		return new_sasl(module.host, anonymous_authentication_profile);
	end

	return provider;
end

local function dm_callback(username, host, datastore, data)
	if host == module.host then
		return false;
	end
	return username, host, datastore, data;
end

if not module:get_option_boolean("allow_anonymous_s2s", false) then
	module:hook("route/remote", function (event)
		return false; -- Block outgoing s2s from anonymous users
	end, 300);
end

function module.load()
	datamanager.add_callback(dm_callback);
end
function module.unload()
	datamanager.remove_callback(dm_callback);
end

module:add_item("auth-provider", new_default_provider(module.host));
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`-- Prosody IM`
			`-- Copyright (C) 2008-2010 Matthew Wild`
			`-- Copyright (C) 2008-2010 Waqas Hussain`
			`--`
			`-- This project is MIT/X11 licensed. Please see the`
			`-- COPYING file in the source package for more information.`
			`--`

			`local new_sasl = require "util.sasl".new;`
			`local datamanager = require "util.datamanager";`

			`function new_default_provider(host)`
			`local provider = { name = "anonymous" };`

			`function provider.test_password(username, password)`
			`return nil, "Password based auth not supported.";`
			`end`

			`function provider.get_password(username)`
			`return nil, "Password not available.";`
			`end`
mod_auth_anonymous, mod_auth_cyrus: Removed is_admin(), as usermanager already has a default. 16 years ago
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`function provider.set_password(username, password)`
			`return nil, "Password based auth not supported.";`
			`end`

			`function provider.user_exists(username)`
			`return nil, "Only anonymous users are supported."; -- FIXME check if anonymous user is connected?`
			`end`

			`function provider.create_user(username, password)`
mod_auth_anonymous: Fixed a syntax error. 16 years ago			`return nil, "Account creation/modification not supported.";`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`end`

Backed out changeset 72a2eec4204a (incomplete fix) 14 years ago			`function provider.get_sasl_handler()`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`local anonymous_authentication_profile = {`
util.sasl., mod_auth_, mod_saslauth: Pass SASL handler as first parameter to SASL profile callbacks. 15 years ago			`anonymous = function(sasl, username, realm)`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`return true; -- for normal usage you should always return true here`
			`end`
			`};`
mod_auth_*: Get rid of undocumented and broken 'sasl_realm' config option. 15 years ago			`return new_sasl(module.host, anonymous_authentication_profile);`
mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`end`

			`return provider;`
			`end`

			`local function dm_callback(username, host, datastore, data)`
			`if host == module.host then`
			`return false;`
			`end`
			`return username, host, datastore, data;`
			`end`
mod_auth_anonymous: Block s2s when enabled on a host (and disallow_s2s ~= false) 14 years ago
mod_s2s, mod_auth_anonymous, hostmanager: Remove disallow_s2s flag, deprecate the config option of the same name (disable mod_s2s instead), and add 'allow_anonymous_s2s' to separately control s2s for anonymous users 14 years ago			`if not module:get_option_boolean("allow_anonymous_s2s", false) then`
mod_auth_anonymous: Block s2s when enabled on a host (and disallow_s2s ~= false) 14 years ago			`module:hook("route/remote", function (event)`
			`return false; -- Block outgoing s2s from anonymous users`
			`end, 300);`
			`end`

mod_auth_anonymous: Auth provider with support for SASL ANONYMOUS. 16 years ago			`function module.load()`
			`datamanager.add_callback(dm_callback);`
			`end`
			`function module.unload()`
			`datamanager.remove_callback(dm_callback);`
			`end`

			`module:add_item("auth-provider", new_default_provider(module.host));`