aboutsummaryrefslogtreecommitdiffstats
path: root/plugins
diff options
context:
space:
mode:
authorMatthew Wild <mwild1@gmail.com>2020-01-27 21:54:59 +0000
committerMatthew Wild <mwild1@gmail.com>2020-01-27 21:54:59 +0000
commit1f437623ad987328bcd6ca34b551f14415985b32 (patch)
tree73618851c2456f93568dc48895d23c96e8ba5fb1 /plugins
parentebb79437a842551b2cc8e403aaeccdc642260fa0 (diff)
downloadprosody-1f437623ad987328bcd6ca34b551f14415985b32.tar.gz
prosody-1f437623ad987328bcd6ca34b551f14415985b32.zip
usermanager, mod_authz_internal: Move admin-checking functionality into a module. Fixes #517 (ish).
Note: Removes the ability for mod_auth_* providers to determine user admin status. Such modules will need to have their is_admin methods ported to be a mod_authz_* provider.
Diffstat (limited to 'plugins')
-rw-r--r--plugins/mod_authz_internal.lua16
1 files changed, 16 insertions, 0 deletions
diff --git a/plugins/mod_authz_internal.lua b/plugins/mod_authz_internal.lua
new file mode 100644
index 00000000..41b8d9f0
--- /dev/null
+++ b/plugins/mod_authz_internal.lua
@@ -0,0 +1,16 @@
+local normalize = require "util.jid".prep;
+local admin_jids = module:get_option_inherited_set("admins", {}) / normalize;
+local host = module.host;
+
+local admin_role = { ["prosody:admin"] = true };
+
+function get_user_roles(user)
+ return get_jid_roles(user.."@"..host);
+end
+
+function get_jid_roles(jid)
+ if admin_jids:contains(jid) then
+ return admin_role;
+ end
+ return nil;
+end