aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
...
* | mod_smacks: Set session flag during successful enableMatthew Wild2022-09-031-0/+1
* | mod_smacks: Add type field to results so actions can be later distinguishedMatthew Wild2022-09-031-1/+2
* | mod_saslauth: Only announce bind feature if no resource yet boundMatthew Wild2022-09-031-1/+1
* | semgrep: Catch stanza:text() (assuming it's meant to be :get_text())Matthew Wild2022-09-031-0/+6
* | util.paseto: Do strict type check in pae() functionKim Alvefur2022-07-111-0/+3
* | util.crypto: Use Lua 5.2 API for predictable buffer sizeKim Alvefur2022-07-111-6/+1
* | util.crypto: Use stack space buffersKim Alvefur2022-07-111-14/+11
* | util.paseto: Drop custom wrappers around key objectsMatthew Wild2022-07-112-47/+6
* | util.paseto: Add tests based on official PASETO test vectorsMatthew Wild2022-07-111-0/+118
* | util.paseto: Export similar API to new util.jwt for ease and consistencyMatthew Wild2022-07-111-0/+21
* | util.paseto: Error early on invalid keysMatthew Wild2022-07-111-0/+2
* | util.paseto: Fix to decode footer before comparisonMatthew Wild2022-07-111-0/+1
* | mod_http_file_share: Switch to new util.jwt APIMatthew Wild2022-07-111-32/+32
* | util.jwt: Add new init() convenience method to obtain both signer and verifierMatthew Wild2022-07-111-0/+6
* | util.jwt: Consolidate payload parsing, ensure it's always a valid objectMatthew Wild2022-07-111-11/+13
* | util.jwt: Provide built-in token expiry support (defaults to 3600s lifetime)Matthew Wild2022-07-111-3/+28
* | util.jwt: All the algorithms (+ all the tests!)Matthew Wild2022-07-022-24/+98
* | util.crypto: tests: fix some tests that didn't do much (thanks luacheck!)Matthew Wild2022-07-021-3/+2
* | util.crypto: More digests for sign/verify, use macros for clarity/consistencyMatthew Wild2022-07-022-34/+42
* | util.jwt: Overhaul of tests to use declarative approachMatthew Wild2022-07-022-115/+199
* | spec: Move test crypto keys to a shared file for clarity and easy maintenanceMatthew Wild2022-07-023-125/+82
* | util.jwt: Add support for RSA-based algorithms (RS256, PS256)Matthew Wild2022-07-022-14/+205
* | util.crypto: Friendlier error message on incorrect key typesMatthew Wild2022-07-021-1/+6
* | util.crypto: Add support for RSA signatures (PKCS1-v1.5 + PSS)Matthew Wild2022-07-021-3/+31
* | util.jwt: Add support/tests for ES256 via improved API and using util.cryptoMatthew Wild2022-07-012-19/+171
* | util.crypto: Add Teal type specificationKim Alvefur2022-06-301-0/+29
* | util.paseto: Implementation of PASETO v4.public tokensMatthew Wild2022-06-241-0/+123
* | util.crypto: New wrapper for some operations in OpenSSL's libcryptoMatthew Wild2022-06-243-2/+753
* | util-src: Add new utility header managed_pointer.hMatthew Wild2022-07-011-0/+61
* | mod_smacks: Set session.smacks after sending <enabled/> to fix tracebackMatthew Wild2022-08-291-2/+1
* | core.moduleapi: Check for local role-aware sessions before e.g. s2sKim Alvefur2022-08-291-9/+9
* | mod_smacks: Use new :add_error() in last remaining error result constructionMatthew Wild2022-08-291-2/+1
* | mod_smacks: Split enable handling to stages, to allow easier SASL2 integrationMatthew Wild2022-08-291-21/+48
* | util.stanza: Add add_error() to simplify adding error tags to existing stanzasMatthew Wild2022-08-292-25/+45
* | mod_component: Require 'from' attribute on stanzas by defaultMatthew Wild2022-08-281-16/+13
* | mod_external_services: Update tools.ietf.org URLKim Alvefur2022-08-271-1/+1
* | doap: Update for XEP-0215 advancement to StableKim Alvefur2022-08-271-1/+1
* | core.usermanager: Link to docs for new role API to make warning more actionableKim Alvefur2022-08-271-0/+1
* | mod_smacks: Split resumption into multiple stages, to simplify ISR integrationMatthew Wild2022-08-261-63/+82
* | mod_s2s: Simplify conditionals since all sessions should have .host nowKim Alvefur2022-08-262-3/+3
* | Merge 0.12->trunkKim Alvefur2022-08-261-2/+2
|\|
| * mod_s2s: Fix firing buffer drain eventsKim Alvefur2022-08-261-2/+2
* | mod_smacks: Don't close resuming session when failed due to overflowMatthew Wild2022-08-261-7/+8
* | mod_smacks: Long overdue cleanup of resumption code, fixes some old TODOsMatthew Wild2022-08-263-52/+66
* | mod_admin_shell: Rename variable to avoid confusion with global functionKim Alvefur2022-08-251-7/+7
* | mod_admin_shell: Fix output from user:roles()Kim Alvefur2022-08-251-0/+1
* | Merge role-auth->trunkMatthew Wild2022-08-2228-259/+837
|\ \
| * | CHANGES: Add role authMatthew Wild2022-08-221-0/+1
| * | mod_admin_shell: Ensure account has role before it is usableKim Alvefur2022-08-181-8/+16
| * | mod_auth_insecure: Store creation and update timestamps on accountKim Alvefur2022-08-181-1/+3