aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* util.paseto: Drop custom wrappers around key objectsMatthew Wild2022-07-112-47/+6
* util.paseto: Add tests based on official PASETO test vectorsMatthew Wild2022-07-111-0/+118
* util.paseto: Export similar API to new util.jwt for ease and consistencyMatthew Wild2022-07-111-0/+21
* util.paseto: Error early on invalid keysMatthew Wild2022-07-111-0/+2
* util.paseto: Fix to decode footer before comparisonMatthew Wild2022-07-111-0/+1
* mod_http_file_share: Switch to new util.jwt APIMatthew Wild2022-07-111-32/+32
* util.jwt: Add new init() convenience method to obtain both signer and verifierMatthew Wild2022-07-111-0/+6
* util.jwt: Consolidate payload parsing, ensure it's always a valid objectMatthew Wild2022-07-111-11/+13
* util.jwt: Provide built-in token expiry support (defaults to 3600s lifetime)Matthew Wild2022-07-111-3/+28
* util.jwt: All the algorithms (+ all the tests!)Matthew Wild2022-07-022-24/+98
* util.crypto: tests: fix some tests that didn't do much (thanks luacheck!)Matthew Wild2022-07-021-3/+2
* util.crypto: More digests for sign/verify, use macros for clarity/consistencyMatthew Wild2022-07-022-34/+42
* util.jwt: Overhaul of tests to use declarative approachMatthew Wild2022-07-022-115/+199
* spec: Move test crypto keys to a shared file for clarity and easy maintenanceMatthew Wild2022-07-023-125/+82
* util.jwt: Add support for RSA-based algorithms (RS256, PS256)Matthew Wild2022-07-022-14/+205
* util.crypto: Friendlier error message on incorrect key typesMatthew Wild2022-07-021-1/+6
* util.crypto: Add support for RSA signatures (PKCS1-v1.5 + PSS)Matthew Wild2022-07-021-3/+31
* util.jwt: Add support/tests for ES256 via improved API and using util.cryptoMatthew Wild2022-07-012-19/+171
* util.crypto: Add Teal type specificationKim Alvefur2022-06-301-0/+29
* util.paseto: Implementation of PASETO v4.public tokensMatthew Wild2022-06-241-0/+123
* util.crypto: New wrapper for some operations in OpenSSL's libcryptoMatthew Wild2022-06-243-2/+753
* util-src: Add new utility header managed_pointer.hMatthew Wild2022-07-011-0/+61
* mod_smacks: Set session.smacks after sending <enabled/> to fix tracebackMatthew Wild2022-08-291-2/+1
* core.moduleapi: Check for local role-aware sessions before e.g. s2sKim Alvefur2022-08-291-9/+9
* mod_smacks: Use new :add_error() in last remaining error result constructionMatthew Wild2022-08-291-2/+1
* mod_smacks: Split enable handling to stages, to allow easier SASL2 integrationMatthew Wild2022-08-291-21/+48
* util.stanza: Add add_error() to simplify adding error tags to existing stanzasMatthew Wild2022-08-292-25/+45
* mod_component: Require 'from' attribute on stanzas by defaultMatthew Wild2022-08-281-16/+13
* mod_external_services: Update tools.ietf.org URLKim Alvefur2022-08-271-1/+1
* doap: Update for XEP-0215 advancement to StableKim Alvefur2022-08-271-1/+1
* core.usermanager: Link to docs for new role API to make warning more actionableKim Alvefur2022-08-271-0/+1
* mod_smacks: Split resumption into multiple stages, to simplify ISR integrationMatthew Wild2022-08-261-63/+82
* mod_s2s: Simplify conditionals since all sessions should have .host nowKim Alvefur2022-08-262-3/+3
* Merge 0.12->trunkKim Alvefur2022-08-261-2/+2
|\
| * mod_s2s: Fix firing buffer drain eventsKim Alvefur2022-08-261-2/+2
* | mod_smacks: Don't close resuming session when failed due to overflowMatthew Wild2022-08-261-7/+8
* | mod_smacks: Long overdue cleanup of resumption code, fixes some old TODOsMatthew Wild2022-08-263-52/+66
* | mod_admin_shell: Rename variable to avoid confusion with global functionKim Alvefur2022-08-251-7/+7
* | mod_admin_shell: Fix output from user:roles()Kim Alvefur2022-08-251-0/+1
* | Merge role-auth->trunkMatthew Wild2022-08-2228-259/+837
|\ \
| * | CHANGES: Add role authMatthew Wild2022-08-221-0/+1
| * | mod_admin_shell: Ensure account has role before it is usableKim Alvefur2022-08-181-8/+16
| * | mod_auth_insecure: Store creation and update timestamps on accountKim Alvefur2022-08-181-1/+3
| * | mod_admin_shell: Update help for user:create to reflect singular role argumentKim Alvefur2022-08-181-1/+1
| * | mod_auth_internal_hashed: Allow creating disabled account without passwordKim Alvefur2022-08-181-2/+2
| * | mod_admin_shell: Update with new role management commands and help textMatthew Wild2022-08-181-39/+52
| * | core.usermanager: Update argument name in authz fallback methodKim Alvefur2022-08-181-1/+1
| * | core.usermanager: Remove obsolete authz fallback methodKim Alvefur2022-08-181-1/+0
| * | core.usermanager: Add missing methods to fallback authz providerKim Alvefur2022-08-181-0/+3
| * | core.usermanager: Add scoped luacheck ignore rule to reduce clutterKim Alvefur2022-08-181-11/+12