aboutsummaryrefslogtreecommitdiffstats
path: root/plugins/mod_saslauth.lua
Commit message (Collapse)AuthorAgeFilesLines
...
* Merge 0.9->0.10Kim Alvefur2017-03-021-2/+13
|\
| * mod_saslauth: Log SASL failure reasonKim Alvefur2017-03-021-2/+13
| |
* | mod_saslauth: Ignore shadowing of logger [luacheck]Kim Alvefur2017-02-151-1/+1
| |
* | mod_saslauth: Improve logging as to why when SASL is not offeredKim Alvefur2017-02-151-3/+11
| |
* | mod_saslauth: Cache logger in local for less typingKim Alvefur2017-02-151-1/+2
| |
* | core.sessionmanager, mod_saslauth: Introduce intermediate session type for ↵Kim Alvefur2016-12-131-1/+1
| | | | | | | | authenticated but unbound sessions so that resource binding is not treated as a normal stanza
* | mod_saslauth: Disable DIGEST-MD5 by default (closes #515)Kim Alvefur2016-03-181-1/+1
| |
* | mod_saslauth: Make it easier to support multiple channel binding methondsKim Alvefur2014-11-191-2/+4
| |
* | mod_saslauth: Break out tls-unique channel binding callback so it is ↵Kim Alvefur2014-11-191-5/+10
| | | | | | | | instantiated once
* | mod_saslauth: Keep sasl_handler in a local variableKim Alvefur2014-11-191-5/+6
| |
* | mod_saslauth: Better name for config optionKim Alvefur2014-10-211-1/+1
| |
* | mod_saslauth: Make it possible to disable certain mechanismsKim Alvefur2014-10-211-1/+5
| |
* | mod_saslauth: Add LOGIN to mechanisms not allowed over unencrypted ↵Kim Alvefur2014-10-211-1/+1
| | | | | | | | connections as it may be offered by 3rd party authentication plugins
* | mod_saslauth: Use a configurable set of mechanisms to not allow over ↵Kim Alvefur2014-10-211-2/+3
| | | | | | | | unencrypted connections
* | mod_saslauth: Log warning if no SASL mechanisms were offeredKim Alvefur2014-10-211-1/+5
| |
* | mod_saslauth: Use type-specific config option gettersKim Alvefur2014-10-211-2/+2
| |
* | mod_legacyauth, mod_saslauth, mod_tls: Pass require_encryption as default ↵Kim Alvefur2014-10-211-1/+1
| | | | | | | | option to s2s_require_encryption so the later overrides the former
* | mod_saslauth: Fix encoding of missing vs empty SASL reply messagesKim Alvefur2014-09-231-7/+7
| |
* | mod_saslauth: Stricter SASL EXTERNAL handling more in line with XEP-0178Kim Alvefur2014-09-231-51/+30
| |
* | mod_dialback, mod_saslauth: Remove broken fallback to dialback on SASL ↵Kim Alvefur2014-09-231-4/+2
| | | | | | | | EXTERNAL failure
* | mod_lastactivity, mod_legacyauth, mod_presence, mod_saslauth, mod_tls: Use ↵Kim Alvefur2014-07-041-1/+1
| | | | | | | | the newer stanza:get_child APIs and optimize away some table lookups
* | Merge 0.9->0.10Kim Alvefur2014-03-251-1/+1
|\|
| * mod_saslauth: Only do c2s SASL on normal VirtualHostsKim Alvefur2014-03-221-1/+1
| |
* | mod_saslauth: Make sure sasl handler has add_cb_handler (fixes #392)Kim Alvefur2014-02-121-1/+1
| |
* | mod_saslauth: Collect data for channel binding only if we know for sure that ↵Kim Alvefur2013-10-071-1/+1
| | | | | | | | the stream is encrypted
* | Merge Tobias SCRAM-PLUS workKim Alvefur2013-09-221-0/+10
|\ \
| * | mod_saslauth: Check whether LuaSec supports getpeerfinished() binding.Tobias Markmann2011-01-171-4/+8
| | |
| * | mod_saslauth: Add channel binding handler for tls-unique channel binding.Tobias Markmann2011-01-171-1/+3
| | |
| * | mod_saslauth: Set secure socket as SASL object user data for secure sessions.Tobias Markmann2011-01-171-0/+4
| | |
* | | Remove all trailing whitespaceFlorian Zeitz2013-08-091-1/+1
| |/ |/|
* | mod_saslauth, mod_compression: Fix some cases where open_stream() was not ↵Matthew Wild2013-04-291-1/+1
| | | | | | | | being passed to/from (see df3c78221f26 and issue #338)
* | s2smanager, mod_s2s, mod_dialback, mod_saslauth: Move ↵Matthew Wild2013-03-221-3/+2
| | | | | | | | s2smanager.make_authenticated() to mod_s2s, and plugins now signal authentication via the s2s-authenticated event
* | mod_s2s, mod_saslauth, mod_compression: Refactor to have common code for ↵Kim Alvefur2013-03-161-5/+1
| | | | | | | | opening streams
* | mod_saslauth: Pass session to usermanager.get_sasl_handler()Matthew Wild2012-07-041-2/+2
| |
* | mod_saslauth: Remove unused declaration of xmlns_stanzasMatthew Wild2012-04-281-1/+0
| |
* | mod_saslauth: Remove useless import of, and call to nodeprep.Kim Alvefur2012-02-121-3/+0
| |
* | mod_saslauth: Fire authentication-failure if make_authenticated() failed.Kim Alvefur2012-02-121-0/+1
| |
* | mod_saslauth: Move authentication-success event to after session has been ↵Kim Alvefur2012-02-121-1/+1
| | | | | | | | made authenticated.
* | mod_saslauth: "" ~= nil (thanks, Zash!)Paul Aurich2012-01-241-2/+4
| |
* | mod_saslauth: Never send empty <mechanisms/>, for real this time.Waqas Hussain2011-10-131-6/+4
| |
* | mod_saslauth: Never send empty <mechanisms/>.Waqas Hussain2011-10-131-1/+3
| |
* | mod_saslauth: Fire authentication-success and authentication-failure events ↵Matthew Wild2011-08-291-0/+2
|/ | | | (thanks scitor)
* mod_saslauth: Remove special handling for SASL ANONYMOUS, and let ↵Waqas Hussain2010-12-281-29/+2
| | | | mod_auth_anonymous handle it.
* util.sasl.*, mod_auth_*, mod_saslauth: Pass SASL handler as first parameter ↵Waqas Hussain2010-12-271-1/+1
| | | | to SASL profile callbacks.
* mod_saslauth: Handle session bind requests to the host, fixes OneTeam loginMatthew Wild2010-12-241-2/+5
|
* core.s2smanager, mod_console, mod_saslauth, util.certverification: rename ↵Kim Alvefur2010-12-121-1/+1
| | | | util.certverification to util.x509
* s2s: SASL EXTERNALPaul Aurich2010-11-211-0/+132
|
* mod_saslauth: Allow restarting SASL negotiation from scratch.Waqas Hussain2010-11-021-1/+10
|
* mod_saslauth: Separated processing of <auth/> and <response/> elements, and ↵Waqas Hussain2010-11-021-25/+26
| | | | return proper error on out-of-order <response/> elements.
* mod_saslauth: Moved SASL mechanism selection and CDATA handling into ↵Waqas Hussain2010-11-021-16/+20
| | | | separate functions.