aboutsummaryrefslogtreecommitdiffstats
path: root/plugins
Commit message (Collapse)AuthorAgeFilesLines
* mod_http_files: Don't prepend / to path twice, sanitize path does this alreadyKim Alvefur2016-03-031-1/+1
|
* mod_http_files: Fix traceback when serving a non-wildcard path (fixes #611)Kim Alvefur2016-03-031-2/+4
|
* mod_c2s: Remove connection object from session object when connection ↵Kim Alvefur2016-03-021-0/+1
| | | | disconnected to prevent accidental use (see #590)
* MergeKim Alvefur2016-01-271-1/+2
|\
| * mod_dialback: Follow XEP-0185 and use HMACKim Alvefur2016-01-191-1/+2
| |
* | mod_c2s, mod_s2s: Lower priority of session shutdown to negative, so that ↵Kim Alvefur2016-01-262-2/+2
| | | | | | | | plugins hooking at the default priority run first (fixes #601)
* | Backout 63f5870f9afe, no longer needed since Windows is currently unsupportedKim Alvefur2016-01-211-24/+22
|/
* mod_http_files: Santize the path relative to our base URL before translating ↵Matthew Wild2016-01-071-1/+33
| | | | it to a filesystem path, fixes a relative path traversal vulnerability
* mod_admin_telnet: Backport 06696882d972 from 0.10 (this command greatly ↵Matthew Wild2015-12-221-0/+27
| | | | helps with debugging HTTP issues)
* MUC: Fix incorrect nesting of status codes when room config changes (fixes #579)Matthew Wild2015-12-161-1/+2
|
* muc.lib: Fix pattern so that it doesn't match hashes containing null bytes, ↵Matthew Wild2015-11-171-1/+1
| | | | causing dropped stanzas (thanks Jitsi folk!)
* mod_http_files: Translate forward slashes to local directory separatorsKim Alvefur2015-09-261-1/+1
|
* mod_http_files: Strip trailing directory separator regardless of ↵Kim Alvefur2015-09-261-1/+1
| | | | directionality of the slash (fixes #545)
* mod_pep: Don't store contacts' subscriptions to a user's nodes when that ↵Matthew Wild2015-09-251-0/+12
| | | | user is offline
* mod_pep: Document data structures, so I don't have to spend time remembering ↵Matthew Wild2015-09-041-0/+4
| | | | every time I work on this module
* mod_component: Fire an event on successful component authentication (For Goffi)Kim Alvefur2015-08-101-0/+1
|
* MUC: Prevent admins from being given affiliatons other than ownerKim Alvefur2015-06-251-1/+1
|
* Backed out changeset bea3862b6bde in favor of a different approachKim Alvefur2015-06-251-0/+5
|
* MUC: Remove half of monkeypatch that was supposed to make admins always be ↵Kim Alvefur2015-06-161-5/+0
| | | | room owners, fixes #458
* mod_s2s: Mark stream as opened directly after opening stream, prevents ↵Kim Alvefur2015-05-131-1/+1
| | | | session.close opening it again
* mod_s2s: Don't cache session.sends2s (or do it later), prevents sending data ↵Kim Alvefur2015-05-131-4/+3
| | | | after session was closed
* mod_s2s/s2sout: Use the local address assigned to UDP sockets instead of ↵Kim Alvefur2015-05-131-22/+24
| | | | util.net to enumerate possible source addresses
* mod_s2s/s2sout: Remove now unused config option dns_max_depthKim Alvefur2015-05-131-1/+0
|
* net.dns, mod_s2s: Add chasing of CNAMEs to net.dns and remove it from mod_s2sKim Alvefur2015-04-241-12/+0
|
* mod_s2s: to/from attributes are required on s2s stream headers. Set them to ↵Matthew Wild2015-03-241-1/+1
| | | | '' when not available. Fixes #468.
* mod_http: Return a static string from module:http_url() when no ports are ↵Kim Alvefur2015-03-231-0/+2
| | | | enabled and log a warning
* mod_http: Log a debug message when adding new http apps and warn if no http ↵Kim Alvefur2015-03-231-0/+6
| | | | ports are enabled
* Backout 7726b627c3eaKim Alvefur2015-03-231-1/+0
|
* mod_http: Log event name when adding a HTTP app's hooksMatthew Wild2015-03-141-0/+1
|
* mod_admin_telnet: Require util.pposix (fixes #471)Matthew Wild2015-02-201-0/+1
|
* mod_pubsub: Fix error type of 'forbidden' (change from 'cancel' to 'auth')Matthew Wild2014-10-141-1/+1
|
* mod_s2s: Capitalize log messageKim Alvefur2014-10-101-1/+1
|
* mod_admin_adhoc: Add required to field in user deletion form tooKim Alvefur2014-09-291-1/+1
|
* mod_admin_adhoc: Mark 'accountjids' field as required in 'end user sessions' ↵Kim Alvefur2014-09-291-1/+1
| | | | command (thanks Lloyd)
* net.http, net.http.server, mod_c2s, mod_s2s, mod_component, ↵Matthew Wild2014-08-295-1/+18
| | | | mod_admin_telnet, mod_net_multiplex: Add ondetach to release connection from 'sessions' table (or equivalent)
* mod_s2s: Close offending s2s streams missing an 'id' attribute with a stream ↵Kim Alvefur2014-09-021-2/+5
| | | | error instead of throwing an unhandled error
* mod_privacy: Fix to correctly sort privacy list rules by order (thanks Flow)Matthew Wild2014-08-281-1/+1
|
* mod_c2s, mod_s2s: Log received invalid stream headersMatthew Wild2014-08-232-1/+2
|
* mod_s2s: Reset stream ID when resetting stream [compliance]Kim Alvefur2014-08-271-0/+1
|
* mod_s2s: Mark stream as opened earlier for outgoing connections, fixes ↵Kim Alvefur2014-08-261-1/+2
| | | | double stream headers on policy failures
* mod_compression: Handle compression setup errors by logging a warning about ↵Kim Alvefur2014-08-261-0/+6
| | | | it (fixes #408)
* mod_posix: Make sure that 'pidfile' is a stringKim Alvefur2014-08-261-1/+1
|
* mod_admin_telnet: Fix dns:(add,set)nameservers()Kim Alvefur2014-07-251-2/+2
|
* mod_register: get_child_text! (thanks Lloyd)Kim Alvefur2014-07-031-2/+2
|
* mod_c2s: Fix traceback if c2s stream sent to componentKim Alvefur2014-05-101-1/+1
|
* mod_admin_telnet: muc:*: Fix nil index error when a room JID is passed with ↵Matthew Wild2014-04-051-0/+6
| | | | a non-existent host
* MergeMatthew Wild2014-04-011-1/+1
|\
| * MUC: Fixed traceback when a JID not in a room requested a role change for an ↵Waqas Hussain2014-04-011-1/+1
| | | | | | | | occupant.
* | mod_compression: Only allow compression on authenticated streamsKim Alvefur2014-02-181-2/+2
|/
* mod_saslauth: Only do c2s SASL on normal VirtualHostsKim Alvefur2014-03-221-1/+1
|