jfinn
/
jitsi_app_c0
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3952 Commits
2 Branches
Tree: 0c446026d6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0c446026d6'
${ noResults }
jitsi_app_c0/resources/prosody-plugins/mod_auth_token.lua

mod_auth_token.lua 2.2KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. -- Token authentication

  2. -- Copyright (C) 2015 Atlassian

  3. 

  4. local formdecode = require "util.http".formdecode;

  5. local generate_uuid = require "util.uuid".generate;

  6. local new_sasl = require "util.sasl".new;

  7. local sasl = require "util.sasl";

  8. local token_util = module:require "token/util".new(module);

  9. 

  10. -- no token configuration

  11. if token_util == nil then

  12.     return;

  13. end

  14. 

  15. -- define auth provider

  16. local provider = {};

  17. 

  18. local host = module.host;

  19. 

  20. -- Extract 'token' param from BOSH URL when session is created

  21. module:hook("bosh-session", function(event)

  22. 	local session, request = event.session, event.request;

  23. 	local query = request.url.query;

  24. 

  25. 	if query ~= nil then

  26.         local params = formdecode(query);

  27.         session.auth_token = query and params.token or nil;

  28. 

  29.         -- The room name from the bosh query

  30.         session.jitsi_bosh_query_room = params.room;

  31.     end

  32. end);

  33. 

  34. function provider.test_password(username, password)

  35. 	return nil, "Password based auth not supported";

  36. end

  37. 

  38. function provider.get_password(username)

  39. 	return nil;

  40. end

  41. 

  42. function provider.set_password(username, password)

  43. 	return nil, "Set password not supported";

  44. end

  45. 

  46. function provider.user_exists(username)

  47. 	return nil;

  48. end

  49. 

  50. function provider.create_user(username, password)

  51. 	return nil;

  52. end

  53. 

  54. function provider.delete_user(username)

  55. 	return nil;

  56. end

  57. 

  58. function provider.get_sasl_handler(session)

  59. 

  60. 	local function get_username_from_token(self, message)

  61.         local res = token_util:process_and_verify_token(session);

  62. 

  63.         local customUsername

  64.             = prosody.events.fire_event("pre-jitsi-authentication", session);

  65. 

  66.         if (customUsername) then

  67.             self.username = customUsername;

  68.         else

  69.             self.username = message;

  70.         end

  71. 

  72.         return res;

  73. 	end

  74. 

  75. 	return new_sasl(host, { anonymous = get_username_from_token });

  76. end

  77. 

  78. module:provides("auth", provider);

  79. 

  80. local function anonymous(self, message)

  81. 

  82. 	local username = generate_uuid();

  83. 

  84. 	-- This calls the handler created in 'provider.get_sasl_handler(session)'

  85. 	local result, err, msg = self.profile.anonymous(self, username, self.realm);

  86. 

  87. 	if result == true then

  88. 		return "success";

  89. 	else

  90. 

  91. 		return "failure", err, msg;

  92. 	end

  93. end

  94. 

  95. sasl.registerMechanism("ANONYMOUS", {"anonymous"}, anonymous);