jfinn
/
jitsi_app_c0
關注 1
收藏 0
複製 0
程式碼 問題 0 合併請求 0 版本發佈 0 Wiki 活動
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6622 提交
2 分支
目錄樹: 382ec011eb
分支列表 標籤
${ item.name }
建立分支 ${ searchTerm }
從 '382ec011eb'
${ noResults }
jitsi_app_c0/resources/prosody-plugins/mod_auth_token.lua

mod_auth_token.lua 2.5KB
歷史記錄 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102 
  1. -- Token authentication

  2. -- Copyright (C) 2015 Atlassian

  3. 

  4. local formdecode = require "util.http".formdecode;

  5. local generate_uuid = require "util.uuid".generate;

  6. local new_sasl = require "util.sasl".new;

  7. local sasl = require "util.sasl";

  8. local token_util = module:require "token/util".new(module);

  9. 

  10. -- no token configuration

  11. if token_util == nil then

  12.     return;

  13. end

  14. 

  15. -- define auth provider

  16. local provider = {};

  17. 

  18. local host = module.host;

  19. 

  20. -- Extract 'token' param from BOSH URL when session is created

  21. module:hook("bosh-session", function(event)

  22. 	local session, request = event.session, event.request;

  23. 	local query = request.url.query;

  24. 

  25. 	if query ~= nil then

  26.         local params = formdecode(query);

  27.         session.auth_token = query and params.token or nil;

  28. 

  29.         -- The room name and optional prefix from the bosh query

  30.         session.jitsi_bosh_query_room = params.room;

  31.         session.jitsi_bosh_query_prefix = params.prefix or "";

  32.     end

  33. end);

  34. 

  35. function provider.test_password(username, password)

  36. 	return nil, "Password based auth not supported";

  37. end

  38. 

  39. function provider.get_password(username)

  40. 	return nil;

  41. end

  42. 

  43. function provider.set_password(username, password)

  44. 	return nil, "Set password not supported";

  45. end

  46. 

  47. function provider.user_exists(username)

  48. 	return nil;

  49. end

  50. 

  51. function provider.create_user(username, password)

  52. 	return nil;

  53. end

  54. 

  55. function provider.delete_user(username)

  56. 	return nil;

  57. end

  58. 

  59. function provider.get_sasl_handler(session)

  60. 

  61. 	local function get_username_from_token(self, message)

  62.         local res, error, reason = token_util:process_and_verify_token(session);

  63. 

  64.         if (res == false) then

  65.             log("warn",

  66.                 "Error verifying token err:%s, reason:%s", error, reason);

  67.             return res, error, reason;

  68.         end

  69. 

  70.         local customUsername

  71.             = prosody.events.fire_event("pre-jitsi-authentication", session);

  72. 

  73.         if (customUsername) then

  74.             self.username = customUsername;

  75.         else

  76.             self.username = message;

  77.         end

  78. 

  79.         return res;

  80. 	end

  81. 

  82. 	return new_sasl(host, { anonymous = get_username_from_token });

  83. end

  84. 

  85. module:provides("auth", provider);

  86. 

  87. local function anonymous(self, message)

  88. 

  89. 	local username = generate_uuid();

  90. 

  91. 	-- This calls the handler created in 'provider.get_sasl_handler(session)'

  92. 	local result, err, msg = self.profile.anonymous(self, username, self.realm);

  93. 

  94. 	if result == true then

  95. 		return "success";

  96. 	else

  97. 

  98. 		return "failure", err, msg;

  99. 	end

  100. end

  101. 

  102. sasl.registerMechanism("ANONYMOUS", {"anonymous"}, anonymous);