jfinn
/
jitsi_mod
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 0 Vikivietne Aktivitāte
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
6908 Revīzijas
2 Atzari
Koks: 1b6c5a7141
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no '1b6c5a7141'
${ noResults }
jitsi_mod/resources/prosody-plugins/mod_auth_token.lua

mod_auth_token.lua 2.6KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106 
  1. -- Token authentication

  2. -- Copyright (C) 2015 Atlassian

  3. 

  4. local formdecode = require "util.http".formdecode;

  5. local generate_uuid = require "util.uuid".generate;

  6. local new_sasl = require "util.sasl".new;

  7. local sasl = require "util.sasl";

  8. local token_util = module:require "token/util".new(module);

  9. 

  10. -- no token configuration

  11. if token_util == nil then

  12.     return;

  13. end

  14. 

  15. -- define auth provider

  16. local provider = {};

  17. 

  18. local host = module.host;

  19. 

  20. -- Extract 'token' param from URL when session is created

  21. function init_session(event)

  22. 	local session, request = event.session, event.request;

  23. 	local query = request.url.query;

  24. 

  25. 	if query ~= nil then

  26.         local params = formdecode(query);

  27.         session.auth_token = query and params.token or nil;

  28. 

  29.         -- The room name and optional prefix from the bosh query

  30.         session.jitsi_bosh_query_room = params.room;

  31.         session.jitsi_bosh_query_prefix = params.prefix or "";

  32.     end

  33. end

  34. 

  35. module:hook("bosh-session", init_session);

  36. module:hook("websocket-session", init_session);

  37. 

  38. function provider.test_password(username, password)

  39. 	return nil, "Password based auth not supported";

  40. end

  41. 

  42. function provider.get_password(username)

  43. 	return nil;

  44. end

  45. 

  46. function provider.set_password(username, password)

  47. 	return nil, "Set password not supported";

  48. end

  49. 

  50. function provider.user_exists(username)

  51. 	return nil;

  52. end

  53. 

  54. function provider.create_user(username, password)

  55. 	return nil;

  56. end

  57. 

  58. function provider.delete_user(username)

  59. 	return nil;

  60. end

  61. 

  62. function provider.get_sasl_handler(session)

  63. 

  64. 	local function get_username_from_token(self, message)

  65.         local res, error, reason = token_util:process_and_verify_token(session);

  66. 

  67.         if (res == false) then

  68.             log("warn",

  69.                 "Error verifying token err:%s, reason:%s", error, reason);

  70.             return res, error, reason;

  71.         end

  72. 

  73.         local customUsername

  74.             = prosody.events.fire_event("pre-jitsi-authentication", session);

  75. 

  76.         if (customUsername) then

  77.             self.username = customUsername;

  78.         else

  79.             self.username = message;

  80.         end

  81. 

  82.         return res;

  83. 	end

  84. 

  85. 	return new_sasl(host, { anonymous = get_username_from_token });

  86. end

  87. 

  88. module:provides("auth", provider);

  89. 

  90. local function anonymous(self, message)

  91. 

  92. 	local username = generate_uuid();

  93. 

  94. 	-- This calls the handler created in 'provider.get_sasl_handler(session)'

  95. 	local result, err, msg = self.profile.anonymous(self, username, self.realm);

  96. 

  97. 	if result == true then

  98. 		self.username = username;

  99. 		return "success";

  100. 	else

  101. 

  102. 		return "failure", err, msg;

  103. 	end

  104. end

  105. 

  106. sasl.registerMechanism("ANONYMOUS", {"anonymous"}, anonymous);