Mercurial > lxmppd-hg-xmllex / file comparison
comparison: core/usermanager.lua
core/usermanager.lua
- changeset 228
- 875842235836
- parent 60
- 44800be871f5
- child 449
- c0a4a1e63d70
equal
deleted
inserted
replaced
| 227:211c2e04c82b | 228:875842235836 |
|---|---|
| 1 | 1 |
| 2 require "util.datamanager" | 2 require "util.datamanager" |
| 3 local datamanager = datamanager; | 3 local datamanager = datamanager; |
| 4 local log = require "util.logger".init("usermanager"); | 4 local log = require "util.logger".init("usermanager"); |
| 5 local error = error; | |
| 6 local hashes = require "util.hashes"; | |
| 5 | 7 |
| 6 module "usermanager" | 8 module "usermanager" |
| 7 | 9 |
| 8 function validate_credentials(host, username, password) | 10 function validate_credentials(host, username, password, method) |
| 9 log("debug", "User '%s' is being validated", username); | 11 log("debug", "User '%s' is being validated", username); |
| 10 local credentials = datamanager.load(username, host, "accounts") or {}; | 12 local credentials = datamanager.load(username, host, "accounts") or {}; |
| 11 if password == credentials.password then return true; end | 13 if method == nil then method = "PLAIN"; end |
| 12 return false; | 14 if method == "PLAIN" and credentials.password then -- PLAIN, do directly |
| 15 if password == credentials.password then | |
| 16 return true; | |
| 17 else | |
| 18 return nil, "Auth failed. Invalid username or password."; | |
| 19 end | |
| 20 end | |
| 21 -- must do md5 | |
| 22 if not hashes.md5 then | |
| 23 return nil, "Server misconfiguration, the md5 library is not available."; | |
| 24 end | |
| 25 -- make credentials md5 | |
| 26 local pwd = credentials.password; | |
| 27 if not pwd then pwd = credentials.md5; else pwd = hashes.md5(pwd); end | |
| 28 -- make password md5 | |
| 29 if method == "PLAIN" then | |
| 30 password = hashes.md5(password or ""); | |
| 31 elseif method ~= "DIGEST-MD5" then | |
| 32 return nil, "Unsupported auth method"; | |
| 33 end | |
| 34 -- compare | |
| 35 if password == pwd then | |
| 36 return true; | |
| 37 else | |
| 38 return nil, "Auth failed. Invalid username or password."; | |
| 39 end | |
| 13 end | 40 end |
| 14 | 41 |
| 15 function user_exists(username, host) | 42 function user_exists(username, host) |
| 16 return datamanager.load(username, host, "accounts") ~= nil; | 43 return datamanager.load(username, host, "accounts") ~= nil; -- FIXME also check for empty credentials |
| 17 end | 44 end |
| 18 | 45 |
| 19 function create_user(username, password, host) | 46 function create_user(username, password, host) |
| 20 return datamanager.store(username, host, "accounts", {password = password}); | 47 return datamanager.store(username, host, "accounts", {password = password}); |
| 21 end | 48 end |
| 22 | 49 |
| 50 function get_supported_methods(host) | |
| 51 local methods = {["PLAIN"] = true}; -- TODO this should be taken from the config | |
| 52 if hashes.md5 then | |
| 53 methods["DIGEST-MD5"] = true; | |
| 54 end | |
| 55 return methods; | |
| 56 end | |
| 57 | |
| 23 return _M; | 58 return _M; |
