Mercurial > lxmppd-hg-xmllex / changelog

util.sasl.scram: Check nonce in client final message. Check channel binding flag in client first message. Adding some TODOs on more strict parsing. (thanks Marc Santamaria)

• Sat, 22 May 2010 01:48:31 +0200
• by Tobias Markmann <tm@ayena.de> [Sat, 22 May 2010 01:48:31 +0200] rev 3074
• util.sasl.scram: Check nonce in client final message. Check channel binding flag in client first message. Adding some TODOs on more strict parsing. (thanks Marc Santamaria)

util.sasl.plain: Removing plain_hashed authentication provider. Just do hashing and comparison yourself in a plain_test authentication provider.

• Fri, 21 May 2010 23:40:29 +0200
• by Tobias Markmann <tm@ayena.de> [Fri, 21 May 2010 23:40:29 +0200] rev 3073
• util.sasl.plain: Removing plain_hashed authentication provider. Just do hashing and comparison yourself in a plain_test authentication provider.

Merge 0.7->trunk

• Fri, 21 May 2010 19:28:56 +0100
• by Matthew Wild <mwild1@gmail.com> [Fri, 21 May 2010 19:28:56 +0100] rev 3072
• Merge 0.7->trunk

mod_bosh: Re-layout session object creation to make lines shorter

• Fri, 21 May 2010 19:27:06 +0100
• by Matthew Wild <mwild1@gmail.com> [Fri, 21 May 2010 19:27:06 +0100] rev 3071
• mod_bosh: Re-layout session object creation to make lines shorter

mod_bosh: Add option consider_bosh_secure to treat BOSH sessions as encrypted even if they don't use HTTP (useful for when secure requests are proxied to Prosody over HTTP)

• Fri, 21 May 2010 19:24:50 +0100
• by Matthew Wild <mwild1@gmail.com> [Fri, 21 May 2010 19:24:50 +0100] rev 3070
• mod_bosh: Add option consider_bosh_secure to treat BOSH sessions as encrypted even if they don't use HTTP (useful for when secure requests are proxied to Prosody over HTTP)

mod_privacy: Fix several possible tracebacks when either the contact is a host JID, or the contact isn't in your roster and you have roster group/subscription rules in place

• Fri, 21 May 2010 19:20:21 +0100
• by Matthew Wild <mwild1@gmail.com> [Fri, 21 May 2010 19:20:21 +0100] rev 3069
• mod_privacy: Fix several possible tracebacks when either the contact is a host JID, or the contact isn't in your roster and you have roster group/subscription rules in place

mod_privacy: Remove validation that checks a roster group you block actually exists - it would be time-consuming on large rosters, and isn't important (or correct?) anyway.

• Fri, 21 May 2010 19:19:29 +0100
• by Matthew Wild <mwild1@gmail.com> [Fri, 21 May 2010 19:19:29 +0100] rev 3068
• mod_privacy: Remove validation that checks a roster group you block actually exists - it would be time-consuming on large rosters, and isn't important (or correct?) anyway.

Merge 0.7->trunk

• Thu, 20 May 2010 11:52:20 +0100
• by Matthew Wild <mwild1@gmail.com> [Thu, 20 May 2010 11:52:20 +0100] rev 3067
• Merge 0.7->trunk

mod_saslauth: Split out cyrus SASL config options into locals, and add support for cyrus_application_name (default: 'prosody')

• Thu, 20 May 2010 11:51:55 +0100
• by Matthew Wild <mwild1@gmail.com> [Thu, 20 May 2010 11:51:55 +0100] rev 3066
• mod_saslauth: Split out cyrus SASL config options into locals, and add support for cyrus_application_name (default: 'prosody')

Merge 0.7->trunk

• Thu, 20 May 2010 11:44:41 +0100
• by Matthew Wild <mwild1@gmail.com> [Thu, 20 May 2010 11:44:41 +0100] rev 3065
• Merge 0.7->trunk