prosody-modules: mod_cloud_notify_encrypted/mod_cloud_notify

annotate mod_cloud_notify_encrypted/mod_cloud_notify_encrypted.lua @ 4650:44af84178cea

mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body A fix for https://github.com/snikket-im/snikket-server/issues/18

author	Matthew Wild <mwild1@gmail.com>
date	Sun, 22 Aug 2021 10:46:31 +0100
parents	6d595857164a
children	8231774f5bfd

rev	line source
4456 8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	1 local array = require "util.array";
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	2 local base64 = require "util.encodings".base64;
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	3 local ciphers = require "openssl.cipher";
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	4 local jid = require "util.jid";
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	5 local json = require "util.json";
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	6 local random = require "util.random";
4456 8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	7 local set = require "util.set";
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	8 local st = require "util.stanza";
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	9
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	10 local xmlns_jmi = "urn:xmpp:jingle-message:0";
4465 2a7a76712e71 mod_cloud_notify_encrypted: Fix expected namespace of JMI description element Matthew Wild <mwild1@gmail.com> parents: 4457 diff changeset	11 local xmlns_jingle_apps_rtp = "urn:xmpp:jingle:apps:rtp:1";
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	12 local xmlns_push = "urn:xmpp:push:0";
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	13 local xmlns_push_encrypt = "tigase:push:encrypt:0";
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	14 local xmlns_push_encrypt_aes_128_gcm = "tigase:push:encrypt:aes-128-gcm";
4467 6d595857164a mod_cloud_notify_encrypted: Advertise support for JMI push notifications Matthew Wild <mwild1@gmail.com> parents: 4466 diff changeset	15 local xmlns_push_jingle = "tigase:push:jingle:0";
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	16
4650 44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	17 local function detect_stanza_encryption(stanza)
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	18 local eme = stanza:get_child("encryption", "urn:xmpp:eme:0");
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	19 if eme then return eme.attr.namespace or ""; end
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	20 -- Fallback for legacy OMEMO clients without EME
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	21 local omemo = stanza:get_child("encrypted", "eu.siacs.conversations.axolotl");
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	22 if omemo then return "eu.siacs.conversations.axolotl"; end
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	23 end
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	24
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	25 -- https://xeps.tigase.net//docs/push-notifications/encrypt/#41-discovering-support
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	26 local function account_disco_info(event)
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	27 event.reply:tag("feature", {var=xmlns_push_encrypt}):up();
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	28 event.reply:tag("feature", {var=xmlns_push_encrypt_aes_128_gcm}):up();
4467 6d595857164a mod_cloud_notify_encrypted: Advertise support for JMI push notifications Matthew Wild <mwild1@gmail.com> parents: 4466 diff changeset	29 event.reply:tag("feature", {var=xmlns_push_jingle}):up();
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	30 end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	31 module:hook("account-disco-info", account_disco_info);
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	32
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	33 function handle_register(event)
4329 2a5164162708 mod_cloud_notify_encrypted: Fix the location of the <encrypt> element in push registrations Matthew Wild <mwild1@gmail.com> parents: 4327 diff changeset	34 local encrypt = event.stanza:get_child("enable", xmlns_push):get_child("encrypt", xmlns_push_encrypt);
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	35 if not encrypt then return; end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	36
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	37 local algorithm = encrypt.attr.alg;
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	38 if algorithm ~= "aes-128-gcm" then
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	39 event.origin.send(st.error_reply(
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	40 event.stanza, "modify", "feature-not-implemented", "Unknown encryption algorithm"
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	41 ));
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	42 return false;
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	43 end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	44
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	45 local key_base64 = encrypt:get_text();
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	46 local key_binary = base64.decode(key_base64);
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	47 if not key_binary or #key_binary ~= 16 then
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	48 event.origin.send(st.error_reply(
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	49 event.stanza, "modify", "bad-request", "Invalid encryption key"
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	50 ));
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	51 return false;
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	52 end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	53
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	54 event.push_info.encryption = {
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	55 algorithm = algorithm;
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	56 key_base64 = key_base64;
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	57 };
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	58 end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	59
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	60 function handle_push(event)
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	61 local encryption = event.push_info.encryption;
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	62 if not encryption then return; end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	63
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	64 if encryption.algorithm ~= "aes-128-gcm" then
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	65 event.reason = "Unsupported encryption algorithm: "..tostring(encryption.algorithm);
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	66 return true;
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	67 end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	68
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	69 local push_summary = event.push_summary;
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	70
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	71 local original_stanza = event.original_stanza;
4650 44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	72 local is_encrypted_msg = detect_stanza_encryption(original_stanza);
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	73 local body;
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	74 if is_encrypted_msg then
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	75 -- TODO: localization
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	76 body = "You have received an encrypted message";
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	77 else
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	78 body = original_stanza:get_child_text("body");
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	79 if body and #body > 255 then
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	80 body = body:sub(1, 255);
44af84178cea mod_cloud_notify_encrypted: For encrypted messages, push a friendly message instead of fallback body Matthew Wild <mwild1@gmail.com> parents: 4467 diff changeset	81 end
4331 2e355540f8c8 mod_cloud_notify_encrypted: Truncate message body to 255 characters Matthew Wild <mwild1@gmail.com> parents: 4330 diff changeset	82 end
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	83
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	84 local push_payload = {
4330 e655581173be mod_cloud_notify_encrypted: Fixes to the push notification syntax and payload Matthew Wild <mwild1@gmail.com> parents: 4329 diff changeset	85 unread = tonumber(push_summary["message-count"]) or 1;
e655581173be mod_cloud_notify_encrypted: Fixes to the push notification syntax and payload Matthew Wild <mwild1@gmail.com> parents: 4329 diff changeset	86 sender = jid.bare(original_stanza.attr.from);
e655581173be mod_cloud_notify_encrypted: Fixes to the push notification syntax and payload Matthew Wild <mwild1@gmail.com> parents: 4329 diff changeset	87 message = body;
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	88 };
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	89
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	90 if original_stanza.name == "message" then
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	91 if original_stanza.attr.type == "groupchat" then
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	92 push_payload.type = "groupchat";
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	93 push_payload.nickname = jid.resource(original_stanza.attr.from);
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	94 elseif original_stanza.attr.type ~= "error" then
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	95 local jmi_propose = original_stanza:get_child("propose", xmlns_jmi);
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	96 if jmi_propose then
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	97 push_payload.type = "call";
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	98 push_payload.sid = jmi_propose.attr.id;
4456 8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	99 local media_types = set.new();
4465 2a7a76712e71 mod_cloud_notify_encrypted: Fix expected namespace of JMI description element Matthew Wild <mwild1@gmail.com> parents: 4457 diff changeset	100 for description in jmi_propose:childtags("description", xmlns_jingle_apps_rtp) do
4456 8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	101 local media_type = description.attr.media;
8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	102 if media_type then
8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	103 media_types:add(media_type);
8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	104 end
8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	105 end
8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	106 push_payload.media = array.collect(media_types:items());
4466 38bd4d557413 mod_cloud_notify_encrypted: Include full JID of sender with call notifications, per spec Matthew Wild <mwild1@gmail.com> parents: 4465 diff changeset	107 push_payload.sender = original_stanza.attr.from;
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	108 else
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	109 push_payload.type = "chat";
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	110 end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	111 end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	112 elseif original_stanza.name == "presence"
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	113 and original_stanza.attr.type == "subscribe" then
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	114 push_payload.type = "subscribe";
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	115 end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	116
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	117 local iv = random.bytes(12);
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	118 local key_binary = base64.decode(encryption.key_base64);
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	119 local push_json = json.encode(push_payload);
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	120
4330 e655581173be mod_cloud_notify_encrypted: Fixes to the push notification syntax and payload Matthew Wild <mwild1@gmail.com> parents: 4329 diff changeset	121 -- FIXME: luaossl does not expose the EVP_CTRL_GCM_GET_TAG API, so we append 16 NUL bytes
e655581173be mod_cloud_notify_encrypted: Fixes to the push notification syntax and payload Matthew Wild <mwild1@gmail.com> parents: 4329 diff changeset	122 -- Siskin does not validate the tag anyway.
e655581173be mod_cloud_notify_encrypted: Fixes to the push notification syntax and payload Matthew Wild <mwild1@gmail.com> parents: 4329 diff changeset	123 local encrypted_payload = base64.encode(ciphers.new("AES-128-GCM"):encrypt(key_binary, iv):final(push_json)..string.rep("\0", 16));
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	124 local encrypted_element = st.stanza("encrypted", { xmlns = xmlns_push_encrypt, iv = base64.encode(iv) })
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	125 :text(encrypted_payload);
4456 8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	126 if push_payload.type == "call" then
4457 091d06c7d724 mod_cloud_notify_encrypted: Fix traceback (incorrect variable name) Matthew Wild <mwild1@gmail.com> parents: 4456 diff changeset	127 encrypted_element.attr.type = "voip";
4456 8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	128 event.important = true;
8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	129 end
4333 97f369745ec7 mod_cloud_notify_encrypted: Use new direct access to notification element Matthew Wild <mwild1@gmail.com> parents: 4331 diff changeset	130 -- Replace the unencrypted notification data with the encrypted one
97f369745ec7 mod_cloud_notify_encrypted: Use new direct access to notification element Matthew Wild <mwild1@gmail.com> parents: 4331 diff changeset	131 event.notification_payload
97f369745ec7 mod_cloud_notify_encrypted: Use new direct access to notification element Matthew Wild <mwild1@gmail.com> parents: 4331 diff changeset	132 :remove_children("x", "jabber:x:data")
97f369745ec7 mod_cloud_notify_encrypted: Use new direct access to notification element Matthew Wild <mwild1@gmail.com> parents: 4331 diff changeset	133 :add_child(encrypted_element);
4327 beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	134 end
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	135
beb3342f1137 mod_cloud_notify_encrypted: New module for Encrypted Push Notifications Matthew Wild <mwild1@gmail.com> parents: diff changeset	136 module:hook("cloud_notify/registration", handle_register);
4456 8ed1989e99f9 mod_cloud_notify_encrypted: Update to latest spec, fixes unreliable call notifications Matthew Wild <mwild1@gmail.com> parents: 4373 diff changeset	137 module:hook("cloud_notify/push", handle_push, 1);

Mercurial > prosody-modules

annotate mod_cloud_notify_encrypted/mod_cloud_notify_encrypted.lua @ 4650:44af84178cea