Mercurial > prosody-modules
annotate mod_log_sasl_mech/mod_log_sasl_mech.lua @ 3503:882180b459a0
mod_pubsub_post: Restructure authentication and authorization (BC)
This deprecates the default "superuser" actor model and makes the
default equivalent to the previous "request.id".
A single actor and secret per node is supported because HTTP and
WebHooks don't normally include any authorization identity.
Allowing authentication bypass when no secret is given should be
relatively safe when the actor is unprivileged, as will be unless
explicitly configured otherwise.
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Sat, 30 Mar 2019 21:16:13 +0100 |
| parents | 4baaa5a66a5a |
| children | 5ff8022466ab |
| rev | line source |
|---|---|
|
1292
2d061333d0c2
mod_log_sasl_mech: Logs authentication mechanism used
Kim Alvefur <zash@zash.se>
parents:
diff
changeset
|
1 |
|
2d061333d0c2
mod_log_sasl_mech: Logs authentication mechanism used
Kim Alvefur <zash@zash.se>
parents:
diff
changeset
|
2 module:hook("authentication-success", function (event) |
|
1393
4baaa5a66a5a
mod_log_sasl_mech: Log SASL mechanism attached to session
Kim Alvefur <zash@zash.se>
parents:
1292
diff
changeset
|
3 local session = event.session; |
|
4baaa5a66a5a
mod_log_sasl_mech: Log SASL mechanism attached to session
Kim Alvefur <zash@zash.se>
parents:
1292
diff
changeset
|
4 local sasl_handler = session.sasl_handler; |
|
4baaa5a66a5a
mod_log_sasl_mech: Log SASL mechanism attached to session
Kim Alvefur <zash@zash.se>
parents:
1292
diff
changeset
|
5 session.log("info", "Authenticated with %s", sasl_handler and sasl_handler.selected or "legacy auth"); |
|
1292
2d061333d0c2
mod_log_sasl_mech: Logs authentication mechanism used
Kim Alvefur <zash@zash.se>
parents:
diff
changeset
|
6 end); |