prosody-modules: mod_password_policy/mod_password

annotate mod_password_policy/mod_password_policy.lua @ 3350:cb26d04b391c

mod_password_policy: Return error as second result explaining failure reason

author	Matthew Wild <mwild1@gmail.com>
date	Tue, 09 Oct 2018 14:02:42 +0100
parents	1c14edca74a4
children	662f2722f745

rev	line source
841 0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	1 -- Password policy enforcement for Prosody
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	2 --
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	3 -- Copyright (C) 2012 Waqas Hussain
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	4 --
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	5 --
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	6 -- Configuration:
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	7 -- password_policy = {
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	8 -- length = 8;
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	9 -- }
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	10
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	11
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	12 local options = module:get_option("password_policy");
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	13
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	14 options = options or {};
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	15 options.length = options.length or 8;
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	16
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	17 local st = require "util.stanza";
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	18
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	19 function check_password(password)
3350 cb26d04b391c mod_password_policy: Return error as second result explaining failure reason Matthew Wild <mwild1@gmail.com> parents: 845 diff changeset	20 if #password < options.length then
cb26d04b391c mod_password_policy: Return error as second result explaining failure reason Matthew Wild <mwild1@gmail.com> parents: 845 diff changeset	21 return nil, ("Password is too short (minimum %d characters)"):format(options.length);
cb26d04b391c mod_password_policy: Return error as second result explaining failure reason Matthew Wild <mwild1@gmail.com> parents: 845 diff changeset	22 end
cb26d04b391c mod_password_policy: Return error as second result explaining failure reason Matthew Wild <mwild1@gmail.com> parents: 845 diff changeset	23 return true;
841 0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	24 end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	25
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	26 function handler(event)
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	27 local origin, stanza = event.origin, event.stanza;
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	28
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	29 if stanza.attr.type == "set" then
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	30 local query = stanza.tags[1];
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	31
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	32 local passwords = {};
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	33
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	34 local dataform = query:get_child("x", "jabber:x:data");
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	35 if dataform then
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	36 for _,tag in ipairs(dataform.tags) do
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	37 if tag.attr.var == "password" then
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	38 table.insert(passwords, tag:get_child_text("value"));
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	39 end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	40 end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	41 end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	42
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	43 table.insert(passwords, query:get_child_text("password"));
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	44
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	45 for _,password in ipairs(passwords) do
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	46 if password and not check_password(password) then
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	47 origin.send(st.error_reply(stanza, "cancel", "not-acceptable", "Please use a longer password."));
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	48 return true;
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	49 end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	50 end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	51 end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	52 end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	53
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	54 module:hook("iq/self/jabber:iq:register:query", handler, 10);
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	55 module:hook("iq/host/jabber:iq:register:query", handler, 10);
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	56 module:hook("stanza/iq/jabber:iq:register:query", handler, 10);

Mercurial > prosody-modules

annotate mod_password_policy/mod_password_policy.lua @ 3350:cb26d04b391c