Mercurial > prosody-modules
view mod_sasl_ssdp/README.markdown @ 5925:32d1abb89dfe
mod_rest: Reject password that fails saslprep earlier (thanks tgy)
Prevents an error later if/when passing the password through saslprep a
second time in the authentication module, since the prep functions now
reject nil
The error reporting could be improved but that would involve adding a
way to pass errors back out of the check_credentials() function.
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Thu, 04 Jul 2024 16:06:32 +0200 |
| parents | 61bee1be6db3 |
| children |
line wrap: on
line source
--- labels: - 'Stage-Alpha' summary: 'XEP-0474: SASL SCRAM Downgrade Protection' ... Introduction ============ This module implements the experimental XEP-0474: SASL SCRAM Downgrade Protection. It provides an alternative downgrade protection mechanism to client-side pinning which is currently the most common method of downgrade protection. **Note:** This module implements version 0.3.0 of XEP-0474. As of 2023-12-05, this version is not yet published on xmpp.org. Version 0.3.0 of the XEP is implemented in Monal 6.0.1 and go-sendxmpp 0.8.0. No other clients are currently known to implement the XEP at the time of writing. # Configuration There are no configuration options for this module, just load it as normal. # Compatibility For SASL2 (XEP-0388) clients, it is compatible with the mod_sasl2 community module. For clients using RFC 6120 SASL, it requires Prosody trunk 33e5edbd6a4a or later. It is not compatible with Prosody 0.12 (it will load, but simply won't do anything) for "legacy SASL".