view mod_firewall/marks.lib.lua @ 5477:5986e0edd7a3

mod_http_oauth2: Use validated redirect URI when returning errors to client Parsing it from the query again without the validation done by get_redirect_uri() may lead to open redirect issues.
author Kim Alvefur <zash@zash.se>
date Thu, 18 May 2023 14:17:58 +0200
parents 165d2877eeac
children 96dec7681af8
line wrap: on
line source

local mark_storage = module:open_store("firewall_marks");

local user_sessions = prosody.hosts[module.host].sessions;

module:hook("resource-bind", function (event)
	local session = event.session;
	local username = session.username;
	local user = user_sessions[username];
	local marks = user.firewall_marks;
	if not marks then
		marks = mark_storage:get(username) or {};
		user.firewall_marks = marks; -- luacheck: ignore 122
	end
	session.firewall_marks = marks;
end);

module:hook("resource-unbind", function (event)
	local session = event.session;
	local username = session.username;
	local marks = session.firewall_marks;
	mark_storage:set(username, marks);
end);