Mercurial > prosody-modules
view mod_auth_http_async/mod_auth_http_async.lua @ 2117:5aa3b93cd37a
mod_firewall: Make prosodyctl command output more realistic source (not guaranteed to work)
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Thu, 17 Mar 2016 14:20:06 +0100 |
parents | 54f9e8663139 |
children | 5e8dec076afc |
line wrap: on
line source
-- Prosody IM -- Copyright (C) 2008-2013 Matthew Wild -- Copyright (C) 2008-2013 Waqas Hussain -- Copyright (C) 2014 Kim Alvefur -- -- This project is MIT/X11 licensed. Please see the -- COPYING file in the source package for more information. -- local new_sasl = require "util.sasl".new; local base64 = require "util.encodings".base64.encode; local waiter =require "util.async".waiter; local http = require "net.http"; local log = module._log; local host = module.host; local api_base = module:get_option_string("http_auth_url", ""):gsub("$host", host); if api_base == "" then error("http_auth_url required") end local function async_http_request(url, ex) local wait, done = waiter(); local content, code, request, response; local function cb(content_, code_, request_, response_) content, code, request, response = content_, code_, request_, response_; done(); end http.request(url, ex, cb); wait(); return content, code, request, response; end local provider = {}; function provider.test_password(username, password) log("debug", "test password for user %s at host %s", username, host); local _, code = async_http_request(api_base:gsub("$user", username), { headers = { Authorization = "Basic "..base64(username..":"..password); }; }); if code >= 200 and code <= 299 then return true; else module:log("debug", "HTTP auth provider returned status code %d", code); return nil, "Auth failed. Invalid username or password."; end end function provider.set_password(username, password) return nil, "Changing passwords not supported"; end function provider.user_exists(username) return true; end function provider.create_user(username, password) return nil, "User creation not supported"; end function provider.delete_user(username) return nil , "User deletion not supported"; end function provider.get_sasl_handler() return new_sasl(host, { plain_test = function(sasl, username, password, realm) return provider.test_password(username, password), true; end }); end module:provides("auth", provider);