2 -- Copyright (C) 2008-2010 Matthew Wild
3 -- Copyright (C) 2008-2010 Waqas Hussain
5 -- This project is MIT/X11 licensed. Please see the
6 -- COPYING file in the source package for more information.
9 local new_sasl = require "util.sasl".new;
10 local datamanager = require "util.datamanager";
12 -- define auth provider
15 function provider.test_password(username, password)
16 return nil, "Password based auth not supported.";
19 function provider.get_password(username)
20 return nil, "Password not available.";
23 function provider.set_password(username, password)
24 return nil, "Password based auth not supported.";
27 function provider.user_exists(username)
28 return nil, "Only anonymous users are supported."; -- FIXME check if anonymous user is connected?
31 function provider.create_user(username, password)
32 return nil, "Account creation/modification not supported.";
35 function provider.get_sasl_handler()
36 local anonymous_authentication_profile = {
37 anonymous = function(sasl, username, realm)
38 return true; -- for normal usage you should always return true here
41 return new_sasl(module.host, anonymous_authentication_profile);
44 function provider.users()
45 return next, hosts[host].sessions, nil;
48 -- datamanager callback to disable writes
49 local function dm_callback(username, host, datastore, data)
50 if host == module.host then
53 return username, host, datastore, data;
56 if not module:get_option_boolean("allow_anonymous_s2s", false) then
57 module:hook("route/remote", function (event)
58 return false; -- Block outgoing s2s from anonymous users
62 function module.load()
63 datamanager.add_callback(dm_callback);
65 function module.unload()
66 datamanager.remove_callback(dm_callback);
69 module:provides("auth", provider);