2 -- Copyright (C) 2008-2010 Matthew Wild
3 -- Copyright (C) 2008-2010 Waqas Hussain
5 -- This project is MIT/X11 licensed. Please see the
6 -- COPYING file in the source package for more information.
9 local datamanager = require "util.datamanager";
10 local usermanager = require "core.usermanager";
11 local new_sasl = require "util.sasl".new;
12 local nodeprep = require "util.encodings".stringprep.nodeprep;
14 local log = module._log;
15 local host = module.host;
17 -- define auth provider
19 log("debug", "initializing internal_plain authentication provider for host '%s'", host);
21 function provider.test_password(username, password)
22 log("debug", "test password '%s' for user %s at host %s", password, username, host);
23 local credentials = datamanager.load(username, host, "accounts") or {};
25 if password == credentials.password then
28 return nil, "Auth failed. Invalid username or password.";
32 function provider.get_password(username)
33 log("debug", "get_password for username '%s' at host '%s'", username, host);
34 return (datamanager.load(username, host, "accounts") or {}).password;
37 function provider.set_password(username, password)
38 local account = datamanager.load(username, host, "accounts");
40 account.password = password;
41 return datamanager.store(username, host, "accounts", account);
43 return nil, "Account not available.";
46 function provider.user_exists(username)
47 local account = datamanager.load(username, host, "accounts");
49 log("debug", "account not found for username '%s' at host '%s'", username, host);
50 return nil, "Auth failed. Invalid username";
55 function provider.users()
56 return datamanager.users(host, "accounts");
59 function provider.create_user(username, password)
60 return datamanager.store(username, host, "accounts", {password = password});
63 function provider.delete_user(username)
64 return datamanager.store(username, host, "accounts", nil);
67 function provider.get_sasl_handler()
68 local getpass_authentication_profile = {
69 plain = function(sasl, username, realm)
70 local prepped_username = nodeprep(username);
71 if not prepped_username then
72 log("debug", "NODEprep failed on username: %s", username);
75 local password = usermanager.get_password(prepped_username, realm);
79 return password, true;
82 return new_sasl(host, getpass_authentication_profile);
85 module:provides("auth", provider);