mirrors/prosody
1
0
Fork 0
mirror of https://github.com/bjc/prosody.git synced 2025-04-03 21:27:38 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

mod_saslauth: Fire event at start of authentication attempt

Browse source 
As extension point for rate limiting and similar checks, so they can
hook a single event instead of <{sasl1}auth> or stream features, which
might not be fired in case of SASL2 or e.g. HTTP based login.
This commit is contained in:
Kim Alvefur 2023-12-01 23:43:18 +01:00
parent a26b39e1b7
commit 3fbec27699
1 changed files with 6 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

6
plugins/mod_saslauth.lua
View file

@ -215,6 +215,12 @@ module:hook("stanza/urn:ietf:params:xml:ns:xmpp-sasl:auth", function(event)
if session.type ~= "c2s_unauthed" or module:get_host_type() ~= "local" then return; end
-- event for preemptive checks, rate limiting etc
module:fire_event("authentication-attempt", event);
if event.allowed == false then
session.send(build_reply("failure", event.error_condition or "not-authorized", event.error_text));
return true;
end
if session.sasl_handler and session.sasl_handler.selected then
session.sasl_handler = nil; -- allow starting a new SASL negotiation before completing an old one
end