mirrors/prosody
1
0
Fork 0
mirror of https://github.com/bjc/prosody.git synced 2025-04-04 13:47:41 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

mod_saslauth: Disable SASL ANONYMOUS unless explicitly enabled with sasl_anonymous = true

Browse source
This commit is contained in:
Matthew Wild 2009-03-07 20:17:09 +00:00
parent 9dd38d32f9
commit 90fa7296e4
1 changed files with 4 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

5
plugins/mod_saslauth.lua
View file

@ -17,6 +17,7 @@ local t_concat, t_insert = table.concat, table.insert;
local tostring = tostring;
local jid_split = require "util.jid".split
local md5 = require "util.hashes".md5;
local config = require "core.configmanager";
local log = require "util.logger".init("mod_saslauth");
@ -106,7 +107,9 @@ module:add_event_hook("stream-features",
-- TODO: Provide PLAIN only if TLS is active, this is a SHOULD from the introduction of RFC 4616. This behavior could be overridden via configuration but will issuing a warning or so.
features:tag("mechanism"):text("PLAIN"):up();
features:tag("mechanism"):text("DIGEST-MD5"):up();
features:tag("mechanism"):text("ANONYMOUS"):up();
if config.get(session.host or "*", "core", "sasl_anonymous") then
features:tag("mechanism"):text("ANONYMOUS"):up();
end
features:up();
else
features:tag("bind", bind_attr):tag("required"):up():up();