/usr/lib/prosody/modules/mod_auth_internal_plain.lua is in prosody 0.9.1-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 | -- Prosody IM
-- Copyright (C) 2008-2010 Matthew Wild
-- Copyright (C) 2008-2010 Waqas Hussain
--
-- This project is MIT/X11 licensed. Please see the
-- COPYING file in the source package for more information.
--
local usermanager = require "core.usermanager";
local new_sasl = require "util.sasl".new;
local log = module._log;
local host = module.host;
local accounts = module:open_store("accounts");
-- define auth provider
local provider = {};
log("debug", "initializing internal_plain authentication provider for host '%s'", host);
function provider.test_password(username, password)
log("debug", "test password for user %s at host %s", username, host);
local credentials = accounts:get(username) or {};
if password == credentials.password then
return true;
else
return nil, "Auth failed. Invalid username or password.";
end
end
function provider.get_password(username)
log("debug", "get_password for username '%s' at host '%s'", username, host);
return (accounts:get(username) or {}).password;
end
function provider.set_password(username, password)
local account = accounts:get(username);
if account then
account.password = password;
return accounts:set(username, account);
end
return nil, "Account not available.";
end
function provider.user_exists(username)
local account = accounts:get(username);
if not account then
log("debug", "account not found for username '%s' at host '%s'", username, host);
return nil, "Auth failed. Invalid username";
end
return true;
end
function provider.users()
return accounts:users();
end
function provider.create_user(username, password)
return accounts:set(username, {password = password});
end
function provider.delete_user(username)
return accounts:set(username, nil);
end
function provider.get_sasl_handler()
local getpass_authentication_profile = {
plain = function(sasl, username, realm)
local password = usermanager.get_password(username, realm);
if not password then
return "", nil;
end
return password, true;
end
};
return new_sasl(host, getpass_authentication_profile);
end
module:provides("auth", provider);
|