prosody-modules: mod_password_policy/mod_password_policy.lua@cb26d04b391c (annotated)

841 0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	1	-- Password policy enforcement for Prosody
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	2	--
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	3	-- Copyright (C) 2012 Waqas Hussain
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	4	--
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	5	--
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	6	-- Configuration:
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	7	-- password_policy = {
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	8	-- length = 8;
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	9	-- }
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	10
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	11
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	12	local options = module:get_option("password_policy");
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	13
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	14	options = options or {};
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	15	options.length = options.length or 8;
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	16
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	17	local st = require "util.stanza";
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	18
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	19	function check_password(password)
3354 cb26d04b391c mod_password_policy: Return error as second result explaining failure reason Matthew Wild <mwild1@gmail.com> parents: 845 diff changeset	20	if #password < options.length then
cb26d04b391c mod_password_policy: Return error as second result explaining failure reason Matthew Wild <mwild1@gmail.com> parents: 845 diff changeset	21	return nil, ("Password is too short (minimum %d characters)"):format(options.length);
cb26d04b391c mod_password_policy: Return error as second result explaining failure reason Matthew Wild <mwild1@gmail.com> parents: 845 diff changeset	22	end
cb26d04b391c mod_password_policy: Return error as second result explaining failure reason Matthew Wild <mwild1@gmail.com> parents: 845 diff changeset	23	return true;
841 0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	24	end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	25
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	26	function handler(event)
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	27	local origin, stanza = event.origin, event.stanza;
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	28
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	29	if stanza.attr.type == "set" then
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	30	local query = stanza.tags[1];
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	31
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	32	local passwords = {};
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	33
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	34	local dataform = query:get_child("x", "jabber:x:data");
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	35	if dataform then
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	36	for _,tag in ipairs(dataform.tags) do
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	37	if tag.attr.var == "password" then
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	38	table.insert(passwords, tag:get_child_text("value"));
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	39	end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	40	end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	41	end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	42
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	43	table.insert(passwords, query:get_child_text("password"));
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	44
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	45	for _,password in ipairs(passwords) do
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	46	if password and not check_password(password) then
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	47	origin.send(st.error_reply(stanza, "cancel", "not-acceptable", "Please use a longer password."));
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	48	return true;
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	49	end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	50	end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	51	end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	52	end
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	53
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	54	module:hook("iq/self/jabber:iq:register:query", handler, 10);
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	55	module:hook("iq/host/jabber:iq:register:query", handler, 10);
0649883de4d3 mod_password_policy: Initial commit. Waqas Hussain <waqas20@gmail.com> parents: diff changeset	56	module:hook("stanza/iq/jabber:iq:register:query", handler, 10);

author	Matthew Wild <mwild1@gmail.com>
	Tue, 09 Oct 2018 14:02:42 +0100
changeset 3354	cb26d04b391c
parent 845	1c14edca74a4
child 3355	662f2722f745
permissions	-rw-r--r--