mod_audit_auth: Ignore FAST authentication events by default
FAST is more like a cookie that allows linking new connections to a previous
(e.g. password) authentication. Since we assume that FAST tokens are secure
(not user generated) and not shareable, it reduces a lot of noise by filtering
out uninteresting authentication events.
assert(module:get_host_type() == "component", "This module should be loaded as a Component");
local st = require "util.stanza";
module:hook("presence/bare", function(event)
local origin, stanza = event.origin, event.stanza;
if stanza.attr.type == "probe" then
-- they are subscribed and want our current presence
-- tell them we denied their subscription
local reply = st.reply(stanza)
reply.attr.type = "unsubcribed";
origin.send(reply);
return true;
elseif stanza.attr.type == nil then
-- they think we are subscribed and sent their current presence
-- tell them we unsubscribe
local reply = st.reply(stanza)
reply.attr.type = "unsubcribe";
origin.send(reply);
return true;
end
-- fall trough to default error
end);