mod_tokenauth: Invalidate tokens issued before most recent password change
This is a security improvement, to ensure that sessions authenticated using a
token (note: not currently possible in stock Prosody) are invalidated just
like password-authenticated sessions are.
module:set_global();
local filters = require "util.filters";
local function log_send(t, session)
if t and t ~= "" and t ~= " " then
session.log("debug", "SEND: %s", t);
end
return t;
end
local function log_recv(t, session)
if t and t ~= "" and t ~= " " then
session.log("debug", "RECV: %s", t);
end
return t;
end
local function init_raw_logging(session)
filters.add_filter(session, "stanzas/in", log_recv, -10000);
filters.add_filter(session, "stanzas/out", log_send, 10000);
end
filters.add_filter_hook(init_raw_logging);
function module.unload()
filters.remove_filter_hook(init_raw_logging);
end