jiti-meet/prosody-plugins/token/util.lib.lua

-- Token authentication
-- Copyright (C) 2015 Atlassian

local jwt = require "luajwt";

local _M = {};

local function verify_password_impl(password, appId, appSecret, roomName)

	local claims, err = jwt.decode(password, appSecret, true);
	if claims == nil then
		return nil, err;
	end

	local issClaim = claims["iss"];
	if issClaim == nil then
		return nil, "Issuer field is missing";
	end
	if issClaim ~= appId then
		return nil, "Invalid application ID('iss' claim)";
	end

	local roomClaim = claims["room"];
	if roomClaim == nil then
		return nil, "Room field is missing";
	end
	if roomName ~= nil and roomName ~= roomClaim then
		return nil, "Invalid room name('room' claim)";
	end
	
	return true;
end

function _M.verify_password(password, appId, appSecret, roomName)
	return verify_password_impl(password, appId, appSecret, roomName);
end

return _M;
Adds Prosody plugin for token authentication. 2015-11-02 21:02:50 +00:00			`-- Token authentication`
			`-- Copyright (C) 2015 Atlassian`

Uses JWT for token generation in prosody plugin. 2015-11-18 18:49:36 +00:00			`local jwt = require "luajwt";`
Adds Prosody plugin for token authentication. 2015-11-02 21:02:50 +00:00
			`local _M = {};`

Uses JWT for token generation in prosody plugin. 2015-11-18 18:49:36 +00:00			`local function verify_password_impl(password, appId, appSecret, roomName)`
Adds Prosody plugin for token authentication. 2015-11-02 21:02:50 +00:00
Uses JWT for token generation in prosody plugin. 2015-11-18 18:49:36 +00:00			`local claims, err = jwt.decode(password, appSecret, true);`
			`if claims == nil then`
			`return nil, err;`
Adds Prosody plugin for token authentication. 2015-11-02 21:02:50 +00:00			`end`

Uses JWT for token generation in prosody plugin. 2015-11-18 18:49:36 +00:00			`local issClaim = claims["iss"];`
			`if issClaim == nil then`
			`return nil, "Issuer field is missing";`
Adds Prosody plugin for token authentication. 2015-11-02 21:02:50 +00:00			`end`
Uses JWT for token generation in prosody plugin. 2015-11-18 18:49:36 +00:00			`if issClaim ~= appId then`
			`return nil, "Invalid application ID('iss' claim)";`
Adds Prosody plugin for token authentication. 2015-11-02 21:02:50 +00:00			`end`

Uses JWT for token generation in prosody plugin. 2015-11-18 18:49:36 +00:00			`local roomClaim = claims["room"];`
			`if roomClaim == nil then`
			`return nil, "Room field is missing";`
			`end`
			`if roomName ~= nil and roomName ~= roomClaim then`
			`return nil, "Invalid room name('room' claim)";`
Adds Prosody plugin for token authentication. 2015-11-02 21:02:50 +00:00			`end`
Uses JWT for token generation in prosody plugin. 2015-11-18 18:49:36 +00:00
			`return true;`
Adds Prosody plugin for token authentication. 2015-11-02 21:02:50 +00:00			`end`

Uses JWT for token generation in prosody plugin. 2015-11-18 18:49:36 +00:00			`function _M.verify_password(password, appId, appSecret, roomName)`
			`return verify_password_impl(password, appId, appSecret, roomName);`
Adds Prosody plugin for token authentication. 2015-11-02 21:02:50 +00:00			`end`

			`return _M;`