jiti-meet/resources/prosody-plugins/mod_auth_jitsi-anonymous.lua

-- Anonymous authentication with extras:
-- * session resumption
-- Copyright (C) 2021-present 8x8, Inc.

local generate_random_id = require "util.id".medium;
local new_sasl = require "util.sasl".new;
local sasl = require "util.sasl";
local sessions = prosody.full_sessions;

-- define auth provider
local provider = {};

function provider.test_password(username, password)
    return nil, "Password based auth not supported";
end

function provider.get_password(username)
    return nil;
end

function provider.set_password(username, password)
    return nil, "Set password not supported";
end

function provider.user_exists(username)
    return nil;
end

function provider.create_user(username, password)
    return nil;
end

function provider.delete_user(username)
    return nil;
end

function provider.get_sasl_handler(session)
    -- Custom session matching so we can resume session even with randomly
    -- generated user IDs.
    local function get_username(self, message)
        if (session.previd ~= nil) then
            for _, session1 in pairs(sessions) do
                if (session1.resumption_token == session.previd) then
                    self.username = session1.username;
                    break;
                end
            end
        else
            self.username = message;
        end

        return true;
    end

    return new_sasl(module.host, { anonymous = get_username });
end

module:provides("auth", provider);

local function anonymous(self, message)
    -- Same as the vanilla anonymous auth plugin
    local username = generate_random_id():lower();

    -- This calls the handler created in 'provider.get_sasl_handler(session)'
    local result, err, msg = self.profile.anonymous(self, username, self.realm);

    if result == true then
        if (self.username == nil) then
            -- Session was not resumed
            self.username = username;
        end
        return "success";
    else
        return "failure", err, msg;
    end
end

sasl.registerMechanism("ANONYMOUS", {"anonymous"}, anonymous);
feat: jitsi_session: extracts URL parameters from BOSH or WS into session Co-authored-by: Saúl Ibarra Corretgé <saghul@jitsi.org> 2021-05-13 03:02:51 +00:00			`-- Anonymous authentication with extras:`
			`-- * session resumption`
			`-- Copyright (C) 2021-present 8x8, Inc.`

fix(prosody) fix username not being set in mod_auth_jitsi-anonymous If the session was not resumed the plugin must generate a random username, just like the regular anonymous authentication plugin does. 2021-08-18 07:09:18 +00:00			`local generate_random_id = require "util.id".medium;`
feat: jitsi_session: extracts URL parameters from BOSH or WS into session Co-authored-by: Saúl Ibarra Corretgé <saghul@jitsi.org> 2021-05-13 03:02:51 +00:00			`local new_sasl = require "util.sasl".new;`
			`local sasl = require "util.sasl";`
			`local sessions = prosody.full_sessions;`

			`-- define auth provider`
			`local provider = {};`

			`function provider.test_password(username, password)`
			`return nil, "Password based auth not supported";`
			`end`

			`function provider.get_password(username)`
			`return nil;`
			`end`

			`function provider.set_password(username, password)`
			`return nil, "Set password not supported";`
			`end`

			`function provider.user_exists(username)`
			`return nil;`
			`end`

			`function provider.create_user(username, password)`
			`return nil;`
			`end`

			`function provider.delete_user(username)`
			`return nil;`
			`end`

			`function provider.get_sasl_handler(session)`
feat: Moves to use jitsi-anonymous by default. jitsi-anonymous adds by default handling of previd url param, which allows websocket resumption. 2022-07-11 12:43:55 +00:00			`-- Custom session matching so we can resume session even with randomly`
			`-- generated user IDs.`
feat: jitsi_session: extracts URL parameters from BOSH or WS into session Co-authored-by: Saúl Ibarra Corretgé <saghul@jitsi.org> 2021-05-13 03:02:51 +00:00			`local function get_username(self, message)`
			`if (session.previd ~= nil) then`
			`for _, session1 in pairs(sessions) do`
			`if (session1.resumption_token == session.previd) then`
			`self.username = session1.username;`
			`break;`
			`end`
			`end`
			`else`
			`self.username = message;`
			`end`

			`return true;`
			`end`

			`return new_sasl(module.host, { anonymous = get_username });`
			`end`

			`module:provides("auth", provider);`

			`local function anonymous(self, message)`
fix(prosody) fix username not being set in mod_auth_jitsi-anonymous If the session was not resumed the plugin must generate a random username, just like the regular anonymous authentication plugin does. 2021-08-18 07:09:18 +00:00			`-- Same as the vanilla anonymous auth plugin`
			`local username = generate_random_id():lower();`

feat: jitsi_session: extracts URL parameters from BOSH or WS into session Co-authored-by: Saúl Ibarra Corretgé <saghul@jitsi.org> 2021-05-13 03:02:51 +00:00			`-- This calls the handler created in 'provider.get_sasl_handler(session)'`
			`local result, err, msg = self.profile.anonymous(self, username, self.realm);`

			`if result == true then`
fix(prosody) fix username not being set in mod_auth_jitsi-anonymous If the session was not resumed the plugin must generate a random username, just like the regular anonymous authentication plugin does. 2021-08-18 07:09:18 +00:00			`if (self.username == nil) then`
			`-- Session was not resumed`
			`self.username = username;`
			`end`
feat: jitsi_session: extracts URL parameters from BOSH or WS into session Co-authored-by: Saúl Ibarra Corretgé <saghul@jitsi.org> 2021-05-13 03:02:51 +00:00			`return "success";`
			`else`
			`return "failure", err, msg;`
			`end`
			`end`

			`sasl.registerMechanism("ANONYMOUS", {"anonymous"}, anonymous);`