Mercurial > eldonilo > lightstring
view plugins/DIGEST-MD5.js @ 86:0c10c9a69c69
Lightstring.stanza has been renamed to Lightstring.stanzas.
author | Sonny Piers <sonny.piers@gmail.com> |
---|---|
date | Wed, 08 Feb 2012 19:51:10 +0100 |
parents | e4899c122d7b |
children |
line wrap: on
line source
'use strict'; /** Copyright (c) 2012, Sonny Piers <sonny at fastmail dot net> Permission to use, copy, modify, and/or distribute this software for any purpose with or without fee is hereby granted, provided that the above copyright notice and this permission notice appear in all copies. THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */ /* References: Extensible Messaging and Presence Protocol (XMPP): Core - SASL Negotiation http://xmpp.org/rfcs/rfc6120.html#sasl Simple Authentication and Security Layer (SASL) http://tools.ietf.org/html/rfc4422 HTTP Authentication: Basic and Digest Access Authentication http://tools.ietf.org/html/rfc2617 Using Digest Authentication as a SASL Mechanism http://tools.ietf.org/html/rfc2831 */ Lightstring.plugins['DIGEST-MD5'] = { handlers: { 'mechanisms': function (stanza) { if(stanza.mechanisms.indexOf('DIGEST-MD5') === -1) return; this.send( "<auth xmlns='urn:ietf:params:xml:ns:xmpp-sasl'" + " mechanism='DIGEST-MD5'/>" ); }, 'success': function (stanza) { this.send( "<stream:stream to='" + this.jid.domain + "'" + " xmlns='jabber:client'" + " xmlns:stream='http://etherx.jabber.org/streams'" + " version='1.0'/>" ); }, 'features': function (stanza) { var Conn = this; //TODO check if bind supported var bind = "<iq type='set' id='"+Lightstring.newId('sendiq:')+"'>" + "<bind xmlns='urn:ietf:params:xml:ns:xmpp-bind'>" + (this.jid.resource? "<resource>" + this.jid.resource + "</resource>": "") + "</bind>" + "</iq>"; this.send( bind, //Success function(stanza) { //Session http://xmpp.org/rfcs/rfc3921.html#session Conn.jid = new Lightstring.JID(stanza.DOM.textContent); Conn.send( "<iq type='set' id='"+Lightstring.newId('sendiq:')+"'>" + "<session xmlns='urn:ietf:params:xml:ns:xmpp-session'/>" + "</iq>", function() { Conn.emit('connected'); } ); }, //Error function(stanza) { //TODO: Error? } ); }, 'challenge': function (stanza) { //FIXME: this is Strophe.js code function _quote(str) { return '"' + str.replace(/\\/g, '\\\\').replace(/"/g, '\\"') + '"'; }; var challenge = atob(stanza.DOM.textContent); var attribMatch = /([a-z]+)=("[^"]+"|[^,"]+)(?:,|$)/; var cnonce = MD5.hexdigest(Math.random() * 1234567890); var realm = ''; var host = null; var nonce = ''; var qop = ''; var matches; while (challenge.match(attribMatch)) { matches = challenge.match(attribMatch); challenge = challenge.replace(matches[0], ''); matches[2] = matches[2].replace(/^"(.+)"$/, '$1'); switch (matches[1]) { case 'realm': realm = matches[2]; break; case 'nonce': nonce = matches[2]; break; case 'qop': qop = matches[2]; break; case 'host': host = matches[2]; break; } } var digest_uri = 'xmpp/' + this.jid.domain; if (host !== null) digest_uri = digest_uri + '/' + host; var A1 = MD5.hash(this.jid.node + ':' + realm + ':' + this.password) + ':' + nonce + ':' + cnonce; var A2 = 'AUTHENTICATE:' + digest_uri; var responseText = ''; responseText += 'username=' + _quote(this.jid.node) + ','; responseText += 'realm=' + _quote(realm) + ','; responseText += 'nonce=' + _quote(nonce) + ','; responseText += 'cnonce=' + _quote(cnonce) + ','; responseText += 'nc="00000001",'; responseText += 'qop="auth",'; responseText += 'digest-uri=' + _quote(digest_uri) + ','; responseText += 'response=' + _quote( MD5.hexdigest(MD5.hexdigest(A1) + ':' + nonce + ':00000001:' + cnonce + ':auth:' + MD5.hexdigest(A2))) + ','; responseText += 'charset="utf-8"'; this.send( "<response xmlns='urn:ietf:params:xml:ns:xmpp-sasl'>" + btoa(responseText) + "</response>"); }, 'failure': function (stanza) { //TODO: throw an error? } } };