comparison mod_http_admin_api/mod_http_admin_api.lua @ 5650:0eb2d5ea2428

merge
author Stephen Paul Weber <singpolyma@singpolyma.net>
date Sat, 06 May 2023 19:40:23 -0500
parents 5178c13deb78
children 4c84cfb586c1
comparison
equal deleted inserted replaced
5649:2c69577b28c2 5650:0eb2d5ea2428
1 local usermanager = require "core.usermanager"; 1 local usermanager = require "core.usermanager";
2 2
3 local jid = require "util.jid";
3 local it = require "util.iterators"; 4 local it = require "util.iterators";
4 local json = require "util.json"; 5 local json = require "util.json";
5 local st = require "util.stanza"; 6 local st = require "util.stanza";
6 local array = require "util.array"; 7 local array = require "util.array";
7 local statsmanager = require "core.statsmanager"; 8 local statsmanager = require "core.statsmanager";
46 local session = check_credentials(event.request); 47 local session = check_credentials(event.request);
47 if not session then 48 if not session then
48 event.response.headers.authorization = www_authenticate_header; 49 event.response.headers.authorization = www_authenticate_header;
49 return false, 401; 50 return false, 401;
50 end 51 end
52 -- FIXME this should probably live in mod_tokenauth or similar
53 session.type = "c2s";
54 session.full_jid = jid.join(session.username, session.host, session.resource);
51 event.session = session; 55 event.session = session;
52 if not module:may(":access-admin-api", event) then 56 if not module:may(":access-admin-api", event) then
53 return false, 403; 57 return false, 403;
54 end 58 end
55 return true; 59 return true;