pontarius-xmpp/source/Network/Xmpp/Sasl/Mechanisms/Plain.hs

{-# OPTIONS_HADDOCK hide #-}
-- Implementation of the PLAIN Simple Authentication and Security Layer (SASL)
-- Mechanism, http://tools.ietf.org/html/rfc4616.

{-# LANGUAGE OverloadedStrings #-}

module Network.Xmpp.Sasl.Mechanisms.Plain
    ( plain
    ) where

import           Control.Applicative
import           Control.Arrow (left)
import           Control.Monad
import           Control.Monad.Error
import           Control.Monad.State.Strict
import           Data.Maybe (fromJust, isJust)

import qualified Crypto.Classes as CC

import qualified Data.Binary as Binary
import qualified Data.ByteString.Base64 as B64
import qualified Data.ByteString.Char8 as BS8
import qualified Data.ByteString.Lazy as BL
import qualified Data.Digest.Pure.MD5 as MD5
import qualified Data.List as L
import           Data.Word (Word8)

import qualified Data.Text as Text
import           Data.Text (Text)
import qualified Data.Text.Encoding as Text

import           Data.XML.Pickle

import qualified Data.ByteString as BS

import           Data.XML.Types

import           Network.Xmpp.Connection
import           Network.Xmpp.Stream
import           Network.Xmpp.Types

import qualified System.Random as Random

import           Data.Maybe (fromMaybe)
import qualified Data.Text as Text

import           Network.Xmpp.Sasl.Common
import           Network.Xmpp.Sasl.Types

-- TODO: stringprep
xmppPlain :: Text.Text -- ^ Password
          -> Maybe Text.Text -- ^ Authorization identity (authzid)
          -> Text.Text -- ^ Authentication identity (authcid)
          -> SaslM ()
xmppPlain authcid authzid password  = do
    (ac, az, pw) <- prepCredentials authcid authzid password
    _ <- saslInit "PLAIN" ( Just $ plainMessage ac az pw)
    _ <- pullSuccess
    return ()
  where
    -- Converts an optional authorization identity, an authentication identity,
    -- and a password to a \NUL-separated PLAIN message.
    plainMessage :: Text.Text -- Authorization identity (authzid)
                 -> Maybe Text.Text -- Authentication identity (authcid)
                 -> Text.Text -- Password
                 -> BS.ByteString -- The PLAIN message
    plainMessage authcid authzid passwd = BS.concat $
                                            [ authzid'
                                            , "\NUL"
                                            , Text.encodeUtf8 $ authcid
                                            , "\NUL"
                                            , Text.encodeUtf8 $ passwd
                                            ]
      where
        authzid' = maybe "" Text.encodeUtf8 authzid

plain :: Text.Text -- ^ authentication ID (username)
      -> Maybe Text.Text -- ^ authorization ID
      -> Text.Text -- ^ password
      -> SaslHandler
plain authcid authzid passwd = ("PLAIN", xmppPlain authcid authzid passwd)
shape documentation 13 years ago			`{-# OPTIONS_HADDOCK hide #-}`
(untested) sasl plain implementation 14 years ago			`-- Implementation of the PLAIN Simple Authentication and Security Layer (SASL)`
			`-- Mechanism, http://tools.ietf.org/html/rfc4616.`

			`{-# LANGUAGE OverloadedStrings #-}`

shape documentation 13 years ago			`module Network.Xmpp.Sasl.Mechanisms.Plain`
			`( plain`
			`) where`
(untested) sasl plain implementation 14 years ago
			`import Control.Applicative`
			`import Control.Arrow (left)`
			`import Control.Monad`
			`import Control.Monad.Error`
			`import Control.Monad.State.Strict`
			`import Data.Maybe (fromJust, isJust)`

			`import qualified Crypto.Classes as CC`

			`import qualified Data.Binary as Binary`
			`import qualified Data.ByteString.Base64 as B64`
			`import qualified Data.ByteString.Char8 as BS8`
			`import qualified Data.ByteString.Lazy as BL`
			`import qualified Data.Digest.Pure.MD5 as MD5`
			`import qualified Data.List as L`
			`import Data.Word (Word8)`

			`import qualified Data.Text as Text`
			`import Data.Text (Text)`
			`import qualified Data.Text.Encoding as Text`

rename Network.Xmpp.Monad to Network.Xmpp.Connection 13 years ago			`import Data.XML.Pickle`
(untested) sasl plain implementation 14 years ago
			`import qualified Data.ByteString as BS`

rename Network.Xmpp.Monad to Network.Xmpp.Connection 13 years ago			`import Data.XML.Types`
(untested) sasl plain implementation 14 years ago
Change module structure We can treat all functions related to SASL negotiation as a submodule to Pontarius XMPP if there are no dependencies from the internal Network.Xmpp modules to the SASL functionality. Because of this, `auth' and `authSimple' were moved from Session.hs to Sasl.hs. As the bind and the `{urn:ietf:params:xml:ns:xmpp-session}session' functionality are related only to the SASL negotation functionality, these functions has been moved to the SASL submodule as well. As these changes only leaves `connect' in the Session module, it seems fitting to move `connect' to Network.Xmpp.Stream (not Network.Xmpp.Connection, as `connect' depends on `startStream'). The internal Network.Xmpp modules (Connection.hs) no longer depend on the Concurrent submodule. This will decrease the coupling between Network.Xmpp and the concurrent implementation, making it easier for developers to replace the concurrent implementation if they wanted to. As Network.Xmpp.Connection is really a module that breaks the encapsulation that is Network.Xmpp and the concurrent interface, I have renamed it Network.Xmpp.Internal. As this frees up the Network.Xmpp.Connection name, Network.Xmpp.Connection_ can reclaim it. The high-level "utility" functions of Network.Xmpp.Utilities, Network.Xmpp.Presence, and Network.Xmpp.Message has been moved to Network.Xmpp.Utilities. This module contains functions that at most only depend on the internal Network.Xmpp.Types module, and doesn't belong in any other module. The functionality of Jid.hs was moved to Types.hs. Moved some of the functions of Network.Xmpp.Pickle to Network.Xmpp.Marshal, and removed the Network.Xmpp.Pickle module. A module imports diagram corresponding to the one of my last patch shows the new module structure. I also include a diagram showing the `Sasl' and `Concurrent' module imports. 13 years ago			`import Network.Xmpp.Connection`
replace XMPP with Xmpp everywhere to unify style replace SASL with Sasl replace DIGEST_MD5 with DigestMD5 replace PLAIN with Plain 14 years ago			`import Network.Xmpp.Stream`
			`import Network.Xmpp.Types`
(untested) sasl plain implementation 14 years ago
			`import qualified System.Random as Random`

rename Network.Xmpp.Monad to Network.Xmpp.Connection 13 years ago			`import Data.Maybe (fromMaybe)`
add scram add sAuthzid to XmppConnection add sAuthzid to XmppConnection more work on sasl infrastructure move more stuff from DigestMd5 to Common more work on sasl infrastructure 14 years ago			`import qualified Data.Text as Text`
(untested) sasl plain implementation 14 years ago
rename Network.Xmpp.Monad to Network.Xmpp.Connection 13 years ago			`import Network.Xmpp.Sasl.Common`
			`import Network.Xmpp.Sasl.Types`
(untested) sasl plain implementation 14 years ago
add scram add sAuthzid to XmppConnection add sAuthzid to XmppConnection more work on sasl infrastructure move more stuff from DigestMd5 to Common more work on sasl infrastructure 14 years ago			`-- TODO: stringprep`
miscellaneous sasl changes stopped wrapping passwd in a SaslM computation for the time-being SaslHandler now takes password and does not take hostname minor formatting and documentation changes runSasl where-local SaslElement moved to Sasl/Types.hs 14 years ago			`xmppPlain :: Text.Text -- ^ Password`
			`-> Maybe Text.Text -- ^ Authorization identity (authzid)`
			`-> Text.Text -- ^ Authentication identity (authcid)`
add scram add sAuthzid to XmppConnection add sAuthzid to XmppConnection more work on sasl infrastructure move more stuff from DigestMd5 to Common more work on sasl infrastructure 14 years ago			`-> SaslM ()`
move mechanisms to Sasl/Mechanisms factor out prepCredentials 14 years ago			`xmppPlain authcid authzid password = do`
			`(ac, az, pw) <- prepCredentials authcid authzid password`
			`_ <- saslInit "PLAIN" ( Just $ plainMessage ac az pw)`
add scram add sAuthzid to XmppConnection add sAuthzid to XmppConnection more work on sasl infrastructure move more stuff from DigestMd5 to Common more work on sasl infrastructure 14 years ago			`_ <- pullSuccess`
(untested) sasl plain implementation 14 years ago			`return ()`
			`where`
			`-- Converts an optional authorization identity, an authentication identity,`
			`-- and a password to a \NUL-separated PLAIN message.`
move mechanisms to Sasl/Mechanisms factor out prepCredentials 14 years ago			`plainMessage :: Text.Text -- Authorization identity (authzid)`
			`-> Maybe Text.Text -- Authentication identity (authcid)`
add scram add sAuthzid to XmppConnection add sAuthzid to XmppConnection more work on sasl infrastructure move more stuff from DigestMd5 to Common more work on sasl infrastructure 14 years ago			`-> Text.Text -- Password`
			`-> BS.ByteString -- The PLAIN message`
move mechanisms to Sasl/Mechanisms factor out prepCredentials 14 years ago			`plainMessage authcid authzid passwd = BS.concat $`
add scram add sAuthzid to XmppConnection add sAuthzid to XmppConnection more work on sasl infrastructure move more stuff from DigestMd5 to Common more work on sasl infrastructure 14 years ago			`[ authzid'`
			`, "\NUL"`
			`, Text.encodeUtf8 $ authcid`
			`, "\NUL"`
			`, Text.encodeUtf8 $ passwd`
			`]`
			`where`
			`authzid' = maybe "" Text.encodeUtf8 authzid`

shape documentation 13 years ago			`plain :: Text.Text -- ^ authentication ID (username)`
			`-> Maybe Text.Text -- ^ authorization ID`
			`-> Text.Text -- ^ password`
			`-> SaslHandler`
rename Network.Xmpp.Monad to Network.Xmpp.Connection 13 years ago			`plain authcid authzid passwd = ("PLAIN", xmppPlain authcid authzid passwd)`