| Fri, 28 May 2010 00:26:44 +0000 |
Mark Doliner |
Remove unnecessary check
|
| Sat, 01 May 2010 18:09:16 +0000 |
Paul Aurich |
jabber: I never understood why this was in auth.c anyway...
|
| Sun, 18 Apr 2010 20:12:32 +0000 |
Paul Aurich |
jabber: --more leaks
|
| Mon, 22 Mar 2010 21:34:17 +0000 |
Marcus Lundblad |
jabber: Validate the hash on incoming BoB objects (in case the CID is on the
|
| Wed, 13 Jan 2010 03:13:26 +0000 |
Paul Aurich |
Cyrus may not have anything (yet) if it's waiting for a callback or something.
|
| Fri, 04 Dec 2009 06:18:05 +0000 |
Paul Aurich |
jabber: Fix that leak I mentioned (and fix a mistake where error/response weren't NULL-initialized)
|
| Tue, 01 Dec 2009 07:32:53 +0000 |
Paul Aurich |
Let's try a more complex set of return states / values for auth mechs.
|
| Fri, 27 Nov 2009 20:41:22 +0000 |
Paul Aurich |
jabber: Use NS_XMPP_SASL
|
| Mon, 09 Nov 2009 03:42:26 +0000 |
Paul Aurich |
jabber: Complete (though untested) SCRAM implementation.
|
| Sat, 07 Nov 2009 06:55:55 +0000 |
Paul Aurich |
Speilling!
|
| Sat, 07 Nov 2009 06:42:48 +0000 |
Paul Aurich |
jabber: Oops, re-enable DIGEST-MD5 (I was testing PLAIN).
|
| Sat, 07 Nov 2009 06:41:33 +0000 |
Paul Aurich |
jabber: Use accessors instead of directly accessing gc->account (and similar)
|
| Sat, 07 Nov 2009 06:10:17 +0000 |
Paul Aurich |
jabber: Factor the SASL auth methods into their own files.
|
| Fri, 06 Nov 2009 09:57:49 +0000 |
Paul Aurich |
Hmm, I think I'm reaching diminishing returns.
|
| Fri, 06 Nov 2009 09:30:40 +0000 |
Paul Aurich |
jabber: These uses of strlen() are unnecessary.
|
| Fri, 06 Nov 2009 09:16:01 +0000 |
Paul Aurich |
jabber: If it should never happen, we certainly should never keep going in the function!
|
| Fri, 06 Nov 2009 08:55:36 +0000 |
Paul Aurich |
jabber: Fix a few places where the default for require_tls was wrong.
|
| Fri, 06 Nov 2009 08:47:28 +0000 |
Paul Aurich |
jabber: Use purple_strequal to simplify some auth code
|
| Fri, 06 Nov 2009 08:39:49 +0000 |
Paul Aurich |
jabber: Convert to purple_debug_* convenience functions.
|
| Thu, 24 Sep 2009 16:38:49 +0000 |
Paul Aurich |
jabber: Always require a resource when starting Legacy IQ Auth.
|
| Tue, 25 Aug 2009 16:38:18 +0000 |
Paul Aurich |
jabber: Fix using BOSH and legacy auth together. Closes #9990.
|
| Sat, 22 Aug 2009 02:52:30 +0000 |
Paul Aurich |
Remove specific copyright lines from the XMPP prpl.
|
| Mon, 06 Jul 2009 09:07:42 +0000 |
Mark Doliner |
More uniformity among disconnect error messages
|
| Mon, 06 Jul 2009 06:03:20 +0000 |
Mark Doliner |
Non localizable string?! Non!
|
| Mon, 06 Jul 2009 05:50:43 +0000 |
Mark Doliner |
Change strings in libpurple/protocols/jabber/auth.c and util.c a little bit
|
| Tue, 23 Jun 2009 06:45:21 +0000 |
Paul Aurich |
Only append ,charset=utf-8 for DIGEST-MD5. This should fix comment 2 on Adium#12429.
|
| Fri, 05 Jun 2009 19:14:20 +0000 |
Paul Aurich |
Typo.
|
| Fri, 05 Jun 2009 07:02:16 +0000 |
Paul Aurich |
Set charset=utf-8 when cyrus sasl doesn't include it.
|
| Wed, 03 Jun 2009 19:34:26 +0000 |
Paul Aurich |
disapproval of revision '84a23ef59e6a3bc88834f0948c67516f0a39234b'
|
| Wed, 03 Jun 2009 16:41:52 +0000 |
Paul Aurich |
jabber digest-md5: Only specify the charset as UTF-8 if conversion to ISO-8859-1 was not successful.
|
| Mon, 25 May 2009 00:32:55 +0000 |
Paul Aurich |
Require SSL when trying IQ-auth via parser.c (no stream:features). Fixes #8131.
|
| Sun, 05 Apr 2009 21:13:10 +0000 |
Paul Aurich |
propagate from branch 'im.pidgin.pidgin' (head f144c6bda9daf701aa891c875fce7a4dedd611ae)
|
| Fri, 13 Mar 2009 02:26:45 +0000 |
Paul Aurich |
Convert all the XMPP IQ callbacks to a typedef similar to the IQ Handlers.
|
| Sat, 04 Apr 2009 20:59:15 +0000 |
Paul Aurich |
Make the last one compile (add disco.h) and alphabetize.
|
| Sat, 04 Apr 2009 18:44:17 +0000 |
Paul Aurich |
Fix login process for older servers using IQ-auth.
|
| Mon, 23 Mar 2009 00:38:20 +0000 |
Paul Aurich |
BOSH: For authentication purposes, HTTPS is equivalent to a secured JabberStream.
|
| Mon, 02 Mar 2009 06:37:05 +0000 |
Elliott Sales de Andrade |
Remove some extra trailing whitespace I noticed after merging mlundblad's
|
| Wed, 21 Jan 2009 23:08:16 +0000 |
Evan Schoenberg |
Two patches from Yann Kerherve submitted to pidgin-devl. This fixes XMPP
|
| Thu, 11 Dec 2008 08:08:02 +0000 |
Paul Aurich |
Fix up the XMPP User Avatar SHA1 hashing so that we don't mess up the checksum
|
| Sat, 29 Nov 2008 19:44:57 +0000 |
Paul Aurich |
Send the "client-accepts-full-bind-result" attribute for Google Talk when
|
| Thu, 26 Jun 2008 09:07:56 +0000 |
Richard Laager |
propagate from branch 'im.pidgin.pidgin.2.4.3' (head 709ec9c29e9d76eebbded25061107ef0a2a2b148)
|
| Mon, 02 Jun 2008 05:06:58 +0000 |
Elliott Sales de Andrade |
A patch from QuLogic to eliminate duplicated HMAC-MD5 code in the Jabber
|
| Sun, 01 Jun 2008 01:34:34 +0000 |
Andrew Hoffman |
Fix stack smashing for forced old (port 5223) ssl auth. Closes #5974.
|
| Fri, 23 May 2008 14:58:39 +0000 |
Will Thompson |
NULL out js->expected_rspauth, so it doesn't get double-freed in jabber_close().
|
| Wed, 21 May 2008 01:57:07 +0000 |
Daniel Atallah |
Plug leak.
|
| Wed, 21 May 2008 01:49:03 +0000 |
Evan Schoenberg |
Skip the X-GOOGLE-TOKEN mech (given us by Google Talk when connecting with
|
| Thu, 19 Jun 2008 03:17:14 +0000 |
Daniel Atallah |
applied changes from b687754dfefde18bbb1a2652261943517272a691
|
| Thu, 19 Jun 2008 03:04:56 +0000 |
Daniel Atallah |
applied changes from 43973692751b7c4e1375e090365f75a148798aed
|
| Fri, 02 May 2008 22:51:14 +0000 |
Evan Schoenberg |
merge of '21d37789f674809d615fc7676a092f1da438b0f5'
|
| Thu, 01 May 2008 04:02:31 +0000 |
Daniel Atallah |
When an XMPP account is set to require TLS, but libpurple doesn't have SSL
|
| Fri, 02 May 2008 22:50:13 +0000 |
Evan Schoenberg |
After trying the available SASL mechs, jabber_auth_handle_failure() now
|
| Tue, 15 Apr 2008 23:51:03 +0000 |
Evan Schoenberg |
The warning string for plaintext auth over an unencrypted connection is found
|
| Tue, 15 Apr 2008 23:46:03 +0000 |
Evan Schoenberg |
Remove the "Use GSSAPI (Kerberos v5) for authentication" xmpp preference,
|
| Sun, 13 Apr 2008 06:37:47 +0000 |
Stu Tomlinson |
The next version of RFC 3920, the draft of which can be found at http://www.xmpp.org/internet-drafts/draft-saintandre-rfc3920bis-04.html, and subsequent email clarifications with Peter Saint-Andre and Alexey Melnikov indicate that we should be trying the next mechanism in line after one mechanism fails. We should also be ensuring that the mech list is sorted in order of descending security, which we don't do yet; however, servers are supposed to send us a sorted list, as well, so this isn't a major issue.
|
| Thu, 20 Mar 2008 08:42:15 +0000 |
Evan Schoenberg |
Discussion is in progress on pidgin-devel about the preference to enable/disable GSSAPI, but upon reflection it should, if it exists at all, default to TRUE. Making it do so for the time being.
|
| Thu, 20 Mar 2008 00:20:27 +0000 |
Evan Schoenberg |
Now that Adium has cyrus-sasl enabled, I'm having a lot of users report problems connecting to servers which ultimately turn out to be that the server supports GSSAPI in addition to other mechanisms and the user isn't configured serverside or clientside to authenticate properly. Generally speaking, a user/password combination is the expectation for most people for connecting.
|
| Sun, 16 Mar 2008 20:36:52 +0000 |
Mark Doliner |
Fix a bunch of compiler warnings caused by my addition of G_GNUC_PRINTF()
|
| Sat, 26 Jan 2008 03:53:18 +0000 |
Evan Schoenberg |
If falling back on the old auth method for Jabber, be sure to set js->auth_type to JABBER_AUTH_IQ_AUTH.
|
| Thu, 17 Jan 2008 08:10:37 +0000 |
Mark Doliner |
A few more of those "default_action" fixes
|
| Fri, 28 Dec 2007 17:14:52 +0000 |
Evan Schoenberg |
Ensure js->sasl is not NULL before using it in jabber_auth_handle_success(). This was, I believe, the source of the crash stu reported when my DIGEST-MD5 hack was in place; while js->sasl will probably be non-NULL whenever we reach this code point now, it's more robust to verify it here since that's an assumption originating in another function.
|
| Fri, 28 Dec 2007 02:49:10 +0000 |
Stu Tomlinson |
disapproval of revision 'f6430c7013d08f95c60248eeb22c752a0107499b'
|
| Sat, 22 Dec 2007 16:59:52 +0000 |
Evan Schoenberg |
The DIGEST-MD5 implementation of CYRUS-SASL is incompatible with the implementation in Java. The result is that we failed to authenticate to Java-based servers such as OpenFire when DIGEST-MD5 was enabled. This appears to be the result of a bug in the Java SASL library. While we -could- wait for a fix within that library and tell our users that server admins need to upgrade to get the fix, a client-side workaround is very easily accessible to us.
|
| Sat, 22 Dec 2007 15:45:13 +0000 |
Evan Schoenberg |
Daniel pointed out that this should be digest, not &digest, because auth_hmac_md5 takes a guchar* rather than a guchar**
|
| Tue, 18 Dec 2007 22:57:55 +0000 |
Evan Schoenberg |
Last minute 'cleanup' actually resulted in breakage on my cram-md5 commit. Fixed it.
|
| Mon, 17 Dec 2007 23:22:30 +0000 |
Evan Schoenberg |
Added support for authentication via CRAM-MD5 when using jabber:iq:auth.
|
| Mon, 17 Dec 2007 23:18:34 +0000 |
Evan Schoenberg |
If no sasl mechs are appropriate, attempt a jabber:iq:auth connection. Note that this isn't the same as a failed authentication over sasl. Detailed comments in the code regarding my reasoning for this behavior.
|
| Sat, 17 Nov 2007 00:12:30 +0000 |
Richard Laager |
This merge has the effect of reverting the hinting code from trunk.
|
| Mon, 15 Oct 2007 10:45:46 +0000 |
Will Thompson |
propagate from branch 'im.pidgin.pidgin.next.minor' (head bd8f1d754a1b94e5ade30c3b135178b236f7b49a)
|
| Sun, 14 Oct 2007 21:08:42 +0000 |
Will Thompson |
Rename:
|
| Fri, 16 Nov 2007 23:32:17 +0000 |
Richard Laager |
merge of '1037fab539d2a95db4fc657f42420566f7e53440'
|
| Fri, 16 Nov 2007 23:27:07 +0000 |
Richard Laager |
merge of '00bf7296307f96f5c68d6e5edf219fb4a50bb947'
|
| Fri, 16 Nov 2007 23:01:12 +0000 |
Richard Laager |
disapproval of revision 'b6ee8d925e8e7670de77e6283963fa151ea0ed77'
|
| Sun, 14 Oct 2007 20:53:40 +0000 |
Richard Laager |
Re-namespace the #defines to all be PURPLE_REQUEST_UI_HINT_*. I see no
|
| Fri, 16 Nov 2007 23:27:01 +0000 |
Richard Laager |
disapproval of revision '4b2b98ecc70947f687d13c902b1b031247b49392'
|
| Sun, 14 Oct 2007 18:07:19 +0000 |
Gabriel Schulhof |
Converted string literal UI hints to #define-ed constants and fixed two cast-warnings in gtkblist.c
|
| Fri, 16 Nov 2007 23:30:03 +0000 |
Richard Laager |
disapproval of revision 'c484d979c4fda4433a9633ff8b69bd8a395c9479'
|
| Sun, 14 Oct 2007 00:26:00 +0000 |
Richard Laager |
disapproval of revision '0e5385979f58d6ee74f668bb9b5dfd1ae3b6043f'
|
| Wed, 10 Oct 2007 22:57:51 +0000 |
Gabriel Schulhof |
Removed request stuff - now on pidgin-request-ui-hint
|
| Tue, 09 Oct 2007 13:36:08 +0000 |
Will Thompson |
I missed some wants_to_dies in jabber.
|
| Tue, 09 Oct 2007 13:32:58 +0000 |
Will Thompson |
Stop jabber setting wants_to_die itself. This involved plumbing disconnection
|
| Sat, 06 Oct 2007 12:05:22 +0000 |
Will Thompson |
Split the "you don't have SSL support" meaning of
|
| Fri, 05 Oct 2007 18:33:27 +0000 |
Will Thompson |
Sprinkle gc->wants_to_die = TRUE liberally around connection errors that really
|
| Fri, 05 Oct 2007 15:50:17 +0000 |
Will Thompson |
propagate from branch 'im.pidgin.pidgin' (head 294731552d0baf5f1f37a45e0c119b2188f34ba8)
|
| Sat, 22 Sep 2007 16:19:34 +0000 |
Gabriel Schulhof |
Updated hinting to be less invasive
|
| Sat, 22 Sep 2007 09:48:07 +0000 |
Gabriel Schulhof |
propagate from branch 'im.pidgin.pidgin' (head 025faf23aaac403798451974c320c4de6df470d5)
|
| Tue, 18 Sep 2007 03:11:19 +0000 |
Daniel Atallah |
Disable the account when the user cancels entering the password so the account isn't stuck in a weird unconnected state. Fixes #1791
|
| Wed, 19 Sep 2007 15:03:59 +0000 |
Will Thompson |
Use PurpleDisconnectReasons in prpl-jabber.
|
| Fri, 14 Sep 2007 00:03:30 +0000 |
Daniel Atallah |
Clear the password when we get an auth. error and we're not saving passwords so that you don't need to go into the account settings to reset it. Fix #3083.
|
| Wed, 12 Sep 2007 19:11:38 +0000 |
Gabriel Schulhof |
propagate from branch 'im.pidgin.pidgin' (head 483b6435074838149d6e95b836d4a2d9263f265d)
|
| Fri, 17 Aug 2007 22:10:43 +0000 |
Gabriel Schulhof |
explicit merge of 'fc49baf44017a8fd511c607b435668baf2a0f518'
|
| Sun, 12 Aug 2007 16:44:02 +0000 |
Gabriel Schulhof |
Added hints to jabber auth.c
|
| Sun, 12 Aug 2007 16:36:40 +0000 |
Gabriel Schulhof |
Added hints to jabber auth.c
|
| Sat, 08 Sep 2007 03:09:35 +0000 |
John Bailey |
The FSF changed its address a while ago; our files were out of date.
|
| Fri, 07 Sep 2007 01:22:19 +0000 |
Daniel Atallah |
The cyrus SASL password prompt dialogs don't get disposed if the account disconnects. This fixes the callbacks not to assume that the connection is still valid.
|
| Sun, 12 Aug 2007 02:11:05 +0000 |
Daniel Atallah |
Use -1 as length with g_convert() functions instead of strlen()
|
| Fri, 10 Aug 2007 13:28:12 +0000 |
Daniel Atallah |
Fix null pointer deref when confirming authentication over unencrypted connection. Fixes #2493.
|
| Tue, 22 May 2007 07:09:32 +0000 |
Mark Doliner |
merge of 'b8b81ea3c89a56d3526f1ca7373b947083c44a3f'
|
| Tue, 22 May 2007 05:22:36 +0000 |
Daniel Atallah |
Added more robust parsing of the xmpp digest challenge and add validation that some required challenge fields are present. Fixes #1024
|
| Fri, 18 May 2007 01:46:51 +0000 |
Daniel Atallah |
disapproval of revision '1e0f6c89bdf3a21258ac4f64039122a909ac67cc'
|
| Fri, 18 May 2007 01:37:27 +0000 |
Daniel Atallah |
Fix an extra \r\n in the Authorization header. Fixes #965.
|
| Fri, 11 May 2007 00:33:05 +0000 |
Nathan Walp |
I changed my mind, this should display the whole account name
|
| Thu, 10 May 2007 23:43:42 +0000 |
Nathan Walp |
fixes #763
|
| Sun, 29 Apr 2007 17:14:45 +0000 |
Mark Doliner |
Don't try to base64 encode and then append an empty string
|
| Fri, 27 Apr 2007 04:18:02 +0000 |
Daniel Atallah |
Fix jabber sasl build.
|
| Thu, 26 Apr 2007 12:25:49 +0000 |
Evan Schoenberg |
Added account, who, and conversation parameters to the request API calls, and updated all code to match. I can't compile the Perl module, so I'd appreciate it if someone who knows it would verify that this doesn't break Perl.
|
| Mon, 23 Apr 2007 06:21:38 +0000 |
Mark Doliner |
Get rid of two really minor warnings
|
| Sun, 15 Apr 2007 00:14:34 +0000 |
Nathan Walp |
patch from Simon Wilkinson to support Jabber/XMPP w/o passwords
|
| Sat, 24 Mar 2007 20:06:21 +0000 |
Stu Tomlinson |
Re-arrange #includes so 'make check' stands a chance of passing during
|
| Mon, 19 Mar 2007 07:01:17 +0000 |
Sean Egan |
sed -ie 's/gaim/purple/g'
|
| Sat, 03 Mar 2007 19:18:38 +0000 |
Nathan Walp |
pass the correct domain to cyrus sasl (sf patch 1663064)
|
| Sat, 20 Jan 2007 02:32:10 +0000 |
Sean Egan |
Rename gtk/ and libgaim/ to pidgin/ and libpurple/
|
