Add support to disable IQ Auth (enforce SASL only)

git-svn-id: http://svn.igniterealtime.org/svn/repos/openfire/trunk@8581 b35dd754-fafc-0310-a699-88a17e54d16e

Add support to disable IQ Auth (enforce SASL only)
git-svn-id: http://svn.igniterealtime.org/svn/repos/openfire/trunk@8581 b35dd754-fafc-0310-a699-88a17e54d16e
9fd11ffd · Jay Kline · jay · 14ac1e1f · 9fd11ffd
Commit 9fd11ffd authored Jun 20, 2007 by Jay Kline Committed by jay Jun 20, 2007
Show whitespace changes
Inline Side-by-side

Showing with 54 additions and 43 deletions

IQAuthHandler.java ...java/org/jivesoftware/openfire/handler/IQAuthHandler.java +54 -43

No files found.
--- a/src/java/org/jivesoftware/openfire/handler/IQAuthHandler.java
+++ b/src/java/org/jivesoftware/openfire/handler/IQAuthHandler.java
@@ -57,6 +57,7 @@ import java.util.List;
 public class IQAuthHandler extends IQHandler implements IQAuthInfo {

    private boolean anonymousAllowed;
+    private boolean iqAuthAllowed;

    private Element probeResponse;
    private IQHandlerInfo info;
@@ -100,6 +101,7 @@ public class IQAuthHandler extends IQHandler implements IQAuthInfo {
            return reply;
        }
        IQ response;
+        if (JiveGlobals.getBooleanProperty("xmpp.auth.iqauth",true)) {
            try {
                Element iq = packet.getElement();
                Element query = iq.element("query");
@@ -155,6 +157,12 @@ public class IQAuthHandler extends IQHandler implements IQAuthInfo {
                response.setChildElement(packet.getChildElement().createCopy());
                response.setError(PacketError.Condition.not_authorized);
            }
+        }
+        else {
+            response = IQ.createResultIQ(packet);
+            response.setChildElement(packet.getChildElement().createCopy());
+            response.setError(PacketError.Condition.not_authorized);
+        }
        // Send the response directly since we want to be sure that we are sending it back
        // to the correct session. Any other session of the same user but with different
        // resource is incorrect.
@@ -181,6 +189,9 @@ public class IQAuthHandler extends IQHandler implements IQAuthInfo {
            response.setError(PacketError.Condition.not_acceptable);
            return response;
        }
+        if (! JiveGlobals.getBooleanProperty("xmpp.auth.iqauth",true)) {
+            throw new UnauthorizedException();
+        }
        username = username.toLowerCase();
        // Verify that supplied username and password are correct (i.e. user authentication was successful)
        AuthToken token = null;