bitbot-3.11-fork/modules/sasl.py

import base64

class Module(object):
    def __init__(self, bot, events, exports):
        self.bot = bot
        events.on("received.cap.ls").hook(self.on_cap)
        events.on("received.cap.ack").hook(self.on_cap_ack)
        events.on("received.authenticate").hook(self.on_authenticate)
        events.on("received.numeric.903").hook(self.sasl_success)
        events.on("received.numeric.904").hook(self.sasl_failure)

        exports.add("serverset", {"setting": "sasl",
            "help": "Set the sasl username/password for this server",
            "validate": self._validate})

    def _validate(self, s):
        mechanism = s
        if " " in s:
            mechanism, arguments = s.split(" ", 1)
        return {"mechanism": mechanism, "args": arguments}

    def on_cap(self, event):
        has_sasl = "sasl" in event["capabilities"]
        our_sasl = event["server"].get_setting("sasl", None)

        do_sasl = False
        if has_sasl and our_sasl:
            if not event["capabilities"]["sasl"] == None:
                our_mechanism = our_sasl["mechanism"].upper()
                do_sasl = our_mechanism in event["capabilities"
                    ]["sasl"].split(",")
            else:
                do_sasl = False

        if do_sasl:
            event["server"].queue_capability("sasl")

    def on_cap_ack(self, event):
        if "sasl" in event["capabilities"]:
            sasl = event["server"].get_setting("sasl")
            event["server"].send_authenticate(sasl["mechanism"].upper())
            event["server"].wait_for_capability("sasl")

    def on_authenticate(self, event):
        if event["message"] != "+":
            event["server"].send_authenticate("*")
        else:
            sasl = event["server"].get_setting("sasl")
            mechanism = sasl["mechanism"].upper()

            if mechanism == "PLAIN":
                sasl_nick, sasl_pass = sasl["args"].split(":", 1)
                auth_text = "%s\0%s\0%s" % (sasl_nick, sasl_nick, sasl_pass)
            elif mechanism == "EXTERNAL":
                auth_text = "+"
            else:
                raise ValueError("unknown sasl mechanism '%s'" % mechanism)

            if not auth_text == "+":
                auth_text = base64.b64encode(auth_text.encode("utf8"))
                auth_text = auth_text.decode("utf8")
            event["server"].send_authenticate(auth_text)

    def _end_sasl(self, server):
        server.capability_done("sasl")
    def sasl_success(self, event):
        self._end_sasl(event["server"])
    def sasl_success(self, event):
        self._end_sasl(event["server"])
move sasl logic to it's own module 2018-07-15 22:56:06 +00:00			`import base64`

			`class Module(object):`
give an Exports object (actually, ExportsContex object) to each module, to facilitate things like !set and !channelset without using the events system 2018-09-02 18:54:45 +00:00			`def __init__(self, bot, events, exports):`
move sasl logic to it's own module 2018-07-15 22:56:06 +00:00			`self.bot = bot`
Make CAP functionality more part of the framework and support message-tags and multi-prefix 2018-09-03 10:14:27 +00:00			`events.on("received.cap.ls").hook(self.on_cap)`
			`events.on("received.cap.ack").hook(self.on_cap_ack)`
Give modules event objects with "context"s, to facilitate purging all the event hooks for a module 2018-08-31 11:55:52 +00:00			`events.on("received.authenticate").hook(self.on_authenticate)`
Listen for 903 for sasl success, not 900 2018-09-07 15:13:49 +00:00			`events.on("received.numeric.903").hook(self.sasl_success)`
Handle 904 (ERR_SASLFAIL) in sasl.py 2018-09-17 11:56:41 +00:00			`events.on("received.numeric.904").hook(self.sasl_failure)`
move sasl logic to it's own module 2018-07-15 22:56:06 +00:00
Add nickserv-password and sasl to !serverset 2018-09-09 09:04:21 +00:00			`exports.add("serverset", {"setting": "sasl",`
			`"help": "Set the sasl username/password for this server",`
			`"validate": self._validate})`

			`def _validate(self, s):`
Support EXTERNAL sasl authentication 2018-09-17 10:31:40 +00:00			`mechanism = s`
Add nickserv-password and sasl to !serverset 2018-09-09 09:04:21 +00:00			`if " " in s:`
Support EXTERNAL sasl authentication 2018-09-17 10:31:40 +00:00			`mechanism, arguments = s.split(" ", 1)`
			`return {"mechanism": mechanism, "args": arguments}`
Add nickserv-password and sasl to !serverset 2018-09-09 09:04:21 +00:00
move sasl logic to it's own module 2018-07-15 22:56:06 +00:00			`def on_cap(self, event):`
Support CAP 3.2 2018-09-07 14:51:41 +00:00			`has_sasl = "sasl" in event["capabilities"]`
Don't just listen for 'sasl=PLAIN' in IRCv3 CAP 3.2 2018-09-17 10:49:23 +00:00			`our_sasl = event["server"].get_setting("sasl", None)`
Support CAP 3.2 2018-09-07 14:51:41 +00:00
Don't just listen for 'sasl=PLAIN' in IRCv3 CAP 3.2 2018-09-17 10:49:23 +00:00			`do_sasl = False`
			`if has_sasl and our_sasl:`
			`if not event["capabilities"]["sasl"] == None:`
			`our_mechanism = our_sasl["mechanism"].upper()`
			`do_sasl = our_mechanism in event["capabilities"`
			`]["sasl"].split(",")`
			`else:`
			`do_sasl = False`

			`if do_sasl:`
Make CAP functionality more part of the framework and support message-tags and multi-prefix 2018-09-03 10:14:27 +00:00			`event["server"].queue_capability("sasl")`
Support CAP 3.2 2018-09-07 14:51:41 +00:00
Make CAP functionality more part of the framework and support message-tags and multi-prefix 2018-09-03 10:14:27 +00:00			`def on_cap_ack(self, event):`
			`if "sasl" in event["capabilities"]:`
Support EXTERNAL sasl authentication 2018-09-17 10:31:40 +00:00			`sasl = event["server"].get_setting("sasl")`
			`event["server"].send_authenticate(sasl["mechanism"].upper())`
Make CAP functionality more part of the framework and support message-tags and multi-prefix 2018-09-03 10:14:27 +00:00			`event["server"].wait_for_capability("sasl")`
move sasl logic to it's own module 2018-07-15 22:56:06 +00:00
			`def on_authenticate(self, event):`
			`if event["message"] != "+":`
			`event["server"].send_authenticate("*")`
			`else:`
Support EXTERNAL sasl authentication 2018-09-17 10:31:40 +00:00			`sasl = event["server"].get_setting("sasl")`
			`mechanism = sasl["mechanism"].upper()`

			`if mechanism == "PLAIN":`
			`sasl_nick, sasl_pass = sasl["args"].split(":", 1)`
			`auth_text = "%s\0%s\0%s" % (sasl_nick, sasl_nick, sasl_pass)`
			`elif mechanism == "EXTERNAL":`
			`auth_text = "+"`
			`else:`
			`raise ValueError("unknown sasl mechanism '%s'" % mechanism)`

			`if not auth_text == "+":`
			`auth_text = base64.b64encode(auth_text.encode("utf8"))`
			`auth_text = auth_text.decode("utf8")`
move sasl logic to it's own module 2018-07-15 22:56:06 +00:00			`event["server"].send_authenticate(auth_text)`
Only "finish" a sasl handshake when we get a 900 2018-09-07 15:04:37 +00:00
Handle 904 (ERR_SASLFAIL) in sasl.py 2018-09-17 11:56:41 +00:00			`def _end_sasl(self, server):`
			`server.capability_done("sasl")`
Only "finish" a sasl handshake when we get a 900 2018-09-07 15:04:37 +00:00			`def sasl_success(self, event):`
Handle 904 (ERR_SASLFAIL) in sasl.py 2018-09-17 11:56:41 +00:00			`self._end_sasl(event["server"])`
			`def sasl_success(self, event):`
			`self._end_sasl(event["server"])`