# This file is part of Gajim. # # Gajim is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published # by the Free Software Foundation; version 3 only. # # Gajim is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with Gajim. If not, see . # XEP-0070: Verifying HTTP Requests via XMPP import logging import nbxmpp from gajim.common import app from gajim.common.nec import NetworkIncomingEvent log = logging.getLogger('gajim.c.m.http_auth') class HTTPAuth: def __init__(self, con): self._con = con self._account = con.name self.handlers = [ ('iq', self.answer_request, 'get', nbxmpp.NS_HTTP_AUTH), ('message', self.answer_request, '', nbxmpp.NS_HTTP_AUTH) ] def answer_request(self, con, stanza): log.info('Auth request received') auto_answer = app.config.get_per( 'accounts', self._account, 'http_auth') if auto_answer in ('yes', 'no'): self.build_http_auth_answer(stanza, auto_answer) raise nbxmpp.NodeProcessed iq_id = stanza.getTagAttr('confirm', 'id') method = stanza.getTagAttr('confirm', 'method') url = stanza.getTagAttr('confirm', 'url') # In case it's a message with a body msg = stanza.getTagData('body') app.nec.push_incoming_event( HttpAuthReceivedEvent(None, conn=self._con, iq_id=iq_id, method=method, url=url, msg=msg, stanza=stanza)) raise nbxmpp.NodeProcessed def build_http_auth_answer(self, stanza, answer): if answer == 'yes': log.info('Auth request approved') confirm = stanza.getTag('confirm') reply = stanza.buildReply('result') if stanza.getName() == 'message': reply.addChild(node=confirm) self._con.connection.send(reply) elif answer == 'no': log.info('Auth request denied') err = nbxmpp.Error(stanza, nbxmpp.protocol.ERR_NOT_AUTHORIZED) self._con.connection.send(err) class HttpAuthReceivedEvent(NetworkIncomingEvent): name = 'http-auth-received' def get_instance(*args, **kwargs): return HTTPAuth(*args, **kwargs), 'HTTPAuth'