POE::Component::Jabber::J2 - POE::Component::Jabber::J2 documentation
Index
Code Index:
NAME
POE::Component::Jabber::J2
SYNOPSIS
PCJ::J2 is a Protocol implementation that is used to connect to the jabberd20
router as a service.
DESCRIPTION
PCJ::J2 implements the jabberd2 component spec located here:
(http://jabberd.jabberstudio.org/dev/docs/component.shtml)
Specifically, PCJ::J2 will negotiate TLS, SASL, and domain binding required
to establish a working connection with jabberd2 as a service.
METHODS
Please see PCJ::Protocol for what methods this class supports.
EVENTS
Listed are the exported events that make their way into the PCJ session:
- set_auth
-
This handles the initial SASL authentication portion of the connection.
- init_input_handler
-
This is our entry point. This is what PCJ uses to deliver events to us.
It handles various responses until the connection is initialized fully.
- build_tls_wheel
-
If TLS is required by the server, this is where that negotiation process
happens.
- challenge_response
-
This handles the subsequent SASL authentication steps.
- binding
-
This handles the domain binding
NOTES AND BUGS
This Protocol may implement the spec, but this spec hasn't been touched in
quite some time. If for some reason my implementation fails against a
particular jabberd2 version, please let me know.
The underlying backend has changed this release to now use a new Node
implementation based on XML::LibXML::Element. Please see POE::Filter::XML::Node
documentation for the relevant API changes.
AUTHOR
Copyright (c) 2003-2009 Nicholas Perez. Distributed under the GPL.
package POE::Component::Jabber::J2;
use warnings;
use strict;
use 5.010;
use POE qw/ Wheel::ReadWrite /;
use POE::Component::SSLify qw/ Client_SSLify /;
use POE::Component::Jabber::Events;
use POE::Filter::XML;
use POE::Filter::XML::Node;
use POE::Filter::XML::NS qw/ :JABBER :IQ /;
use Digest::MD5 qw/ md5_hex /;
use MIME::Base64;
use Authen::SASL;
use base('POE::Component::Jabber::Protocol');
our $VERSION = '3.00';
sub new()
{
my $class = shift;
my $self = {};
$self->{'SSLTRIES'} = 0;
return bless($self, $class);
}
sub get_version()
{
return '1.0';
}
sub get_xmlns()
{
return +NS_JABBER_COMPONENT;
}
sub get_states()
{
return [ 'set_auth', 'init_input_handler', 'challenge_response',
'binding', 'build_tls_wheel' ];
}
sub get_input_event()
{
return 'init_input_handler';
}
sub set_auth()
{
my ($kernel, $heap, $self, $mech) = @_[KERNEL, HEAP, OBJECT, ARG0];
my $config = $heap->config();
my $sasl = Authen::SASL->new
(
mechanism => 'DIGEST_MD5',
callback =>
{
user => $config->{'username'},
pass => $config->{'password'},
}
);
$self->{'challenge'} = $sasl;
my $node = POE::Filter::XML::Node->new('auth',
['xmlns', +NS_XMPP_SASL, 'mechanism', $mech]);
$kernel->yield('output_handler', $node, 1);
return;
}
sub challenge_response()
{
my ($kernel, $heap, $self, $node) = @_[KERNEL, HEAP, OBJECT, ARG0];
my $config = $heap->config();
if ($config->{'debug'}) {
$heap->debug_message(
"Server sent a challenge. Decoded Challenge:\n" .
decode_base64( $node->textContent() )
);
}
my $sasl = $self->{'challenge'};
my $conn = $sasl->client_new("xmpp", $config->{'hostname'});
$conn->client_start();
my $step = $conn->client_step(decode_base64($node->textContent()));
if ($config->{'debug'}) {
$heap->debug_message("Decoded Response:\n$step");
}
if(defined($step))
{
$step =~ s/\s+//go;
$step = encode_base64($step);
$step =~ s/\s+//go;
}
my $response = POE::Filter::XML::Node->new('response', ['xmlns', +NS_XMPP_SASL]);
$response->appendText($step) if defined($step);
$kernel->yield('output_handler', $response, 1);
}
sub init_input_handler()
{
my ($kernel, $heap, $self, $node) = @_[KERNEL, HEAP, OBJECT, ARG0];
my $attrs = $node->getAttributes();
my $config = $heap->config();
my $pending = $heap->pending();
if ($config->{'debug'})
{
$heap->debug_message("Recd: ".$node->toString());
}
if(exists($attrs->{'id'}))
{
if(defined($pending->{$attrs->{'id'}}))
{
my $array = delete $pending->{$attrs->{'id'}};
$kernel->post($array->[0], $array->[1], $node);
return;
}
}
given($node->nodeName())
{
when('stream:stream')
{
$self->{'sid'} = $node->getAttribute('id');
}
when('challenge')
{
$kernel->yield('challenge_response', $node);
}
when('failure')
{
if($node->getAttribute('xmlns') eq +NS_XMPP_SASL)
{
$heap->debug_message('SASL Negotiation Failed');
$kernel->yield('shutdown');
$kernel->post($heap->events(), +PCJ_AUTHFAIL);
}
else
{
$heap->debug_message('Unknown Failure: ' . $node->toString());
}
}
when('stream:features')
{
given($node->getChildrenHash())
{
when('starttls')
{
my $starttls = POE::Filter::XML::Node->new('starttls', ['xmlns', +NS_XMPP_TLS]);
$kernel->yield('output_handler', $starttls, 1);
$kernel->post($heap->events(), +PCJ_SSLNEGOTIATE);
$self->{'STARTTLS'} = 1;
}
when('mechanisms')
{
if(!defined($self->{'STARTTLS'}))
{
$kernel->post($heap->events(), +PCJ_SSLFAIL);
$kernel->yield('shutdown');
return;
}
foreach($_->{'mechanisms'}->[0]->getChildrenByTagName('*'))
{
when($_->textContent() eq 'DIGEST-MD5' or $_->textContent() eq 'PLAIN')
{
$kernel->yield('set_auth', $_->textContent());
$kernel->post($heap->events(), +PCJ_AUTHNEGOTIATE);
return;
}
}
$heap->debug_message('Unknown mechanism: '.$node->toString());
$kernel->yield('shutdown');
$kernel->post($heap->events(), +PCJ_AUTHFAIL);
}
when(sub() { !keys %$_; })
{
if(!defined($self->{'STARTTLS'}))
{
$kernel->post($heap->events(), +PCJ_SSLFAIL);
$kernel->yield('shutdown');
return;
}
my $bind = POE::Filter::XML::Node->new
(
'bind' ,
[
'xmlns', +NS_JABBER_COMPONENT,
'name', $config->{'binddomain'} || $config->{'username'} . '.' . $config->{'hostname'}
]
);
if(defined($config->{'bindoption'}))
{
$bind->appendChild($config->{'bindoption'});
}
$kernel->yield('return_to_sender', 'binding', $bind);
$kernel->post($heap->events(), +PCJ_BINDNEGOTIATE);
}
}
}
when('proceed')
{
$kernel->yield('build_tls_wheel');
$kernel->yield('initiate_stream');
}
when('success')
{
$kernel->yield('initiate_stream');
$kernel->post($heap->events(), +PCJ_AUTHSUCCESS);
}
}
return;
}
sub binding()
{
my ($kernel, $heap, $node) = @_[KERNEL, HEAP, ARG0];
my $attr = $node->getAttribute('error');
my $config = $heap->config();
if(!$attr)
{
$heap->relinquish_states();
$kernel->post($heap->events(), +PCJ_BINDSUCCESS);
$kernel->post($heap->events(), +PCJ_READY);
$heap->jid($config->{'binddomain'} ||
$config->{'username'} . '.' . $config->{'hostname'});
} else {
$heap->debug_message('Unable to BIND, yet binding required: '.
$node->toString());
$kernel->yield('shutdown');
$kernel->post($heap->events(), +PCJ_BINDFAIL);
}
}
sub build_tls_wheel()
{
my ($kernel, $heap, $self) = @_[KERNEL, HEAP, OBJECT];
$heap->wheel(undef);
eval { $heap->sock(Client_SSLify( $heap->sock() ))};
if($@)
{
if($self->{'SSLTRIES'} > 3)
{
$heap->debug_message('Unable to negotiate SSL: '. $@);
$self->{'SSLTRIES'} = 0;
$kernel->post($heap->events(), +PCJ_SSLFAIL, $@);
} else {
$self->{'SSLTRIES'}++;
$kernel->yield('build_tls_wheel');
}
return;
}
$heap->wheel(POE::Wheel::ReadWrite->new
(
'Handle' => $heap->sock(),
'Filter' => POE::Filter::XML->new(),
'InputEvent' => 'init_input_handler',
'ErrorEvent' => 'server_error',
'FlushedEvent' => 'flushed_event',
));
$kernel->post($heap->events(), +PCJ_SSLSUCCESS);
return;
}
1;
__END__