2 * InspIRCd -- Internet Relay Chat Daemon
4 * Copyright (C) 2009 Daniel De Graaf <danieldg@inspircd.org>
5 * Copyright (C) 2007 Robin Burchell <robin+git@viroteck.net>
6 * Copyright (C) 2007 Dennis Friis <peavey@inspircd.org>
7 * Copyright (C) 2006 Craig Edwards <craigedwards@brainbox.cc>
8 * Copyright (C) 2006 Oliver Lupton <oliverlupton@gmail.com>
10 * This file is part of InspIRCd. InspIRCd is free software: you can
11 * redistribute it and/or modify it under the terms of the GNU General Public
12 * License as published by the Free Software Foundation, version 2.
14 * This program is distributed in the hope that it will be useful, but WITHOUT
15 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
16 * FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
19 * You should have received a copy of the GNU General Public License
20 * along with this program. If not, see <http://www.gnu.org/licenses/>.
25 #include "modules/ssl.h"
27 /* $ModDesc: Provides channel mode +z to allow for Secure/SSL only channels */
29 /** Handle channel mode +z
31 class SSLMode : public ModeHandler
34 SSLMode(Module* Creator) : ModeHandler(Creator, "sslonly", 'z', PARAM_NONE, MODETYPE_CHANNEL) { }
36 ModeAction OnModeChange(User* source, User* dest, Channel* channel, std::string ¶meter, bool adding)
40 if (!channel->IsModeSet('z'))
44 const UserMembList* userlist = channel->GetUsers();
45 for(UserMembCIter i = userlist->begin(); i != userlist->end(); i++)
47 UserCertificateRequest req(i->first, creator);
49 if(!req.cert && !ServerInstance->ULine(i->first->server))
51 source->WriteNumeric(ERR_ALLMUSTSSL, "%s %s :all members of the channel must be connected via SSL", source->nick.c_str(), channel->name.c_str());
52 return MODEACTION_DENY;
56 channel->SetMode('z',true);
57 return MODEACTION_ALLOW;
61 return MODEACTION_DENY;
66 if (channel->IsModeSet('z'))
68 channel->SetMode('z',false);
69 return MODEACTION_ALLOW;
72 return MODEACTION_DENY;
77 class ModuleSSLModes : public Module
88 void init() CXX11_OVERRIDE
90 ServerInstance->Modules->AddService(sslm);
91 Implementation eventlist[] = { I_OnUserPreJoin, I_OnCheckBan, I_On005Numeric };
92 ServerInstance->Modules->Attach(eventlist, this, sizeof(eventlist)/sizeof(Implementation));
95 ModResult OnUserPreJoin(LocalUser* user, Channel* chan, const std::string& cname, std::string& privs, const std::string& keygiven) CXX11_OVERRIDE
97 if(chan && chan->IsModeSet('z'))
99 UserCertificateRequest req(user, this);
104 return MOD_RES_PASSTHRU;
109 user->WriteServ( "489 %s %s :Cannot join channel; SSL users only (+z)", user->nick.c_str(), cname.c_str());
114 return MOD_RES_PASSTHRU;
117 ModResult OnCheckBan(User *user, Channel *c, const std::string& mask) CXX11_OVERRIDE
119 if ((mask.length() > 2) && (mask[0] == 'z') && (mask[1] == ':'))
121 UserCertificateRequest req(user, this);
123 if (req.cert && InspIRCd::Match(req.cert->GetFingerprint(), mask.substr(2)))
126 return MOD_RES_PASSTHRU;
129 void On005Numeric(std::map<std::string, std::string>& tokens) CXX11_OVERRIDE
131 tokens["EXTBAN"].push_back('z');
134 Version GetVersion() CXX11_OVERRIDE
136 return Version("Provides channel mode +z to allow for Secure/SSL only channels", VF_VENDOR);
140 MODULE_INIT(ModuleSSLModes)
projects / user / henk / code / inspircd.git / blob