Mercurial Mercurial > prosody > prosody-modules / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_s2s_auth_compat/mod_s2s_auth_compat.lua
author Kim Alvefur <zash@zash.se>
Sat, 30 Mar 2024 15:10:51 +0100
changeset 5881 70fa3f8de249
parent 944 21e81fcb8896
permissions -rw-r--r--
mod_sasl2_fast: Update reference to now published XEP-0484 (thanks gooya)
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
944
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers
Kim Alvefur <zash@zash.se>
parents:
diff changeset 
     1
 
-- COMPAT for Openfire sending stream headers without to or from.
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers
Kim Alvefur <zash@zash.se>
parents:
diff changeset 
     2
 












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     3


module:set_global();












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     4














21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     5


module:hook("s2s-check-certificate", function(event)












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     6


	local session, host = event.session, event.host;












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     7


	if not event.host then












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     8


		(session.log or module._log)("warn", "Invalid stream header, certificate will not be trusted")












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     9


		session.cert_chain_status = "invalid"












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




    10


		return true












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




    11


	end












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




    12


end, 100);














prosody-modules