Mercurial Mercurial > prosody > prosody-modules / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_s2s_auth_compat/mod_s2s_auth_compat.lua
author Kim Alvefur <zash@zash.se>
Sat, 23 Mar 2024 15:44:13 +0100
changeset 5878 f8b9095f7862
parent 944 21e81fcb8896
permissions -rw-r--r--
mod_compat_roles: Fix attempt to index a nil value #1847 permissions[] is not a map with role names as keys since 817bc9873fc2 but instead a level with host names were added. This was likely an oversight. Refactored towards railroad.
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
944
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers
Kim Alvefur <zash@zash.se>
parents:
diff changeset 
     1
 
-- COMPAT for Openfire sending stream headers without to or from.
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers
Kim Alvefur <zash@zash.se>
parents:
diff changeset 
     2
 












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     3


module:set_global();












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     4














21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     5


module:hook("s2s-check-certificate", function(event)












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     6


	local session, host = event.session, event.host;












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     7


	if not event.host then












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     8


		(session.log or module._log)("warn", "Invalid stream header, certificate will not be trusted")












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     9


		session.cert_chain_status = "invalid"












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




    10


		return true












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




    11


	end












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




    12


end, 100);














prosody-modules