Mercurial Mercurial > prosody > prosody-modules / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers
authorKim Alvefur <zash@zash.se>
Mon, 01 Apr 2013 16:08:21 +0200
changeset 944 21e81fcb8896
parent 943 a8203db13ca2
child 945 dbcbcec37d24
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers
mod_s2s_auth_compat/mod_s2s_auth_compat.lua file | annotate | diff | comparison | revisions 
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/mod_s2s_auth_compat/mod_s2s_auth_compat.lua	Mon Apr 01 16:08:21 2013 +0200
@@ -0,0 +1,12 @@
+-- COMPAT for Openfire sending stream headers without to or from.
+
+module:set_global();
+
+module:hook("s2s-check-certificate", function(event)
+	local session, host = event.session, event.host;
+	if not event.host then
+		(session.log or module._log)("warn", "Invalid stream header, certificate will not be trusted")
+		session.cert_chain_status = "invalid"
+		return true
+	end
+end, 100);
prosody-modules