Mercurial Mercurial > prosody > prosody / diff
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
plugins/mod_s2s/mod_s2s.lua
changeset 5368 ab31dbb3a415
parent 5365 cd480ea490f1
child 5387 1130887e0d41 
--- a/plugins/mod_s2s/mod_s2s.lua	Fri Mar 22 14:50:43 2013 +0000
+++ b/plugins/mod_s2s/mod_s2s.lua	Fri Mar 22 15:16:22 2013 +0000
@@ -610,14 +610,15 @@
 
 function check_auth_policy(event)
 	local host, session = event.host, event.session;
-	
-	if not secure_auth and secure_domains[host] then
-		secure_auth = true;
-	elseif secure_auth and insecure_domains[host] then
-		secure_auth = false;
+	local must_secure = secure_auth;
+
+	if not must_secure and secure_domains[host] then
+		must_secure = true;
+	elseif must_secure and insecure_domains[host] then
+		must_secure = false;
 	end
 	
-	if secure_auth and not session.cert_identity_status then
+	if must_secure and not session.cert_identity_status then
 		module:log("warn", "Forbidding insecure connection to/from %s", host);
 		session:close(false);
 		return false;
prosody