Mercurial Mercurial > prosody > prosody-modules / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_s2s_auth_compat/mod_s2s_auth_compat.lua
author Matthew Wild <mwild1@gmail.com>
Tue, 18 Jan 2022 17:01:18 +0000
changeset 4880 0f5f2d4475b9
parent 944 21e81fcb8896
permissions -rw-r--r--
mod_http_xep227: Add support for import via APIs rather than direct store manipulation In particular this transitions PEP nodes and data to be imported via mod_pep's APIs, fixing issues with importing at runtime while PEP data may already be live in RAM. Next obvious candidate for this approach is rosters, so clients get immediate roster pushes and other special handling (such as emitting subscribes to reach the desired subscription state).
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
944
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers
Kim Alvefur <zash@zash.se>
parents:
diff changeset 
     1
 
-- COMPAT for Openfire sending stream headers without to or from.
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers
Kim Alvefur <zash@zash.se>
parents:
diff changeset 
     2
 












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     3


module:set_global();












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     4














21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     5


module:hook("s2s-check-certificate", function(event)












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     6


	local session, host = event.session, event.host;












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     7


	if not event.host then












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     8


		(session.log or module._log)("warn", "Invalid stream header, certificate will not be trusted")












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




     9


		session.cert_chain_status = "invalid"












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




    10


		return true












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




    11


	end












21e81fcb8896
mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers



Kim Alvefur <zash@zash.se>


parents: 

diff
changeset




    12


end, 100);














prosody-modules