Mercurial Mercurial > prosody > prosody / diff
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
util/prosodyctl/check.lua
changeset 13329 f32faaea3461
parent 13328 6f371066d6e0
child 13330 76b6556c0f67 
--- a/util/prosodyctl/check.lua	Mon Nov 13 09:43:54 2023 +0100
+++ b/util/prosodyctl/check.lua	Mon Nov 13 09:44:40 2023 +0100
@@ -1177,9 +1177,9 @@
 							print("    Not valid for client connections to "..host..".")
 							cert_ok = false
 						end
-						if modules:contains("s2s") and (not (api(host):get_option_boolean("anonymous_login", false)
-							or api(host):get_option_string("authentication", "internal_hashed") == "anonymous"))
-							and not x509_verify_identity(host, "_xmpp-server", cert) then
+						local anon = api(host):get_option_string("authentication", "internal_hashed") == "anonymous";
+						local anon_s2s = api(host):get_option_boolean("allow_anonymous_s2s", false);
+						if modules:contains("s2s") and (anon_s2s or not anon) and not x509_verify_identity(host, "_xmpp-server", cert) then
 							print("    Not valid for server-to-server connections to "..host..".")
 							cert_ok = false
 						end
prosody