prosody-modules
09d6bbd6c8a4
mod_disable_tls/mod_disable_tls.lua

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody-modules

Annotate

mod_disable_tls/mod_disable_tls.lua @ 5185:09d6bbd6c8a4

mod_http_oauth2: Fix treatment of 'redirect_uri' parameter in code flow It's optional and the one stored in the client registration should really be used instead. RFC 6749 says an URI provided as parameter MUST be validated against the stored one but does not say how. Given that the client needs their secret to proceed, it seems fine to leave this for later.
author Kim Alvefur <zash@zash.se>
date Thu, 02 Mar 2023 22:00:42 +0100
parent 1482:25be5fde250f
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
1482
25be5fde250f mod_disable_tls: Default to empty set if disable_tls_ports not present in config (fixes traceback)
Matthew Wild <mwild1@gmail.com>
parents: 1481
diff changeset
1 local disable_tls_ports = module:get_option_set("disable_tls_ports", {});
1481
e10e74583b5f mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset
2
e10e74583b5f mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset
3 module:hook("stream-features", function (event)
e10e74583b5f mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset
4 if disable_tls_ports:contains(event.origin.conn:serverport()) then
e10e74583b5f mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset
5 module:log("error", "Disabling TLS for client on port %d", event.origin.conn:serverport());
e10e74583b5f mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset
6 event.origin.conn.starttls = false;
e10e74583b5f mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset
7 end
e10e74583b5f mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset
8 end, 1000);