Software / code / prosody-modules
Annotate
mod_disable_tls/mod_disable_tls.lua @ 4340:7cd3b7ec59e9
mod_http_oauth2: Rudimentary support for scopes (but not really)
We don't support limiting access, but this change will inform the
client what permissions the created token has (e.g. is the user an
admin or not).
There is some work in progress on real scope support.
| author | Matthew Wild <mwild1@gmail.com> |
|---|---|
| date | Sat, 16 Jan 2021 19:47:22 +0000 |
| parent | 1482:25be5fde250f |
| rev | line source |
|---|---|
|
1482
25be5fde250f
mod_disable_tls: Default to empty set if disable_tls_ports not present in config (fixes traceback)
Matthew Wild <mwild1@gmail.com>
parents:
1481
diff
changeset
|
1 local disable_tls_ports = module:get_option_set("disable_tls_ports", {}); |
|
1481
e10e74583b5f
mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
2 |
|
e10e74583b5f
mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
3 module:hook("stream-features", function (event) |
|
e10e74583b5f
mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
4 if disable_tls_ports:contains(event.origin.conn:serverport()) then |
|
e10e74583b5f
mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
5 module:log("error", "Disabling TLS for client on port %d", event.origin.conn:serverport()); |
|
e10e74583b5f
mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
6 event.origin.conn.starttls = false; |
|
e10e74583b5f
mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
7 end |
|
e10e74583b5f
mod_disable_tls: New module to disable c2s TLS by port number
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
8 end, 1000); |
