prosody-modules

b81fd0d22c66

mod_s2s_auth_compat/mod_s2s_auth_compat.lua

Annotate
comparison
diff

help

Software `/` code `/` prosody-modules

Annotate

mod_s2s_auth_compat/mod_s2s_auth_compat.lua @ 5202:b81fd0d22c66

mod_http_oauth2: Calculate client secret expiry in registration response Not actually the client_secret that expires, but the client_id JWT. Returning '0' indicating no expiry was incorrect unless JWT expiry is turned off, which we check for now.

author	Kim Alvefur <zash@zash.se>
date	Sat, 04 Mar 2023 17:06:47 +0100
parent	944:21e81fcb8896

rev	line source
944 21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	1 -- COMPAT for Openfire sending stream headers without to or from.
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	2
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	3 module:set_global();
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	4
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	5 module:hook("s2s-check-certificate", function(event)
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	6 local session, host = event.session, event.host;
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	7 if not event.host then
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	8 (session.log or module._log)("warn", "Invalid stream header, certificate will not be trusted")
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	9 session.cert_chain_status = "invalid"
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	10 return true
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	11 end
21e81fcb8896 mod_s2s_auth_compat: Workaround for Openfire doing EXTERNAL without proper stream headers Kim Alvefur <zash@zash.se> parents: diff changeset	12 end, 100);