Software / code / prosody-modules
Changeset
4892:8dbaa5e753f3
mod_graceful_shutdown: Deactivate direct TLS c2s along with plain c2s
Stops clients from reconnecting that way after their sessions are closed
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Fri, 11 Feb 2022 16:11:55 +0100 |
| parents | 4891:99cdc7cde150 |
| children | 4893:d4ce29c772ac |
| files | mod_graceful_shutdown/mod_graceful_shutdown.lua |
| diffstat | 1 files changed, 3 insertions(+), 0 deletions(-) [+] |
line wrap: on
line diff
--- a/mod_graceful_shutdown/mod_graceful_shutdown.lua Wed Feb 09 18:16:33 2022 +0100 +++ b/mod_graceful_shutdown/mod_graceful_shutdown.lua Fri Feb 11 16:11:55 2022 +0100 @@ -20,6 +20,9 @@ coroutine.yield(true, "shutdown initiated"); -- Close c2s ports, stop accepting new connections portman.deactivate("c2s"); + portman.deactivate("legacy_ssl"); + portman.deactivate("c2s_direct_tls"); + -- Close all c2s sessions for _, sess in pairs(prosody.full_sessions) do sess:close{ condition = "system-shutdown", text = reason }
