prosody
898454038524
core/certmanager.lua
Software / code / prosody
Comparison
core/certmanager.lua @ 5377:898454038524
core.*: Complete removal of all traces of the "core" section and section-related code.
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Sat, 23 Mar 2013 02:33:15 +0100 |
| parent | 5287:676a1a032d2f |
| child | 5621:63cfd59999b6 |
comparison
equal
deleted
inserted
replaced
| 5376:ba9be0be4bbb | 5377:898454038524 |
|---|---|
| 25 end | 25 end |
| 26 | 26 |
| 27 module "certmanager" | 27 module "certmanager" |
| 28 | 28 |
| 29 -- Global SSL options if not overridden per-host | 29 -- Global SSL options if not overridden per-host |
| 30 local default_ssl_config = configmanager.get("*", "core", "ssl"); | 30 local default_ssl_config = configmanager.get("*", "ssl"); |
| 31 local default_capath = "/etc/ssl/certs"; | 31 local default_capath = "/etc/ssl/certs"; |
| 32 local default_verify = (ssl and ssl.x509 and { "peer", "client_once", }) or "none"; | 32 local default_verify = (ssl and ssl.x509 and { "peer", "client_once", }) or "none"; |
| 33 local default_options = { "no_sslv2", luasec_has_noticket and "no_ticket" or nil }; | 33 local default_options = { "no_sslv2", luasec_has_noticket and "no_ticket" or nil }; |
| 34 local default_verifyext = { "lsec_continue", "lsec_ignore_purpose" }; | 34 local default_verifyext = { "lsec_continue", "lsec_ignore_purpose" }; |
| 35 | 35 |
| 98 end | 98 end |
| 99 return ctx, err; | 99 return ctx, err; |
| 100 end | 100 end |
| 101 | 101 |
| 102 function reload_ssl_config() | 102 function reload_ssl_config() |
| 103 default_ssl_config = configmanager.get("*", "core", "ssl"); | 103 default_ssl_config = configmanager.get("*", "ssl"); |
| 104 end | 104 end |
| 105 | 105 |
| 106 prosody.events.add_handler("config-reloaded", reload_ssl_config); | 106 prosody.events.add_handler("config-reloaded", reload_ssl_config); |
| 107 | 107 |
| 108 return _M; | 108 return _M; |
