prosody
6ea3cafb6ac3
plugins/mod_s2s/mod_s2s.lua

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody

Diff

plugins/mod_s2s/mod_s2s.lua @ 9852:6ea3cafb6ac3

core.certmanager: Do not ask for client certificates by default Since it's mostly only mod_s2s that needs to request client certificates it makes some sense to have mod_s2s ask for this, instead of having eg mod_http ask to disable it.
author Kim Alvefur <zash@zash.se>
date Sun, 10 Mar 2019 19:58:28 +0100
parent 9784:7fa273f8869e
child 9854:115b5e32d960
line wrap: on
line diff
--- a/plugins/mod_s2s/mod_s2s.lua	Sun Mar 10 19:32:33 2019 +0100
+++ b/plugins/mod_s2s/mod_s2s.lua	Sun Mar 10 19:58:28 2019 +0100
@@ -738,6 +738,9 @@
 	listener = listener;
 	default_port = 5269;
 	encryption = "starttls";
+	ssl_config = {
+		verify = { "peer", "client_once", };
+	};
 	multiplex = {
 		pattern = "^<.*:stream.*%sxmlns%s*=%s*(['\"])jabber:server%1.*>";
 	};