prosody
b877533d4ec9
core/certmanager.lua
Software / code / prosody
File
core/certmanager.lua @ 2554:b877533d4ec9
certmanager: Hello world, I'm come to manage your SSL contexts
| author | Matthew Wild <mwild1@gmail.com> |
|---|---|
| date | Sun, 31 Jan 2010 17:22:59 +0000 |
| child | 2563:1ede33f50ab4 |
line wrap: on
line source
local configmanager = require "core.configmanager"; local ssl = ssl; local ssl_newcontext = ssl.newcontext; local setmetatable = setmetatable; local prosody = prosody; module "certmanager" -- These are the defaults if not overridden in the config local default_ssl_ctx = { mode = "client", protocol = "sslv23", capath = "/etc/ssl/certs", verify = "none", options = "no_sslv2"; }; local default_ssl_ctx_in = { mode = "server", protocol = "sslv23", capath = "/etc/ssl/certs", verify = "none", options = "no_sslv2"; }; local default_ssl_ctx_mt = { __index = default_ssl_ctx }; local default_ssl_ctx_in_mt = { __index = default_ssl_ctx_in }; -- Global SSL options if not overridden per-host local default_ssl_config = configmanager.get("*", "core", "ssl"); function get_context(host, mode, config) local ssl_config = config and config.core.ssl or default_ssl_config; if ssl and ssl_config then return ssl_newcontext(setmetatable(ssl_config, mode == "client" and default_ssl_ctx_mt or default_ssl_ctx_in_mt)); end return nil; end function reload_ssl_config() default_ssl_config = config.get("*", "core", "ssl"); end prosody.events.add_handler("config-reloaded", reload_ssl_config); return _M;
