File

plugins/mod_tls.lua @ 1213:de66fa750daf

sessionmanager, mod_tls: Mark a session as secure when TLS is active
author Matthew Wild <mwild1@gmail.com>
date Fri, 29 May 2009 14:28:53 +0100
parent 896:2c0b9e3c11c3
child 1219:f14e08a0ae7f
line wrap: on
line source

-- Prosody IM v0.4
-- Copyright (C) 2008-2009 Matthew Wild
-- Copyright (C) 2008-2009 Waqas Hussain
-- 
-- This project is MIT/X11 licensed. Please see the
-- COPYING file in the source package for more information.
--



local st = require "util.stanza";

local xmlns_starttls ='urn:ietf:params:xml:ns:xmpp-tls';

module:add_handler("c2s_unauthed", "starttls", xmlns_starttls,
		function (session, stanza)
			if session.conn.starttls then
				session.send(st.stanza("proceed", { xmlns = xmlns_starttls }));
				session:reset_stream();
				session.conn.starttls();
				session.log("info", "TLS negotiation started...");
				session.secure = false;
			else
				-- FIXME: What reply?
				session.log("warn", "Attempt to start TLS, but TLS is not available on this connection");
			end
		end);
		
local starttls_attr = { xmlns = xmlns_starttls };
module:add_event_hook("stream-features", 
		function (session, features)												
			if session.conn.starttls then
				features:tag("starttls", starttls_attr):up();
			end
		end);