# HG changeset patch
# User Waqas Hussain <waqas20@gmail.com>
# Date 1287189983 -18000
# Node ID 5cdcd7ee6ef555a90ddc596859602199387c1f0e
# Parent  59cdb9166bd07fea7c9194db4256dbbeb550be7d
mod_legacyauth: Limit authentication to unauthenticated client connections.

diff -r 59cdb9166bd0 -r 5cdcd7ee6ef5 plugins/mod_legacyauth.lua
--- a/plugins/mod_legacyauth.lua	Sat Oct 16 05:41:49 2010 +0500
+++ b/plugins/mod_legacyauth.lua	Sat Oct 16 05:46:23 2010 +0500
@@ -32,6 +32,11 @@
 module:hook("stanza/iq/jabber:iq:auth:query", function(event)
 	local session, stanza = event.origin, event.stanza;
 
+	if session.type ~= "c2s_unauthed" then
+		session.send(st.error_reply(stanza, "cancel", "service-unavailable", "Legacy authentication is only allowed for unauthenticated client connections."));
+		return true;
+	end
+
 	if secure_auth_only and not session.secure then
 		session.send(st.error_reply(stanza, "modify", "not-acceptable", "Encryption (SSL or TLS) is required to connect to this server"));
 		return true;