# HG changeset patch
# User Matthew Wild <mwild1@gmail.com>
# Date 1336779184 -3600
# Node ID 8974a9b7363f86163bfbc8bc24f6cecc0f26c2f9
# Parent  d1cfdb137b034a82fa2c9d4c11a8014b3a727b04
stanza_router: Remove FIXME comment and close stream with not-authorized for s2s stanzas from unauthed domains

diff -r d1cfdb137b03 -r 8974a9b7363f core/stanza_router.lua
--- a/core/stanza_router.lua	Sat May 12 00:31:48 2012 +0100
+++ b/core/stanza_router.lua	Sat May 12 00:33:04 2012 +0100
@@ -109,7 +109,8 @@
 			local host_status = origin.hosts[from_host];
 			if not host_status or not host_status.authed then -- remote server trying to impersonate some other server?
 				log("warn", "Received a stanza claiming to be from %s, over a stream authed for %s!", from_host, origin.from_host);
-				return; -- FIXME what should we do here? does this work with subdomains?
+				origin:close("not-authorized");
+				return;
 			elseif not hosts[to_host] then
 				log("warn", "Remote server %s sent us a stanza for %s, closing stream", origin.from_host, to_host);
 				origin:close("host-unknown");