prosody
ee445e658848

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody

Changeset

4258:ee445e658848

mod_legacyauth: Disallow on unencrypted connections by default, heed allow_unencrypted_plain_auth config option (thanks Maranda/Zash)
author Matthew Wild <mwild1@gmail.com>
date Wed, 20 Apr 2011 18:19:28 +0100
parents 4256:2f1397b7b1d5
children 4259:36ac38fd9cbd 4260:403aba5e49d5
files plugins/mod_legacyauth.lua
diffstat 1 files changed, 3 insertions(+), 1 deletions(-) [+]
line wrap: on
line diff
--- a/plugins/mod_legacyauth.lua	Mon Apr 18 20:38:44 2011 +0100
+++ b/plugins/mod_legacyauth.lua	Wed Apr 20 18:19:28 2011 +0100
@@ -11,7 +11,9 @@
 local st = require "util.stanza";
 local t_concat = table.concat;
 
-local secure_auth_only = module:get_option("c2s_require_encryption") or module:get_option("require_encryption");
+local secure_auth_only = module:get_option("c2s_require_encryption")
+	or module:get_option("require_encryption")
+	or not(module:get_option("allow_unencrypted_plain_auth"));
 
 local sessionmanager = require "core.sessionmanager";
 local usermanager = require "core.usermanager";