aboutsummaryrefslogtreecommitdiffstats
path: root/core
diff options
context:
space:
mode:
authorKim Alvefur <zash@zash.se>2019-11-02 15:39:01 +0100
committerKim Alvefur <zash@zash.se>2019-11-02 15:39:01 +0100
commit625b06a9cbe5c52be80b2ab36a2859694a3f10c7 (patch)
tree960d47def1705d31c48f234fc1974fa7bf510f78 /core
parentfc5957ca423511b31830e8a610e218a6364a78e9 (diff)
downloadprosody-625b06a9cbe5c52be80b2ab36a2859694a3f10c7.tar.gz
prosody-625b06a9cbe5c52be80b2ab36a2859694a3f10c7.zip
core.sessionmanager: Require that client-requested resources pass strict resourceprep
Diffstat (limited to 'core')
-rw-r--r--core/sessionmanager.lua2
1 files changed, 1 insertions, 1 deletions
diff --git a/core/sessionmanager.lua b/core/sessionmanager.lua
index a62db906..6c005fcd 100644
--- a/core/sessionmanager.lua
+++ b/core/sessionmanager.lua
@@ -150,7 +150,7 @@ local function bind_resource(session, resource)
resource = event_payload.resource;
end
- resource = resourceprep(resource or "");
+ resource = resourceprep(resource or "", true);
resource = resource ~= "" and resource or generate_identifier();
--FIXME: Randomly-generated resources must be unique per-user, and never conflict with existing
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-24 23:19:25 +0000