diff options
| author | Kim Alvefur <zash@zash.se> | 2021-12-25 16:23:40 +0100 |
|---|---|---|
| committer | Kim Alvefur <zash@zash.se> | 2021-12-25 16:23:40 +0100 |
| commit | 73d1bb12184cd5bc91c5996ecc574149d9637d73 (patch) | |
| tree | 81534ac655eabbfb6d3ede66ed7a31762da7d2fd /plugins/mod_tls.lua | |
| parent | a02e872f8651ea4729697bd7ccc88f7f952c3f04 (diff) | |
| download | prosody-73d1bb12184cd5bc91c5996ecc574149d9637d73.tar.gz prosody-73d1bb12184cd5bc91c5996ecc574149d9637d73.zip | |
various: Require encryption by default for real
These options have been specified (and enabled) in the default config file for
a long time. However if unspecified in the config, they were not enabled. Now
they are.
This may result in a change of behaviour for people using very old config
files that lack the require_encryption options. But that's what we want.
Diffstat (limited to 'plugins/mod_tls.lua')
| -rw-r--r-- | plugins/mod_tls.lua | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/plugins/mod_tls.lua b/plugins/mod_tls.lua index 9b80486a..afc1653a 100644 --- a/plugins/mod_tls.lua +++ b/plugins/mod_tls.lua @@ -10,8 +10,8 @@ local create_context = require "core.certmanager".create_context; local rawgetopt = require"core.configmanager".rawget; local st = require "util.stanza"; -local c2s_require_encryption = module:get_option("c2s_require_encryption", module:get_option("require_encryption")); -local s2s_require_encryption = module:get_option("s2s_require_encryption"); +local c2s_require_encryption = module:get_option("c2s_require_encryption", module:get_option("require_encryption", true)); +local s2s_require_encryption = module:get_option("s2s_require_encryption", true); local allow_s2s_tls = module:get_option("s2s_allow_encryption") ~= false; local s2s_secure_auth = module:get_option("s2s_secure_auth"); |