diff options
author | Kim Alvefur <zash@zash.se> | 2014-01-15 22:47:50 +0100 |
---|---|---|
committer | Kim Alvefur <zash@zash.se> | 2014-01-15 22:47:50 +0100 |
commit | ad7e898be12b8592c20b0ee92f614c23f97de2b9 (patch) | |
tree | f844fb18c60bdb75c3b6fff8129bc8e5b1a0dbb1 /plugins/mod_tls.lua | |
parent | adc050b555c7a8910344617fcedfc504b6dab0c8 (diff) | |
download | prosody-ad7e898be12b8592c20b0ee92f614c23f97de2b9.tar.gz prosody-ad7e898be12b8592c20b0ee92f614c23f97de2b9.zip |
mod_tls: Let s2s_secure_auth override s2s_require_encryption and warn if they differ
Diffstat (limited to 'plugins/mod_tls.lua')
-rw-r--r-- | plugins/mod_tls.lua | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/plugins/mod_tls.lua b/plugins/mod_tls.lua index 6db02c2c..2741b8d4 100644 --- a/plugins/mod_tls.lua +++ b/plugins/mod_tls.lua @@ -13,6 +13,12 @@ local st = require "util.stanza"; local c2s_require_encryption = module:get_option("c2s_require_encryption") or module:get_option("require_encryption"); local s2s_require_encryption = module:get_option("s2s_require_encryption"); local allow_s2s_tls = module:get_option("s2s_allow_encryption") ~= false; +local s2s_secure_auth = module:get_option("s2s_secure_auth"); + +if s2s_secure_auth and s2s_require_encryption == false then + module:log("warn", "s2s_secure_auth implies s2s_require_encryption, but s2s_require_encryption is set to false"); + s2s_require_encryption = true; +end local xmlns_starttls = 'urn:ietf:params:xml:ns:xmpp-tls'; local starttls_attr = { xmlns = xmlns_starttls }; |