Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | mod_s2s_auth_certs: Remove LuaSec compat that moved to net.server | Kim Alvefur | 2023-11-04 | 1 | -6/+1 |
| | |||||
* | plugins: Prefix module imports with prosody namespace | Kim Alvefur | 2023-03-24 | 1 | -1/+1 |
| | |||||
* | mod_s2s_auth_certs: Validate certificates against secure SRV targets | Kim Alvefur | 2022-12-22 | 1 | -0/+10 |
| | | | | | | | Secure delegation or "Mini-DANE" As with the existing DANE support, only usable in one direction, client certificate authentication will fail if this is relied on. | ||||
* | Revert unintentionally committed parts of 12bd40b8e105 | Kim Alvefur | 2022-12-21 | 1 | -10/+0 |
| | |||||
* | mod_c2s,mod_s2s: Adapt to XEP-xxxx: Stream Limits Advertisement | Kim Alvefur | 2022-10-20 | 1 | -0/+10 |
| | | | | Thanks MattJ | ||||
* | net: isolate LuaSec-specifics | Jonas Schäfer | 2022-04-27 | 1 | -3/+3 |
| | | | | | | | | | | | | | | For this, various accessor functions are now provided directly on the sockets, which reach down into the LuaSec implementation to obtain the information. While this may seem of little gain at first, it hides the implementation detail of the LuaSec+LuaSocket combination that the actual socket and the TLS layer are separate objects. The net gain here is that an alternative implementation does not have to emulate that specific implementation detail and "only" has to expose LuaSec-compatible data structures on the new functions. | ||||
* | mod_s2s_auth_certs: Collect stats on validation results (for #975) | Kim Alvefur | 2021-10-05 | 1 | -0/+4 |
| | |||||
* | mod_s2s_auth_certs: Save chain validation errors for later use | Kim Alvefur | 2019-11-27 | 1 | -0/+1 |
| | |||||
* | Remove COMPAT with temporary luasec fork | Kim Alvefur | 2019-08-25 | 1 | -3/+0 |
| | | | | | The changes in the temporary fork were merged into mainline luasec ca 2013 and included in the 0.5 release in 2014. | ||||
* | mod_s2s_auth_certs: Warn about lack of certificate (Mostly jabberd14 not ↵ | Kim Alvefur | 2014-08-29 | 1 | -29/+32 |
| | | | | sending a client certificate) | ||||
* | mod_s2s_auth_certs: Pick a logging function once and stick with it | Kim Alvefur | 2014-07-25 | 1 | -4/+5 |
| | |||||
* | mod_s2s_auth_certs: Split PKIX based certificate checking from mod_s2s into ↵ | Kim Alvefur | 2014-07-25 | 1 | -0/+45 |
new plugin |