Mercurial > prosody-modules
diff mod_auth_ccert/mod_auth_ccert.lua @ 1063:b2a4679e7d20
mod_auth_ccert: Accidentally not
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Thu, 13 Jun 2013 21:27:41 +0200 |
parents | f853a1a3aa15 |
children | 3d04d9377a67 |
line wrap: on
line diff
--- a/mod_auth_ccert/mod_auth_ccert.lua Thu Jun 13 21:25:12 2013 +0200 +++ b/mod_auth_ccert/mod_auth_ccert.lua Thu Jun 13 21:27:41 2013 +0200 @@ -13,7 +13,7 @@ function get_sasl_handler(session) return new_sasl(module.host, { external = session.secure and function(authz) - if session.secure then + if not session.secure then -- getpeercertificate() on a TCP connection would be bad, abort! (session.log or log)("error", "How did you manage to select EXTERNAL without TLS?"); return nil, false;