Mercurial > prosody-modules
view mod_disable_tls/mod_disable_tls.lua @ 5210:898575a0c6f3
mod_http_oauth2: Switch to '303 See Other' redirects
This is the recommendation by draft-ietf-oauth-v2-1-07 section 7.5.2. It is
the only redirect code that guarantees the user agent will use a GET request,
rather than re-submitting a POST request to the new URL.
The latter would be bad for us, as we are encoding auth tokens in the form
data.
| author | Matthew Wild <mwild1@gmail.com> |
|---|---|
| date | Mon, 06 Mar 2023 10:37:43 +0000 |
| parents | 25be5fde250f |
| children |
line wrap: on
line source
local disable_tls_ports = module:get_option_set("disable_tls_ports", {}); module:hook("stream-features", function (event) if disable_tls_ports:contains(event.origin.conn:serverport()) then module:log("error", "Disabling TLS for client on port %d", event.origin.conn:serverport()); event.origin.conn.starttls = false; end end, 1000);