Mercurial > prosody-modules
view mod_s2s_auth_compat/mod_s2s_auth_compat.lua @ 5186:fa3059e653fa
mod_http_oauth2: Implement the Implicit flow
Everyone says this is insecure and bad, but it's also the only thing
that makes sense for e.g. pure JavaScript clients, but hey implement
this even more complicated thing instead!
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Thu, 02 Mar 2023 22:06:50 +0100 |
parents | 21e81fcb8896 |
children |
line wrap: on
line source
-- COMPAT for Openfire sending stream headers without to or from. module:set_global(); module:hook("s2s-check-certificate", function(event) local session, host = event.session, event.host; if not event.host then (session.log or module._log)("warn", "Invalid stream header, certificate will not be trusted") session.cert_chain_status = "invalid" return true end end, 100);