changeset 1063:b2a4679e7d20

mod_auth_ccert: Accidentally not
author Kim Alvefur <zash@zash.se>
date Thu, 13 Jun 2013 21:27:41 +0200
parents f853a1a3aa15
children 5db8debb4531
files mod_auth_ccert/mod_auth_ccert.lua
diffstat 1 files changed, 1 insertions(+), 1 deletions(-) [+]
line wrap: on
line diff
--- a/mod_auth_ccert/mod_auth_ccert.lua	Thu Jun 13 21:25:12 2013 +0200
+++ b/mod_auth_ccert/mod_auth_ccert.lua	Thu Jun 13 21:27:41 2013 +0200
@@ -13,7 +13,7 @@
 function get_sasl_handler(session)
 	return new_sasl(module.host, {
 		external = session.secure and function(authz)
-			if session.secure then
+			if not session.secure then
 				-- getpeercertificate() on a TCP connection would be bad, abort!
 				(session.log or log)("error", "How did you manage to select EXTERNAL without TLS?");
 				return nil, false;