componentmanager: Support the 'disallow_s2s' option for components too (thanks darkho...

[prosody.git] / core / componentmanager.lua

diff --git a/core/componentmanager.lua b/core/componentmanager.lua
index 660d26feef6a07a3516b371c9abef7ed69ee320d..1f0fa81f3d9afcd9bb101a03e3c82a65b7413f20 100644 (file)
--- a/core/componentmanager.lua
+++ b/core/componentmanager.lua
@@ -8,14 +8,16 @@
 
 local prosody = _G.prosody;
 local log = require "util.logger".init("componentmanager");
+local certmanager = require "core.certmanager";
 local configmanager = require "core.configmanager";
 local modulemanager = require "core.modulemanager";
 local jid_split = require "util.jid".split;
-local fire_event = require "core.eventmanager".fire_event;
+local fire_event = prosody.events.fire_event;
 local events_new = require "util.events".new;
 local st = require "util.stanza";
 local prosody, hosts = prosody, prosody.hosts;
 local ssl = ssl;
+local uuid_gen = require "util.uuid".generate;
 
 local pairs, setmetatable, type, tostring = pairs, setmetatable, type, tostring;
 
@@ -40,6 +42,7 @@ function load_enabled_components(config)
                if host ~= "*" and ((host_config.core.enabled == nil or host_config.core.enabled) and type(host_config.core.component_module) == "string") then
                        hosts[host] = create_component(host);
                        hosts[host].connected = false;
+                       disallow_s2s = configmanager.get(host, "core", "disallow_s2s");
                        components[host] = default_component_handler;
                        local ok, err = modulemanager.load(host, host_config.core.component_module);
                        if not ok then
@@ -83,15 +86,16 @@ function create_component(host, component, events)
                if hosts[base_host] then
                        ssl_ctx = hosts[base_host].ssl_ctx;
                        ssl_ctx_in = hosts[base_host].ssl_ctx_in;
-               elseif prosody.global_ssl_ctx then
+               else
                        -- We have no cert, and no parent host to borrow a cert from
                        -- Use global/default cert if there is one
-                       ssl_ctx = ssl.newcontext(prosody.global_ssl_ctx);
-                       ssl_ctx_in = ssl.newcontext(setmetatable({ mode = "server" }, { __index = prosody.global_ssl_ctx }));
+                       ssl_ctx = certmanager.create_context(host, "client");
+                       ssl_ctx_in = certmanager.create_context(host, "server");
                end
        end
        return { type = "component", host = host, connected = true, s2sout = {}, 
-                       ssl_ctx = ssl_ctx, ssl_ctx_in = ssl_ctx_in, events = events or events_new() };
+                       ssl_ctx = ssl_ctx, ssl_ctx_in = ssl_ctx_in, events = events or events_new(),
+                       dialback_secret = configmanager.get(host, "core", "dialback_secret") or uuid_gen() };
 end
 
 function register_component(host, component, session)
@@ -100,12 +104,16 @@ function register_component(host, component, session)
 
                components[host] = component;
                hosts[host] = session or create_component(host, component, old_events);
-               
+
                -- Add events object if not already one
                if not hosts[host].events then
                        hosts[host].events = old_events or events_new();
                end
-               
+
+               if not hosts[host].dialback_secret then
+                       hosts[host].dialback_secret = configmanager.get(host, "core", "dialback_secret") or uuid_gen();
+               end
+
                -- add to disco_items
                if not(host:find("@", 1, true) or host:find("/", 1, true)) and host:find(".", 1, true) then
                        disco_items:set(host:sub(host:find(".", 1, true)+1), host, true);