From baf426040d71b747f4e42b241a83baa6a49bf18b Mon Sep 17 00:00:00 2001
From: Kim Alvefur <zash@zash.se>
Date: Fri, 4 Jul 2014 23:04:56 +0200
Subject: [PATCH 1/1] mod_dialback.lua: Only check certificates on secure
 connections

---
 plugins/mod_dialback.lua | 14 ++++++++------
 1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/plugins/mod_dialback.lua b/plugins/mod_dialback.lua
index fa6b6dbc..15e24281 100644
--- a/plugins/mod_dialback.lua
+++ b/plugins/mod_dialback.lua
@@ -82,12 +82,14 @@ module:hook("stanza/jabber:server:dialback:result", function(event)
 		local attr = stanza.attr;
 		local to, from = nameprep(attr.to), nameprep(attr.from);
 
-		if check_cert_status(origin, from) == false then
-			return
-		elseif origin.cert_chain_status == "valid" and origin.cert_identity_status == "valid" then
-			origin.sends2s(st.stanza("db:result", { to = from, from = to, id = attr.id, type = "valid" }));
-			module:fire_event("s2s-authenticated", { session = origin, host = from });
-			return true;
+		if origin.secure then
+			if check_cert_status(origin, from) == false then
+				return
+			elseif origin.cert_chain_status == "valid" and origin.cert_identity_status == "valid" then
+				origin.sends2s(st.stanza("db:result", { to = from, from = to, id = attr.id, type = "valid" }));
+				module:fire_event("s2s-authenticated", { session = origin, host = from });
+				return true;
+			end
 		end
 
 		if not hosts[to] then
-- 
2.30.2