Allow disabling a STS policy for users in specific connect classes.

Fixes #1634.
2025-03-09 18:49:03 -04:00 · 2019-05-11 14:29:54 +01:00 · 2019-05-11 14:29:54 +01:00 · 31340d50a4
commit 31340d50a4
parent e48d068769
2 changed files with 12 additions and 0 deletions
--- a/docs/conf/inspircd.conf.example
+++ b/docs/conf/inspircd.conf.example
@ -291,6 +291,10 @@
         # useident: Defines if users in this class MUST respond to a ident query or not.
         useident="no"

+         # usests: Whether a STS policy should be advertised to users in this class.
+         # This setting only has effect when the ircv3_sts module is loaded.
+         #usests="no"
+
         # webirc: Restricts usage of this class to the specified WebIRC gateway.
         # This setting only has effect when the cgiirc module is loaded.
         #webirc="name"
@ -419,6 +423,10 @@
         # useident: Defines if users in this class must respond to a ident query or not.
         useident="no"

+         # usests: Whether a STS policy should be advertised to users in this class.
+         # This setting only has effect when the ircv3_sts module is loaded.
+         #usests="no"
+
         # limit: How many users are allowed in this class
         limit="5000"

--- a/src/modules/m_ircv3_sts.cpp
+++ b/src/modules/m_ircv3_sts.cpp
@ -35,6 +35,10 @@ class STSCap : public Cap::Capability
 		if (GetProtocol(user) == Cap::CAP_LEGACY)
 			return false;

+		// Don't send the cap to clients in a class which has STS disabled.
+		if (user->GetClass()->config->getBool("usests", true))
+			return false;
+
 		// Plaintext listeners have their own policy.
 		SSLIOHook* sslhook = SSLIOHook::IsSSL(&user->eh);
 		if (!sslhook)