decentral1se
6dd5a3b0fc
Merge branch 'master' into ccchaos
2021-12-11 17:53:24 +01:00
e5d493483e
prosody: Bump prosody-modules for bugfix in 4abb33a15897
2021-11-19 17:02:09 +00:00
fbc5a46c43
prosody: Bump prosody-modules for bugfix in fd90925dc239
2021-11-18 09:09:05 +00:00
ad694d6436
prosody: Enable mod_measure_active_users
...
This allows an operator (via Prometheus, or eventually the web portal) to keep
tabs on how many people are using the server, e.g. to assist with capacity
planning. This will become more important once we allow user-to-user account
invitations.
2021-11-17 13:51:05 +00:00
569fce239c
prosody: Switch to and enable mod_lastlog2
...
This records a timestamp of various account events - account registration
time, last connection and last disconnection.
In the future I would like to keep a time-limited record of account activity
so we can also present it to the user for security purposes (e.g. detecting
account compromise and access by third-parties). That will need additional
design work to figure out how to do it in a privacy-preserving way.
2021-11-17 13:47:42 +00:00
17444cc3bd
prosody: Enable push notifications for offline group members by default
...
This avoids the app needing to gain logic to opt-in to push notifications.
Such logic may be fragile, and introduce additional traffic and round-trips
that would hurt performance.
Note that this will trigger pushes even to users who only use Android or
non-mobile devices. That should cause no issues, and the impact would be
minor. Also considering that non-iOS devices usually remain online most of the
time anyway.
Not accounted for in this commit is the MUC notification filtering side of
things. By default the MUC will push all messages, and
mod_cloud_notify(_filters) will allow all of them through to the device unless
the user explicitly configures otherwise within the app.
If the server can detect whether a MUC is public or private, it can make the
default behaviour more sensible (maybe when adding bookmarks or something?).
In any case, public channels are not a primary use-case for Snikket and can
easily be configured manually in the app for now.
2021-11-16 16:08:16 +00:00
a24eddab8b
prosody: Add symlink for mod_muc_offline_delivery
2021-11-15 14:15:56 +00:00
fb518da3c8
Merge branch 'master' into fix/restricted-users
2021-11-12 21:45:38 +00:00
a2714fc178
prosody: Bump to build 1540 for role improvements
...
This change will disconnect user sessions when their role changes, ensuring
appropriate policies are always enforced.
2021-11-12 15:58:34 +00:00
ce14c8153b
prosody: Load mod_snikket_restricted_users on main host
2021-11-12 15:56:52 +00:00
08080f03b9
prosody: Show Snikket domain in admin shell prompt
2021-11-12 13:43:50 +00:00
e19b0a32af
prosody: Tune GC to be more aggressive by default
...
It appears that, in some environments at least, large file uploads can still
cause a significant increase in RAM. This reduces that effect.
It is expected that a future release will switch to Lua 5.4, which has shown
to have far better GC behaviour.
2021-11-11 14:40:09 +00:00
631c3acc99
Merge pull request #72 from snikket-im/restricted-users
...
Restrictions for restricted users
2021-11-09 16:21:39 +00:00
ca242ce8a4
prosody: Add 16 bytes to upload limit to allow for appended GCM tag (XEP-0454)
2021-11-09 14:25:56 +00:00
40daaa883b
prosody: Disable user invitations for restricted users
...
Note that this currently has no effect, because user and contact invitations
are disabled globally for non-admins.
2021-11-09 12:01:59 +00:00
263d5cf286
prosody: Bump to trunk build 1535 + prosody-modules 8bd36bba2292
2021-11-09 11:51:16 +00:00
2f997d50b5
prosody: Enable mod_snikket_restricted_users on MUC host to enforce channel creation
2021-11-09 11:23:19 +00:00
0294b0e7e0
prosody: Prevent restricted users from creating public channels ( #37 )
2021-11-08 16:13:07 +00:00
5dddfeb876
prosody: Prevent federation for users with prosody:restricted role ( #37 )
2021-11-08 12:51:14 +00:00
00ad72bcf1
prosody: add symlink for mod_cloud_notify_extensions
2021-11-02 12:52:51 +00:00
d8577e0e57
Awful scary changes to Prosody SSL config
2021-10-31 16:57:01 +02:00
7605046cb0
don't merge: add certificate path conf for prosody
2021-10-30 23:31:54 +02:00
b1af112f15
don't merge: ho ho now we have variables
2021-10-30 22:58:21 +02:00
dae151c7c9
prosody: Add new module to load push registration for new sessions
2021-10-18 14:17:20 +01:00
ff38924c47
Merge pull request #71 from Zash/repo-filename
...
Specify a filename for repository
2021-10-18 13:52:15 +01:00
adb1fb92ae
prosody: Bump prosody-modules for cloud_notify improvements
2021-10-18 13:51:55 +01:00
83c757c786
prosody: Add module to expose stable client id across sessions
2021-10-18 13:50:36 +01:00
30e05e8754
Specify a filename for repository
...
So that it stays the same even if the URL is changed.
2021-10-18 14:15:32 +02:00
deddef38f2
prosody: Use new cloud_notify_extensions meta-module
2021-10-16 21:23:05 +01:00
f6cf8f2645
prosody: Add mod_muc_offline_delivery for group notifications on iOS
2021-10-16 21:23:05 +01:00
7f94dd21bc
Update prosody + prosody-modules
2021-10-16 21:23:05 +01:00
88b61461cc
prosody: more consistent environment variable import
2021-10-14 14:35:42 +01:00
03f0bb2bd9
prosody: Allow configuration of global upload storage quota
2021-10-14 14:16:04 +01:00
6852c37111
prosody: Bump per-upload limit from 16MB to 100MB
2021-10-14 14:14:48 +01:00
dabfaa2132
Fix incorrect config option
...
Both the docs [1] and the code [2] of mod_http_file_share agree that it
should be `http_file_share_size_limit`, not
`http_file_share_file_size_limit`.
[1]: https://prosody.im/doc/modules/mod_http_file_share#larger-files
[2]: https://hg.prosody.im/trunk/file/default/plugins/mod_http_file_share.lua#l35
2021-10-06 17:43:30 +02:00
78b3d4e7e4
ansible: Update Prosody and prosody-modules
...
Specifically for cloud_notify and mod_message fixes to support MUC push
notifications.
2021-09-26 11:56:59 +01:00
bd10b2a861
Update luaunbound source URL while code.zash.se is offline
2021-08-27 07:49:37 +01:00
2c3ca07ee0
Add and enable mod_spam_reporting/mod_watch_spam_reports
2021-08-26 19:42:26 +01:00
d0149e52df
Merge pull request #49 from Zash/mod_http_file_share
...
Switch to mod_http_file_share
2021-08-06 15:59:28 +01:00
3152aa8ba2
Merge pull request #45 from horazont/feature/turnserver-port-range
...
Make TURN server port range configurable
2021-08-06 12:22:28 +01:00
5b8d22a2f1
Make TURN server port range configurable
...
Fixes #32 ; see there and in the text for details and rationale.
2021-08-02 17:04:32 +02:00
37f2af4acd
Switch to mod_http_file_share
...
More future-proof, allowing for larger uploads.
2021-07-31 21:05:09 +02:00
89b8c7dfc7
create-invite: Fix that --qr was also passed to prosodyctl
2021-07-31 20:54:31 +02:00
a163990ef8
ansible/scripts: Install qrencode
...
Used by create-invite when called with --qr
2021-07-31 20:54:31 +02:00
ff977f55b5
Allow to load the prometheus exposition module based on env vars
...
Useful for monitoring.
2021-05-27 18:08:26 +02:00
690f58bb27
Expose prosody metrics to the web portal
...
This requires mod_measure_process loaded and a recent version
of mod_http_admin_api to expose the metrics to the web portal in
a reduced and specialized form.
2021-05-27 18:08:26 +02:00
1bc336d933
Bump prosody-modules to 8e58a1b78336
2021-05-17 21:22:54 +01:00
a948cc141f
Install latest prosody from deb, factor out variables
2021-05-17 21:22:01 +01:00
3cab4faaf9
prosody: Allow specifying additional config include path via environment
2021-03-17 15:22:30 +00:00
bd5329c84d
prosody: Allow specification of external TURN via environment
2021-03-17 15:16:27 +00:00
decentral1se
Matthew Wild
3wc
Kim Alvefur
Jonas Schäfer