Kim Alvefur
ffa5d0e24c
Improve efficiency of random secret generation
...
Reading untold amounts of data and throwing away all except \~86% seems
wasteful.
This method reads exactly 32 bytes from /dev/urandom, while the previous
method would have stuffed pipes full before finding 32 bytes in the
specified range. All of the entropy of those 32 bytes are also kept in
the base64 form, although this is probably insane overkill.
2020-05-21 17:57:26 +02:00
Matthew Wild
ec33e74684
ansible, docker: Improve turnserver secret generation
...
The original implementation unintentionally included whitespace
and other noise in the secret file.
The new secret is stored in a -v2 file, the old one is cleaned up
if present.
2020-05-21 16:24:29 +01:00
Matthew Wild
4a0ca2b2d7
ansible: Disable TCP relaying for TURN
...
This is not used in XMPP today and disabling it reduces
the surface area for security issues.
2020-05-20 16:06:06 +01:00
Matthew Wild
73b709ff14
docs: Add initial documentation
2020-05-18 11:35:37 +01:00
Matthew Wild
57f4310b2d
Github: Calculate correct image tag to push
2020-05-13 16:21:30 +01:00
Matthew Wild
36758551ab
Github: Yet another attempt at fixing YAML nonsense
2020-05-13 16:13:09 +01:00
Matthew Wild
3d22748cd2
Github: Fix command syntax
2020-05-13 15:24:59 +01:00
Matthew Wild
481d5b610f
Github: Add debug message to build
2020-05-13 15:21:02 +01:00
Matthew Wild
ef86fa5b1f
CHANGELOG fixes
2020-05-13 14:38:50 +01:00
Matthew Wild
266fcdf08e
prosody: Fix incorrect JID of general group
2020-05-13 14:26:58 +01:00
Matthew Wild
dd842bd064
Github: Fix docker build arguments
2020-05-13 14:16:55 +01:00
Matthew Wild
d948fd3dec
Github: Fix release tag pattern
2020-05-13 14:14:27 +01:00
Matthew Wild
6ccb30867c
Github: Add workflow for building release images when tagged
2020-05-13 14:11:28 +01:00
Matthew Wild
6ca7602882
Github: Set correct version when building container, only build master
2020-05-13 13:58:04 +01:00
Matthew Wild
7aa2468099
docker: Switch default BUILD_SERIES to dev
2020-05-13 13:57:22 +01:00
Matthew Wild
c24726176f
Add CHANGELOG
2020-05-13 12:59:25 +01:00
Matthew Wild
cb853ed32f
Restrict general chat to local users
2020-05-13 12:20:25 +01:00
Matthew Wild
7f128e4672
Merge pull request #6 from snikket-im/coturn
...
Add STUN/TURN support
2020-05-13 12:05:15 +01:00
Matthew Wild
a138488a4c
Merge pull request #2 from Craeckie/master
...
Docker: fixed stop signal not reaching process
2020-05-13 12:02:48 +01:00
Matthew Wild
0793106447
Flesh out coturn config, autodiscover external IP
2020-05-12 15:10:59 +01:00
Matthew Wild
166e000b12
docker-compose, prosody: Switch to host networking for the container
...
This simplifies things in preparation for adding coturn and its large
number of ports.
As Prosody now must listen on the "real" HTTP ports, we had to give
permission to the Lua binary to bind low network ports.
2020-05-12 15:05:42 +01:00
Matthew Wild
88402bb73f
ansible, docker: Initial attempt at adding coturn
2020-04-29 22:39:27 +01:00
root
7dad6e64e1
Docker: fixed stop signal not reaching process
2020-03-05 18:08:13 +01:00
Matthew Wild
68dbcce19b
Create .well-known/acme-challenge with correct perms at startup
2020-02-21 20:36:07 +00:00
Matthew Wild
3c3c2d34ab
chown letsencrypt files at startup to ensure correct permissions
2020-02-21 16:57:56 +00:00
Matthew Wild
1f15d6f886
Ensure letsencrypt has permission to write to .well-known
2020-02-21 16:44:07 +00:00
Matthew Wild
c30b7310aa
Add support for PUID/PGID and create necessary directories in /snikket
...
This is useful when e.g. mounting an existing directory instead of a
docker-managed volume.
2020-02-20 22:00:14 +00:00
Matthew Wild
23d795b1cb
Clarify licensing as Apache 2.0
2020-02-17 17:29:25 +00:00
Matthew Wild
3e5f7203e2
docker: Fix version file path
2020-02-01 05:30:17 +00:00
Matthew Wild
ea4be8d0b9
prosody: Load mod_firewall
2020-01-31 19:58:08 +00:00
Matthew Wild
d31c8f6e24
prosody: Load mod_watchregistrations but don't notify by default
2020-01-31 19:58:08 +00:00
Matthew Wild
8ba1bd6618
prosody: Include custom config if present
2020-01-31 19:58:08 +00:00
Matthew Wild
e2000c351c
Merge pull request #1 from horazont/patch-1
...
Markup fixes for README.md
2020-01-31 14:08:03 +00:00
Jonas Schäfer
9e15ca8f9b
Markup fixes for README.md
2020-01-31 15:07:21 +01:00
Matthew Wild
5c66949ccf
Move Dockerfile back
2020-01-31 14:01:03 +00:00
Matthew Wild
7003f32b90
YAML not collapsing newlines?
2020-01-31 13:59:51 +00:00
Matthew Wild
63a028a4be
Maybe moving the Dockerfile will help?
2020-01-31 13:54:50 +00:00
Matthew Wild
63c3f95915
Debugging Github actions
2020-01-31 13:53:11 +00:00
Matthew Wild
d6157c6a15
Initial commit
2020-01-31 13:46:46 +00:00