File

mod_readonly/mod_readonly.lua @ 1177:a464261deba8

mod_secure_interfaces: New module to mark c2s sessions on given interfaces as 'secure' without encryption
author Matthew Wild <mwild1@gmail.com>
date Thu, 29 Aug 2013 12:20:20 +0100
parent 750:8133dd5f266a
child 3270:7776c9dc5f37
line wrap: on
line source

local st = require "util.stanza";

local stores = module:get_option("readonly_stores", {
	vcard = { "vcard-temp", "vCard" };
});

local namespaces = {};
for name, namespace in pairs(stores) do
	namespaces[table.concat(namespace, ":")] = name;
end

function prevent_write(event)
	local stanza = event.stanza;
	if stanza.attr.type ~= "set" then return; end
	local xmlns_and_tag = stanza.tags[1].attr.xmlns..":"..stanza.tags[1].name;
	local store_name = namespaces[xmlns_and_tag];
	if store_name then
		module:log("warn", "Preventing modification of %s store by %s", store_name, stanza.attr.from);
		event.origin.send(st.error_reply(stanza, "cancel", "not-allowed", store_name.." data is read-only"));
		return true; -- Block stanza
	end
end

for namespace in pairs(namespaces) do
	module:hook("iq/bare/"..namespace, prevent_write, 200);
end