prosody
8e98a58ab6a3
prosody.cfg.lua.dist

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody

Comparison

prosody.cfg.lua.dist @ 5409:8e98a58ab6a3

prosody.cfg.lua.dist: Update with new options and comments
author Matthew Wild <mwild1@gmail.com>
date Mon, 01 Apr 2013 14:51:42 +0100
parent 5293:fe9215155453
child 5573:ca9f99f7dcbc
comparison
equal deleted inserted replaced
5408:767ecb0091a6 5409:8e98a58ab6a3
39 "disco"; -- Service discovery 39 "disco"; -- Service discovery
40 40
41 -- Not essential, but recommended 41 -- Not essential, but recommended
42 "private"; -- Private XML storage (for room bookmarks, etc.) 42 "private"; -- Private XML storage (for room bookmarks, etc.)
43 "vcard"; -- Allow users to set vCards 43 "vcard"; -- Allow users to set vCards
44
45 -- These are commented by default as they have a performance impact
44 --"privacy"; -- Support privacy lists 46 --"privacy"; -- Support privacy lists
45 --"compression"; -- Stream compression 47 --"compression"; -- Stream compression
46 48
47 -- Nice to have 49 -- Nice to have
48 "version"; -- Replies to server version requests 50 "version"; -- Replies to server version requests
49 "uptime"; -- Report how long server has been running 51 "uptime"; -- Report how long server has been running
50 "time"; -- Let others know the time here on this server 52 "time"; -- Let others know the time here on this server
51 "ping"; -- Replies to XMPP pings with pongs 53 "ping"; -- Replies to XMPP pings with pongs
52 "pep"; -- Enables users to publish their mood, activity, playing music and more 54 "pep"; -- Enables users to publish their mood, activity, playing music and more
53 "register"; -- Allow users to register on this server using a client and change passwords 55 "register"; -- Allow users to register on this server using a client and change passwords
54 "adhoc"; -- Support for "ad-hoc commands" that can be executed with an XMPP client
55 56
56 -- Admin interfaces 57 -- Admin interfaces
57 "admin_adhoc"; -- Allows administration via an XMPP client that supports ad-hoc commands 58 "admin_adhoc"; -- Allows administration via an XMPP client that supports ad-hoc commands
58 --"admin_telnet"; -- Opens telnet console interface on localhost port 5582 59 --"admin_telnet"; -- Opens telnet console interface on localhost port 5582
59 60
69 --"watchregistrations"; -- Alert admins of registrations 70 --"watchregistrations"; -- Alert admins of registrations
70 --"motd"; -- Send a message to users when they log in 71 --"motd"; -- Send a message to users when they log in
71 --"legacyauth"; -- Legacy authentication. Only used by some old clients and bots. 72 --"legacyauth"; -- Legacy authentication. Only used by some old clients and bots.
72 }; 73 };
73 74
74 -- These modules are auto-loaded, should you 75 -- These modules are auto-loaded, but should you want
75 -- (for some mad reason) want to disable 76 -- to disable them then uncomment them here:
76 -- them then uncomment them below
77 modules_disabled = { 77 modules_disabled = {
78 -- "presence"; -- Route user/contact status information
79 -- "message"; -- Route messages
80 -- "iq"; -- Route info queries
81 -- "offline"; -- Store offline messages 78 -- "offline"; -- Store offline messages
79 -- "c2s"; -- Handle client connections
80 -- "s2s"; -- Handle server-to-server connections
82 }; 81 };
83 82
84 -- Disable account creation by default, for security 83 -- Disable account creation by default, for security
85 -- For more information see http://prosody.im/doc/creating_accounts 84 -- For more information see http://prosody.im/doc/creating_accounts
86 allow_registration = false; 85 allow_registration = false;
90 ssl = { 89 ssl = {
91 key = "certs/localhost.key"; 90 key = "certs/localhost.key";
92 certificate = "certs/localhost.crt"; 91 certificate = "certs/localhost.crt";
93 } 92 }
94 93
95 -- Only allow encrypted streams? Encryption is already used when 94 -- Force clients to use encrypted connections? This option will
96 -- available. These options will cause Prosody to deny connections that 95 -- prevent clients from authenticating unless they are using encryption.
97 -- are not encrypted. Note that some servers do not support s2s
98 -- encryption or have it disabled, including gmail.com and Google Apps
99 -- domains.
100 96
101 --c2s_require_encryption = false 97 c2s_require_encryption = false
102 --s2s_require_encryption = false 98
99 -- Force certificate authentication for server-to-server connections?
100 -- This provides ideal security, but requires servers you communicate
101 -- with to support encryption AND present valid, trusted certificates.
102 -- For more information see http://prosody.im/doc/s2s#security
103
104 s2s_secure = true
105
106 -- Many servers don't support encryption or have invalid or self-signed
107 -- certificates. You can list domains here that will not be required to
108 -- authenticate using certificates. They will be authenticated using DNS.
109
110 -- s2s_insecure_domains = { "gmail.com" }
111
112 -- Even if you leave s2s_secure disabled, you can still require it for
113 -- some domains by specifying a list here.
114
115 -- s2s_secure_domains = { "jabber.org" }
103 116
104 -- Select the authentication backend to use. The 'internal' providers 117 -- Select the authentication backend to use. The 'internal' providers
105 -- use Prosody's configured data storage to store the authentication data. 118 -- use Prosody's configured data storage to store the authentication data.
106 -- To allow Prosody to offer secure authentication mechanisms to clients, the 119 -- To allow Prosody to offer secure authentication mechanisms to clients, the
107 -- default provider stores passwords in plaintext. If you do not trust your 120 -- default provider stores passwords in plaintext. If you do not trust your