prosody
94253e02d47d
plugins/muc/whois.lib.lua

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody

File

plugins/muc/whois.lib.lua @ 12187:94253e02d47d

mod_http: Limit unencrypted http port (5280) to loopback by default Since accessing this port directly over the wider Internet is unlikely to intentional anymore. Most uses will likely be by reverse proxies, by mistake or because of trouble configuring HTTPS. Blocking mistaken uses is just a good thing, letting users send potentially private things unencrypted tends to be Strongly Discouraged these days. Many reverse proxy setups operate over loopback, so listening there instead of all interfaces is a net improvement. Improved automatic certificate location and SNI support has mostly eliminated the need for manual certificate configuration so HTTPS should Just Work once certificates have been provided. For local testing during development, connecting over loopback is likely fine as well. When really needed, `http_interfaces` can still be set. Suggested by Link Mauve
author Kim Alvefur <zash@zash.se>
date Sat, 15 Jan 2022 15:13:41 +0100
parent 9112:e66d932eeb58
line wrap: on
line source

-- Prosody IM
-- Copyright (C) 2008-2010 Matthew Wild
-- Copyright (C) 2008-2010 Waqas Hussain
-- Copyright (C) 2014 Daurnimator
--
-- This project is MIT/X11 licensed. Please see the
-- COPYING file in the source package for more information.
--

local valid_whois = {
	moderators = true;
	anyone = true;
};

local function get_whois(room)
	return room._data.whois or "moderators";
end

local function set_whois(room, whois)
	assert(valid_whois[whois], "Invalid whois value")
	if get_whois(room) == whois then return false; end
	room._data.whois = whois;
	return true;
end

module:hook("muc-disco#info", function(event)
	local whois = get_whois(event.room) ~= "anyone" and "muc_semianonymous" or "muc_nonanonymous";
	event.reply:tag("feature", { var = whois }):up();
end);

module:hook("muc-config-form", function(event)
	local whois = get_whois(event.room);
	table.insert(event.form, {
		name = 'muc#roomconfig_whois',
		type = 'list-single',
		label = 'Addresses (JIDs) of room occupants may be viewed by:',
		options = {
			{ value = 'moderators', label = 'Moderators only', default = whois == 'moderators' },
			{ value = 'anyone',     label = 'Anyone',          default = whois == 'anyone' }
		}
	});
end, 80-4);

module:hook("muc-config-submitted/muc#roomconfig_whois", function(event)
	if set_whois(event.room, event.value) then
		local code = (event.value == 'moderators') and "173" or "172";
		event.status_codes[code] = true;
	end
end);

-- Mask 'from' jid as occupant jid if room is anonymous
module:hook("muc-invite", function(event)
	local room, stanza = event.room, event.stanza;
	if get_whois(room) == "moderators" and room:get_default_role(room:get_affiliation(stanza.attr.to)) ~= "moderator" then
		local invite = stanza:get_child("x", "http://jabber.org/protocol/muc#user"):get_child("invite");
		local occupant_jid = room:get_occupant_jid(invite.attr.from);
		if occupant_jid ~= nil then -- FIXME: This will expose real jid if inviter is not in room
			invite.attr.from = occupant_jid;
		end
	end
end, 50);

return {
	get = get_whois;
	set = set_whois;
};