Mercurial Mercurial > prosody > prosody-modules / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_restrict_xmpp/README.markdown
author Matthew Wild <mwild1@gmail.com>
Sat, 24 Sep 2022 09:26:26 +0100
changeset 5063 5f1120c284c5
parent 5013 459a4001c1d9
child 5772 62654f523c6a
permissions -rw-r--r--
mod_cloud_notify_extensions: Add note about dependency Noting here because people might not click through to see it on the mod_cloud_notify_encrypted page.
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
5013
459a4001c1d9 mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset 
     1
 
---
459a4001c1d9 mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset 
     2
 
labels:
459a4001c1d9 mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset 
     3
 
- Stage-Alpha
459a4001c1d9 mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset 
     4
 
summary: XMPP-layer access control for Prosody
459a4001c1d9 mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset 
     5
 
---
459a4001c1d9 mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API
Matthew Wild <mwild1@gmail.com>
parents:
diff changeset 
     6
 












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




     7


Introduction












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




     8


============












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




     9














459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    10


This module enforces access policies using Prosody's new [roles and












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    11


permissions framework](https://prosody.im/doc/developers/permissions). It can












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    12


be used to grant restricted access to an XMPP account or services.












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    13














459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    14


This module is still in its early stages, and prone to change. Feedback from












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    15


testers is welcome. At this early stage, it should not be solely relied upon












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    16


for account security purposes.












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    17














459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    18


Configuration












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    19


=============












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    20














459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    21


There is no configuration, apart from Prosody's normal roles and permissions












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    22


configuration.












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    23














459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    24


Permissions












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    25


===========












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    26














459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    27


`xmpp:federate`












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    28


: Communicate with other users and services on other hosts on the XMPP network












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    29


`xmpp:account:messages:read`












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    30


: Read incoming messages












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    31


`xmpp:account:messages:write`












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    32


: Send outgoing messages












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    33


`xmpp:account:presence:write`












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    34


: Update presence for the account












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    35


`xmpp:account:contacts:read`/`xmpp:account:contacts:write`












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    36


: Controls access to the contact list (roster)












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    37


`xmpp:account:bookmarks:read`/`xmpp:account:bookmarks:write`












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    38


: Controls access to the bookmarks (group chats list)












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    39


`xmpp:account:profile:read`/`xmpp:account:profile:write`












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    40


: Controls access to the user's profile (e.g. vCard/avatar)












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    41


`xmpp:account:omemo:read`/`xmpp:account:omemo:write`












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    42


: Controls access to the user's OMEMO data












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    43


`xmpp:account:blocklist:read`/`xmpp:account:blocklist:write`












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    44


: Controls access to the user's block list












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    45


`xmpp:account:disco:read`












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    46


: Controls access to the user's service discovery information












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    47














459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    48


Compatibility












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    49


=============












459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    50














459a4001c1d9
mod_restrict_xmpp: XMPP-layer access control using Prosody's permissions API



Matthew Wild <mwild1@gmail.com>


parents: 

diff
changeset




    51


Requires Prosody trunk 72f431b4dc2c (build 1444) or later.














prosody-modules