aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * prosody.cfg.lua.dist: Remove allow_registration in favor of invitesKim Alvefur2022-02-111-3/+0
| | | | | | | | | | This settings should now only be used by public servers, which have their own documentation
| * prosody.cfg.lua.dist: Comment improvements: s2s authenticationMatthew Wild2022-02-141-2/+2
| |
| * prosody.cfg.lua.dist: Comment improvements: authenticationMatthew Wild2022-02-141-0/+5
| |
| * prosody.cfg.lua.dist: Improve section-like layout via headers and spacingMatthew Wild2022-02-141-0/+9
| |
| * prosody.cfg.lua.dist: Comment improvementsMatthew Wild2022-02-141-2/+3
| |
| * prosody.cfg.lua.dist: Update s2s_secure_auth comment and defaultMatthew Wild2022-02-141-2/+3
| |
| * prosody.cfg.lua.dist: TURN configuration improvements and exampleMatthew Wild2022-02-141-1/+12
| |
| * prosody.cfg.lua.dist: Enable csi_simple by defaultMatthew Wild2022-02-141-1/+1
| | | | | | | | | | It was added here in 2018, and at that time probably a bit too new to be enabled by default. Times change, and most people have this enabled now.
| * usermanager, mod_saslauth: Default to internal_hashed if no auth module ↵Matthew Wild2022-02-103-2/+3
| | | | | | | | | | | | | | | | | | | | specified The default config was updated in this way long ago, but if no option was present in the config, Prosody would load internal_plain. This change can result in changes (for the better) for people using very old configuration files lacking an 'authentication' setting.
| * prosody.cfg.lua.dist: Remove require_encryption optionsMatthew Wild2022-02-141-10/+0
| | | | | | | | | | | | | | | | | | Reasons: - These now default to enabled when not specified since 38b5b05407be - Practically all servers require encryption these days for c2s/s2s. - Disabling encryption can be considered a special case that doesn't need to be in the default config file.
| * core.certmanager: Turn soft dependency on LuaSec into a hardKim Alvefur2022-02-102-14/+4
| | | | | | | | | | | | The default network backend server_epoll already requires LuaSec so Prosody won't even start without it, so we can get rid of these lines here too.
| * various: Require encryption by default for realKim Alvefur2021-12-256-6/+7
| | | | | | | | | | | | | | | | | | These options have been specified (and enabled) in the default config file for a long time. However if unspecified in the config, they were not enabled. Now they are. This may result in a change of behaviour for people using very old config files that lack the require_encryption options. But that's what we want.
| * mod_invites_register: Default to require encryptionMatthew Wild2022-02-101-1/+1
| | | | | | | | In line with the Prosody-wide default change for 0.12.
| * mod_legacyauth: Default to require encryptionMatthew Wild2022-02-101-1/+1
| |
| * prosody.cfg.lua.dist: Remove mod_http_filesKim Alvefur2022-02-101-1/+0
| | | | | | | | | | | | | | Serving web pages outside of specialized modules seems like a rare use case that doesn't warrant a spot in the default config file. Many users seem to have it confused with mod_http_upload, so removing it should help with that.
| * prosody.cfg.lua.dist: Move Dialback downKim Alvefur2022-02-101-1/+1
| | | | | | | | Mostly a source of security issues lately
| * prosody.cfg.lua.dist: Remove https_certificate, this should Just Work nowKim Alvefur2022-02-051-3/+0
| |
| * prosody.cfg.lua.dist: Remove mention of deprecated daemonize optionKim Alvefur2022-02-051-1/+1
| | | | | | | | Just run ./prosody like me!
| * prosody.cfg.lua.dist: Remove installer_plugin_pathKim Alvefur2022-02-051-4/+0
| | | | | | | | | | Most users shouldn't need to add this, and it works out of the box. Not important enough to justify having it in the default config.
| * prosody.cfg.lua.dist: Add new modulesKim Alvefur2022-02-101-0/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | mod_admin_shell enabled by default because it's awesome! mod_smacks and mod_bookmarks under recommended since they're recommended by the compliance suite XEP-0459 Invites under nice to have and enabled by default to enable a somewhat nice out of the box experience Other new modules mostly under Other mod_external_services left out since it's an advanced thing
| * prosody.cfg.lua.dist: Add note about 'localhost'Kim Alvefur2021-02-041-0/+3
| |
* | prosodyctl: check dns: Allow admin to specify undiscoverable external IPs in ↵Matthew Wild2022-03-021-0/+5
| | | | | | | | config
* | prosodyctl: check dns: List discovered addresses for diagnostic purposesMatthew Wild2022-03-021-0/+16
| | | | | | | | | | | | It is very common to get the "unknown address" warning with this command, but people do not always understand it, or know how to debug it. Now we clearly show the addresses that prosodyctl discovered.
* | util.prosodyctl: check: warn about unreferenced components, suggest disco_itemsMatthew Wild2022-03-021-0/+35
| |
* | util.prosodyctl: Warn about enabled public registration in 'check config'Matthew Wild2022-03-021-0/+28
| |
* | util.poll: Add support for the poll() APIKim Alvefur2022-02-233-2/+133
| | | | | | | | Might be better than select(), more portable than epoll.
* | util.poll: Expose API (epoll or select) usedKim Alvefur2022-02-272-6/+11
| | | | | | | | Could he handy to know for debugging or decisions
* | util.poll: Restructure to make adding additional system APIs easierKim Alvefur2022-02-231-11/+23
| |
* | make: Split up install targets to allow different subsetKim Alvefur2022-02-132-19/+69
| | | | | | | | | | | | | | The prosody-trunk nightly packages currently use the Debian dh-lua framework to install core/, net/ and util/ into Lua-versioned directory trees, while plugins and executables should still be installed like before.
* | core.portmanager: Fix traceback on attempt to get non-existent serviceKim Alvefur2022-02-221-1/+3
| | | | | | | | | | If there's no such interface:port then `data` is nil and `data.service` errors.
* | mod_c2s,mod_s2s: Fix error on shutdown (Thanks Martin)Kim Alvefur2022-02-222-2/+2
| | | | | | | | | | Since there are two calls to done() that can happen, if the timing is right (or wrong) both can happen, which previously triggered an error.
* | util.async: Optionally allow too many 'done' callbacksKim Alvefur2022-02-221-2/+2
| | | | | | | | | | Sometimes, like in mod_c2s and mod_s2s during shutdown, all you want is to wait for the first done() and not complicate things.
* | mod_c2s,mod_s2s: Wrap callback to improve tracebacksKim Alvefur2022-02-222-2/+2
| | | | | | | | | | Should make traces point here instead of timer dispatch, making debugging easier
* | mod_carbons: Allow plugging into decision of whether to carbon-copyKim Alvefur2022-02-211-1/+9
| | | | | | | | Similar procedure as mod_csi_simple and mod_mam
* | mod_mam: Fix a commentKim Alvefur2021-12-111-1/+1
| | | | | | | | This is the noop that gets replaced later
* | mod_mam: Allow plugging into archive decisionKim Alvefur2021-12-101-4/+13
| | | | | | | | Similar procedure as mod_csi_simple
* | core.certmanager: Ensure key exists for fullchainKim Alvefur2022-02-211-1/+1
|/ | | | | | | | | | Since 5cd075ed4fd3 any file matching "fullchain" would be considered for use. Dehydrated stores fullchain certs in e.g, fullchain-1641171024.pem and a symlink fullchain.pem pointing at the latest one. However the current rule for finding a corresponding private key would try privkey-1641171024.pem in the same directory, which may not exist.
* mod_admin_shell: Use a table to show help sectionsKim Alvefur2022-02-201-17/+19
| | | | Because tables make everything better and more readable!
* CHANGES: Mention graceful shutdownKim Alvefur2022-02-181-0/+3
|
* mod_c2s: Ignore unused event payload [luacheck]Kim Alvefur2022-02-181-1/+1
|
* mod_c2s,mod_s2s: Wait for sessions to close before proceeding with shutdown ↵Kim Alvefur2022-02-172-2/+32
| | | | | | | | | | steps Ensures unavailable presence and other outgoing stanzas are sent. Waiting for c2s sessions to close first before proceeding to disable and close s2s ensures that unavailable presence can go out, even if it requires dialback to complete first.
* mod_c2s: Close ports in a separate, earlier event from closing sessionsKim Alvefur2022-02-181-0/+2
| | | | | Lets other things step in and do things while c2s ports are closed, e.g. mod_smacks, or other modules with port handlers that forward to c2s.
* mod_s2s: Disable creation of new outgoing connections during shutdownKim Alvefur2022-02-111-0/+7
|
* mod_c2s,mod_s2s: Disable and close port listeners before closing sessionsKim Alvefur2022-02-113-0/+15
| | | | This ensures no new clients can start connecting during shutdown
* mod_posix: Run signal handlers in the startup threadKim Alvefur2021-10-061-7/+13
|
* prosody: Expose main thread on the 'prosody' globalKim Alvefur2021-10-062-0/+5
| | | | To allow running things in it.
* prosody: Run shutdown procedure in async threadKim Alvefur2019-01-011-1/+1
|
* prosody: Move last cleanup and shutdown code into util.startupKim Alvefur2019-01-012-13/+17
|
* mod_admin_shell: Squeeze some characters out of the Certificate columnKim Alvefur2022-02-171-2/+2
| | | | The more compact these are, the better
* prosodyctl: Restore 'list --outdated'Kim Alvefur2022-02-171-0/+4
| | | | | Parsing --flags puts it into 'opts', so --outdated wasn't passed to luarocks, breaking that functionality