Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
| * | mod_storage_xep0227: Handle missing {pubsub#owner}pubsub element (fixes #1740) | Matthew Wild | 2022-04-07 | 1 | -0/+3 | |
| | | ||||||
* | | Merge 0.12->trunk | Matthew Wild | 2022-03-28 | 4 | -13/+38 | |
|\| | ||||||
| * | mod_http (and dependent modules): Make CORS opt-in by default (fixes #1731) | Matthew Wild | 2022-03-28 | 4 | -1/+8 | |
| | | | | | | | | | | | | | | | | | | The same-origin policy enforced by browsers is a security measure that should only be turned off when it is safe to do so. It is safe to do so in Prosody's default modules, but people may load third-party modules that are unsafe. Therefore we have flipped the default, so that modules must explicitly opt in to having CORS headers added on their requests. | |||||
| * | mod_http: Reintroduce support for disabling or limiting CORS (fixes #1730) | Matthew Wild | 2022-03-28 | 1 | -13/+31 | |
| | | | | | | | | | | This is far better than pre-0.12, because we now have a universal way to configure and enable/disable CORS on a per-module basis. | |||||
* | | Merge 0.12->trunk | Matthew Wild | 2022-03-28 | 2 | -12/+46 | |
|\| | ||||||
| * | mod_tombstones: Add caching to improve performance on busy servers (fixes #1728) | Matthew Wild | 2022-03-28 | 1 | -11/+42 | |
| | | ||||||
| * | mod_turn_external: Update status and friendlier handling of missing secret ↵ | Matthew Wild | 2022-03-28 | 1 | -1/+4 | |
| | | | | | | | | option (fixes #1727) | |||||
* | | Merge 0.12->trunk | Matthew Wild | 2022-03-24 | 1 | -4/+5 | |
|\| | ||||||
| * | MUC: Allow kicking users with the same affiliation as the kicker (fixes #1724) | Matthew Wild | 2022-03-23 | 1 | -4/+5 | |
| | | | | | | | | | | | | | | | | | | | | This is allowed by XEP-0045, which states: "A moderator SHOULD NOT be allowed to revoke moderation privileges from someone with a higher affiliation than themselves (i.e., an unaffiliated moderator SHOULD NOT be allowed to revoke moderation privileges from an admin or an owner, and an admin SHOULD NOT be allowed to revoke moderation privileges from an owner)." | |||||
* | | Merge 0.12->trunk | Kim Alvefur | 2022-03-23 | 1 | -2/+2 | |
|\| | ||||||
| * | mod_external_services: Move error message to correct place (fix #1725) | Kim Alvefur | 2022-03-23 | 1 | -2/+2 | |
| | | | | | | | | | | This message was misplaced in c4599a7c534c when the @type and @host check was introduced. | |||||
* | | mod_adhoc: Simplify variable references | Kim Alvefur | 2022-03-22 | 1 | -2/+2 | |
| | | | | | | | | Since commands[node] was already stored in a local a few lines up | |||||
* | | adhoc: Include stanza and origin in adhoc event data | Kim Alvefur | 2017-03-06 | 1 | -0/+2 | |
| | | | | | | | | | | This allows easier access to these, which could be useful for all sorts of reasons | |||||
* | | Merge 0.12->trunk | Matthew Wild | 2022-03-21 | 1 | -1/+1 | |
|\| | ||||||
| * | mod_pubsub: Don't attempt to use server actor as publisher (fixes #1723) | Matthew Wild | 2022-03-21 | 1 | -1/+1 | |
| | | ||||||
* | | Merge 0.12->trunk | Matthew Wild | 2022-03-19 | 1 | -2/+10 | |
|\| | ||||||
| * | mod_admin_socket: Improve error reporting when socket can't be created ↵ | Matthew Wild | 2022-03-19 | 1 | -2/+10 | |
| | | | | | | | | (fixes #1719) | |||||
* | | Merge 0.12->trunk | Matthew Wild | 2022-03-19 | 2 | -0/+10 | |
|\| | ||||||
| * | mod_admin_socket: Comment on LuaSocket UNIX compat code | Kim Alvefur | 2022-03-16 | 1 | -0/+6 | |
| | | | | | | | | Ref #1717 | |||||
| * | mod_admin_socket: Compat for luasocket prior to unix datagram support | Kim Alvefur | 2022-03-15 | 1 | -0/+3 | |
| | | | | | | | | | | | | | | | | | | | | The "socket.unix" module exported only a function before https://github.com/lunarmodules/luasocket/commit/aa1b8cc9bc35e56de15eeb153c899e4c51de82a8 when datagram support was added. Fixes #1717 Thanks rsc and lucas for reporting and testing | |||||
| * | mod_invites_register: Push invitee contact entry to inviter | Kim Alvefur | 2022-03-15 | 1 | -0/+1 | |
| | | | | | | | | | | | | | | | | | | Invitee would not show up in the roster of the invite creator unless they fetch their roster afterwards. Fixes #1715 Thanks gerald | |||||
* | | mod_admin_shell: Add watch:log() command to tail logs in realtime | Matthew Wild | 2022-03-17 | 1 | -0/+21 | |
| | | ||||||
* | | mod_admin_shell: Add session.is_connected() method | Matthew Wild | 2022-03-17 | 1 | -0/+3 | |
| | | ||||||
* | | mod_admin_shell: Add session.write() method to write data to client with no \n | Matthew Wild | 2022-03-17 | 1 | -2/+5 | |
|/ | ||||||
* | spelling: non-existing mistakes (thanks timeless)0.12.0 | Kim Alvefur | 2022-03-07 | 1 | -1/+1 | |
| | ||||||
* | Spelling: Fix various spelling mistakes (thanks timeless) | Kim Alvefur | 2022-03-07 | 2 | -3/+3 | |
| | | | | | | Words, sometimes I wonder how they even work Maybe I missed something. | |||||
* | Merge config-updates+check-turn from timber | Matthew Wild | 2022-03-04 | 9 | -12/+12 | |
|\ | ||||||
| * | util.hex: Deprecate to/from in favour of encode/decode, for consistency! | Matthew Wild | 2022-03-04 | 2 | -3/+3 | |
| | | ||||||
| * | usermanager, mod_saslauth: Default to internal_hashed if no auth module ↵ | Matthew Wild | 2022-02-10 | 1 | -1/+1 | |
| | | | | | | | | | | | | | | | | | | | | specified The default config was updated in this way long ago, but if no option was present in the config, Prosody would load internal_plain. This change can result in changes (for the better) for people using very old configuration files lacking an 'authentication' setting. | |||||
| * | various: Require encryption by default for real | Kim Alvefur | 2021-12-25 | 5 | -6/+6 | |
| | | | | | | | | | | | | | | | | | | These options have been specified (and enabled) in the default config file for a long time. However if unspecified in the config, they were not enabled. Now they are. This may result in a change of behaviour for people using very old config files that lack the require_encryption options. But that's what we want. | |||||
| * | mod_invites_register: Default to require encryption | Matthew Wild | 2022-02-10 | 1 | -1/+1 | |
| | | | | | | | | In line with the Prosody-wide default change for 0.12. | |||||
| * | mod_legacyauth: Default to require encryption | Matthew Wild | 2022-02-10 | 1 | -1/+1 | |
| | | ||||||
* | | mod_c2s,mod_s2s: Fix error on shutdown (Thanks Martin) | Kim Alvefur | 2022-02-22 | 2 | -2/+2 | |
| | | | | | | | | | | Since there are two calls to done() that can happen, if the timing is right (or wrong) both can happen, which previously triggered an error. | |||||
* | | mod_c2s,mod_s2s: Wrap callback to improve tracebacks | Kim Alvefur | 2022-02-22 | 2 | -2/+2 | |
| | | | | | | | | | | Should make traces point here instead of timer dispatch, making debugging easier | |||||
* | | mod_carbons: Allow plugging into decision of whether to carbon-copy | Kim Alvefur | 2022-02-21 | 1 | -1/+9 | |
| | | | | | | | | Similar procedure as mod_csi_simple and mod_mam | |||||
* | | mod_mam: Fix a comment | Kim Alvefur | 2021-12-11 | 1 | -1/+1 | |
| | | | | | | | | This is the noop that gets replaced later | |||||
* | | mod_mam: Allow plugging into archive decision | Kim Alvefur | 2021-12-10 | 1 | -4/+13 | |
|/ | | | | Similar procedure as mod_csi_simple | |||||
* | mod_admin_shell: Use a table to show help sections | Kim Alvefur | 2022-02-20 | 1 | -17/+19 | |
| | | | | Because tables make everything better and more readable! | |||||
* | mod_c2s: Ignore unused event payload [luacheck] | Kim Alvefur | 2022-02-18 | 1 | -1/+1 | |
| | ||||||
* | mod_c2s,mod_s2s: Wait for sessions to close before proceeding with shutdown ↵ | Kim Alvefur | 2022-02-17 | 2 | -2/+32 | |
| | | | | | | | | | | steps Ensures unavailable presence and other outgoing stanzas are sent. Waiting for c2s sessions to close first before proceeding to disable and close s2s ensures that unavailable presence can go out, even if it requires dialback to complete first. | |||||
* | mod_c2s: Close ports in a separate, earlier event from closing sessions | Kim Alvefur | 2022-02-18 | 1 | -0/+2 | |
| | | | | | Lets other things step in and do things while c2s ports are closed, e.g. mod_smacks, or other modules with port handlers that forward to c2s. | |||||
* | mod_s2s: Disable creation of new outgoing connections during shutdown | Kim Alvefur | 2022-02-11 | 1 | -0/+7 | |
| | ||||||
* | mod_c2s,mod_s2s: Disable and close port listeners before closing sessions | Kim Alvefur | 2022-02-11 | 2 | -0/+14 | |
| | | | | This ensures no new clients can start connecting during shutdown | |||||
* | mod_posix: Run signal handlers in the startup thread | Kim Alvefur | 2021-10-06 | 1 | -7/+13 | |
| | ||||||
* | mod_admin_shell: Squeeze some characters out of the Certificate column | Kim Alvefur | 2022-02-17 | 1 | -2/+2 | |
| | | | | The more compact these are, the better | |||||
* | mod_admin_shell: Fix description of muc:room() (thanks Link Mauve) | Kim Alvefur | 2022-02-15 | 1 | -1/+1 | |
| | | | | | But then this is the internal API which is weird and unfriendly to expose externally. Lots of methods to wrap tho ... one day. | |||||
* | mod_turn_external: Fix type of config option (thanks mirux) | Kim Alvefur | 2022-02-15 | 1 | -1/+1 | |
| | | | | | | There was a separate boolean option to enable TLS before, but it was merged with the port number option and it seems the typed API interface got confused. | |||||
* | mod_invites_register: Load mod_register_ibr in invite only mode | Kim Alvefur | 2022-02-10 | 1 | -0/+4 | |
| | | | | | This ensures that registration actually works even if allow_registration is not enabled. | |||||
* | mod_invites_register: Replace COMPAT hack | Kim Alvefur | 2022-02-10 | 1 | -1/+1 | |
| | | | | | This hack is not needed since a9c975a0f113 so can be removed when included with Prosody. | |||||
* | mod_turn_external: Add option to enable TURN over TLS | Kim Alvefur | 2022-02-10 | 1 | -2/+6 | |
| | | | | | | Usually on port 443 to avoid restrictive firewalls. Thanks to Holger for discussion |