Mercurial > prosody-modules

view mod_proxy65_whitelist/README.markdown @ 5549:01a0b67a9afd

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_http_oauth2: Add TODO about disabling password grant Per recommendation in draft-ietf-oauth-security-topics-23 it should at the very least be disabled by default. However since this is used by the Snikket web portal some care needs to be taken not to break this, unless it's already broken by other changes to this module.
author Kim Alvefur <zash@zash.se>
date Fri, 16 Jun 2023 00:06:53 +0200
parents 8de50be756e5
children 694b62d8a82f
line wrap: on
line source

---
labels: 'Stage-Alpha'
summary: Limit which file transfer users can use
...

Introduction
------------

This module attempts to restrict use of non-whitelisted XEP-0065
proxies.

Configuration
-------------

Without any options, the module will restrict users to local [proxy65
components](https://prosody.im/doc/modules/mod_proxy65).

    -- additional proxies to allow
    allowed_streamhosts = { "proxy.eu.jabber.org" }

The module will add all local proxies to that list. To prevent it from
doing that, set

    allow_local_streamhosts = false