Mercurial > prosody-modules

view mod_muc_block_pm/mod_muc_block_pm.lua @ 3503:882180b459a0

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_pubsub_post: Restructure authentication and authorization (BC) This deprecates the default "superuser" actor model and makes the default equivalent to the previous "request.id". A single actor and secret per node is supported because HTTP and WebHooks don't normally include any authorization identity. Allowing authentication bypass when no secret is given should be relatively safe when the actor is unprivileged, as will be unless explicitly configured otherwise.
author Kim Alvefur <zash@zash.se>
date Sat, 30 Mar 2019 21:16:13 +0100
parents 69d3e0037435
children afedc2430b0d
line wrap: on
line source

local bare_jid = require"util.jid".bare;
local st = require"util.stanza";

local muc_rooms = module:depends"muc".rooms;

module:hook("message/full", function(event)
	local stanza, origin = event.stanza, event.origin;
	local to, from = stanza.attr.to, stanza.attr.from;
	local room = muc_rooms[bare_jid(to)];
	local to_occupant = room and room._occupants[to];
	local from_occupant = room and room._occupants[room._jid_nick[from]]
	if not ( to_occupant and from_occupant ) then return end

	if from_occupant.affiliation then
		to_occupant._pm_block_override = true;
	elseif not from_occupant._pm_block_override then
		origin.send(st.error_reply(stanza, "cancel", "not-authorized", "Private messages are disabled"));
		return true;
	end
end, 1);