view mod_require_otr/mod_require_otr.lua @ 5243:d5dc8edb2695

mod_http_oauth2: Use more compact IDs UUIDs are nice but so verbose! The reduction in entropy for the nonce should be fine since the timestamp is also counts towards this, and it changes every second (modulo clock shenanigans), so the chances of someone managing to get the same client_secret by registering with the same information at the same time as another entity should be negligible.
author Kim Alvefur <zash@zash.se>
date Sat, 11 Mar 2023 22:46:27 +0100
parents dfe1818962f5
children
line wrap: on
line source

local st = require "util.stanza";
local block_groupchat = module:get_option_boolean("otr_block_groupchat", false);

function reject_plaintext_messages(event)
    local body = event.stanza:get_child_text("body");
    if body and body:sub(1,4) ~= "?OTR" or (not block_groupchat and event.stanza.attr.type == "groupchat") then
        return event.origin.send(st.error_reply(event.stanza, "modify", "policy-violation", "OTR encryption is required for conversations on this server"));
    end
end

module:hook("pre-message/bare", reject_plaintext_messages, 300);
module:hook("pre-message/full", reject_plaintext_messages, 300);
module:hook("pre-message/host", reject_plaintext_messages, 300);