changeset 750:8133dd5f266a

mod_readonly: Allow preventing direct modification of certain user data via XMPP
author Matthew Wild <mwild1@gmail.com>
date Fri, 27 Jul 2012 02:38:43 +0100
parents 1a7cdc874b8c
children 3c37445f26ac
files mod_readonly/mod_readonly.lua
diffstat 1 files changed, 26 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/mod_readonly/mod_readonly.lua	Fri Jul 27 02:38:43 2012 +0100
@@ -0,0 +1,26 @@
+local st = require "util.stanza";
+
+local stores = module:get_option("readonly_stores", {
+	vcard = { "vcard-temp", "vCard" };
+});
+
+local namespaces = {};
+for name, namespace in pairs(stores) do
+	namespaces[table.concat(namespace, ":")] = name;
+end
+
+function prevent_write(event)
+	local stanza = event.stanza;
+	if stanza.attr.type ~= "set" then return; end
+	local xmlns_and_tag = stanza.tags[1].attr.xmlns..":"..stanza.tags[1].name;
+	local store_name = namespaces[xmlns_and_tag];
+	if store_name then
+		module:log("warn", "Preventing modification of %s store by %s", store_name, stanza.attr.from);
+		event.origin.send(st.error_reply(stanza, "cancel", "not-allowed", store_name.." data is read-only"));
+		return true; -- Block stanza
+	end
+end
+
+for namespace in pairs(namespaces) do
+	module:hook("iq/bare/"..namespace, prevent_write, 200);
+end