sat_docs: docker/prosody/prosody.cfg.lua comparison

comparison docker/prosody/prosody.cfg.lua @ 79:694fd34ff0b3

docker (prosody): added some comments to prosody.cfg.lua

author	Goffi <goffi@goffi.org>
date	Wed, 10 Feb 2016 18:22:56 +0100
parents	3e8ddbc6c603
children	697d7234d2ed

comparison

equal deleted inserted replaced

-:3e8ddbc6c603
+:694fd34ff0b3
 -- Prosody configuration for SàT Docker image
 ---------- Server-wide settings ----------
+-- we use environment variable to get the domain
 local domain = os.getenv("DOMAIN") or "libervia.int"
+-- default admin is admin@DOMAIN
 admins = { "admin@"..(domain) }
 -- Enable use of libevent for better performance under high load
 -- For more information see: http://prosody.im/doc/libevent
 --use_libevent = true;
 -- Documentation on modules can be found at: http://prosody.im/doc/modules
 modules_enabled = {
--- used by SàT
+		-- used by SàT
 		-- SàT PubSub
 				"delegation";
 				"privilege";
 		-- Not mandatory but neat
 				"ipcheck";
 				"http_upload";
--- Generally required
+		-- Generally required
-"roster"; -- Allow users to have a roster. Recommended ;)
+				"roster"; -- Allow users to have a roster. Recommended ;)
-"saslauth"; -- Authentication for clients and servers. Recommended if you want to log in.
+				"saslauth"; -- Authentication for clients and servers. Recommended if you want to log in.
-"tls"; -- Add support for secure TLS on c2s/s2s connections
+				"tls"; -- Add support for secure TLS on c2s/s2s connections
-"dialback"; -- s2s dialback support
+				"dialback"; -- s2s dialback support
-"disco"; -- Service discovery
+				"disco"; -- Service discovery
--- Not essential, but recommended
+		-- Not essential, but recommended
-"private"; -- Private XML storage (for room bookmarks, etc.)
+				"private"; -- Private XML storage (for room bookmarks, etc.)
-"vcard"; -- Allow users to set vCards
+				"vcard"; -- Allow users to set vCards
--- These are commented by default as they have a performance impact
+		-- These are commented by default as they have a performance impact
---"privacy"; -- Support privacy lists
+				--"privacy"; -- Support privacy lists
---"compression"; -- Stream compression (Debian: requires lua-zlib module to work)
+				--"compression"; -- Stream compression (Debian: requires lua-zlib module to work)
--- Nice to have
+		-- Nice to have
-"version"; -- Replies to server version requests
+				"version"; -- Replies to server version requests
-"uptime"; -- Report how long server has been running
+				"uptime"; -- Report how long server has been running
-"time"; -- Let others know the time here on this server
+				"time"; -- Let others know the time here on this server
-"ping"; -- Replies to XMPP pings with pongs
+				"ping"; -- Replies to XMPP pings with pongs
--- "pep"; -- Enables users to publish their mood, activity, playing music and more
+				-- "pep"; -- Enables users to publish their mood, activity, playing music and more
---"register"; -- Allow users to register on this server using a client and change passwords
+				-- we don't want to allow self registering, this is managed by a SàT plugin
+				--"register"; -- Allow users to register on this server using a client and change passwords
--- Admin interfaces
+		-- Admin interfaces
-"admin_adhoc"; -- Allows administration via an XMPP client that supports ad-hoc commands
+				"admin_adhoc"; -- Allows administration via an XMPP client that supports ad-hoc commands
---"admin_telnet"; -- Opens telnet console interface on localhost port 5582
+				--"admin_telnet"; -- Opens telnet console interface on localhost port 5582
--- HTTP modules
+		-- HTTP modules
---"bosh"; -- Enable BOSH clients, aka "Jabber over HTTP"
+				--"bosh"; -- Enable BOSH clients, aka "Jabber over HTTP"
---"http_files"; -- Serve static files from a directory over HTTP
+				--"http_files"; -- Serve static files from a directory over HTTP
--- Other specific functionality
+		-- Other specific functionality
-"posix"; -- POSIX functionality, sends server to background, enables syslog, etc.
+				"posix"; -- POSIX functionality, sends server to background, enables syslog, etc.
---"groups"; -- Shared roster support
+				--"groups"; -- Shared roster support
-"announce"; -- Send announcement to all online users
+				-- announce is usefull on a Libervia instance
---"welcome"; -- Welcome users who register accounts
+				"announce"; -- Send announcement to all online users
---"watchregistrations"; -- Alert admins of registrations
+				--"welcome"; -- Welcome users who register accounts
---"motd"; -- Send a message to users when they log in
+				--"watchregistrations"; -- Alert admins of registrations
---"legacyauth"; -- Legacy authentication. Only used by some old clients and bots.
+				--"motd"; -- Send a message to users when they log in
+				--"legacyauth"; -- Legacy authentication. Only used by some old clients and bots.
 };
 -- to disable them then uncomment them here:
 modules_disabled = {
--- "offline"; -- Store offline messages
+		-- "offline"; -- Store offline messages
--- "c2s"; -- Handle client connections
+		-- "c2s"; -- Handle client connections
--- "s2s"; -- Handle server-to-server connections
+		-- "s2s"; -- Handle server-to-server connections
 };
 -- Disable account creation by default, for security
 -- For more information see http://prosody.im/doc/creating_accounts
 allow_registration = false;
 --   Please, don't change this option since /var/run/prosody/
 --   is one of the few directories Prosody is allowed to write to
 --
 pidfile = "/var/run/prosody/prosody.pid";
--- These are the SSL/TLS-related settings. If you don't want
+-- We want to use the certificat in /usr/share/sat
--- to use SSL/TLS, you may comment or remove this
 ssl = {
-key = "/usr/share/sat/libervia.key";
+		key = "/usr/share/sat/libervia.key";
-certificate = "/usr/share/sat/libervia.crt";
+		certificate = "/usr/share/sat/libervia.crt";
 }
 c2s_require_encryption = true
 -- Force certificate authentication for server-to-server connections?
 -- server please see http://prosody.im/doc/modules/mod_auth_internal_hashed
 -- for information about using the hashed backend.
 authentication = "internal_plain"
+-- we listen to the world for components (but we do *NOT*
+-- expose the port! It's just for linked containers)
 component_interface="0.0.0.0"
+-- we want default, unsplitted logs, so we have removed all logging stuff
 VirtualHost (domain)
 	privileged_entities = {
 		["pubsub."..domain] = {
 			roster = "get";
-message = "outgoing";
+			message = "outgoing";
 			-- presence = "roster";
 		},
 		-- ["louise@necton3.int"] = {
 		-- 	roster = "both";
-		--     message = "outgoing";
+		--	 message = "outgoing";
-		--     presence = "roster";
+		--	 presence = "roster";
 		-- },
 	}
 	delegations = {
 		["urn:xmpp:mam:1"] = {

Mercurial > sat_docs

comparison docker/prosody/prosody.cfg.lua @ 79:694fd34ff0b3