109 lines
3.1 KiB
Text
109 lines
3.1 KiB
Text
admins = { "$SERVER_ADMIN" }
|
|
|
|
plugin_paths = { "/community_modules" }
|
|
|
|
contact_info = {
|
|
abuse = { "xmpp:$SERVER_ADMIN" };
|
|
admin = { "xmpp:$SERVER_ADMIN" };
|
|
security = { "xmpp:$SERVER_ADMIN" };
|
|
}
|
|
|
|
modules_enabled = {
|
|
"roster";
|
|
"saslauth";
|
|
"tls";
|
|
"dialback";
|
|
"disco";
|
|
|
|
-- recommended
|
|
"carbons";
|
|
"pep";
|
|
"private";
|
|
"blocklist";
|
|
"vcard4";
|
|
"vcard_legacy";
|
|
|
|
"version"; -- Replies to server version requests
|
|
"uptime"; -- Report how long server has been running
|
|
"time"; -- Let others know the time here on this server
|
|
"ping"; -- Replies to XMPP pings with pongs
|
|
--"register"; -- Allow users to register on this server using a client and change passwords
|
|
"mam";
|
|
"csi_simple";
|
|
|
|
-- Admin interfaces
|
|
"admin_adhoc";
|
|
|
|
-- HTTP modules
|
|
--"bosh"; -- Enable BOSH clients, aka "Jabber over HTTP"
|
|
--"websocket"; -- XMPP over WebSockets
|
|
--"http_files"; -- Serve static files from a directory over HTTP
|
|
|
|
-- Other specific functionality
|
|
--"limits"; -- Enable bandwidth limiting for XMPP connections
|
|
--"groups"; -- Shared roster support
|
|
"server_contact_info";
|
|
--"announce"; -- Send announcement to all online users
|
|
--"welcome"; -- Welcome users who register accounts
|
|
--"watchregistrations"; -- Alert admins of registrations
|
|
--"motd"; -- Send a message to users when they log in
|
|
--"legacyauth"; -- Legacy authentication. Only used by some old clients and bots.
|
|
"proxy65";
|
|
"bookmarks";
|
|
"turncredentials";
|
|
|
|
"smacks";
|
|
"cloud_notify";
|
|
}
|
|
|
|
allow_registration = false
|
|
c2s_require_encryption = true
|
|
s2s_require_encryption = true
|
|
s2s_secure_auth = true
|
|
legacy_ssl_ports = { 5223 }
|
|
|
|
--s2s_insecure_domains = { $INSECURE_DOMAINS }
|
|
|
|
authentication = "internal_hashed"
|
|
|
|
storage = "internal"
|
|
|
|
archive_expires_after = "2w"
|
|
|
|
log = {
|
|
"*console";
|
|
}
|
|
daemonize = false
|
|
|
|
-- Certificates
|
|
-- Every virtual host and component needs a certificate so that clients and
|
|
-- servers can securely verify its identity. Prosody will automatically load
|
|
-- certificates/keys from the directory specified here.
|
|
-- For more information, including how to use 'prosodyctl' to auto-import certificates
|
|
-- (from e.g. Let's Encrypt) see https://prosody.im/doc/certificates
|
|
|
|
-- Location of directory to find certificates in (relative to main config file):
|
|
certificates = "certs"
|
|
|
|
-- HTTPS currently only supports a single certificate, specify it here:
|
|
https_certificate = "/usr/local/etc/prosody/certs/$VIRTUAL_HOST.pem"
|
|
|
|
----------- Virtual hosts -----------
|
|
-- You need to add a VirtualHost entry for each domain you wish Prosody to serve.
|
|
-- Settings under each VirtualHost entry apply *only* to that host.
|
|
|
|
VirtualHost "$VIRTUAL_HOST"
|
|
|
|
--VirtualHost "example.com"
|
|
-- certificate = "/path/to/example.crt"
|
|
|
|
------ Components ------
|
|
-- You can specify components to add hosts that provide special services,
|
|
-- like multi-user conferences, and transports.
|
|
-- For more information on components, see https://prosody.im/doc/components
|
|
|
|
Component "conference.$VIRTUAL_HOST" "muc"
|
|
modules_enabled = { "muc_mam", "vcard_muc" }
|
|
|
|
Component "upload.$VIRTUAL_HOST" "http_upload"
|
|
http_upload_expire_after = 60 * 60 * 24 * 7 -- a week in second
|