~nicoco/public-inbox

slidge: add required access_rule for mod_privilege in ejabberd v1 APPLIED

Jonny Rimkus: 1
 add required access_rule for mod_privilege in ejabberd

 1 files changed, 13 insertions(+), 6 deletions(-)
#938367 ci.yml success
#938368 container.yml success
#938369 debian.yml success
Export patchset (mbox)
How do I use this?

Copy & paste the following snippet into your terminal to import this patchset into git:

curl -s https://lists.sr.ht/~nicoco/public-inbox/patches/38896/mbox | git am -3
Learn more about email & git

[PATCH slidge v1] add required access_rule for mod_privilege in ejabberd Export this patch

---
 docs/source/admin/xmpp_server.rst | 19 +++++++++++++------
 1 file changed, 13 insertions(+), 6 deletions(-)

diff --git a/docs/source/admin/xmpp_server.rst b/docs/source/admin/xmpp_server.rst
index ebd372f..7167a15 100644
--- a/docs/source/admin/xmpp_server.rst
+++ b/docs/source/admin/xmpp_server.rst
@@ -79,7 +79,7 @@ ejabberd
Slidge uses different containers/processes for each gateway. Therefore administrators
should setup these steps for each individual gateway. This is because each gateway
makes use of an individual JID (such as telegram.example.com, whatsapp.example.com, etc).
Only exceptions are the 'mod_http_upload', 'mod_privilege' and 'mod_roster', these modules
Only exceptions are the 'mod_http_upload', 'mod_privilege', 'mod_roster' and 'access_rulees', these 
stay the same for each gateway you add. So, there is no need to repeat these steps for new gateways.


@@ -124,14 +124,21 @@ These same principles also apply to ACL.
ACL
***

Create a policy for the component:
Create an `acl <https://docs.ejabberd.im/admin/configuration/basic/#acl>`_ for the component:

.. code-block:: yaml

    acl:
      slidge:
      slidge_acl:
        server: superduper.example.com

Create an access_rule `access_rule <https://docs.ejabberd.im/admin/configuration/basic/#access-rules>` for the component:
.. code-block:: yaml

    access_rules:
      slidge_rule:
        - allow: slidge_acl

mod_privilege
*************

@@ -142,9 +149,9 @@ Make slidge a "privileged entity" and enable roster versioning.
    modules:
      mod_privilege:
        roster:
          both: slidge
          both: slidge_rule
        message:
          outgoing: slidge
          outgoing: slidge_rule          
      mod_roster:
        versioning: true

@@ -172,7 +179,7 @@ so you need to use a pseudo user on the component domain, eg,
        put_url: "https://@HOST@:5443/upload"
        access:
          - allow: local
          - allow: slidge
          - allow: slidge_acl


To get more information about component configuration, see `ejabberd's docs
-- 
2.34.1
slidge/patches: SUCCESS in 1h10m5s

[add required access_rule for mod_privilege in ejabberd][0] from [Jonny Rimkus][1]

[0]: https://lists.sr.ht/~nicoco/public-inbox/patches/38896
[1]: mailto:jonny@rimkus.it

✓ #938367 SUCCESS slidge/patches/ci.yml        https://builds.sr.ht/~nicoco/job/938367
✓ #938368 SUCCESS slidge/patches/container.yml https://builds.sr.ht/~nicoco/job/938368
✓ #938369 SUCCESS slidge/patches/debian.yml    https://builds.sr.ht/~nicoco/job/938369