· 6 years ago · Jan 14, 2020, 09:32 PM
1-- Prosody Example Configuration File
2--
3-- Information on configuring Prosody can be found on our
4-- website at http://prosody.im/doc/configure
5--
6-- Tip: You can check that the syntax of this file is correct
7-- when you have finished by running: luac -p prosody.cfg.lua
8-- If there are any errors, it will let you know what and where
9-- they are, otherwise it will keep quiet.
10--
11-- The only thing left to do is rename this file to remove the .dist ending, and fill in the
12-- blanks. Good luck, and happy Jabbering!
13
14
15---------- Server-wide settings ----------
16-- Settings in this section apply to the whole server and are the default settings
17-- for any virtual hosts
18
19-- This is a (by default, empty) list of accounts that are admins
20-- for the server. Note that you must create the accounts separately
21-- (see http://prosody.im/doc/creating_accounts for info)
22-- Example: admins = { "user1@example.com", "user2@example.net" }
23admins = { "Firstname.Lastname@MainHost.de" }
24-- Enable use of libevent for better performance under high load
25-- For more information see: http://prosody.im/doc/libevent
26--use_libevent = true;
27
28-- This is the list of modules Prosody will load on startup.
29-- It looks for mod_modulename.lua in the plugins folder, so make sure that exists too.
30-- Documentation on modules can be found at: http://prosody.im/doc/modules
31--> von virtualHost1
32plugin_paths = { "/usr/local/prosody-modules/" }
33modules_enabled = {
34 -- Generally required
35 "roster"; -- Allow users to have a roster. Recommended ;)
36 "saslauth"; -- Authentication for clients and servers. Recommended if you want to log in.
37 "tls"; -- Add support for secure TLS on c2s/s2s connections
38 "dialback"; -- s2s dialback support
39 "disco"; -- Service discovery
40
41 -- Not essential, but recommended
42 "private"; -- Private XML storage (for room bookmarks, etc.)
43 "vcard"; -- Allow users to set vCards
44
45 -- These are commented by default as they have a performance impact
46 --"privacy"; -- Support privacy lists
47 --"compression"; -- Stream compression (Note: Requires installed lua-zlib RPM package)
48
49 -- Nice to have
50 "version"; -- Replies to server version requests
51 "uptime"; -- Report how long server has been running
52 "time"; -- Let others know the time here on this server
53 "ping"; -- Replies to XMPP pings with pongs
54 "pep"; -- Enables users to publish their mood, activity, playing music and more
55 "register"; -- Allow users to register on this server using a client and change passwords
56
57 -- Admin interfaces
58 "admin_adhoc"; -- Allows administration via an XMPP client that supports ad-hoc commands
59 "admin_telnet"; -- Opens telnet console interface on localhost port 5582
60
61 -- HTTP modules
62 "bosh"; -- Enable BOSH clients, aka "Jabber over HTTP"
63 --"http_files"; -- Serve static files from a directory over HTTP
64
65 -- Other specific functionality
66 --"posix"; -- POSIX functionality, sends server to background, enables syslog, etc.
67 --"groups"; -- Shared roster support
68 --"announce"; -- Send announcement to all online users
69 --"welcome"; -- Welcome users who register accounts
70 --"watchregistrations"; -- Alert admins of registrations
71 --"motd"; -- Send a message to users when they log in
72 --"legacyauth"; -- Legacy authentication. Only used by some old clients and bots.
73"listusers";
74"conversejs";
75--"mam";
76"smacks";
77"csi";
78};
79
80-- These modules are auto-loaded, but should you want
81-- to disable them then uncomment them here:
82modules_disabled = {
83 -- "offline"; -- Store offline messages
84 -- "c2s"; -- Handle client connections
85 -- "s2s"; -- Handle server-to-server connections
86};
87
88-- Disable account creation by default, for security
89-- For more information see http://prosody.im/doc/creating_accounts
90allow_registration = false;
91
92-- These are the SSL/TLS-related settings. If you don't want
93-- to use SSL/TLS, you may comment or remove this
94ssl = {
95 key = "/etc/prosody/certs/MainHost.de.key";
96 certificate = "/etc/prosody/certs/MainHost.de.crt";
97}
98certificates = "certs"
99-- Force clients to use encrypted connections? This option will
100-- prevent clients from authenticating unless they are using encryption.
101c2s_require_encryption = true --false
102-- Force certificate authentication for server-to-server connections?
103-- This provides ideal security, but requires servers you communicate
104-- with to support encryption AND present valid, trusted certificates.
105-- NOTE: Your version of LuaSec must support certificate verification!
106-- For more information see http://prosody.im/doc/s2s#security
107s2s_secure_auth = false
108-- Many servers don't support encryption or have invalid or self-signed
109-- certificates. You can list domains here that will not be required to
110-- authenticate using certificates. They will be authenticated using DNS.
111--s2s_insecure_domains = { "gmail.com" }
112
113-- Even if you leave s2s_secure_auth disabled, you can still require valid
114-- certificates for some domains by specifying a list here.
115
116--s2s_secure_domains = { "jabber.org" }
117
118-- Select the authentication backend to use. The 'internal' providers
119-- use Prosody's configured data storage to store the authentication data.
120-- To allow Prosody to offer secure authentication mechanisms to clients, the
121-- default provider stores passwords in plaintext. If you do not trust your
122-- server please see http://prosody.im/doc/modules/mod_auth_internal_hashed
123-- for information about using the hashed backend.
124
125authentication = "internal_hashed"---plain"
126
127-- Select the storage backend to use. By default Prosody uses flat files
128-- in its configured data directory, but it also supports more backends
129-- through modules. An "sql" backend is included by default, but requires
130-- additional dependencies. See http://prosody.im/doc/storage for more info.
131
132storage = "sql" -- Default is "internal" (Note: "sql" requires installed
133-- lua-dbi RPM package)
134
135-- For the "sql" backend, you can uncomment *one* of the below to configure:
136--sql = { driver = "SQLite3", database = "prosody.sqlite" } -- Default. 'database' is the filename.
137sql = {
138 driver = "MySQL";
139 database = "+++++";
140 username = "+++++++";
141 password = "+++++++";
142 host = "localhost";
143 port = "3306";
144}
145--sql = { driver = "PostgreSQL", database = "prosody", username = "prosody", password = "secret", host = "localhost" }
146
147-- Logging configuration
148-- For advanced logging see http://prosody.im/doc/logging
149log = {
150 -- Log everything of level "info" and higher (that is, all except "debug" messages)
151 -- to /var/log/prosody/prosody.log and errors also to /var/log/prosody/prosody.err
152 info = "/var/log/prosody/prosody.log"; -- Change 'info' to 'debug' for verbose logging
153 error = "/var/log/prosody/prosody.err"; -- Log errors also to file
154 error = "*syslog"; -- ssLog errors also to syslog
155 log = "*console"; -- Log to the console, useful for debugging with daemonize=false
156 debug = "/var/log/prosody/prosody.log.debug"; -- Change 'info' to 'debug' for verbose logging
157}
158
159-- POSIX configuration, see also http://prosody.im/doc/modules/mod_posix
160pidfile = "/var/run/prosody/prosody.pid";
161--daemonize = false -- Default is "true"
162
163------ Additional config files ------
164-- For organizational purposes you may prefer to add VirtualHost and
165-- Component definitions in their own config files. This line includes
166-- all config files in /etc/prosody/conf.d/
167
168Include "conf.d/*.cfg.lua";
169http_default_host = "www.MainHost.de"