majic-ansible-roles Changeset

Changeset - 8b0cbc64f6e9

Parent rev.

Child rev.

[Not reviewed]

0 2 0

Branko Majic (branko) - 10 years ago 2015-03-08 11:24:07
branko@majic.rs

MAR-3: Added legacyauth module, including support for deprecated TLS/SSL on port 5223.

2 files changed with 6 insertions and 2 deletions:

docs/rolereference.rst

roles/prosody/templates/prosody.cfg.lua.j2

0 comments (0 inline, 0 general)

docs/rolereference.rst

➞

Show inline comments

@@ @@ -496,9 +496,9 @@ The role implements the following: @@
 Prosody is configured as follows:
 * Modules enabled: roster, saslauth, tls, dialback, posix, private, vcard,
   version, uptime, time, ping, pep, register, admin_adhoc, announce.
+  version, uptime, time, ping, pep, register, admin_adhoc, announce, legacyauth.
 * Self-registration is not allowed.
 * TLS is configured.
+* TLS is configured. Legacy TLS is available on port 5223.
 * Client-to-server communication requires encryption (TLS).
 * Authentication is done via LDAP. For setting the LDAP TLS truststore, see
   :ref:`LDAP Client <ldap_client>`.

roles/prosody/templates/prosody.cfg.lua.j2

➞

Show inline comments

@@ @@ -32,6 +32,7 @@ modules_enabled = { @@
   -- Other specific functionality
     "announce"; -- Send announcement to all online users
     "legacyauth"; -- Allow legacy authentication and SSL
 };
 -- Disable account creation by default, for security
@@ @@ -45,6 +46,9 @@ ssl = { @@
   certificate = "{{ prosody_tls_certificate }}";
+}
 -- Ports on which to have direct TLS/SSL.
 legacy_ssl_ports = { 5223 }
 -- Force clients to use encrypted connection.
 c2s_require_encryption = true

0 comments (0 inline, 0 general)