add script to allow invitation from muc in firewall

2021-10-14 14:41:22 +02:00 · 2021-10-14 14:41:22 +02:00 · cea093c5d8
parent 79abba2826
commit cea093c5d8
2 changed files with 13 additions and 1 deletions
--- a/defaults/mod.yml
+++ b/defaults/mod.yml
@ -254,7 +254,7 @@ prosody_modules:
    description: 'Can efficiently block, bounce, drop, forward, copy, redirect stanzas and more.'
    module_enabled: '{{ firewall_module_enabled }}'
    extra_options:
-      - 'firewall_scripts = { "{{ prosody_community_modules_path }}/mod_firewall/scripts/spam-blocking.pfw", "{{ prosody_custom_script_path }}/servers_blocklist.pfw", "{{ prosody_custom_script_path }}/users_blocklist.pfw" }'
+      - 'firewall_scripts = { "{{ prosody_community_modules_path }}/mod_firewall/scripts/spam-blocking.pfw", "{{ prosody_custom_script_path }}/servers_blocklist.pfw", "{{ prosody_custom_script_path }}/users_blocklist.pfw", "{{ prosody_custom_script_path }}/invite_from_muc.pfw }'
 # spam-blocking.pfw is the default Prosody one, needed by the two following

  - name: 'http_altconnect'
--- a/templates/etc/prosody/custom_scripts/invite_from_muc.pfw
+++ b/templates/etc/prosody/custom_scripts/invite_from_muc.pfw
@ -0,0 +1,12 @@
+# This script depends on spam-blocking.pfw also being loaded
+# Any traffic that is not explicitly blocked or allowed by other
+# rules will be checked against the blocklist.txt file
+# Check mod_firewall/scripts/spam-blocking.pfw
+
+# This script allows invitation to a muc
+
+::user/spam_check_message_custom
+
+TYPE: normal
+INSPECT: {http://jabber.org/protocol/muc#user}x/invite
+PASS.