social_stream-presence 0.0.2 → 0.0.4

data/ejabberd/conf/ejabberdctl.cfg

@@ -0,0 +1,154 @@
+#
+# In this file you can configure options that are passed by ejabberdctl
+# to the erlang runtime system when starting ejabberd
+#
+
+#' POLL: Kernel polling ([true|false])
+#
+# The kernel polling option requires support in the kernel.
+# Additionally, you need to enable this feature while compiling Erlang.
+#
+# Default: true
+#
+#POLL=true
+
+#.
+#' SMP: SMP support ([enable|auto|disable])
+#
+# Explanation in Erlang/OTP documentation:
+# enable: starts the Erlang runtime system with SMP support enabled.
+#   This may fail if no runtime system with SMP support is available.
+# auto: starts the Erlang runtime system with SMP support enabled if it
+#   is available and more than one logical processor are detected.
+# disable: starts a runtime system without SMP support.
+#
+# Default: auto
+#
+#SMP=auto
+
+#.
+#' ERL_MAX_PORTS: Maximum number of simultaneously open Erlang ports
+#
+# ejabberd consumes two or three ports for every connection, either
+# from a client or from another Jabber server. So take this into
+# account when setting this limit.
+#
+# Default: 32000
+# Maximum: 268435456
+#
+#ERL_MAX_PORTS=32000
+
+#.
+#' FIREWALL_WINDOW: Range of allowed ports to pass through a firewall
+#
+# If Ejabberd is configured to run in cluster, and a firewall is blocking ports,
+# it's possible to make Erlang use a defined range of port (instead of dynamic
+# ports) for node communication.
+#
+# Default: not defined
+# Example: 4200-4210
+#
+#FIREWALL_WINDOW=
+
+#.
+#' INET_DIST_INTERFACE: IP address where this Erlang node listens other nodes
+#
+# This communication is used by ejabberdctl command line tool,
+# and in a cluster of several ejabberd nodes.
+# Notice that the IP address must be specified in the Erlang syntax.
+#
+# Default: {127,0,0,1}
+#
+INET_DIST_INTERFACE={127,0,0,1}
+
+#.
+#' ERL_EPMD_ADDRESS: IP addresses where epmd listens for connections
+#
+# IMPORTANT: This option works only in Erlang/OTP R14B03 and newer.
+#
+# This environment variable may be set to a comma-separated
+# list of IP addresses, in which case the epmd daemon
+# will listen only on the specified address(es) and on the
+# loopback address (which is implicitly added to the list if it
+# has not been specified). The default behaviour is to listen on
+# all available IP addresses.
+#
+# Default: 0.0.0.0
+#
+#ERL_EPMD_ADDRESS=127.0.0.1
+
+#.
+#' ERL_PROCESSES: Maximum number of Erlang processes
+#
+# Erlang consumes a lot of lightweight processes. If there is a lot of activity
+# on ejabberd so that the maximum number of processes is reached, people will
+# experience greater latency times. As these processes are implemented in
+# Erlang, and therefore not related to the operating system processes, you do
+# not have to worry about allowing a huge number of them.
+#
+# Default: 250000
+# Maximum: 268435456
+#
+#ERL_PROCESSES=250000
+
+#.
+#' ERL_MAX_ETS_TABLES: Maximum number of ETS and Mnesia tables
+#
+# The number of concurrent ETS and Mnesia tables is limited. When the limit is
+# reached, errors will appear in the logs:
+#   ** Too many db tables **
+# You can safely increase this limit when starting ejabberd. It impacts memory
+# consumption but the difference will be quite small.
+#
+# Default: 1400
+#
+#ERL_MAX_ETS_TABLES=1400
+
+#.
+#' ERL_OPTIONS: Additional Erlang options
+#
+# The next variable allows to specify additional options passed to erlang while
+# starting ejabberd. Some useful options are -noshell, -detached, -heart. When
+# ejabberd is started from an init.d script options -noshell and -detached are
+# added implicitly. See erl(1) for more info.
+#
+# It might be useful to add "-pa /usr/local/lib/ejabberd/ebin" if you
+# want to add local modules in this path.
+#
+# Default: ""
+#
+#ERL_OPTIONS=""
+
+#.
+#' ERLANG_NODE: Erlang node name
+#
+# The next variable allows to explicitly specify erlang node for ejabberd
+# It can be given in different formats:
+# ERLANG_NODE=ejabberd
+#   Lets erlang add hostname to the node (ejabberd uses short name in this case)
+# ERLANG_NODE=ejabberd@hostname
+#   Erlang uses node name as is (so make sure that hostname is a real
+#   machine hostname or you'll not be able to control ejabberd)
+# ERLANG_NODE=ejabberd@hostname.domainname
+#   The same as previous, but erlang will use long hostname
+#   (see erl (1) manual for details)
+#
+# Default: ejabberd
+#
+#ERLANG_NODE=ejabberd
+
+#.
+#' EJABBERD_PID_PATH: ejabberd PID file
+#
+# Indicate the full path to the ejabberd Process identifier (PID) file.
+# If this variable is defined, ejabberd writes the PID file when starts,
+# and deletes it when stops.
+# Remember to create the directory and grant write permission to ejabberd.
+#
+# Default: don't write PID file
+#
+#EJABBERD_PID_PATH=/var/run/ejabberd/ejabberd.pid
+
+#.
+#'
+# vim: foldmarker=#',#. foldmethod=marker:

data/ejabberd/conf/inetrc

@@ -0,0 +1,3 @@
+{lookup,["file","native"]}.
+{host,{127,0,0,1}, ["localhost","hostalias"]}.
+{file, resolv, "/etc/resolv.conf"}.

data/ejabberd/conf/server.pem

@@ -0,0 +1,37 @@
+-----BEGIN CERTIFICATE-----
+MIIDvDCCAyWgAwIBAgIJAOBE76dYOsdsMA0GCSqGSIb3DQEBBAUAMIGbMQswCQYD
+VQQGEwJGUjEMMAoGA1UECBMDSURGMQ4wDAYDVQQHEwVQYXJpczEXMBUGA1UEChMO
+VGVzdCBTZXJ2ZXIgUDExFDASBgNVBAsTC1Byb2Nlc3Mtb25lMRcwFQYDVQQDEw5N
+aWNrYWVsIFJlbW9uZDEmMCQGCSqGSIb3DQEJARYXY29udGFjdEBwcm9jZXNzLW9u
+ZS5uZXQwHhcNMDYwMzAzMTYwNjQ2WhcNMTYwMjI5MTYwNjQ2WjCBmzELMAkGA1UE
+BhMCRlIxDDAKBgNVBAgTA0lERjEOMAwGA1UEBxMFUGFyaXMxFzAVBgNVBAoTDlRl
+c3QgU2VydmVyIFAxMRQwEgYDVQQLEwtQcm9jZXNzLW9uZTEXMBUGA1UEAxMOTWlj
+a2FlbCBSZW1vbmQxJjAkBgkqhkiG9w0BCQEWF2NvbnRhY3RAcHJvY2Vzcy1vbmUu
+bmV0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8sZ/Wb2GqYPL43OBzBNz0
+gFT1iDZMLLgpMYqBZElKul7GGCdLZElgqVYm8KRxPIiRd5BPbueNkhw/YhhcQAay
+4+Ef7Y6zdjXAsYGtYhdmms6icCk1RxIMa2TvJ6dZlraV2KJdNExxhMtSyj3NBVs4
+276RcZSukN2AR4/pziWysQIDAQABo4IBBDCCAQAwHQYDVR0OBBYEFMBW8llnB7AA
+hu9u+ivBndDdbmLTMIHQBgNVHSMEgcgwgcWAFMBW8llnB7AAhu9u+ivBndDdbmLT
+oYGhpIGeMIGbMQswCQYDVQQGEwJGUjEMMAoGA1UECBMDSURGMQ4wDAYDVQQHEwVQ
+YXJpczEXMBUGA1UEChMOVGVzdCBTZXJ2ZXIgUDExFDASBgNVBAsTC1Byb2Nlc3Mt
+b25lMRcwFQYDVQQDEw5NaWNrYWVsIFJlbW9uZDEmMCQGCSqGSIb3DQEJARYXY29u
+dGFjdEBwcm9jZXNzLW9uZS5uZXSCCQDgRO+nWDrHbDAMBgNVHRMEBTADAQH/MA0G
+CSqGSIb3DQEBBAUAA4GBAGtYeVL7BlksuXf79V/WfBPosKD4yVzs7P9GsgS/D10T
+HMIRbjIOma4IVy8Es/UBJ0Q4gPojVg4lPo3xv/PSgSDJfbcJyWjSbAh0eGvHtNc5
+4GnYVx5ox0o0MBR8Mt0ChbwA5QMSo6bqc5tRK6+B+ib4ELix7MCSq3wdh7HcuL9D
+-----END CERTIFICATE-----
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

data/ejabberd/conf/ssconfig.cfg

@@ -0,0 +1,32 @@
+#Social Stream Presence: ejabberd config
+
+#Ejabberd node server domain
+server_domain=trapo
+
+#Scripts Path
+scripts_path=/home/aldo/ejabberd-2.1.8_scripts
+
+#Source path: uncomment to compile ejabberd social stream module
+source_path=/home/aldo/ejabberd-2.1.8_source/src
+
+#It is also necessary to modify the file: /etc/ejabberd/ejabberd.cfg
+#%%{auth_method, external}.
+#%%{extauth_program, "scripts_path/authentication_script"}.
+
+#API REST
+auth_api=http://0.0.0.0:3000/users/sign_in
+set_connection_api=http://0.0.0.0:3000/xmpp/setConnection
+unset_connection_api=http://0.0.0.0:3000/xmpp/unsetConnection
+reset_connection_api=http://0.0.0.0:3000/xmpp/resetConnection
+synchronize_presence_api=http://0.0.0.0:3000/xmpp/synchronizePresence
+set_presence_api=http://0.0.0.0:3000/xmpp/setPresence
+unset_presence_api=http://0.0.0.0:3000/xmpp/unsetPresence
+
+#Social Stream Login
+ss_login=social_stream-presence
+
+#Social Stream PASSWORD
+ss_password=DnVCB8G|R$VGmZ@2?5=CYS8z)NrL@LuQ&LTCUh^9B(DF4gC&sQpfbCMbaNKEdNrGYkT4L5zxM0wNWs5q3?ww(b&0d5fK87z^BmgJMMF2SKXT9pEk^UEcch!GX!Avf5GT9)j@FpHe)4RH)BK7J98u!sUmJHUN(Je6aBmn!FtZ4Ab5h8$|nsvUt3Jkq?21HOH$r0sDyJZZvGOCgFS2EKw@0wXsJRHYVRPBe&Eb!1X55e55bQ^h2AW&^R70TK0m)Fu8
+
+#Ejabberd Server Password
+ejabberd_password=G&s6GBnO)anw2Ene%K12Cb=0quj@uDmA

data/ejabberd/ejabberd_scripts/authentication_script

@@ -0,0 +1,117 @@
+#!/usr/bin/env ruby
+
+require 'logger'
+require 'rest_client'
+
+$stdout.sync = true
+$stdin.sync = true
+
+path = "/var/log/ejabberd/auth.log"
+file = File.open(path, File::WRONLY | File::APPEND | File::CREAT)
+file.sync = true
+$logger = Logger.new(file)
+$logger.level = Logger::DEBUG
+
+$logger.info "#{Process.pid}: Starting ejabberd authentication service"
+
+
+def getOption(option)
+  File.open('/etc/ejabberd/ssconfig.cfg', 'r') do |f1|  
+    while line = f1.gets  
+      line = line.gsub(/\n/,'')
+      if line.match(/^#/)
+        #Comments
+      elsif line.match(/^#{option}/)
+        return line.gsub(/#{option}/,'')
+      end  
+    end  
+  end
+  return "Undefined"
+end
+
+$accessUrl = getOption("auth_api=")
+$sslogin = getOption("ss_login=")
+$sspass = getOption("ss_password=")
+
+
+def auth(username, password)
+
+  #[TEST ONLY] Allow everybody
+  #return true
+
+  #[TEST] Admin password
+  #if username == "admin" and password == "pass"
+  #  return true
+  #end
+
+  #Social Stream password
+  if username == $sslogin and password == $sspass
+    return true
+  end
+
+  begin
+    response = RestClient.post $accessUrl, :user => { :email => username , :password => password }
+
+    if response.code == 201
+      return true
+    else
+      return false
+    end
+  
+  rescue => e
+    
+    unless e.class.name == "RestClient::Unauthorized" and e.message == "401 Unauthorized"
+	$logger.error "#{Process.pid}: Exception in auth(username, password)"
+    	$logger.error "#{Process.pid}: #{e.class.name}: #{e.message}"
+    end
+
+    return false
+  end
+  
+end
+
+
+loop do
+  begin
+    $stdin.eof? # wait for input
+    start = Time.now
+
+    msg = $stdin.read(2)
+    length = msg.unpack('n').first
+
+    msg = $stdin.read(length)
+    cmd, *data = msg.split(":")
+
+    $logger.info "#{Process.pid}: Incoming Request: '#{cmd}'"
+    success = case cmd
+    
+    when "auth"
+      $logger.info "#{Process.pid}: Authenticating #{data[0]}@#{data[1]}"
+      $logger.info "#{Process.pid}: With password #{data[2]}"
+      #password = data[2]
+      
+      #Authorization condition for LOGIN
+      auth(data[0], data[2])
+      
+      
+    when "isuser"
+     
+      $logger.info "#{Process.pid}: Isuser #{data[0]}@#{data[1]}"
+
+      #Authorization condition for ISUSER (Add buddys)
+      true
+      
+    else
+      false
+    end
+
+    bool = success ? 1 : 0
+    $stdout.write [2, bool].pack("nn")
+    $logger.info "#{Process.pid}: Response: #{success ? "success" : "failure"}"
+  rescue => e
+    $logger.error "#{Process.pid}: #{e.class.name}: #{e.message}"
+    $logger.error "#{Process.pid}: " + e.backtrace.join("\n\t")
+    $logger.error "#{Process.pid}: Finish process"
+    break
+  end
+end

data/ejabberd/ejabberd_scripts/authentication_script_org

@@ -0,0 +1,114 @@
+#!/usr/bin/env ruby
+
+require 'logger'
+require 'rest_client'
+
+$stdout.sync = true
+$stdin.sync = true
+
+path = "/var/log/ejabberd/auth.log"
+file = File.open(path, File::WRONLY | File::APPEND | File::CREAT)
+file.sync = true
+$logger = Logger.new(file)
+$logger.level = Logger::DEBUG
+
+$logger.info "#{Process.pid}: Starting ejabberd authentication service"
+
+
+def getOption(option)
+  File.open('/etc/ejabberd/ssconfig.cfg', 'r') do |f1|  
+    while line = f1.gets  
+      line = line.gsub(/\n/,'')
+      if line.match(/^#/)
+        #Comments
+      elsif line.match(/^#{option}/)
+        return line.gsub(/#{option}/,'')
+      end  
+    end  
+  end
+  return "Undefined"
+end
+
+$accessUrl = getOption("auth_api=")
+$sslogin = getOption("ss_login=")
+$sspass = getOption("ss_password=")
+
+
+def auth(username, password)
+
+  #[TEST] Admin password
+  if username == "admin" and password == "pass"
+    return true
+  end
+
+  #Social Stream password
+  if username == $sslogin and password == $sspass
+    return true
+  end
+
+  begin
+    response = RestClient.post $accessUrl, :user => { :email => username , :password => password }
+
+    if response.code == 201
+      return true
+    else
+      return false
+    end
+  
+  rescue => e
+    
+    unless e.class.name == "RestClient::Unauthorized" and e.message == "401 Unauthorized"
+	$logger.error "#{Process.pid}: Exception in auth(username, password)"
+    	$logger.error "#{Process.pid}: #{e.class.name}: #{e.message}"
+    end
+
+    return false
+  end
+  
+end
+
+
+loop do
+  begin
+    $stdin.eof? # wait for input
+    start = Time.now
+
+    msg = $stdin.read(2)
+    length = msg.unpack('n').first
+
+    msg = $stdin.read(length)
+    cmd, *data = msg.split(":")
+
+    $logger.info "#{Process.pid}: Incoming Request: '#{cmd}'"
+    success = case cmd
+    
+    when "auth"
+      $logger.info "#{Process.pid}: Authenticating #{data[0]}@#{data[1]}"
+      $logger.info "#{Process.pid}: With password #{data[2]}"
+      #password = data[2]
+      
+      #Authorization condition for LOGIN
+      auth(data[0], data[2])
+      
+      
+    when "isuser"
+     
+      $logger.info "#{Process.pid}: Isuser #{data[0]}@#{data[1]}"
+
+      #Authorization condition for ISUSER (Add buddys)
+      true
+      
+    else
+      false
+    end
+
+    bool = success ? 1 : 0
+    $stdout.write [2, bool].pack("nn")
+    $logger.info "#{Process.pid}: Response: #{success ? "success" : "failure"}"
+  rescue => e
+    $logger.error "#{Process.pid}: #{e.class.name}: #{e.message}"
+    $logger.error "#{Process.pid}: " + e.backtrace.join("\n\t")
+    $logger.error "#{Process.pid}: Finish process"
+    break
+  end
+end