chatty_server

The first is chatty_server, a small XMPP bot I use to interact with my server. It allows me to get information about the CPU load, traffic, weather etc. It also has a small feature to get reminder messages. There was a bug that allowed anyone to spam reminders. Anybody can add the bot to their rooster and could create random reminders that I would get. I got none, so the bot must remain quite unheard-of.

HTTPAuthentificationOverXMPP

The second project is HTTPAuthentificationOverXMPP, a component that I use to allow 2 Factor authentication with XMPP. The original project had not been updated for a long time and I wanted to try to modify it to rely on another XMPP go library. I have never coded in the Golang language and it seemed like a nice introduction. I relied on go-xmpp where I added the support for XEP 0070. It was really interesting. The new component is running for several months and I am quite happy with it even if I don't have any serious project relying on it.

The https://demo.agayon.be/ website is still up if you want to test it.
I hope being able to provide more update about my projects in the future :-).

Using Prosody with a HTTP Reverse Proxy

It's been a while since I first installed prosody on Agayon.be. I use it to experiments with my bots, to keep contact with the XMPP community and discover new cool stuffs to do. Recently I struggled a bit because I wanted to hide the prosody small HTTP server behind my Proxy. For various reasons, I still use Apache 2.4 and I could not get it to work with prosody. I mostly use the HTTP server for bosh authentication with Converse.js and with the http_upload module. When the 5281 port was accessible and Prosody handled the requests directly on the internet it worked well. But when I followed the documentation to use a proxy, it stopped working. All my PUT requests got a 404 error. I tested my setup with Slixmpp and the http_upload example.

Here is my configuration before the fix:

Prosody

Main config

[...]
https_ports = { 5281 }
https_interfaces = {  "127.0.0.1", "::1" }
trusted_proxies = { "127.0.0.1", "::1"}
[...]

VirtualHost

[...]
Component "upload.example.com" "http_upload"
       http_max_content_size = 10485760
       http_external_url = "https://upload.example.com/"
[...]

Apache VirtualHost

[...]
ProxyPass / http://localhost:5280/
ProxyPassReverse / http://localhost:5280/
[...]

Logs

Client

[...]
Client:
DEBUG    SEND: <iq id="23efd54cf4b2487386852e800f2ea411" to="upload.example.com" type="get"><request xmlns="urn:xmpp:http:upload:0" filename="robot.png" size="118037" content-type="image/png" /></iq>
DEBUG    RECV: <iq type="result" id="23efd54cf4b2487386852e800f2ea411" from="upload.example.com" to="test@example.com/test"><slot xmlns="urn:xmpp:http:upload:0"><get url="https://upload.example.com/upload/au5rOiUMomJbDI3q/robot.png" /><put url="https://upload.example.com/upload/au5rOiUMomJbDI3q/robot.png" /></slot></iq>
ERROR    Could not upload file: 404 (<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<title>404 Not Found</title>
example.com
[...]

Server

[...]
Mar 21 10:02:42 c2s5586c8e88960 debug   Received[c2s]: <iq id='23efd54cf4b2487386852e800f2ea411' type='get' to='upload.example.com'>
Mar 21 10:02:42 c2s5586c8e88960 debug   Given upload slot "au5rOiUMomJbDI3q/robot.png"
Mar 21 10:02:42 c2s5586c8e88960 debug   Sending[c2s]: <iq type='result' id='23efd54cf4b2487386852e800f2ea411' from='upload.example.com' to='memo@agayon.be/test'>
Mar 21 10:02:42 socket  debug   server.lua: accepted new client connection from ::1:49436 to 5280
Mar 21 10:02:42 http.server debug   Firing event: PUT /upload/au5rOiUMomJbDI3q/robot.png
Mar 21 10:02:42 http.server debug   Firing event: PUT localhost/upload/au5rOiUMomJbDI3q/robot.png

What is important to see is the second event:

PUT localhost/upload/au5rOiUMomJbDI3q/robot.png

on a working configuration it is

PUT upload.example.com/upload/au5rOiUMomJbDI3q/robot.png

The fix

After a small discussion with Link Mauve from JabberFr, he suggested me to use setup the proxy to tell him to force its headers:

Apache

    [...]
    RequestHeader set Host "upload.example.com"
    ProxyPreserveHost On
    ProxyPass / http://localhost:5280/
    ProxyPassReverse / http://localhost:5280/
    [...]

Nginx

[...]
proxy_set_header Host "upload.example.com";
[...]

Two small lines and now it is working as expected :-).

Update Errol: the XMPP Automatic file sender

Errol is a file sender that can be used to watch a directory and automatically transfers the new files (or modified ones) with XMPP.

You can find the previous description here.

I recently updated it to V2.0.1. This articles describes the changes since last article.

New Converse plugin: Verify HTTP requests with XMPP

Converse is a JavaScript XMPP client that can be run in a web browser. Unfortunately, it does not support the XMPP extension (XEP) that allows to verify HTTP Requests via XMPP (XMPP): XEP-0070. So I decided to code a small plugin to provide this functionality.

This article follows the serie about this XEP:

One about Passordless Authentication using XMPP on a Django website.
A presentation about a demo website providing this functionnality.

screenshot

Demo Website: Authentication with XMPP

This article follow up the article about Authentication without password using XMPP on a Django website previously presented here. This article introduced the XMPP extension (XEP-0070) which allows one to connect on a website with his XMPP account, without additional password.

Unfortunately, the XEP-0070 is not widely used but this article aims to present you my little contribution to change this situation.

Journal of a Bot

Other articles

Using Prosody with a HTTP Reverse Proxy

Prosody

Main config

VirtualHost

Apache VirtualHost

Logs

Client

Server

The fix

Apache

Nginx

Links

Update Errol: the XMPP Automatic file sender

New Converse plugin: Verify HTTP requests with XMPP

Demo Website: Authentication with XMPP

Other articles

Prosody

Main config

VirtualHost

Apache VirtualHost

Logs

Client

Server

The fix

Apache

Nginx

Links

links

social