Giter VIP home page Giter VIP logo

Comments (5)

Gigadoc2 avatar Gigadoc2 commented on June 1, 2024 1

Hmm, the content of https://prosody.im/doc/components lead me to think that every component in use needs to have DNS records and a valid certificate in prosody itself. But maybe an upload component does not "need to be accessed from remote servers over s2s"?

from prosody-filer.

Gigadoc2 avatar Gigadoc2 commented on June 1, 2024

@meaz: A bit off-topic, but is there any background info to why the recommendation changed? I would like to understand what I am doing, but the page does not seem to be tracked in the version control system or anything.

from prosody-filer.

meaz avatar meaz commented on June 1, 2024

I'm sorry, I don't know. I've just noticed the change ;)

from prosody-filer.

Gigadoc2 avatar Gigadoc2 commented on June 1, 2024

Luckily I could find some information in the backlog of [email protected]:

At the protocol level it's entirely possible to have it on the virtualhost, but in practice this seems to be confusing and errorprone
In this case the anon users would have gotten upload slots like https://anon.sub.example.org:5821/upload/random
If you have a proxy in front then this might not work due to that
Other times people configure it so that multiple instances of http upload have the exact same URL, and then uploads fail because you talk to the wrong instance

If I understand this correctly, all this mostly applies to the internal mod_http_upload, as it would then create multiple upload endpoints (one for each vhost). For mod_http_upload_external there are probably less issues, but it still seems sensible to advertise the upload functionality only once (with the dedicated component) instead of multiple times (one per vhost) with each pointing to the same URL.

However, if I understand things right (I am still very confused about the relationship between DNS domains and XMPP components), having upload be a dedicated component also requires you to have DNS and certificates set up for that subdomain (independent of the actual HTTPS server).

from prosody-filer.

meaz avatar meaz commented on June 1, 2024

Here is what prosody devs told me: HTTP clients usually require a valid certificate being presented by HTTP servers so yes, having upload be a dedicated component also requires you to have a certificate set up for that subdomain.

"do I also need a dedicated dns for upload.myserver.com ?
-> Since prosody only points at a separate http server, only http considerations apply. "

from prosody-filer.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.