Openfire Configuration: Difference between revisions

From OLPC
Jump to navigation Jump to search
(New page: {{OLPC}} For now, we only use (and support) ejabberd as XMPP server. So if you want to deploy your own server you should probably see Ejabberd_Configuration. But at some point we'd li...)
 
No edit summary
Line 6: Line 6:


'''Important:''' As said, we only support Ejabberd as XMPP server so don't try this in a production environnement, really.
'''Important:''' As said, we only support Ejabberd as XMPP server so don't try this in a production environnement, really.

== Installation ==

The easiest way to test Openfire is to download its [http://www.igniterealtime.org/downloads/download-landing.jsp?file=openfire/openfire_3_4_1.tar.gz tarball], extract it and simply run
./openfire/bin/openfire start


== Configuration ==
== Configuration ==

You have to connect to Openfire's web admin interface: http://<yourserver>:9090 and perform the few initial configurations steps.
I tested using the ''Embedded Database'' as it's the faster way to deploy your server.


=== MUC ===
=== MUC ===
Line 16: Line 24:


Currently the XOs don't do a very good job with authorisation because they assume that only other XOs eg from the same school will be connected to the server, and "all see all" is an acceptable policy. For Internet-connected servers, it's best to disable "s2s" (server to server) connections to avoid people from outside connecting in and breaking this assumption.
Currently the XOs don't do a very good job with authorisation because they assume that only other XOs eg from the same school will be connected to the server, and "all see all" is an acceptable policy. For Internet-connected servers, it's best to disable "s2s" (server to server) connections to avoid people from outside connecting in and breaking this assumption.

Server -> Server settings -> Server to Server : change ''Service Enabled' to ''Disabled''


=== Raising The Limits ===
=== Raising The Limits ===


Until a few constants are tweaks (see [http://dev.laptop.org/ticket/5018 #5018]), the XOs send larger than normal stanzas through the server, which triggers a maximum stanza size limit and can make the jabber server disconnect you eg when inserting an image into a shared document. To fix this, we raise the maximum stanza limit.
Until a few constants are tweaks (see [http://dev.laptop.org/ticket/5018 #5018]), the XOs send larger than normal stanzas through the server, which triggers a maximum stanza size limit and can make the jabber server disconnect you eg when inserting an image into a shared document. To fix this, we raise the maximum stanza limit.

TODO


== Setting Up Shared Roster ==
== Setting Up Shared Roster ==


=== Enable the plugin ===
'''You must perform this step by logging in to ejabberd's web admin interface, or your XOs will never see any buddies.'''
First you have to enable the "Registration" plugin.

Plugins -> Plugins admin -> Available Plugins : ''Registration'' hit the green ''Install'' button

=== Create the group ===
First, let's create a group called "Everyone".

Users/Groups -> Groups -> Create New Group : set ''Everyone'' as ''Group Name'' and create the group
Now enable contact list group sharing using ''Everyone'' as group name.

=== Auto add accounts ===
We have now to ask Openfire to automatically add each new account to our group.

Users/Groups -> Users -> Registration Properties :
Default Group : set "Everyone" and then hit ''Save Group''
Registration Settings: enable ''Enable automatically adding of new users to a group'' and then hit ''Save Settings''

Revision as of 11:16, 3 December 2007

  This page is monitored by the OLPC team.

For now, we only use (and support) ejabberd as XMPP server. So if you want to deploy your own server you should probably see Ejabberd_Configuration. But at some point we'd like to see XO's working with as much Jabber server as possible. So this page describes how to use Openfire as an alternative. The explanations above refers about Openfire 3.4.1. You'll also need a patched version of telepathy-gabble fixing #5223 and #5224. These fixes are merged in current HEAD version of Gabble.

Important: As said, we only support Ejabberd as XMPP server so don't try this in a production environnement, really.

Installation

The easiest way to test Openfire is to download its tarball, extract it and simply run

 ./openfire/bin/openfire  start

Configuration

You have to connect to Openfire's web admin interface: http://<yourserver>:9090 and perform the few initial configurations steps. I tested using the Embedded Database as it's the faster way to deploy your server.

MUC

The default MUC configuration is to assume that conference.yourserver is a valid hostname. This isn't actually important for the XOs, but it must exist from the perspective of the server. You could put it into /etc/hosts for example.

Disable S2S

Currently the XOs don't do a very good job with authorisation because they assume that only other XOs eg from the same school will be connected to the server, and "all see all" is an acceptable policy. For Internet-connected servers, it's best to disable "s2s" (server to server) connections to avoid people from outside connecting in and breaking this assumption.

Server -> Server settings -> Server to Server : change Service Enabled' to Disabled

Raising The Limits

Until a few constants are tweaks (see #5018), the XOs send larger than normal stanzas through the server, which triggers a maximum stanza size limit and can make the jabber server disconnect you eg when inserting an image into a shared document. To fix this, we raise the maximum stanza limit.

TODO

Setting Up Shared Roster

Enable the plugin

First you have to enable the "Registration" plugin.

Plugins -> Plugins admin -> Available Plugins : Registration hit the green Install button

Create the group

First, let's create a group called "Everyone".

Users/Groups -> Groups -> Create New Group : set Everyone as Group Name and create the group Now enable contact list group sharing using Everyone as group name.

Auto add accounts

We have now to ask Openfire to automatically add each new account to our group.

Users/Groups -> Users -> Registration Properties : Default Group : set "Everyone" and then hit Save Group Registration Settings: enable Enable automatically adding of new users to a group and then hit Save Settings