Prosody

--- /etc/prosody/prosody.cfg.lua.deb13.1.orig   2025-04-04 02:10:46.000000000 +0200
+++ /etc/prosody/prosody.cfg.lua        2025-11-12 20:42:27.339922502 +0100
@@ -23,7 +23,7 @@
 -- for the server. Note that you must create the accounts separately
 -- (see https://prosody.im/doc/creating_accounts for info)
 -- Example: admins = { "user1@example.com", "user2@example.net" }
-admins = { }
+admins = { "alan@example.org" }
 
 -- This option allows you to specify additional locations where Prosody
 -- will search first for modules. For additional modules you can install, see
@@ -65,12 +65,12 @@
                "register"; -- Allow users to register on this server using a client and change passwords
                "time"; -- Let others know the time here on this server
                "uptime"; -- Report how long server has been running
-               "version"; -- Replies to server version requests
-               --"mam"; -- Store recent messages to allow multi-device synchronization
+               --"version"; -- Replies to server version requests
+               "mam"; -- Store recent messages to allow multi-device synchronization
                --"turn_external"; -- Provide external STUN/TURN service for e.g. audio/video calls
 
        -- Admin interfaces
-               "admin_adhoc"; -- Allows administration via an XMPP client that supports ad-hoc commands
+               --"admin_adhoc"; -- Allows administration via an XMPP client that supports ad-hoc commands
                "admin_shell"; -- Allow secure administration via 'prosodyctl shell'
 
        -- HTTP modules
@@ -79,17 +79,17 @@
                --"websocket"; -- XMPP over WebSockets
 
        -- Other specific functionality
-               "posix"; -- POSIX functionality, sends server to background, enables syslog, etc.
+               --"posix"; -- POSIX functionality, sends server to background, enables syslog, etc.
                --"announce"; -- Send announcement to all online users
                --"groups"; -- Shared roster support
-               --"mimicking"; -- Prevent address spoofing
+               "mimicking"; -- Prevent address spoofing
                --"motd"; -- Send a message to users when they log in
                --"proxy65"; -- Enables a file transfer proxy service which clients behind NAT can use
                --"s2s_bidi"; -- Bi-directional server-to-server (XEP-0288)
                --"server_contact_info"; -- Publish contact information for this service
-               --"tombstones"; -- Prevent registration of deleted accounts
-               --"watchregistrations"; -- Alert admins of registrations
-               --"welcome"; -- Welcome users who register accounts
+               "tombstones"; -- Prevent registration of deleted accounts
+               "watchregistrations"; -- Alert admins of registrations
+               "welcome"; -- Welcome users who register accounts
 }
 
 -- These modules are auto-loaded, but should you want
@@ -156,11 +156,11 @@
 -- through modules. An "sql" backend is included by default, but requires
 -- additional dependencies. See https://prosody.im/doc/storage for more info.
 
---storage = "sql" -- Default is "internal" (Debian: "sql" requires one of the
+storage = "sql" -- Default is "internal" (Debian: "sql" requires one of the
 -- lua-dbi-sqlite3, lua-dbi-mysql or lua-dbi-postgresql packages to work)
 
 -- For the "sql" backend, you can uncomment *one* of the below to configure:
---sql = { driver = "SQLite3", database = "prosody.sqlite" } -- Default. 'database' is the filename.
+sql = { driver = "SQLite3", database = "prosody.sqlite" } -- Default. 'database' is the filename.
 --sql = { driver = "MySQL", database = "prosody", username = "prosody", password = "secret", host = "localhost" }
 --sql = { driver = "PostgreSQL", database = "prosody", username = "prosody", password = "secret", host = "localhost" }
 
@@ -171,7 +171,7 @@
 -- they are offline. This setting controls how long Prosody will keep
 -- messages in the archive before removing them.
 
-archive_expires_after = "1w" -- Remove archived messages after 1 week
+archive_expires_after = "6 months" -- Remove archived messages after 6 months
 
 -- You can also configure messages to be stored in-memory only. For more
 -- archiving options, see https://prosody.im/doc/modules/mod_mam
@@ -233,12 +233,12 @@
 -- Component definitions in their own config files. This line includes
 -- all config files in /etc/prosody/conf.d/
 
-VirtualHost "localhost"
+--VirtualHost "localhost"
 -- Prosody requires at least one enabled VirtualHost to function. You can
 -- safely remove or disable 'localhost' once you have added another.
 
 
---VirtualHost "example.com"
+VirtualHost "example.org"
 
 ------ Components ------
 -- You can specify components to add hosts that provide special services,

-- /etc/prosody/conf.avail/share.example.org.cfg.lua

Component "share.example.org" "http_file_share"
    modules_disabled = { "s2s" }
    http_file_share_size_limit = 1*1024*1024*1024 -- 1 GiB
    http_file_share_daily_quota = 2*1024*1024*1024 -- 2 GiB
    http_external_url = "https://share.example.org/"
    http_paths = {
       file_share = "/"; -- Serve from base URL
    }

#!/bin/sh
/usr/bin/prosodyctl --root cert import /etc/letsencrypt/live

chmod 700 /etc/letsencrypt/renewal-hooks/deploy/prosody.sh

certbot renew --force-renewal

ls /etc/prosody/certs

prosodyctl check certs

prosodyctl passwd JID