Open poVoq opened 3 years ago
poVoq
commented
3 years ago Hmm looking at this guess not: https://github.com/tmsmr/xmpp-webhook/blob/master/parser/slack-compatible.go
So anyone who knows the URL can post random messages via this bot unless it it used in a local network only?
tmsmr
commented
3 years ago Hey @poVoq. I'm not sure about your use case. Do you want to call webhooks using Matterbridge to send XMPP messages? If yes, this would be possible with a new handler (No big deal). You can't send messages to MUC's at the moment. But i agree, that would be useful - i'll check what has to be done for that. I aim to keep this project as small as possible, that's why there is no authentication included. To be honest, i think it's better to use a proxy for (basic-) authentication (architecture-wise), e.g.:
poVoq
commented
3 years ago The idea with Matterbridge is basically scrapped since I understood this appears as a bot account in XMPP (which Matterbridge supports anyways) and not as a more powerful component.
But I would still like to use this to send notifications from a Flarum.org forum via the Slack-like webhook support to a XMPP Muc. Preferrably with some shared secret so that the webhook can be less easily abused.
Hello,
I am interested in using this with Matterbridge, which recently added a way to relay messages to XMPP (spoofing users) via this Prosody module: https://modules.prosody.im/mod_slack_webhooks.html
But one of the downsides is that there is no authentication, so you can not expose this webhook endpoint anywhere.
Does this support some sort of tokenbased authentication that can be added to the webhook url?
Also, can it add messages to a MUC?
Thanks!
Edit: or is this actually a stupid question as this isn't a component and just relays messages as a bot? I guess so :(