From mboxrd@z Thu Jan 1 00:00:00 1970 Authentication-Results: mail.toke.dk; spf=pass (mailfrom) smtp.mailfrom=irif.fr (client-ip=2001:660:3301:8000::1:2; helo=korolev.univ-paris7.fr; envelope-from=jch@irif.fr; receiver=) Authentication-Results: mail.toke.dk; dkim=pass (2048-bit key; unprotected) header.d=irif.fr header.i=@irif.fr header.a=rsa-sha256 header.s=dkim-irif header.b=HaPJWgmP Received: from korolev.univ-paris7.fr (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]) by mail.toke.dk (Postfix) with ESMTPS id 08488A68B25 for ; Wed, 8 May 2024 17:13:28 +0200 (CEST) Received: from mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [81.194.30.253]) by korolev.univ-paris7.fr (8.14.4/8.14.4/relay1/82085) with ESMTP id 448FDPbh002686 for ; Wed, 8 May 2024 17:13:25 +0200 Received: from mailhub.math.univ-paris-diderot.fr (localhost [127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTP id D5BC45E01A for ; Wed, 8 May 2024 17:13:24 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=irif.fr; h= content-type:content-type:mime-version:user-agent:subject :subject:from:from:message-id:date:date:received:received; s= dkim-irif; t=1715181203; x=1716045204; bh=8rjtyU4qapOr/M5hhyzG/Y 0QTcIvwbatGcBTfET8Gmc=; b=HaPJWgmPyfnq2mX45Ump3olkiS1ayjcw9yCn/I uLpNb9jrnmS9JuDl+x5KVms6QMAemuKzFl82R561NMRvG1U+6XnJDvPmZKwcpaTJ th6OpIeVgqXh076b3BhKPJniaTsC2viP2URYrzI/V1nngzOKskMBi/XLASJfjPLp qT8GekXidL62KyG5qhDOk4hT8M3t/YqymJPOjYG47O9snlD+r9ZO4T7JPe7pd8Gz pUmj5D+rMjagDKfVyNLFDOW4euzM0fmt4j+Vw9W1afe32X94nqYSAsReX+nWxLnH c5ET7wymELE2JMDKOlY3VoZEQRWSlfxjwZMPYk3RdJetBg/w== X-Virus-Scanned: amavisd-new at math.univ-paris-diderot.fr Received: from mailhub.math.univ-paris-diderot.fr ([127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [127.0.0.1]) (amavisd-new, port 10023) with ESMTP id o3pudR8is7d5 for ; Wed, 8 May 2024 17:13:23 +0200 (CEST) Received: from pirx.irif.fr (unknown [78.194.40.74]) (Authenticated sender: jch) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTPSA id 0FC1E5DFC2 for ; Wed, 8 May 2024 17:13:21 +0200 (CEST) Date: Wed, 08 May 2024 17:13:21 +0200 Message-ID: <877cg472we.wl-jch@irif.fr> From: Juliusz Chroboczek To: galene@lists.galene.org User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/29.3 Mule/6.0 MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue") Content-Type: text/plain; charset=US-ASCII X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (korolev.univ-paris7.fr [194.254.61.138]); Wed, 08 May 2024 17:13:25 +0200 (CEST) X-Miltered: at korolev with ID 663B9695.000 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)! X-j-chkmail-Enveloppe: 663B9695.000 from mailhub.math.univ-paris-diderot.fr/mailhub.math.univ-paris-diderot.fr/null/mailhub.math.univ-paris-diderot.fr/ X-j-chkmail-Score: MSGID : 663B9695.000 on korolev.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000 X-j-chkmail-Status: Ham Message-ID-Hash: BVBFV73BPYLBUX6RK7VJXNTFFXNC5DPX X-Message-ID-Hash: BVBFV73BPYLBUX6RK7VJXNTFFXNC5DPX X-MailFrom: jch@irif.fr X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header X-Mailman-Version: 3.3.9 Precedence: list Subject: [Galene] Heads up: slight change to the format of tokens List-Id: =?utf-8?q?Gal=C3=A8ne_videoconferencing_server_discussion_list?= Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: Hi, I've just implemented the commands /shutup and /unshutup, which make it possible to prevent a client from sending chat messages. It's the second time that this Sending messages is now governed by an explicit permission (the right to send messages used to be implicitly granted). This means that: - if you're using the "new" configuration format, you should use "message" instead of "observe" if you wish to grant a user the permission to send messages but not to participate with video and audio; "observe" no longer has the right to send chat messages; - if you're using the old (0.8) configuration format, nothing changes; - if you're using galene-ldap, you need to upgrade to a version dated 2024-05-08 or later; - if you're generating stateless tokens in your own software, you need to add the "message" value to the "permissions" field in addition to the "present" value. As far as stateful tokens are concerned, Galene master transparently adds the "message" permission when loading tokens from disk; the effect is that it's not currently possible to generate a token without the "message" permission (or, more accurately, it's possible to generate such a token, but the "message" permission will be added as soon as the token is reloaded from disk). I intend to remove this hack sometime in late 2024. -- Juliusz