Context Navigation

soju.1.scd@ 619

Last change on this file since 619 was 615, checked in by contact, 4 years ago
Add "server notice" command
File size: 10.5 KB

Line
1	soju(1)
2
3	# NAME
4
5	soju - IRC bouncer
6
7	# SYNOPSIS
8
9	soju [options...]
10
11	# DESCRIPTION
12
13	soju is a user-friendly IRC bouncer. It connects to upstream IRC servers on
14	behalf of the user to provide extra features.
15
16	- Multiple separate users sharing the same bouncer, each with their own
17	upstream servers
18	- Clients connecting to multiple upstream servers via a single connection to
19	the bouncer
20	- Sending the backlog (messages received while the user was disconnected from
21	the bouncer), with per-client buffers
22
23	When joining a channel, the channel will be saved and automatically joined on
24	the next connection. When registering or authenticating with NickServ, the
25	credentials will be saved and automatically used on the next connection if the
26	server supports SASL. When parting a channel with the reason "detach", the
27	channel will be detached instead of being left.
28
29	When all clients are disconnected from the bouncer, the user is automatically
30	marked as away.
31
32	soju supports two connection modes:
33
34	- Single upstream mode: one downstream connection maps to one upstream
35	connection. To enable this mode, connect to the bouncer with the username
36	"<username>/<network>". If the bouncer isn't connected to the upstream
37	server, it will get automatically added. Then channels can be joined and
38	parted as if you were directly connected to the upstream server.
39	- Multiple upstream mode: one downstream connection maps to multiple upstream
40	connections. Channels and nicks are suffixed with the network name. To join
41	a channel, you need to use the suffix too: _/join #channel/network_. Same
42	applies to messages sent to users.
43
44	For per-client history to work, clients need to indicate their name. This can
45	be done by adding a "@<client>" suffix to the username.
46
47	soju will reload the TLS certificate and key when it receives the HUP signal.
48
49	Administrators can broadcast a message to all bouncer users via _/notice
50	$<hostname> <text>_, or via _/notice $\* <text>_ in multi-upstream mode. All
51	currently connected bouncer users will receive the message from the special
52	_BouncerServ_ service.
53
54	# OPTIONS
55
56	-h, -help
57	Show help message and quit.
58
59	-config <path>
60	Path to the config file. If unset, a default config file is used.
61
62	-debug
63	Enable debug logging (this will leak sensitive information such as
64	passwords).
65
66	-listen <uri>
67	Listening URI (default: ":6697"). Can be specified multiple times.
68
69	# CONFIG FILE
70
71	The config file has one directive per line.
72
73	Example:
74
75	```
76	listen ircs://
77	tls cert.pem key.pem
78	hostname example.org
79	```
80
81	The following directives are supported:
82
83	listen <uri>
84	Listening URI (default: ":6697").
85
86	The following URIs are supported:
87
88	- _[ircs://][host][:port]_ listens with TLS over TCP (default port if
89	omitted: 6697)
90	- _irc+insecure://[host][:port]_ listens with plain-text over TCP (default
91	port if omitted: 6667)
92	- _unix:///<path>_ listens on a Unix domain socket
93	- _wss://[host][:port]_ listens for WebSocket connections over TLS (default
94	port: 443)
95	- _ws+insecure://[host][:port]_ listens for plain-text WebSocket
96	connections (default port: 80)
97	- _ident://[host][:port]_ listens for plain-text ident connections (default
98	port: 113)
99
100	If the scheme is omitted, "ircs" is assumed. If multiple listen
101	directives are specified, soju will listen on each of them.
102
103	hostname <name>
104	Server hostname (default: system hostname).
105
106	tls <cert> <key>
107	Enable TLS support. The certificate and the key files must be PEM-encoded.
108
109	db sqlite3 <path>
110	Set the SQLite database path (default: "soju.db" in the current directory).
111
112	log fs <path>
113	Path to the bouncer logs root directory, or empty to disable logging. By
114	default, logging is disabled.
115
116	http-origin <patterns...>
117	List of allowed HTTP origins for WebSocket listeners. The parameters are
118	interpreted as shell patterns, see glob(7).
119
120	By default, only the request host is authorized. Use this directive to
121	enable cross-origin WebSockets.
122
123	accept-proxy-ip <cidr...>
124	Allow the specified IPs to act as a proxy. Proxys have the ability to
125	overwrite the remote and local connection addresses (via the PROXY protocol,
126	the Forwarded HTTP header field defined in RFC 7239 or the X-Forwarded-\*
127	HTTP header fields). The special name "localhost" accepts the loopback
128	addresses 127.0.0.0/8 and ::1/128.
129
130	By default, all IPs are rejected.
131
132	max-user-networks <limit>
133	Maximum number of networks per user. By default, there is no limit.
134
135	# IRC SERVICE
136
137	soju exposes an IRC service called BouncerServ to manage the bouncer.
138	Commands can be sent via regular private messages
139	(_/msg BouncerServ <command> [args...]_). Commands may be written in full or
140	abbreviated form, for instance network can be abbreviated as net or just
141	n.
142
143	help [command]
144	Show a list of commands. If _command_ is specified, show a help message for
145	the command.
146
147	network create -addr <addr> [options...]
148	Connect to a new network at _addr_. _-addr_ is mandatory.
149
150	_addr_ supports several connection types:
151
152	- _[ircs://]<host>[:port]_ connects with TLS over TCP
153	- _irc+insecure://<host>[:port]_ connects with plain-text TCP
154	- _irc+unix:///<path>_ connects to a Unix socket
155
156	Other options are:
157
158	-name <name>
159	Short network name. This will be used instead of _addr_ to refer to the
160	network.
161
162	-username <username>
163	Connect with the specified username. By default, the nickname is used.
164
165	-pass <pass>
166	Connect with the specified server password.
167
168	-realname <realname>
169	Connect with the specified real name. By default, the account's realname
170	is used if set, otherwise the network's nickname is used.
171
172	-nick <nickname>
173	Connect with the specified nickname. By default, the account's username
174	is used.
175
176	-enabled true\|false
177	Enable or disable the network. If the network is disabled, the bouncer
178	won't connect to it. By default, the network is enabled.
179
180	-connect-command <command>
181	Send the specified command as a raw IRC message right after connecting
182	to the server. This can be used to identify to an account when the
183	server doesn't support SASL.
184
185	For instance, to identify with _NickServ_, the following command can be
186	used:
187
188	```
189	PRIVMSG NickServ :IDENTIFY <password>
190	```
191
192	The flag can be specified multiple times to send multiple IRC messages.
193	To clear all commands, set it to the empty string.
194
195	network update <name> [options...]
196	Update an existing network. The options are the same as the
197	_network create_ command.
198
199	When this command is executed, soju will disconnect and re-connect to the
200	network.
201
202	network delete <name>
203	Disconnect and delete a network.
204
205	network quote <name> <command>
206	Send a raw IRC line as-is to a network.
207
208	network status
209	Show a list of saved networks and their current status.
210
211	channel status [options...]
212	Show a list of saved channels and their current status.
213
214	Options:
215
216	-network <name>
217	Only show channels for the specified network. By default, only the
218	channels in the current network are displayed.
219
220	channel update <name> [options...]
221	Update the options of an existing channel.
222
223	Options are:
224
225	-relay-detached <mode>
226	Set when to relay messages from detached channels to the user with a BouncerServ NOTICE.
227
228	Modes are:
229
230	message
231	Relay any message from this channel when detached.
232
233	highlight
234	Relay only messages mentioning you when detached.
235
236	none
237	Don't relay any messages from this channel when detached.
238
239	default
240	Currently same as highlight. This is the default behaviour.
241
242	-reattach-on <mode>
243	Set when to automatically reattach to detached channels.
244
245	Modes are:
246
247	message
248	Reattach to this channel when any message is received.
249
250	highlight
251	Reattach to this channel when any message mentioning you is received.
252
253	none
254	Never automatically reattach to this channel.
255
256	default
257	Currently same as none. This is the default behaviour.
258
259	-detach-after <duration>
260	Automatically detach this channel after the specified duration has elapsed without receving any message corresponding to -detach-on.
261
262	Example duration values: 1h30m, 30s, 2.5h.
263
264	Setting this value to 0 will disable this behaviour, i.e. this channel will never be automatically detached. This is the default behaviour.
265
266	-detach-on <mode>
267	Set when to reset the auto-detach timer used by -detach-after, causing it to wait again for the auto-detach duration timer before detaching.
268	Joining, reattaching, sending a message, or changing any channel option will reset the timer, in addition to the messages specified by the mode.
269
270	Modes are:
271
272	message
273	Receiving any message from this channel will reset the auto-detach timer.
274
275	highlight
276	Receiving any message mentioning you from this channel will reset the auto-detach timer.
277
278	none
279	Receiving messages from this channel will not reset the auto-detach timer. Sending messages or joining the channel will still reset the timer.
280
281	default
282	Currently same as message. This is the default behaviour.
283
284	certfp generate [options...] <network name>
285	Generate self-signed certificate and use it for authentication (via SASL
286	EXTERNAL).
287
288	Generates a RSA-3072 private key by default.
289
290	Options are:
291
292	-key-type <type>
293	Private key algoritm to use. Valid values are: rsa, ecdsa, ed25519.
294	ecdsa uses NIST P-521 curve.
295
296	-bits <bits>
297	Size of RSA key to generate. Ignored for other key types.
298
299	certfp fingerprint <network name>
300	Show SHA-1 and SHA-256 fingerprints for the certificate
301	currently used with the network.
302
303	sasl set-plain <network name> <username> <password>
304	Set SASL PLAIN credentials.
305
306	sasl reset <network name>
307	Disable SASL authentication and remove stored credentials.
308
309	user create -username <username> -password <password> [options...]
310	Create a new soju user. Only admin users can create new accounts.
311	The _-username_ and _-password_ flags are mandatory.
312
313	Other options are:
314
315	-admin
316	Make the new user an administrator.
317
318	-realname <realname>
319	Set the user's realname. This is used as a fallback if there is no
320	realname set for a network.
321
322	user update [-password <password>] [-realname <realname>]
323	Update the current user. The options are the same as the _user create_
324	command.
325
326	user delete <username>
327	Delete a soju user. Only admins can delete accounts.
328
329	server status
330	Show some bouncer statistics. Only admins can query this information.
331
332	server notice <message>
333	Broadcast a notice. All currently connected bouncer users will receive the
334	message from the special _BouncerServ_ service. Only admins can broadcast a
335	notice.
336
337	# AUTHORS
338
339	Maintained by Simon Ser <contact@emersion.fr>, who is assisted by other
340	open-source contributors. For more information about soju development, see
341	https://sr.ht/~emersion/soju.

Note: See TracBrowser for help on using the repository browser.

Download in other formats:

Original Format