Real An0n Encrypted Net Matrix.org+Riot.to inc #IRC#Twitter

AN0NYM0US 2018

Matrix & Riot

#https://matrix.org/

How does it work?
oK three Matrix homeservers, each with one client connected.

The clients are all participating in the same Matrix room, which is synchronised across the three participating servers.
Alice sends a JSON message to a room on her homeserver.

Alice's homeserver adds the JSON to its graph of history, linking it to the most recent unlinked object(s) in the graph.
The server then signs the JSON including the signatures of the parent objects to calculate a tamper-resistent signature for the history.

The server then sends the signed JSON over HTTPS to any other servers which are participating in the room.
#https://matrix.bob.com:8448/_matrix/federation/v1/send/916d...

The destination servers perform a series of checks on the message:

    Validate the message signature to protect against tampering with history
    Validate the HTTP request's auth signature to protect against identity spoofing
    Validate whether Alice's historical permissions allow her to send this particular     message
If these checks pass, the JSON is added to the destination servers' graphs.
Destination clients receive Alice's message with a long-lived GET request. (Clients are free to implement more efficient transports than polling as desired).

#curl "https://matrix.bob.com/_matrix/client

Open Standard

    Simple pragmatic RESTful HTTP/JSON APIs
    Open specification of the Matrix standard
    Create and manage fully distributed (eventually consistent) conversations with no single points of control or failure

    Send and receive extensible messages with optional end-to-end encryption
    WebRTC VoIP/Video calling using Matrix signalling
    Real-time synchronised history and state across all clients
    Group conversation by default

    Use existing 3rd party IDs (e.g. email, phone numbers, Facebook) to authenticate, identify and discover users
    Trusted federation of identity servers, tracking public keys and 3rd party ID mappings
    TLS by default

Open Source Implementations

There are many different clients, servers and application services – for a full list please see the Try Matrix Now page.

    If you like command line clients, you can try out the Weechat Matrix plugin
    If you like glossy web clients, try Riot (also available for iOS and Android)
    Synapse – reference Matrix homeserver in Python/Twisted
    Alternatively, write your own client using one of our SDKs:
    matrix-react-sdk – example Matrix client and SDK in React JS
    matrix-ios-sdk – example Matrix client and SDK for iOS
    matrix-android-sdk – example Matrix client and SDK for Android
    matrix-js-sdk – basic client SDK in core JavaScript


What is Matrix.org?

Matrix.org is a non-profit initiative, currently being incorporated as a dedicated non-profit Matrix.org Foundation in the UK. It acts as a neutral guardian of the Matrix spec, nurturing and growing Matrix for the benefit of the whole ecosystem. The board of Matrix.org Foundation will be made up of key participants in the Matrix community as well as independent advisors from the wider internet and telco industries.


######################################################################################################################


#https://opensource.com/alternatives/slack

Riot.im.is a collection of web and mobile tools which can be used to connect to Matrix, an "open network for secure, decentralized communication."

Riot is also perhaps the easiest of these tools to try, since its web client is hosted. You can also check out the full source for all of the projects on GitHub, under an Apache 2.0 license.

Thanks to bridge integrations, you can also use Riot to interconnect with services utilizing IRC, Slack or Gitter, potentially allowing you to replace multiple other clients with a single open source option.


#https://riot.im/app/#/room/#bridges:matrix.org


'####################################################


#Twitter Bridge for Matrix
Interact with Twitter through your Matrix Client

# This project allows you to bridge Twitter accounts, timelines and hashtags to a Matrix homeserver (see more about that below).

You can use a Matrix as a Twitter client and send tweets through, or you can monitor a hashtag through any software that supports the matrix protocol.
Features

    Read and follow a users timeline
    Send tweets from yourself and to other users.
    Follow hashtags.
    Direct messaging
    Read your own timeline

Join the discussion on Matrix!
Installation

We expect you to be running a standard synapse setup for these instructions

The master release for this project is currently unsupported. While work is ongoing to release a version, #develop should be used.

Clone this repo and install the npm dependencies as usual.

    git clone https://github.com/Half-Shot/matrix-appservice-twitter
    git checkout develop
    npm install


You will need a twitter application authentication token and secret to continue.

Go to https://apps.twitter.com/ and create a new app. If you follow the setup all the way through you should be given all you need to fill in a config.yaml file. Copy config.sample.yaml and fill in the blanks before saving as config.yaml.

Next, we need to generate the appropriate registration config so that synapse can interface with the bridge.

    node twitter-as.js -r -u "URL"


The URL should be replaced by the domain/ip and port of the bridge. In this case you can usually leave it as http://localhost:9000 if you plan to run it on the same server as synapse and will be keeping the default port.

Copy/symlink the generated registration file to your synapse directory and finally edit your homeserver.yaml file for synapse so that the bridge is registered. This means changing app_service_config_files and inserting the name of your config file into the list. It should look similar to this:

    app_service_config_files: ["twitter-registration.yaml"]


You can restart synapse after this.

Finally, run the bridge!

    node twitter-as.js -p 9000 -c config.yaml


config.yaml

    bridge
        domain http://localhost

        The homeserver's domain.
        homeserverUrl http://localhost:8448

        The homeservers URL.
        database_file twitter.db

        The file to store SQLITE data in.
    app_auth
        consumer_key

        The key obtained by registering a new Twitter API application.
        consumer_secret

        The secret obtained by registering a new Twitter API application.
    hashtags
        enable true/false

        Should the bridge allow creation of new hashtag rooms.
    timelines
        enable true/false

        Should the bridge allow creation of new timeline rooms.
    media
        enable_download true/false

        Should media inside tweets be uploaded to the homeserver, or just linked?
        enable_profile_images true/false

        Should profile images be set for twitter accounts.
    logging
        file logs/twitter-db.log

        The file to log to. Please make sure to create any directories.
        size 50m

        How big should files be before they are rotated. Use the suffix m for MB.
        count 3

        How many files should be kept before old ones are deleted
        compress true/false

        Compress files using gzip?
        level warn

        One of silent, error, warn, info, verbose, silly

Using the bridge
Linking your Twitter account to your Matrix user

Linking is not required for reading timelines/hashtags, but interactions must be completed under your own account.

    Create a room and invite @_twitter_bot:yourdomain.
    Send the message account.link (read|write|dm) where the argument sets the requested permission level*.
    Follow the URL and instructions. Copy the PIN code
    Enter the pin code directly into the room and your account should be linked up.

*type help for explanations on commands
User Timelines

Simply join #_twitter_@screennamegoeshere:yourdomain to read a users timeline. Protected timelines are not available.

Accounts which are bridged (Twitter<->Matrix) will be able to send tweets to these timelines (you do not need to put the @screen_name, it is done automatically)
Hashtags

Join #_twitter_#hashtaggoeshere to follow a particular hashtag.

Accounts which are bridged (Twitter<->Matrix) will be able to send tweets which will automatically apply this hashtag.
Direct Messages

Due to limitations in the Twitter API, group DMs are not possible.

On recieving a DM, you will be invited to a room where you can message each other as if it was another Matrix user.

Rejoining previous conversations is not possible, but either user sending a message will create a private room

https://www.lifewire.com/what-is-a-twitter-widget-1949537

https://www.lifewire.com/widgetbox-widgets-made-simple-3486688


####################################################


https://riot.im/app/#/room/#irc:matrix.org

Matrix<->IRC Gateway HOW-TO

This guide is designed to familiarise you with the configuration and running of this IRC Application Service (AS) and provide a more thorough look at some of the features of this AS.
Installing

If you haven't already, check out the README for instructions on how to install the AS. This project requires nodejs in order to run, and has been tested on v4.4.0.

$ git clone https://github.com/matrix-org/matrix-appservice-irc.git
$ cd matrix-appservice-irc
$ npm install
$ npm test  # make sure these pass!

Once that is done, you're ready to configure the AS.
Configuring

A sample configuration file config.sample.yaml is provided with relatively "sensible" defaults, but you will need to modify it before things will work. It is worth examining certain options more closely before running the AS.

Either copy config.sample.yaml to config.yaml or create a new file. By default, the AS will look for config.yaml in the current working directory. You can override this by passing --config some_file.yaml or -c some_file.yaml when you call node app.js.
Pointing the AS at the Homeserver

+==========================================================================+
| You MUST have access to the homeserver configuration file in order to    |
| register this application service with that homeserver. This typically   |
| means you must be running your own homeserver to register an AS.         |
+==========================================================================+

The following options are REQUIRED in order to point the AS to the homeserver (HS) and vice versa:

# This section contains information about the HS
homeserver:
  # This url will be used by the AS to perform Client-Server API calls.
  url: "http://localhost:8008"
  # This value will be used when forming user IDs under certain
  # circumstances. This is typically the domain part of the 'url' field
  # above.
  domain: "localhost"

Pointing the AS at your chosen IRC network

You probably already have an IRC network in mind that you want to bridge. The bare bones REQUIRED configuration options are:

ircService:
  servers:
    # This is the IRC server url to connect to.
    irc.example.com:
      mappings:
        "#some-channel": ["!someroomid:here"]

This would set up a simple mapping from #some-channel on irc.example.com to !someroomid:here, and that's it. Dynamic mappings are not enabled by default.

To allow dynamic mappings:

ircService:
  servers:
    irc.example.com:
      dynamicChannels:
        enabled: true

This will register a block of aliases which represent all the possible IRC channels on irc.example.com. To join #some-channel as a Matrix client, try to join the room alias #irc_irc.example.com_#some-channel:localhost. You can now join any channel you like by modifying the alias you join.


Modifying templates

You may think that aliases like #irc_irc.example.com_#some-channel:localhost are unwieldy and horrible to type. You may only have one IRC network you plan to bridge, so having to type out the server address every time is tiring. Templates exist to fix this. They look like the localparts of various IDs (user IDs, room aliases) but with the sigil (@ or #) still attached. You can specify an Alias Template which will be used by the AS to form new room aliases. For example, to get rid of the server in the alias:

ircService:
  servers:
    irc.example.com:
      dynamicChannels:
        enabled: true
        aliasTemplate: "#irc_$CHANNEL"

This will shorten the alias to be #irc_#some-channel:localhost.

The concept of templates extends to Nicks and User IDs as well. IRC users are created with user IDs like @irc.example.com_Alice:localhost which are long and hard to type if you want to send a PM to them. You can shorten this to @irc_Alice:localhost like so:

ircService:
  servers:
    irc.example.com:
      matrixClients:
        userTemplate:
          "@irc_$NICK"

The following variables are available for templates:
Nick Template

NB: These variables are sanitized by removing non-ASCII and invalid nick characters.
Variable 	Description
$USERID 	A real Matrix user's user ID.
$DISPLAY 	A real Matrix user's display name OR user localpart if they have no display name.
$LOCALPART 	A real Matrix user's user ID localpart (e.g. alice in @alice:home)
Alias Template
Variable 	Description
$SERVER 	An IRC server URL.
$CHANNEL 	An IRC channel name. Required.
User ID Template
Variable 	Description
$SERVER 	An IRC server URL.
$NICK 	A real IRC user's nick.
Registering

Before the HS will send the AS any events, you need to register it. You can generate a registration file for the AS by typing:

 $ node app.js -r -f appservice-registration-irc.yaml -u "http://where.the.appservice.listens" -c config.yaml -l irc_bot

This will create a registration file called appservice-registration-irc.yaml. In this file, it will include the URL where the IRC bridge can be reached from the HS (in this case http://where.the.appservice.listens) and the user ID localpart of the AS (in this case irc_bot to form the AS user ID @irc_bot:localhost). The config file is passed in during the registration phase so the bridge can calculate the regex strings it needs to work.

The HS is still unaware of this file currently. In order to tell the HS about the registration, you need to modify the homeserver configuration file (homeserver.yaml). The homeserver configuration file needs to have:

app_service_config_files:
   # This should be pointed to wherever the generated registration file is.
 - "/home/someone/matrix-appservice-irc/appservice-registration-irc.yaml"

You will need to restart the homeserver in order for this to take effect.
Architecture

+--------+         (3)               +-------------+
| IRC AS |<----AS HTTP API-----------| Home Server |
|        |--Client-Server HTTP API-->|             |
+--------+       (extended)          +-------------+
       |                                   |
--generate-registration            read homserver.yaml
    (1)|                                   |(2)
       |   +-------------------+           |
       +-->| Registration File |<----------+
           |   - as_token      |
           |   - hs_token      |
           |   - app regex     |
           +-------------------+

1) The IRC AS generates a registration file containing the tokens to use.
2) The homeserver reads the registration and configures itself.
3) Both AS and HS communicate over HTTP using the assigned tokens.

Registration

It is possible for the registration files being used between AS and HS to get out of sync. If this happens, the AS will not recognize the homeserver token and will produce errors Invalid homeserver token. Likewise, the AS may receive errors from the HS Invalid application service token.. Make sure your registration files are in sync!
Features

Some of the features listed below require Matrix users the ability to talk to the AS directly. This is done by creating a Matrix room and inviting the AS bot to it. The AS bot's user_id defaults to @matrix-appservice-irc:<domain> but can be changed by the -l CLI flag when generating the registration file.
Changing Nicks

By default, Matrix users are assigned a nick from the nick template and that's it. They cannot change their nick. You can grant Matrix users the ability to change their own nick like so:

ircService:
  servers:
    irc.example.com:
      ircClients:
        allowNickChanges: true

Matrix users will now be able to change their nick to anything; the nick is not restricted in any way. Matrix users can set their nick by inviting the AS bot into a one-to-one Matrix room and sending a message with !nick <server> <new_nick> e.g. !nick irc.example.com bob. In order for nick changing to work, you must already have a nick, so you must already be connected to the IRC network (e.g. by having sent a message).
Private bridging

By default, dynamic mappings to an IRC network are present in the published room list, and anyone can join these dynamic channels via the room alias. This may be undesirable, and you may want to make these hidden/accessible to select users. To make dynamic mappings private to a select group of users:

ircService:
  servers:
    irc.example.com:
      dynamicChannels:
        enabled: true
        published: false
        createAlias: false
        joinRule: invite
        whitelist:
          - "@someone:localhost"
          - "@another:localhost"

Only @someone:localhost or @another:localhost can join these rooms now. Private rooms cannot be joined via room aliases. You need to get the AS bot to invite you to the room. To do this, create a room and invite the AS bot, then type !join <server name> <channel> e.g. !join irc.example.com #foo. You must be on the whitelist for this to work.

For a less restrictive option, you may want similar functionality to +s on IRC (does not appear in the channel list). To do this:

ircService:
  servers:
    irc.example.com:
      dynamicChannels:
        enabled: true
        createAlias: true
        joinRule: public
        published: false

This will still create the room alias for the room, but only people who know the alias will be able to join the room.
Ident
You may want to assign ident-verified usernames to the generated IRC clients e.g. to scope bans to Matrix users rather than the entire application service. This application service can run an ident server to make this possible. Ident is disabled by default. To enable it:

ircService:
  ident:
    enabled: true
    port: 1113  # optional (default: 113) but this allows you to run the AS without root.

Statsd

This application service supports sending metrics to a statsd server. Metrics monitored include:

    Memory usage (RSS, heap, etc)
    Request outcomes (success/fail) and durations (ms).
    Number of active IRC client connections Sending metrics is disabled by default. To enable this:

ircService:
  statsd:
    hostname: "127.0.0.1"
    port: 8125

Logging

Logging is configurable in the yaml, but there is also an extra verbose setting you can enable. This is done by passing --verbose or -v to node app.js.