From dc8ea3e3eb9bd81843347429479fd352702ce730 Mon Sep 17 00:00:00 2001
From: Matthew Vivian <matthew.vivian@surevine.com>
Date: Tue, 19 Nov 2024 14:50:49 +0000
Subject: [PATCH] chore: Copy java.security from Openfire to configure OCSP

This file is being added to Openfire so I'm porting it into this project as we use a copy of the security directory and overwrite the original.

To pick up the setting in this new file, and the new system property (jdk.tls.server.enableStatusRequestExtension=true), we must also use the updated openfire.sh start script which includes the new file and sets the mentioned system property. This will happen naturally when those changes make it into the Openfire Docker image. Until then you can recreate this behaviour by adding the following to xmpp1 and xmpp2:

```
environment:
    JAVA_TOOL_OPTIONS: >
      -Djava.security.properties=/var/lib/openfire/conf/security/java.security
      -Djdk.tls.server.enableStatusRequestExtension=true
```
---
 federation/xmpp/1/conf/security/java.security | 2 ++
 federation/xmpp/2/conf/security/java.security | 2 ++
 2 files changed, 4 insertions(+)
 create mode 100644 federation/xmpp/1/conf/security/java.security
 create mode 100644 federation/xmpp/2/conf/security/java.security

diff --git a/federation/xmpp/1/conf/security/java.security b/federation/xmpp/1/conf/security/java.security
new file mode 100644
index 0000000..4b7a999
--- /dev/null
+++ b/federation/xmpp/1/conf/security/java.security
@@ -0,0 +1,2 @@
+# Enable client-driven OCSP
+ocsp.enable=true
\ No newline at end of file
diff --git a/federation/xmpp/2/conf/security/java.security b/federation/xmpp/2/conf/security/java.security
new file mode 100644
index 0000000..4b7a999
--- /dev/null
+++ b/federation/xmpp/2/conf/security/java.security
@@ -0,0 +1,2 @@
+# Enable client-driven OCSP
+ocsp.enable=true
\ No newline at end of file