Annotate
mod_bind2/README.md @ 5512:1fbc8718bed6
mod_http_oauth2: Bind refresh tokens to client
Prevent one OAuth client from using the refresh tokens issued to another
client as required by RFC 6819 section 5.2.2.2
See also draft-ietf-oauth-security-topics-22 section 2.2.2
Thanks to OAuch for pointing out this issue
| author |
Kim Alvefur <zash@zash.se> |
| date |
Fri, 02 Jun 2023 10:40:48 +0200 |
| parent |
4799:18b12ad263f0 |
| rev |
line source |
|
4799
|
1 ---
|
|
|
2 labels:
|
|
|
3 - Stage-Alpha
|
|
|
4 rockspec:
|
|
|
5 dependencies:
|
|
|
6 - mod_sasl2
|
|
|
7 summary: "XEP-0386: Bind 2.0"
|
|
|
8 ---
|
|
|
9
|
|
|
10 Experimental early implementation of [XEP-0386: Bind 2.0] for use with
|
|
|
11 [mod_sasl2].
|
