Annotate

COPYING @ 5623:59d5fc50f602

mod_http_oauth2: Implement refresh token rotation Makes refresh tokens one-time-use, handing out a new refresh token with each access token. Thus if a refresh token is stolen and used by an attacker, the next time the legitimate client tries to use the previous refresh token, it will not work and the attack will be noticed. If the attacker does not use the refresh token, it becomes invalid after the legitimate client uses it. This behavior is recommended by draft-ietf-oauth-security-topics
author Kim Alvefur <zash@zash.se>
date Sun, 23 Jul 2023 02:56:08 +0200
parent 1668:fc7cd6cbe228
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
1668
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
1 The MIT License (MIT)
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
2
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
3 Copyright (c) 2009-2015 Various Contributors (see individual files and source control)
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
4
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
5 Permission is hereby granted, free of charge, to any person obtaining a copy of
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
6 this software and associated documentation files (the "Software"), to deal in
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
7 the Software without restriction, including without limitation the rights to
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
8 use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
9 the Software, and to permit persons to whom the Software is furnished to do so,
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
10 subject to the following conditions:
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
11
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
12 The above copyright notice and this permission notice shall be included in all
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
13 copies or substantial portions of the Software.
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
14
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
15 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
16 IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
17 FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
18 COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
19 IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
fc7cd6cbe228 Add a COPYING file containing the MIT license
Kim Alvefur <zash@zash.se>
parents:
diff changeset
20 CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.