Software / code / prosody-modules
Annotate
mod_sasl2_sm/README.md @ 5623:59d5fc50f602
mod_http_oauth2: Implement refresh token rotation
Makes refresh tokens one-time-use, handing out a new refresh token with
each access token. Thus if a refresh token is stolen and used by an
attacker, the next time the legitimate client tries to use the previous
refresh token, it will not work and the attack will be noticed. If the
attacker does not use the refresh token, it becomes invalid after the
legitimate client uses it.
This behavior is recommended by draft-ietf-oauth-security-topics
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Sun, 23 Jul 2023 02:56:08 +0200 |
| parent | 5094:c92c87daa09e |
| rev | line source |
|---|---|
|
5026
e3248d025d34
mod_sasl2_sm: Experimental mod_isr alternative
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
1 --- |
|
e3248d025d34
mod_sasl2_sm: Experimental mod_isr alternative
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
2 labels: |
|
5091
ec9bca2ac2b5
mod_sasl2_sm: Update README with current information
Matthew Wild <mwild1@gmail.com>
parents:
5026
diff
changeset
|
3 - Stage-Beta |
|
5026
e3248d025d34
mod_sasl2_sm: Experimental mod_isr alternative
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
4 summary: "XEP-0198 integration with SASL2" |
|
5094
c92c87daa09e
mod_sasl2_sm: Add explicit dependency on mod_sasl2
Kim Alvefur <zash@zash.se>
parents:
5091
diff
changeset
|
5 rockspec: |
|
c92c87daa09e
mod_sasl2_sm: Add explicit dependency on mod_sasl2
Kim Alvefur <zash@zash.se>
parents:
5091
diff
changeset
|
6 dependencies: |
|
c92c87daa09e
mod_sasl2_sm: Add explicit dependency on mod_sasl2
Kim Alvefur <zash@zash.se>
parents:
5091
diff
changeset
|
7 - mod_sasl2 |
|
5026
e3248d025d34
mod_sasl2_sm: Experimental mod_isr alternative
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
8 --- |
|
e3248d025d34
mod_sasl2_sm: Experimental mod_isr alternative
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
9 |
|
e3248d025d34
mod_sasl2_sm: Experimental mod_isr alternative
Matthew Wild <mwild1@gmail.com>
parents:
diff
changeset
|
10 Add support for inlining stream management negotiation into the SASL2 process. |
|
5091
ec9bca2ac2b5
mod_sasl2_sm: Update README with current information
Matthew Wild <mwild1@gmail.com>
parents:
5026
diff
changeset
|
11 |
|
ec9bca2ac2b5
mod_sasl2_sm: Update README with current information
Matthew Wild <mwild1@gmail.com>
parents:
5026
diff
changeset
|
12 **Note: At the time of writing (November 2022), this module implements a |
|
ec9bca2ac2b5
mod_sasl2_sm: Update README with current information
Matthew Wild <mwild1@gmail.com>
parents:
5026
diff
changeset
|
13 version of XEP-0198 that is still working its way through the XSF standards |
|
ec9bca2ac2b5
mod_sasl2_sm: Update README with current information
Matthew Wild <mwild1@gmail.com>
parents:
5026
diff
changeset
|
14 process. For more information and current status, see [PR #1215](https://github.com/xsf/xeps/pull/1215).** |
|
ec9bca2ac2b5
mod_sasl2_sm: Update README with current information
Matthew Wild <mwild1@gmail.com>
parents:
5026
diff
changeset
|
15 |
|
ec9bca2ac2b5
mod_sasl2_sm: Update README with current information
Matthew Wild <mwild1@gmail.com>
parents:
5026
diff
changeset
|
16 This module depends on [mod_sasl2] and [mod_sasl2_bind2]. It exposes no |
|
ec9bca2ac2b5
mod_sasl2_sm: Update README with current information
Matthew Wild <mwild1@gmail.com>
parents:
5026
diff
changeset
|
17 configuration options. |
