prosody-modules
ab14e7ecb82f
mod_http_oauth2/README.md
Software / code / prosody-modules
Comparison
mod_http_oauth2/README.md @ 6240:ab14e7ecb82f
mod_http_oauth2: Allow JIDs as username for password grant
| author | magicfelix <felix@felix-zauberer.de> |
|---|---|
| date | Sat, 19 Apr 2025 20:32:37 +0200 |
| parent | 6003:fe081789f7b5 |
| child | 6245:ea58d2893afb |
comparison
equal
deleted
inserted
replaced
| 6239:a931a95e363e | 6240:ab14e7ecb82f |
|---|---|
| 82 If you know what features your templates use use you can adjust the | 82 If you know what features your templates use use you can adjust the |
| 83 `Content-Security-Policy` header to only allow what is needed: | 83 `Content-Security-Policy` header to only allow what is needed: |
| 84 | 84 |
| 85 ```lua | 85 ```lua |
| 86 oauth2_security_policy = "default-src 'self'" -- this is the default | 86 oauth2_security_policy = "default-src 'self'" -- this is the default |
| 87 ``` | |
| 88 | |
| 89 For the Resource Owner Password Grant the `username` is expected to be the only | |
| 90 localpart by default. If the OAuth client includes the domainpart in the | |
| 91 `username` it submits (e.g. user@example.org instead of just user), set this to | |
| 92 `true`. Note that this requires all clients to follow this format. | |
| 93 | |
| 94 ```lua | |
| 95 oauth2_expect_username_jid = false | |
| 87 ``` | 96 ``` |
| 88 | 97 |
| 89 ### Token parameters | 98 ### Token parameters |
| 90 | 99 |
| 91 The following options configure the lifetime of tokens issued by the module. | 100 The following options configure the lifetime of tokens issued by the module. |
