prosody-modules
tip
mod_http_oauth2/README.markdown

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody-modules

Diff

mod_http_oauth2/README.markdown @ 5942:abd1bbe5006e draft default tip

Merge
author Trần H. Trung <xmpp:trần.h.trung@trung.fun>
date Sun, 16 Feb 2025 16:09:03 +0700
parent 5882:761142ee0ff2
line wrap: on
line diff
--- a/mod_http_oauth2/README.markdown	Tue Feb 06 18:32:01 2024 +0700
+++ b/mod_http_oauth2/README.markdown	Sun Feb 16 16:09:03 2025 +0700
@@ -102,7 +102,7 @@
 client registration.
 
 Dynamic client registration can be enabled by configuring a JWT key. Algorithm
-defaults to *HS256* lifetime defaults to forever.
+defaults to *HS256*, lifetime defaults to forever.
 
 ```lua
 oauth2_registration_key = "securely generated JWT key here"
@@ -202,7 +202,7 @@
 
 -   Authorization Code grant, optionally with Proof Key for Code Exchange
 -   Device Authorization Grant
--   Resource owner password grant *(likely to be phased out in the future)*
+-   Resource owner password grant *(disabled by default)*
 -   Implicit flow *(disabled by default)*
 -   Refresh Token grants
 
@@ -214,7 +214,7 @@
 allowed_oauth2_grant_types = {
 	"authorization_code"; -- authorization code grant
 	"device_code";
-	"password"; -- resource owner password grant
+	-- "password"; -- resource owner password grant disabled by default
 }
 
 allowed_oauth2_response_types = {