Software /
code /
prosody-modules
File
mod_http_oauth2/README.markdown @ 5282:0566a71a7076
mod_sasl2_fast: Invalidate tokens issued prior to last password change
author | Matthew Wild <mwild1@gmail.com> |
---|---|
date | Tue, 28 Mar 2023 12:43:05 +0100 |
parent | 5212:3235b8bd1e55 |
child | 5313:80ecba092027 |
line wrap: on
line source
--- labels: - Stage-Alpha summary: 'OAuth2 API' rockspec: build: copy_directories: - html ... Introduction ============ This module is a work-in-progress intended for developers only! Configuration ============= Dynamic client registration enabled by configuring a JWT key. Algorithm defaults to *HS256*. ```lua oauth2_registration_key = "securely generated JWT key here" oauth2_registration_algorithm = "HS256" oauth2_registration_options = { default_ttl = 60 * 60 * 24 * 90 } ``` Various flows can be disabled and enabled with `allowed_oauth2_grant_types` and `allowed_oauth2_response_types`: ```lua allowed_oauth2_grant_types = { "authorization_code"; -- authorization code grant "password"; -- resource owner password grant } allowed_oauth2_response_types = { "code"; -- authorization code flow -- "token"; -- implicit flow disabled by default } ``` Compatibility ============= Requires Prosody 0.12+ or trunk.