prosody-modules
1087f697c3f3
mod_http_oauth2/html/error.html

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody-modules

File

mod_http_oauth2/html/error.html @ 5404:1087f697c3f3

mod_http_oauth2: Strip unknown extra fields from client registration We shouldn't sign things we don't understand! RFC 7591 section-2 states: > The authorization server MUST ignore any client metadata sent by the > client that it does not understand (for instance, by silently removing > unknown metadata from the client's registration record during > processing). Prevents grandfathering in of unvalidated data that might become used later, especially since the 'additionalProperties' schema keyword was removed in 698fef74ce53
author Kim Alvefur <zash@zash.se>
date Tue, 02 May 2023 16:23:40 +0200
parent 5208:aaa64c647e12
child 5500:8d3e7b201ba4
line wrap: on
line source

<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1" />
<title>{site_name} - Error</title>
<link rel="stylesheet" href="style.css">
</head>
<body>
	<main>
	<h1>{site_name}<h1>
	<h2>Authentication error</h2>
	<p>There was a problem with the authentication request. If you were trying to sign in to a
	   third-party application, you may want to report this issue to the developers.</p>
	<div class="error">
		<p>{error.text}</p>
	</div>
	</main>
</body>
</html>