File

mod_http_xep227/README.md @ 5512:1fbc8718bed6

mod_http_oauth2: Bind refresh tokens to client Prevent one OAuth client from using the refresh tokens issued to another client as required by RFC 6819 section 5.2.2.2 See also draft-ietf-oauth-security-topics-22 section 2.2.2 Thanks to OAuch for pointing out this issue
author Kim Alvefur <zash@zash.se>
date Fri, 02 Jun 2023 10:40:48 +0200
parent 4865:bd0a1f917d98
line wrap: on
line source

---
labels:
- 'Stage-Alpha'
summary: 'HTTP-based account data import/export using XEP-0227'
...

Introduction
============

This module allows a user to import or export account data using a simple
HTTP API. The data is expected to be in the format described by [XEP-0227:
Portable Import/Export Format for XMPP-IM Servers](https://xmpp.org/extensions/xep-0227.html).

Note that this module does not provide any UI for direct interaction from
users - it is expected that any UI will be provided elsewhere. For example,
this module is used by the [Snikket web portal](https://github.com/snikket-im/snikket-web-portal/).

For Developers
==========

TBD.

Compatibility
=============

Requires Prosody trunk (270047afa6af).