File

mod_adhoc_account_management/README.markdown @ 5221:22483cfce3ce

mod_http_oauth2: Reflect ALL attributes of the client registration Per RFC 7591: " Additionally, the authorization server MUST return all registered metadata about this client, including any fields provisioned by the authorization server itself. " The idea is that the server may replace/drop fields in the registration, so what gets reflected back to the client is the source of truth about the registration.
author Matthew Wild <mwild1@gmail.com>
date Tue, 07 Mar 2023 14:52:43 +0000
parent 1803:4d73a1a6ba68
line wrap: on
line source

---
labels:
- 'Stage-Alpha'
summary: Personal account management command
...

Introduction
============

This module adds an ad-hoc command that lets an user change their
password. This is useful for clients that don't have support for
[XEP-0077](http://xmpp.org/extensions/xep-0077.html) style password
changing. In the future, it may provide other account management
commands.

Configuration
=============

    modules_enabled = {
        -- other modules --
        "adhoc_account_management",

    }

    close_sessions_on_password_change = true
    require_current_password = true
    require_confirm_password = true

  Option                                  Default   Description
  --------------------------------------- --------- ----------------------------------------------------------------
  close\_sessions\_on\_password\_change   true      Changing password invalidates other sessions the user may have
  require\_current\_password              true      Add a field for the current password
  require\_confirm\_password              true      Add a field for confirming the current password

Todo
====

Suggestions welcome,