File

mod_jsxc/templates/template.html @ 5819:93d6e9026c1b

mod_http_oauth2: Do not enforce PKCE on Device and OOB flows PKCE does not appear to be used with the Device flow. I have found no mention of any interaction between those standards. Since no data is delivered via redirects in these cases, PKCE may not serve any purpose. This is mostly a problem because we reuse the authorization code to implement the Device and OOB flows.
author Kim Alvefur <zash@zash.se>
date Fri, 15 Dec 2023 12:10:07 +0100
parent 4826:3a5fbb6c61b3
line wrap: on
line source

<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
{header_style#
<link rel="stylesheet" type="text/css" media="screen" href="{item}"/>}
{header_scripts#
<script charset="utf-8" src="{item}"></script>}
<title>{service_name?Prosody IM and JSXC}</title>
{header_tags#
{item!}}
</head>
<body>
	<form id="jsxc_login_form" action="javascript:">
		<dl>
			<dt><label for="jsxc_username">Username</label></dt>
			<dd><input id="jsxc_username" name="username" placeholder="Alice"/></dd>
			<dt><label for="jsxc_password">Password</label></dt>
			<dd><input id="jsxc_password" name="password" type="password"/></dd>
		</dl>
		<button type="submit">Login</button>
	</form>

<script>{jsxcjs.startup.script!}</script>
</body>
</html>