prosody-modules
9b03238d4e0e
mod_tlsfail/mod_tlsfail.lua
Software / code / prosody-modules
File
mod_tlsfail/mod_tlsfail.lua @ 6334:9b03238d4e0e
mod_http_oauth2: Only issue id_token when granted openid scope
OpenID Connect Core 1.0 states that OIDC is only being done if the
"openid" scope is included.
https://openid.net/specs/openid-connect-core-1_0.html#rfc.section.3.1.2.1
Less details given out by default is good for privacy and byte count.
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Tue, 15 Jul 2025 01:46:38 +0200 |
| parent | 4702:7009e16192fa |
line wrap: on
line source
local st = require "util.stanza"; local xmlns_starttls = 'urn:ietf:params:xml:ns:xmpp-tls'; local starttls_attr = { xmlns = xmlns_starttls }; local s2s_feature = st.stanza("starttls", starttls_attr); local starttls_failure = st.stanza("failure", starttls_attr); module:hook("stream-features", function(event) local features = event.features; features:add_child(s2s_feature); end); module:hook("s2s-stream-features", function(event) local features = event.features; features:add_child(s2s_feature); end); -- Hook <starttls/> module:hook("stanza/urn:ietf:params:xml:ns:xmpp-tls:starttls", function(event) local origin = event.origin; (origin.sends2s or origin.send)(starttls_failure); origin:close(); return true; end);
