prosody-modules
d8622797e315
mod_throttle_unsolicited/README.markdown
Software / code / prosody-modules
File
mod_throttle_unsolicited/README.markdown @ 5624:d8622797e315
mod_http_oauth2: Shorten default token validity periods
With refresh tokens, short lifetime for access tokens is not a problem.
The arbitrary choice of one hour seems reasonable. RFC 6749 has it as
example value.
One week for refresh tokens matching the default archive retention
period. This means that a client that remains unused for one week will
have to sign in again. An actively used client will continually push
that forward with each used refresh token.
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Mon, 24 Jul 2023 01:30:14 +0200 |
| parent | 4104:476afcbfb3e9 |
line wrap: on
line source
--- rockspec: dependencies: - mod_track_muc_joins summary: Limit rate of outgoing unsolicited messages --- Introduction ============ This module limits the rate of outgoing unsolicited messages from local clients. Optionally, unsolicited messages coming in from remote servers may be limited per s2s conneciton. A message counts as "unsolicited" if the receiving user hasn't added the sending user to their roster. The module depends on [mod\_track\_muc\_joins] in order to allow sent messages to joined MUC rooms. Configuration ============= To set a limit on messages from local sessions: ``` {.lua} unsolicited_messages_per_minute = 10 ``` To enable limits on unsolicited messages from s2s connections: ``` {.lua} unsolicited_s2s_messages_per_minute = 100 ```
