annotate mod_component_client/README.markdown @ 5548:fd3c12c40cd9
mod_http_oauth2: Disable CORS for authorization endpoint
Per recommendation in draft-ietf-oauth-security-topics-23
Hopefully it is enough to return an error status, since mod_http will
add CORS headers from a handler with higher priority, even for OPTIONS.
author |
Kim Alvefur <zash@zash.se> |
date |
Fri, 16 Jun 2023 00:05:57 +0200 |
parents |
35ae59a8196d |
children |
|
rev |
line source |
2323
|
1 Introduction |
|
2 ============ |
|
3 |
|
4 This module turns Prosody hosts into components of other XMPP servers. |
|
5 |
|
6 Configuration |
|
7 ============= |
|
8 |
|
9 Example configuration: |
|
10 |
|
11 ``` {.lua} |
|
12 VirtualHost "component.example.com" |
|
13 modules_enabled = { "component_client" } |
|
14 component_client = { |
|
15 host = "localhost"; |
|
16 port = 5347; |
|
17 secret = "hunter2"; |
|
18 } |
|
19 ``` |