comparison mod_compat_roles/mod_compat_roles.lua @ 5559:d7fb8b266663

mod_http_oauth2: Strip unknown client metadata Per RFC 7591 > The authorization server MUST ignore any client metadata sent by the > client that it does not understand (for instance, by silently removing > unknown metadata from the client's registration record during > processing). This was previously done but unintentionally removed in 90449babaa48
author Kim Alvefur <zash@zash.se>
date Tue, 20 Jun 2023 01:11:34 +0200
parents f03f4ec859a3
children 825c6fb76c48
comparison
equal deleted inserted replaced
5558:3276750332ea 5559:d7fb8b266663