view mod_sift/README.markdown @ 5549:01a0b67a9afd

mod_http_oauth2: Add TODO about disabling password grant Per recommendation in draft-ietf-oauth-security-topics-23 it should at the very least be disabled by default. However since this is used by the Snikket web portal some care needs to be taken not to break this, unless it's already broken by other changes to this module.
author Kim Alvefur <zash@zash.se>
date Fri, 16 Jun 2023 00:06:53 +0200
parents d3231a4d6a60
children
line wrap: on
line source

---
labels:
- 'Stage-Alpha'
summary: 'XEP-0273: Stanza Interception and Filtering Technology'
...

Introduction
============

[SIFT][XEP-0273] is a technology to allow clients to filter incoming
traffic on the server. This helps save bandwidth, etc.

Compatibility
=============

  ----- -------
  0.7   Works
  ----- -------

Quirks
======

This implementation is a work in progress.

-   Stanzas to full JIDs get sifted correctly
-   Stanzas to bare JIDs are currently allowed/disallowed for all
    resources as a whole, and not for individual resources
-   Presence is only sent to available resources, and probes are not
    sent for unavailable reasources
-   This module currently does not interact with offline messages
    (filtered messages are dropped with an error reply)
-   Not tested with privacy lists