Mercurial > prosody-modules
view mod_s2s_auth_posh/README.markdown @ 5119:048e339706ba
mod_rest: Remove manual reference expansion in schema
This hack was originally added to reduce the number of definitions of
common attributes (type, to, from etc) and payloads (e.g. delay). This
predated pointers and references, and until now was needed because
parsing picked out the correct stanza kind from the schema, which broke
internal references.
Removing this hack paves the way for allowing the schema to be
configured or customized more easily.
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Tue, 20 Dec 2022 21:48:28 +0100 |
| parents | 517c7f0333e3 |
| children |
line wrap: on
line source
--- labels: - 'Type-S2SAuth' --- Introduction ============ [PKIX over Secure HTTP (POSH)][rfc7711] describes a method of securely delegating a domain to a hosting provider, without that hosting provider needing keys and certificates covering the hosted domain. # Validating This module performs POSH validation of other servers. It is *not* needed to delegate your own domain. # Delegation You can generate the JSON delegation file from a certificate by running `prosodyctl mod_s2s_auth_posh /path/to/example.crt`. This file needs to be served at `https://example.com/.well-known/posh/xmpp-server.json`.