Mercurial > prosody-modules
view mod_storage_mongodb/README.markdown @ 5404:1087f697c3f3
mod_http_oauth2: Strip unknown extra fields from client registration
We shouldn't sign things we don't understand!
RFC 7591 section-2 states:
> The authorization server MUST ignore any client metadata sent by the
> client that it does not understand (for instance, by silently removing
> unknown metadata from the client's registration record during
> processing).
Prevents grandfathering in of unvalidated data that might become used
later, especially since the 'additionalProperties' schema keyword was
removed in 698fef74ce53
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Tue, 02 May 2023 16:23:40 +0200 |
| parents | 8de50be756e5 |
| children |
line wrap: on
line source
--- labels: - 'Type-Storage' - 'Stage-Alpha' summary: MongoDB Storage Module ... Introduction ============ This is a storage backend that uses MongoDB. Depends on [luamongo bindings](https://github.com/mwild1/luamongo) This module is not under active development and has a number of issues related to limitations in MongoDB. It is not suitable for production use. Configuration ============= Copy the module to the prosody modules/plugins directory. In Prosody's configuration file, set: storage = "mongodb" MongoDB options are: Name Description ------------ ------------------------------------------------------------------- server hostname:port username your username for the given database password your password for the given database (either raw or pre-digested) is\_digest whether the password field has been pre-digested Compatibility ============= ------- --------------------------- trunk Untested, but should work ------- ---------------------------