Mercurial > prosody-modules
view mod_twitter/README.markdown @ 5616:59d5fc50f602
mod_http_oauth2: Implement refresh token rotation
Makes refresh tokens one-time-use, handing out a new refresh token with
each access token. Thus if a refresh token is stolen and used by an
attacker, the next time the legitimate client tries to use the previous
refresh token, it will not work and the attack will be noticed. If the
attacker does not use the refresh token, it becomes invalid after the
legitimate client uses it.
This behavior is recommended by draft-ietf-oauth-security-topics
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Sun, 23 Jul 2023 02:56:08 +0200 |
| parents | 4d73a1a6ba68 |
| children |
line wrap: on
line source
--- labels: - 'Stage-Alpha' summary: 'Simple example of working component and HTTP polling.' ... Introduction ============ Twitter has simple API to use, so I tried to deal with it via Prosody. I didn't manage to finish this module, but it is nice example of component that accepts registrations, unregistrations, does HTTP polling and so on. Maybe someone will finnish this idea. Details ======= It does require some non-prosody Lua libraries: LuaJSON Configuration ============= At the moment no configuration needed, but you can configure some variables inside code. TODO ==== - Send latest tweets to XMPP user - Reply user's messages to Twitter - OAuth support - User configuration (forms) - discuss about using cjson - [!!!!] rewrite to be compatible with 0.9+ - drop? (since it is mod\_twitter in spectrum) Compatibility ============= ------- --------------------- trunk Currently Not Works 0.9 Currently Not Works 0.8 Works ------- ---------------------