view mod_s2s_whitelist/README.markdown @ 5796:93d6e9026c1b

mod_http_oauth2: Do not enforce PKCE on Device and OOB flows PKCE does not appear to be used with the Device flow. I have found no mention of any interaction between those standards. Since no data is delivered via redirects in these cases, PKCE may not serve any purpose. This is mostly a problem because we reuse the authorization code to implement the Device and OOB flows.
author Kim Alvefur <zash@zash.se>
date Fri, 15 Dec 2023 12:10:07 +0100
parents 313937349fbc
children
line wrap: on
line source

This module lets you block connections to any remote servers not on a
whitelist.

``` {.lua}
modules_enabled = {
    -- other modules --
    "s2s_whitelist",

}
s2s_whitelist = {
    "example.org",
}
```