Mercurial > prosody-modules
view mod_auth_wordpress/README.markdown @ 5956:97375a78d2b5
mod_http_oauth2: Reject URLs with 'userinfo' part (thanks mimi89999)
The LuaSocket parser supports these but they're deprecated without
replacement by RFC 3986
> Use of the format "user:password" in the userinfo field is deprecated
Allowing it in OAuth2 URLs is probably bad from a security perspective.
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Thu, 29 Aug 2024 16:02:46 +0200 |
parents | 4d73a1a6ba68 |
children |
line wrap: on
line source
--- labels: - 'Stage-Alpha' - 'Type-Auth' summary: Wordpress authentication module ... Introduction ============ This module allows you to authenticate against an Wordpress database. Configuration ============= SQL connection paramaters are identical to those of [SQL storage](https://prosody.im/doc/modules/mod_storage_sql). authentication = "wordpress" wordpress_table_prefix = "wp_" -- default table prefix sql = { -- See documentation for SQL storage driver = "MySQL"; database = "my_wordpress"; host = "localhost"; username = "prosody"; password = "secretpassword"; } Compatibility ============= Prosody 0.8+