Mercurial > prosody-modules
view mod_pep_atom_categories/mod_pep_atom_categories.lua @ 5447:aa4828f040c5
mod_http_oauth2: Enforce client scope restrictions in authorization
When registering a client, a scope field can be included as a promise to
only ever use those. Here we enforce that promise, if given, ensuring a
client can't request or be granted a scope it didn't provide in its
registration. While currently there is no restrictions at registration
time, this could be changed in the future in various ways.
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Thu, 11 May 2023 19:33:44 +0200 |
parents | 5fc306239db3 |
children |
line wrap: on
line source
module:depends("pep"); local st = require"util.stanza"; local options = { access_model = "open", max_items = "max", }; module:handle_items("pep-service", function (event) local service = event.item.service; module:hook_object_event(service.events, "item-published", function(event) local service = event.service; local node = event.node; local actor = event.actor; local id = event.id; local item = event.item; local entry = item:get_child("entry", "http://www.w3.org/2005/Atom"); if entry == nil then return; end for category in entry:childtags("category") do local term = category.attr.term; local payload = st.stanza("item", {xmlns = "http://jabber.org/protocol/pubsub"}) :tag("item", {xmlns = "xmpp:linkmauve.fr/x-categories", jid = service.jid, node = node, id = id}); service:publish("category-"..term, actor, nil, payload, options); end end); end);