view mod_s2s_auth_compat/README.markdown @ 5202:b81fd0d22c66

mod_http_oauth2: Calculate client secret expiry in registration response Not actually the client_secret that expires, but the client_id JWT. Returning '0' indicating no expiry was incorrect unless JWT expiry is turned off, which we check for now.
author Kim Alvefur <zash@zash.se>
date Sat, 04 Mar 2023 17:06:47 +0100
parents 4d73a1a6ba68
children
line wrap: on
line source

---
labels:
summary: Workaround for servers doing EXTERNAL without proper stream headers
...

Introduction
============

This module is a workaround for servers that try to do s2s
authentication with certificates and SASL EXTERNAL, but do not send
correct stream headers. Notably Openfire versions since 3.7 or 3.8.