Mercurial > prosody-modules
view mod_register_web/templates/register.html @ 5617:d8622797e315
mod_http_oauth2: Shorten default token validity periods
With refresh tokens, short lifetime for access tokens is not a problem.
The arbitrary choice of one hour seems reasonable. RFC 6749 has it as
example value.
One week for refresh tokens matching the default archive retention
period. This means that a client that remains unused for one week will
have to sign in again. An actively used client will continually push
that forward with each used refresh token.
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Mon, 24 Jul 2023 01:30:14 +0200 |
parents | c8161146c698 |
children |
line wrap: on
line source
<!DOCTYPE html> <html> <head> <meta charset="utf-8"> <title>XMPP Account Registration</title> </head> <body> <h1>XMPP Account Registration</h1> <form action="{path}" method="POST"> <p>{notice}</p> <table> <tbody> <tr> <th>Username:</th> <td><input name="username" required>@{hostname}</td> </tr> <tr> <th>Password:</th> <td><input name="password" required type="password"></td> </tr> <tr> <th>Confirm Password:</th> <td><input name="confirm_password" required type="password"></td> </tr> {captcha} <tr> <td colspan="2"><input type="submit" value="Register!"></td> </tr> </tbody> </table> </form> </body> </html>