Mercurial > prosody-modules
view mod_sift/README.markdown @ 5617:d8622797e315
mod_http_oauth2: Shorten default token validity periods
With refresh tokens, short lifetime for access tokens is not a problem.
The arbitrary choice of one hour seems reasonable. RFC 6749 has it as
example value.
One week for refresh tokens matching the default archive retention
period. This means that a client that remains unused for one week will
have to sign in again. An actively used client will continually push
that forward with each used refresh token.
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Mon, 24 Jul 2023 01:30:14 +0200 |
parents | d3231a4d6a60 |
children |
line wrap: on
line source
--- labels: - 'Stage-Alpha' summary: 'XEP-0273: Stanza Interception and Filtering Technology' ... Introduction ============ [SIFT][XEP-0273] is a technology to allow clients to filter incoming traffic on the server. This helps save bandwidth, etc. Compatibility ============= ----- ------- 0.7 Works ----- ------- Quirks ====== This implementation is a work in progress. - Stanzas to full JIDs get sifted correctly - Stanzas to bare JIDs are currently allowed/disallowed for all resources as a whole, and not for individual resources - Presence is only sent to available resources, and probes are not sent for unavailable reasources - This module currently does not interact with offline messages (filtered messages are dropped with an error reply) - Not tested with privacy lists