view mod_sift/README.markdown @ 5617:d8622797e315

mod_http_oauth2: Shorten default token validity periods With refresh tokens, short lifetime for access tokens is not a problem. The arbitrary choice of one hour seems reasonable. RFC 6749 has it as example value. One week for refresh tokens matching the default archive retention period. This means that a client that remains unused for one week will have to sign in again. An actively used client will continually push that forward with each used refresh token.
author Kim Alvefur <zash@zash.se>
date Mon, 24 Jul 2023 01:30:14 +0200
parents d3231a4d6a60
children
line wrap: on
line source

---
labels:
- 'Stage-Alpha'
summary: 'XEP-0273: Stanza Interception and Filtering Technology'
...

Introduction
============

[SIFT][XEP-0273] is a technology to allow clients to filter incoming
traffic on the server. This helps save bandwidth, etc.

Compatibility
=============

  ----- -------
  0.7   Works
  ----- -------

Quirks
======

This implementation is a work in progress.

-   Stanzas to full JIDs get sifted correctly
-   Stanzas to bare JIDs are currently allowed/disallowed for all
    resources as a whole, and not for individual resources
-   Presence is only sent to available resources, and probes are not
    sent for unavailable reasources
-   This module currently does not interact with offline messages
    (filtered messages are dropped with an error reply)
-   Not tested with privacy lists