Kim Alvefur <zash@zash.se> [Sun, 23 Apr 2023 14:18:25 +0200] rev 5365
mod_oidc_userinfo_vcard4: Fix phone number claim
Copy-paste mistake probably
Kim Alvefur <zash@zash.se> [Sun, 23 Apr 2023 13:37:58 +0200] rev 5364
mod_oidc_userinfo_vcard4: Unpack <vcard> from PubSub <item>
Forgot about the <item>, so it was previously attempting to extract all
properties from that instead of the inner <vcard>
Kim Alvefur <zash@zash.se> [Sat, 22 Apr 2023 16:29:56 +0200] rev 5363
mod_http_oauth2: Use new Lua pattern schema properties
Kim Alvefur <zash@zash.se> [Sat, 22 Apr 2023 14:22:56 +0200] rev 5362
mod_http_oauth2: Include additional OpenID scopes in metadata
Drops fallback because this module probably doesn't work with Prosody
before the role stuff anyway.
Kim Alvefur <zash@zash.se> [Sat, 22 Apr 2023 14:02:56 +0200] rev 5361
mod_http_oauth2: Validate (unused at this point) localized URIs
Client registration may include keys of the form "some_uri#lang-code"
pointing to alternate language versions of the various URIs. We don't
use this yet but the same validation should apply.
Kim Alvefur <zash@zash.se> [Sat, 22 Apr 2023 14:06:41 +0200] rev 5360
mod_http_oauth2: Declare https as required of URIs in schema
If util.jsonschema happens to gain support for 'pattern' (regular
expression validation) then this would be picked up. Until then,
declarative annotations are nice.
Kim Alvefur <zash@zash.se> [Sat, 22 Apr 2023 12:02:01 +0200] rev 5359
mod_http_oauth2: Enforce https requirement on TOS URI
In create_client() it validates that all fields with format=uri are
https and match the client_uri host.
Kim Alvefur <zash@zash.se> [Sat, 22 Apr 2023 11:59:52 +0200] rev 5358
mod_http_oauth2: Use new mod_cron API for periodic cleanup
Less frequent but this isn't that important after all since, as the
comment states, expired codes are not usable anyway. They're also not
that large so memory usage probably doesn't matter.
Kim Alvefur <zash@zash.se> [Tue, 18 Apr 2023 21:48:31 +0200] rev 5357
mod_audit_status: Fix error on first start
Fixes 'attempt to index a nil value' the first time this module is
loaded, since there's no data yet.
Matthew Wild <mwild1@gmail.com> [Mon, 17 Apr 2023 14:31:50 +0100] rev 5356
mod_muc_rtbl: Use correct occupant object
There is no 'occupant' property for this event.
Kim Alvefur <zash@zash.se> [Mon, 17 Apr 2023 08:26:20 +0200] rev 5355
mod_audit: Move underscore to avoid luacheck warning
Underscore as prefix is taken as a signal that the variable is unused,
but then it is used and luacheck makes noise about that.
Kim Alvefur <zash@zash.se> [Mon, 17 Apr 2023 08:01:09 +0200] rev 5354
mod_oidc_userinfo_vcard4: Provide profile details in mod_http_oauth2
Kim Alvefur <zash@zash.se> [Sat, 15 Apr 2023 10:54:34 +0200] rev 5353
mod_auth_oauth_external: Add configuration example
Kim Alvefur <zash@zash.se> [Sat, 15 Apr 2023 10:46:04 +0200] rev 5352
mod_auth_oauth_external: Linkify password grant
Kim Alvefur <zash@zash.se> [Sat, 15 Apr 2023 10:41:47 +0200] rev 5351
mod_auth_oauth_external: Some notes in README
Kim Alvefur <zash@zash.se> [Thu, 16 Mar 2023 13:04:13 +0100] rev 5350
mod_auth_oauth_external: Allow setting identity instead of discovery URL
Shorter and the .well-known part is, well, well-known.
Kim Alvefur <zash@zash.se> [Thu, 16 Mar 2023 12:45:52 +0100] rev 5349
mod_auth_oauth_external: Support PLAIN via resource owner password grant
Might not be supported by the backend but PLAIN is the lowest common
denominator, so not having it would lock out a lot of clients.
Kim Alvefur <zash@zash.se> [Thu, 16 Mar 2023 12:45:22 +0100] rev 5348
mod_auth_oauth_external: Authenticate against an OAuth 2 provider
But suddenly unsure whether this constitutes an OAuth "client" or
something else? Resource server maybe?
Kim Alvefur <zash@zash.se> [Thu, 13 Apr 2023 09:11:28 +0200] rev 5347
mod_client_management: Fix import of util.error (not errors)
Kim Alvefur <zash@zash.se> [Wed, 12 Apr 2023 11:24:50 +0200] rev 5346
mod_rest: Implement use of refresh tokens in rest.sh example
Because having access tokens expire daily was becoming annoying.
Now this is starting to be in dire need of refactoring.
Kim Alvefur <zash@zash.se> [Wed, 12 Apr 2023 11:24:06 +0200] rev 5345
mod_http_oauth2: Fix error due to reference loop when using refresh token
Kim Alvefur <zash@zash.se> [Wed, 12 Apr 2023 11:22:36 +0200] rev 5344
mod_http_oauth2: Fix table index error when using refresh token
Maxime “pep” Buquet <pep@bouah.net> [Tue, 11 Apr 2023 15:59:35 +0200] rev 5343
mod_muc_http_defaults: Use the new set_subject API. Thanks John Livingston
Kim Alvefur <zash@zash.se> [Mon, 10 Apr 2023 13:24:03 +0200] rev 5342
mod_service_outage_status: XEP-0455: Service Outage Status
Only the out of band part so far.
The in-band pubsub part would need '+notify' support in mod_pubsub,
since mod_pep does not serve the bare-host-JID.
All the hard parts of this XEP is elsewhere, i.e. hosting the document
somewhere reliable.
Kim Alvefur <zash@zash.se> [Mon, 10 Apr 2023 10:49:02 +0200] rev 5341
mod_http_oauth2: Support OpenID UserInfo claims
Actually filling in those details is left to another module because I
don't really wanna mix in a dependency on PEP or mod_vcard here, those
implementation details can be in a second module. Some might want to
fill this from LDAP or something as well.
Kim Alvefur <zash@zash.se> [Mon, 10 Apr 2023 10:47:51 +0200] rev 5340
mod_http_oauth2: Add some debug logging for UserInfo endpoint
Kim Alvefur <zash@zash.se> [Mon, 10 Apr 2023 10:44:23 +0200] rev 5339
mod_http_oauth2: Correct error code when missing credentials for userinfo
Kim Alvefur <zash@zash.se> [Sat, 08 Apr 2023 19:51:24 +0200] rev 5338
mod_rest: Get correct type from config
Autocomplete?
Kim Alvefur <zash@zash.se> [Fri, 07 Apr 2023 21:10:14 +0200] rev 5337
mod_http_debug: Module that echos back HTTP request info for debugging
Written in 2021 for debugging some reverse proxy issue on https://chat.prosody.im/
Kim Alvefur <zash@zash.se> [Fri, 07 Apr 2023 20:26:33 +0200] rev 5336
mod_rest: Allow passing configuring a timeout for <iq> responses
The default 2 minutes is not how long you want to wait, sometimes.