Kim Alvefur <zash@zash.se> [Tue, 25 Apr 2023 19:49:41 +0200] rev 5371
mod_http_oauth2: Validate redirect URI depending on application type
Per https://openid.net/specs/openid-connect-registration-1_0.html
require that web applications use https:// and native applications must
use either http://localhost or a custom (non-https) URI.
Previous requirement that hostname matches that of client_uri is kept
for web applications.
Kim Alvefur <zash@zash.se> [Tue, 25 Apr 2023 18:09:08 +0200] rev 5370
mod_http_oauth2: Fill in some client metadata defaults
Explicit > Implicit
Maybe we should actually use these for something as well? :)
It's is somewhat an open question of how strictly we should enforce
things in the client metadata given that it is somewhat extensible.
Especially some of these enum fields which have corresponding IANA
registries.
Kim Alvefur <zash@zash.se> [Tue, 25 Apr 2023 17:38:36 +0200] rev 5369
mod_http_oauth2: Allow only l10n variants of name in client metadata
Since "client_name" seems to be the only human readable non-URI property
that makes sense to have localized version of. Therefore it seems
excessive to allow arbitrary additionalProperties.
We don't make use of localized versions of client_name and URIs yet, but
it would be nice to do so.
Kim Alvefur <zash@zash.se> [Tue, 25 Apr 2023 17:16:12 +0200] rev 5368
mod_http_oauth2: Normalize whitespace in client metadata schema
Random extra whitespace?
Matthew Wild <mwild1@gmail.com> [Mon, 24 Apr 2023 17:11:08 +0100] rev 5367
mod_log_ringbuffer: Fix description and examples of level configuration
Matthew Wild <mwild1@gmail.com> [Mon, 24 Apr 2023 17:00:05 +0100] rev 5366
mod_log_ringbuffer: Fix example config
Kim Alvefur <zash@zash.se> [Sun, 23 Apr 2023 14:18:25 +0200] rev 5365
mod_oidc_userinfo_vcard4: Fix phone number claim
Copy-paste mistake probably
Kim Alvefur <zash@zash.se> [Sun, 23 Apr 2023 13:37:58 +0200] rev 5364
mod_oidc_userinfo_vcard4: Unpack <vcard> from PubSub <item>
Forgot about the <item>, so it was previously attempting to extract all
properties from that instead of the inner <vcard>
Kim Alvefur <zash@zash.se> [Sat, 22 Apr 2023 16:29:56 +0200] rev 5363
mod_http_oauth2: Use new Lua pattern schema properties
Kim Alvefur <zash@zash.se> [Sat, 22 Apr 2023 14:22:56 +0200] rev 5362
mod_http_oauth2: Include additional OpenID scopes in metadata
Drops fallback because this module probably doesn't work with Prosody
before the role stuff anyway.