diff options
author | Matthew Wild <mwild1@gmail.com> | 2023-03-26 16:46:48 +0100 |
---|---|---|
committer | Matthew Wild <mwild1@gmail.com> | 2023-03-26 16:46:48 +0100 |
commit | 8743ea29d59256a4a8e4b4a63ad458fb04b512af (patch) | |
tree | e3c4c3a9da0d1c34e0cd10b4afd7868ed371ee88 /doc | |
parent | 295c27aa996abe685e99f3f7e35784a516c3e0a0 (diff) | |
download | prosody-8743ea29d59256a4a8e4b4a63ad458fb04b512af.tar.gz prosody-8743ea29d59256a4a8e4b4a63ad458fb04b512af.zip |
mod_tokenauth: Support for creating sub-tokens
Properties of sub-tokens:
- They share the same id as their parent token
- Sub-tokens may not have their own sub-tokens (but may have sibling tokens)
- They always have the same or shorter lifetime compared to their parent token
- Revoking a parent token revokes all sub-tokens
- Sub-tokens always have the same JID as the parent token
- They do not have their own 'accessed' property - accessing a sub-token
updates the parent token's accessed time
Although this is a generic API, it is designed to at least fill the needs of
OAuth2 refresh + access tokens (where the parent token is the refresh token
and the sub-tokens are access tokens).
Diffstat (limited to 'doc')
0 files changed, 0 insertions, 0 deletions