immers icon indicating copy to clipboard operation
immers copied to clipboard

Published 20 hours ago verified publisher icon immers-space

OAuth client registration issues

Open wmurphyrd opened this issue 2 years ago • 0 comments

If a client with the same id is already registered, immers server returns 500 whereas it should return 409

Need a process to remove and replace a client. If a remote server resets their DB that domain name would never be able to connect with this immer again.

  1. Require proof of domain ownership (can use http-signaure like in Mastodon secure mode request verification)
  2. Revoke any access granted to the previous client

wmurphyrd avatar Apr 28 '22 18:04 wmurphyrd