[Standards] Proto-XEP: Pre-Authenticated Roster Subscription

Sam Whited sam at samwhited.com
Thu May 11 14:09:52 UTC 2017


On Thu, May 11, 2017 at 2:34 AM, Georg Lukas <georg at op-co.de> wrote:
> Sam, could you imagine elaborating a bit more of your potential business
> use case and how you see it conflict with HMAC-tokens?

I'm not sure that there's much more to say; I don't have a specific
use case in mind other than I think lots of people would be more
comfortable if the server enforced handing out tokens and there was an
option for limited-use tokens. I do like the idea of clients being
able to upload a key and sign their own tokens too though; it just
seems like it's more complicated.

—Sam


More information about the Standards mailing list