Open nesium opened 10 months ago
We should probably support https://xmpp.org/extensions/inbox/auth-tokens.html and avoid storing password altogether.
Some ideas: https://blog.prosody.im/modern-xmpp-auth/
An update to that Prosody post - the project was implemented, the announcement is here: https://blog.prosody.im/fast-auth/
I also gave a talk at FOSDEM that overlaps with the post: https://archive.fosdem.org/2023/schedule/event/modern_xmpp_auth/
Related: https://github.com/prose-im/prose-core-client/issues/2