WebSVN – oidplus – Diff – /trunk/doc/developer_notes/auth_methods.md

     -----------------------------------------------------------------------------------------------------------------------------------
                                                  JWT        Bound to    JWT accepted     Outputs JWT        CSRF Disabled /
     Login method                    Handling     Generator  client IP?  Request types    Exception?         OriginHeaders
     -----------------------------------------------------------------------------------------------------------------------------------
-    Browser login                   JWT          1          No          COOKIE           No (Silent)        No
+    Browser login                   JWT          40         Optional    COOKIE           No (Silent)        No
-    Automated AJAX call             JWT          0          No          GET/POST         Yes                Only ajax.php with GET/POST
+    Automated AJAX call             JWT          10         No          GET/POST         Yes                Only ajax.php with GET/POST
+    REST plugin                     JWT          10         No          HTTP Bearer      Yes                Yes
-    Manually created JWT token      JWT          2          No          GET/POST/COOKIE  Only via GET/POST  Only ajax.php with GET/POST
+    Manually created JWT token      JWT          80         Optional    GET/POST/COOKIE  Only via GET/POST  Only ajax.php with GET/POST
     -----------------------------------------------------------------------------------------------------------------------------------

Subversion Repositories oidplus

oidplus/trunk/doc/developer_notes/auth_methods.md – Rev 1305 → 1321