versia-pub/docs
2
0
Fork 0
mirror of https://github.com/versia-pub/docs.git synced 2026-03-13 02:49:16 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: 📝 Add security model explanation page

Browse source
This commit is contained in:
Jesse Wierzbinski 2024-09-20 15:09:30 +02:00
parent 5622705136
commit 08293eebfe
No known key found for this signature in database
4 changed files with 68 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

6
app/signatures/page.mdx
View file

@ -25,6 +25,12 @@ Signatures are **required on ALL federation traffic**. If a request does not hav
- **All POST requests**.
- **All responses to GET requests** (for example, when fetching a user's profile). In this case, the HTTP method used in the signature string must be `GET`.
<Note>
Versia's security model makes replay attacks useless, so they are not a concern.
For more information, please read [the security model documentation](/security).
</Note>
If a signature fails, is missing or is invalid, the instance **MUST** return a `401 Unauthorized` HTTP status code.
### Calculating the Signature