Filip/matrix-spec
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-spec synced 2026-04-29 13:54:10 +02:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Specify MSC4418: Make destination a required server authentication field

Browse source
This commit is contained in:
Helix K 2026-04-22 12:58:57 -05:00
parent 48051c3450
commit 6f833502b0
No known key found for this signature in database
GPG key ID: 1C50B6A26C5B1C6E
1 changed files with 2 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
content/server-server-api.md
View file

@ -375,11 +375,10 @@ The authorization parameters to include are:
`origin` field from JSON described in step 1.
- `destination`: {{% added-in v="1.3" %}} the server name of the receiving
server. This is the same as the `destination` field from the JSON described
in step 1. For compatibility with older servers, recipients should accept
requests without this parameter, but MUST always send it. If this property
is included, but the value does not match the receiving server's name, the
in step 1. If the value does not match the receiving server's name, the
receiving server must deny the request with an HTTP status code 401
Unauthorized.
{{% changed-in v="1.19" %}} This field is now required.
- `key`: the ID, including the algorithm name, of the sending server's key used
to sign the request.
- `signature`: the signature of the JSON as calculated in step 1.