chadtmiller.com / pds.js
A zero-dependency AT Protocol Personal Data Server written in JavaScript
atproto pds
fork atom

feat: set require_pushed_authorization_requests to false

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

chadtmiller.com 0eabc118 7a1d9cc7

options
unified split
Changed files
+2 -2
src
pds.js
test
e2e.test.js
+1 -1
src/pds.js
··· 3692 3692 code_challenge_methods_supported: ['S256'], 3693 3693 token_endpoint_auth_methods_supported: ['none'], 3694 3694 dpop_signing_alg_values_supported: ['ES256'], 3695 - require_pushed_authorization_requests: true, 3695 + require_pushed_authorization_requests: false, 3696 3696 authorization_response_iss_parameter_supported: true, 3697 3697 client_id_metadata_document_supported: true, 3698 3698 protected_resources: [issuer],
+1 -1
test/e2e.test.js
··· 538 538 assert.strictEqual(data.jwks_uri, `${BASE}/oauth/jwks`); 539 539 assert.deepStrictEqual(data.scopes_supported, ['atproto']); 540 540 assert.deepStrictEqual(data.dpop_signing_alg_values_supported, ['ES256']); 541 - assert.strictEqual(data.require_pushed_authorization_requests, true); 541 + assert.strictEqual(data.require_pushed_authorization_requests, false); 542 542 assert.strictEqual(data.client_id_metadata_document_supported, true); 543 543 assert.deepStrictEqual(data.protected_resources, [BASE]); 544 544 });