This repository has been archived by the owner on Jul 13, 2023. It is now read-only.
Provide Public Key Registration for VAPID #337
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Continuing the work of #325, clients can provide a Public Key as part of the register() call.
Incoming subscription update requests (Crypto-Key Header; p256ecdsa component) must match the registered key.
Requests that do not match shall be rejected with a 401.
Requests that use the same public key for p256ecdsa and dh components shall be rejected with a 400.
It has been suggested that a hash of the public key be stored in the endpoint, which may require endpoint versioning.
The text was updated successfully, but these errors were encountered: