Add note about secure mode in ActivityPub document

Fix #822
This commit is contained in:
Eugen Rochko 2020-10-24 22:07:22 +02:00 committed by GitHub
parent 31a159d456
commit 34fab9a9ff
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 0 deletions

View File

@ -356,3 +356,8 @@ Mastodon allows users to opt-in or opt-out of discoverability features like the
}
```
### Secure mode {#secure-mode}
When a Mastodon server runs in secure mode, all cross-server HTTP requests to it must be signed (in other words, even `GET` requests to public resources). That way, the Mastodon server can choose to reject requests from servers it has blocked and avoid "leaking" public information. Mastodon itself uses a dedicated system actor to sign such HTTP requests.
Secure mode is the foundation upon which "limited federation mode" is built. A Mastodon server in limited federation mode will only federate with servers its admin has explicitly allowed, and reject all other requests.