challenger

OAuth 2.0-based authentication service that validates user can receive messages at a certain address
Log | Files | Refs | Submodules | README | LICENSE
commit 75e146f54c85643e782f6807e1f3c0dc8660c3c2
parent 5c4a0276247e6ab4fc8c2ae7f2d1e0d8b9af5ff7
Author: Christian Grothoff <christian@grothoff.org>
Date:   Fri,  1 May 2026 23:29:52 +0200

improve package descriptions

Diffstat:

Mdebian/control | 36+++++++++++++++++++++++++++++-------


1 file changed, 29 insertions(+), 7 deletions(-)

diff --git a/debian/control b/debian/control
@@ -35,12 +35,26 @@ Depends:
 Recommends:
  apache2 | nginx | httpd,
  postgresql (>=15.0)
-Description: OAuth 2.0 address validation authenticator.
+Description: OAuth 2.0-compatible address validation service
+ Challenger validates that a user is able to receive messages at a given
+ address (e-mail, SMS phone number, or postal address) and exposes the
+ verified address to a registered client via OAuth 2.0. After the user
+ submits an address, Challenger generates a TAN code and sends it through
+ a configurable helper script (one is shipped for each supported address
+ type); once the user returns the correct code, the client may obtain the
+ validated address through the standard OAuth 2.0 ``/info`` endpoint.
  .
- A Challenger service validates that user is able to
- receive a challenge at a given address and then
- permits that user to perform an OAuth 2.0 authentication
- based on that address.
+ Typical use cases include Know-Your-Customer (KYC) flows for the GNU
+ Taler payment system and any other application that needs lightweight
+ proof that a user controls a particular contact address.
+ .
+ This package provides the challenger-httpd daemon together with its
+ systemd socket and service units, command-line administration tools
+ (challenger-admin, challenger-config, challenger-dbconfig,
+ challenger-dbinit), the bundled single-page web frontend, and example
+ reverse-proxy snippets for Apache and nginx. The daemon listens on a
+ UNIX domain socket and is intended to be run behind a TLS-terminating
+ reverse proxy; PostgreSQL is used for persistent storage.
 
 
 Package: challenger-httpd-dev
@@ -49,6 +63,14 @@ Architecture: any
 Depends:
  libtalerexchange-dev (>= 1.5.0),
  ${misc:Depends}
-Description: Development headers.
+Description: OAuth 2.0-compatible address validation service - development files
+ Challenger validates that a user is able to receive messages at a given
+ address (e-mail, SMS phone number, or postal address) and exposes the
+ verified address to a registered client via OAuth 2.0.
  .
- This package contains the development files.
+ This package contains the C headers and shared-library symlinks needed
+ to build software that links against Challenger's utility or database
+ libraries. It should be noted that these libraries are not useful to
+ interact with the Challenger REST API and we are currently not aware
+ of any component using these library interfaces. The are also not
+ considered to be stable and may change in the future.