1--- 2labels: 3- 'Type-S2SAuth' 4--- 5 6Introduction 7============ 8 9[PKIX over Secure HTTP (POSH)][rfc7711] describes a method of 10securely delegating a domain to a hosting provider, without that hosting 11provider needing keys and certificates covering the hosted domain. 12 13# Validating 14 15This module performs POSH validation of other servers. It is *not* 16needed to delegate your own domain. 17 18# Delegation 19 20You can generate the JSON delegation file from a certificate by running 21`prosodyctl mod_s2s_auth_posh /path/to/example.crt`. This file needs to 22be served at `https://example.com/.well-known/posh/xmpp-server.json`. 23