From 9474238deedb7fade785a60b64be63e756229c69 Mon Sep 17 00:00:00 2001
From: Kim Alvefur <zash@zash.se>
Date: Tue, 3 Jun 2025 18:18:15 +0200
Subject: [PATCH] Declare as a web application in oauth client registration

It is, even if the password grant isn't restricted to that, but if ever
the authorization code flow is implemented, it'll be correct.
---
 snikket_web/prosodyclient.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/snikket_web/prosodyclient.py b/snikket_web/prosodyclient.py
index 4c62532..84b444b 100644
--- a/snikket_web/prosodyclient.py
+++ b/snikket_web/prosodyclient.py
@@ -472,6 +472,7 @@ class ProsodyClient:
             "redirect_uris": [
                 "https://{}/login_result".format(current_app.config["SNIKKET_DOMAIN"])
             ],
+            "application_type": "web",
             "grant_types": ["password"],
             "response_types": [],
             "token_endpoint_auth_method": "client_secret_post",