From 2694bb1090d565a10ef934a45ce01ae06a009804 Mon Sep 17 00:00:00 2001
From: David Baker <dave@matrix.org>
Date: Wed, 26 Jun 2019 17:41:21 +0100
Subject: [PATCH] Add really horrible custom HTTP header

for giving the IS token to the HS
---
 proposals/2140-terms-of-service-2.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/proposals/2140-terms-of-service-2.md b/proposals/2140-terms-of-service-2.md
index 7018e364f..ed1269a91 100644
--- a/proposals/2140-terms-of-service-2.md
+++ b/proposals/2140-terms-of-service-2.md
@@ -75,6 +75,12 @@ possible.
 OpenID authentication in the IS API will work the same as in the Integration Manager
 API, as specified in [MSC1961](https://github.com/matrix-org/matrix-doc/issues/1961).
 
+When clients supply an identity server to the Homeserver in order for the Homeserver
+to make calls to the IS on its behalf, it must also supply its access token for the
+Identity Server either as the `is_token` query parameter or a bearer token in the
+`X-Identity-Authorization` HTTP header with the same syntax as an `Authorizationn`
+header.
+
 ### IS Register API
 
 The following new APIs will be introduced to support OpenID auth as per