Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support for Authorization Code with PKCE for section 2.2 #25

Open
venilillkall opened this issue Jun 22, 2021 · 1 comment
Open

Support for Authorization Code with PKCE for section 2.2 #25

venilillkall opened this issue Jun 22, 2021 · 1 comment
Milestone
2.x

Comments

@venilillkall
Copy link

See https://oauth.net/2/pkce/
@ykulbak ykulbak added this to the 2.x milestone May 17, 2022
@ykulbak
Copy link
Collaborator

ykulbak commented Sep 25, 2023

Sep 25th 2023 / Group call discussion summary.

This issue can be addressed by removing the specific OAUTH features mentioned by the Foundation API spec and leave a generic requirement for the server to provide OAUTH certified implementations that require features supported by well-established and supported libraries available for clients to integrate.

Pasi raised a concerns that for clients this still leaves a risk that servers might diverge in their OAUTH requirements creating a difficulty for clients to have a single, standard authentication flow supported by all servers.

This was referenced Sep 25, 2023
Open
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
2.x
Development

No branches or pull requests
2 participants
@ykulbak @venilillkall