-
The `GET /api/v1/oauth/authorize` API endpoint should gather consent and authorization from resource owners when using the Authorization Code Grant flow, optionally with PKCE:
- https://github.com/…
-
Udostępniliśmy mechanizm [PKCE](https://tools.ietf.org/html/rfc7636) (Proof Key for Code Exchange), który możesz użyć podczas [autoryzacji użytkownika](https://developer.allegro.pl/auth/#app). Dzięki …
-
Kool project.
Most OIDC/oAuth servers support PKCE for security. Suggest it's worth adding.
-
Is there a possibility to define the client_id directly in the code, so I don't have to add it manually in the Swagger UI?
And I'm not sure about this, but I thought it would be nice if I could red…
-
I opened a PR to address this: https://github.com/nirasan/go-oauth-pkce-code-verifier/pull/1
-
Currently, public clients (like javascript apps with no backend) are forced to use the implicit grant type when doing oAuth2 with an OpenSRP server as the provider.
However, it is generally not rec…
-
## Summary
My app primarily supports the OAuth 2.0 Authorization Code with PKCE Flow but I am also implementing OAuth 2.0 Implicit flow in order to provide compatability with OPDS Clients. The OP…
-
# Project Improvement
Would it be possible to include the PKCE extension technique in the examples/actix.rs? I've been looking through the code and haven't figured out yet how to use PKCE with the…
-
**Is your feature request related to a problem? Please describe.**
I would like to authenticate via Cognito and Amplify Auth - and provide a "third-party" app access via a OAuth Authorization code.
…
-
Once the OAuth 2.1 spec is out - what can we do to help consumers to stay within the recommended parameters?
* using OAuth implicit flow
* one-time refresh tokens for public clients
* code flow w…