-
## Summary
- 要望が多い
- 広く使われている方式のため、サードパーティアプリ開発者にやさしそう
- 独自の実装はセキュリティ上の懸念がある
-
### Describe the bug
The access token is empty/invalid.
I am using react-oidc-context to login with a react app and have successfully tested it with both authentik and keycloak servers. When …
-
Hi all,
I noticed an issue in the implementation of the authorization code flow for httr2 that seems to hard-code assumptions for redirects that would only be consistent with running RStudio Work…
-
# Feature request
## Is your feature request related to a problem? Please describe.
First of all, thanks for a great project - I have looked at the examples but they all seem to be based off of …
-
Hey, is there any use case where the jwt token `issued_user_token` is used in the Xumm SDK?
The documentation is incomplete and as far as I can figure out from it, the jwt token is to be used with …
-
**Describe the bug**
If you take the YAML file from the sample in the repo and generate a new solution, it does not produce the same code as in the repo. Mainly I'm seeing that authentication isn't e…
-
Great project, I got the first version of an supabase auth provider working in 5 minutes. However its using implicit flow, so the `access_token` is in a URL fragment and not available on the server si…
-
### Is your feature request related to a problem?
Connecting to other MBSE services would require gaphor to have OIDC support. This would not only allow gaphor authentication and authorization to o…
-
Getting `Cross-origin token redemption is permitted only for the 'Single-Page Application' client-type. Request origin: 'http://localhost:8020/'.` when using OAuth client with Azure.
It works if I …
-
Google has recently made a [policy update](https://developers.googleblog.com/2021/06/upcoming-security-changes-to-googles-oauth-2.0-authorization-endpoint.html?m=1) to prohibit Google OAuth requests i…