-
IAM Identity Center has [added support](https://docs.aws.amazon.com/singlesignon/latest/userguide/customermanagedapps-saml2-oauth2.html) for an `authorization_code` grant instead of the `device_code` …
-
Since 9 days no new data from the adapter, log shows
"Error on update (1027): invalid_grant (The provided authorization code or refresh token is revoked.)"
Restart of adapter does not help.
A…
-
-
Add support for using dpopNonce provided by the authorization server, in the following interactions:
- When requesting access token (in the context of authorization code grant and / or pre-authoriz…
-
# OIDC Flow
## As-is Situation
Currently authorino is able to authenticate requests based on provided credentials by extracting them from the ext auth check request.
i.e extracting an jwt from th…
-
I have a problem with setting up an authentication via authorization code (grant_type).
I have provided parameters:
1. a callback URL,
2. Authorization URL
3. Client ID
4. Scope read write
When…
-
The OAuth 2 Authorization Code Grant appears to not be implemented?
Is this on the roadmap?
Spec: https://tools.ietf.org/html/rfc6749#section-4.1
-
Expand our current keycloak scripts to support the authorization coede grant type
[Develop a script that supports the authorization code grant type](https://www.authlete.com/developers/oid4vci/#42-au…
-
ZITADEL already ensures that the authorization code as well as the refresh token can only be used as grant once and refresh tokens are rotated on each grant.
To improve the security (and be compliant…
-
See https://www.drupal.org/project/farm/issues/3185721#comment-13960019
@paul121, @mstenta and I just discussed this in a call and I think this is something we can postpone for now, b/c the securi…