-
### Before reporting an issue
- [X] I have read and understood the above terms for submitting issues, and I understand that my issue may be closed without action if I do not follow them.
### Area
o…
-
**Expected Behavior**
[RFC 9126](https://datatracker.ietf.org/doc/html/rfc9126) introduces pushed authorization requests (PAR) for OAuth. In essence, pushed authorization requests allow the client …
-
FAPI 2.0 security verbeteringen
https://www.rfc-editor.org/rfc/rfc9126.html
## Waarom (kort)
Door de parameters bij een authorization code inlog niet meer via de client te sturen kunnen deze ni…
-
I would like to propose adding support for the [Pushed Authorization Requests (PAR)](https://datatracker.ietf.org/doc/html/rfc9126)
Adding support for PAR improves security by sending the authori…
-
Recently, a number of questions came up on Gitter ([gitter.im/solid/webid-profile](gitter.im/solid/webid-profile), starting Oct 21 22:17) and in private conversation with @jeff-zucker, that make it cl…
-
> Due to the large size of a Trust Chain, it may be necessary to use the HTTP POST method, request_uri, or a [Pushed Authorization Request](https://openid.net/specs/openid-federation-1_0.html#RFC9126)…
-
**PAR** ([OAuth 2.0 Pushued Authorization Requests](https://datatracker.ietf.org/doc/draft-ietf-oauth-par/)).
PAR has a considerably big impact on authorization server implementations, especially i…
-
# where is the scope for an access token determined?
1. before issuing the access token (authz request)
2. after issuing the access token (during resource request)
## 1. before issuing the acce…
-
## The dependency [gatsby](https://github.com/gatsbyjs/gatsby) was updated from `2.0.25` to `2.0.26`.
🚨 [View failing branch](https://github.com/WebPurple/site/compare/master...WebPurple:greenkeeper…
-
https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-05#section-2.3.1
Redirect URIs are not required to be registered if the client is using PAR and is a confidential client.