search

Gravitalia / Autha

Autha is a fast and safe authorization delegation and account management API 🦦
https://account.gravitalia.com
Mozilla Public License 2.0
28 stars 3 forks source link

[SECURITY] Support DPoP #313

Open RealHinome opened 8 months ago

RealHinome commented 8 months ago

Autha should support Demonstrating Proof of Possession (DPoP) to be safer in every cases.

RealHinome commented 8 months ago

See also https://www.ietf.org/archive/id/draft-ietf-oauth-dpop-04.html and https://developer.okta.com/docs/guides/dpop/main/ !

RealHinome commented 8 months ago

Also https://jc1175.medium.com/a-crash-course-in-oauth-demonstrated-proof-of-possession-dpop-a1dae4129aef