Closed PieterKas closed 10 months ago
It was suggested that instead of an authorization code, the service returns an access token directly. Add security considerations to outline why this is not an appropriate pattern for this protocol.
It was suggested that instead of an authorization code, the service returns an access token directly. Add security considerations to outline why this is not an appropriate pattern for this protocol.