search

aaronpk / oauth-first-party-apps

https://datatracker.ietf.org/doc/html/draft-parecki-oauth-first-party-apps
Other
9 stars 7 forks source link

Require device binding for auth sessions #57

Closed PieterKas closed 4 months ago

PieterKas commented 5 months ago

Issue #56

Add normative requirement for device binding of auth session and require the authorization server to enforce it.