OAuth 2.0-based authentication of users and devices, user profile management, Single Sign-On (SSO) and Identity Federation across multiple administration domains.
When creating an application, the secret is generated as a UUID, see applications.js - according to RFC-4122 UUIDs should not be used as security capabilities, since they are not necessarily hard to guess.
When creating an application, the secret is generated as a UUID, see applications.js - according to RFC-4122 UUIDs should not be used as security capabilities, since they are not necessarily hard to guess.