issues
search
indieweb
/
indieauth
IndieAuth.net website code and IndieAuth Specification
52
stars
7
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Adopt PKCE
#39
aaronpk
closed
3 years ago
2
Path component in client_id considered optional
#38
cjw6k
opened
4 years ago
3
improve consistency of terminology and wording
#37
dmitshur
closed
4 years ago
4
Ambiguity in handling redirections
#36
fluffy-critter
closed
3 years ago
10
Improve validation rules for the verification response 'me'
#35
fluffy-critter
closed
3 years ago
10
Document URL update procedures
#34
brandonkal
opened
4 years ago
0
Align/adopt RFC7662 token introspection and `active: true`
#33
jamietanna
closed
2 years ago
5
Which WWW-Authenticate header to use?
#32
sebsel
opened
5 years ago
1
Returning Profile Data
#31
dshanske
closed
3 years ago
20
Add Drupal IndieWeb module to self-hosted section
#30
swentel
closed
5 years ago
0
Write up threat analysis
#29
aaronpk
opened
5 years ago
1
Write up Data Flow Enumeration
#28
aaronpk
opened
5 years ago
0
Create a Detailed Application Diagram
#27
aaronpk
opened
5 years ago
0
Create architecture diagram
#26
aaronpk
opened
5 years ago
1
Specification output misses References section
#25
sknebel
closed
3 years ago
1
Add missing ampersand in AuthN redirect
#24
jamietanna
closed
5 years ago
0
Client Information Discovery without relying on microformats parsers.
#23
Zegnat
closed
2 weeks ago
12
Allow clients to set wildcard redirect_uri values.
#22
Zegnat
closed
4 years ago
8
Allowing local IP addresses in client identifiers
#21
balloob
closed
6 years ago
2
Should the use of explicit app schemes be discouraged as redirectUrls?
#20
EdwardHinkle
opened
6 years ago
1
Allow the 'me' parameter to authorization endpoints to be omitted?
#19
00dani
closed
3 years ago
37
recommend/require Accept-headers, and show them in examples
#18
sknebel
opened
6 years ago
9
Link relations in HTTP Link header conflict with RFC 5988.
#17
Zegnat
opened
6 years ago
5
naming consistency of anchor/section and link relation
#16
dret
closed
6 years ago
3
RFC 5988 has been replaced by RFC 8288
#15
dret
closed
6 years ago
0
Link to Relevant OAuth specifications when applicable
#14
dshanske
closed
6 years ago
0
Subheadings in Section 5: Authentication should all say Authentication rather than Authorization
#13
EdwardHinkle
closed
6 years ago
4
Specify RelMeAuth as fallback.
#12
Zegnat
closed
5 years ago
6
The me parameter should not be described as “originally entered”.
#11
Zegnat
closed
6 years ago
1
informal reference to RelMeAuth should explicitly reference XFN and rel=me per adoption
#10
tantek
closed
6 years ago
0
Discovery should clarify priority
#9
sknebel
closed
6 years ago
2
Should URL Canonicalization specify a default scheme?
#8
Zegnat
closed
6 years ago
3
Refer to OAuth 2.0 Appendix A for value limitations of the used parameters.
#7
Zegnat
closed
6 years ago
0
Authorization Endpoint should always set scopes for response_type=code requests.
#6
Zegnat
closed
6 years ago
1
Token Endpoint should not issue tokens if no scopes are set.
#5
Zegnat
closed
6 years ago
0
normatively reference HTML living standard
#4
tantek
closed
6 years ago
0
Authorization diagram overlaps weirdly
#3
strugee
closed
6 years ago
1
IndieAuth spec: may/should/must (or not?) canonicalize "www." (lack thereof)
#2
tantek
closed
6 years ago
6
needs README indicating this includes the IndieAuth spec
#1
tantek
closed
6 years ago
0
Previous