Authorization servers that wish to support browser-based applications (applications running exclusively in client-side JavaScript without access to a supporting backend server)
However, the sentence "running exclusively in client-side JavaScript" imposes strict exclusiveness, regardless that these client-side browser-based applications may be running WebAssembly (for example, like Blazor WebAssembly web applications).
Under Token Endpoint, it states:
However, the sentence "running exclusively in client-side JavaScript" imposes strict exclusiveness, regardless that these client-side browser-based applications may be running WebAssembly (for example, like Blazor WebAssembly web applications).