issues
search
oauth-wg
/
oauth-v2-1
OAuth 2.1 is a consolidation of the core OAuth 2.0 specs
https://oauth.net/2.1/
Other
53
stars
27
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
clarify "identify the client"
#37
aaronpk
closed
3 years ago
2
Authorization servers SHOULD use client authentication if possible
#36
aaronpk
closed
2 years ago
5
warn against using structured client_ids
#35
aaronpk
closed
1 year ago
1
A single "client_id" MUST NOT be treated as more than one type of client.
#34
aaronpk
closed
2 years ago
5
AS's confidence in the client's identity
#33
aaronpk
closed
2 years ago
2
Remove the Pragma header.
#32
adeinega
closed
3 years ago
1
NIST SP 800-63-1 obsoleted
#31
ioggstream
opened
3 years ago
2
Fix: #21. Reorganize TLS parts.
#30
ioggstream
closed
3 years ago
11
Clarify "authorization grant"
#29
aaronpk
closed
2 years ago
3
Resolve "obsoletes and replaces" language
#28
aaronpk
opened
3 years ago
4
Clients as Resource Owners
#27
aaronpk
closed
2 years ago
2
Update "Protocol Flow" introduction section
#26
aaronpk
opened
3 years ago
4
Clarify scope of the spec
#25
aaronpk
closed
1 year ago
6
Clarify when `client_id` is required to be sent to the token endpoint
#24
aaronpk
closed
3 years ago
1
TLS validation
#23
ioggstream
closed
3 years ago
2
Fix payload terminology
#22
ioggstream
closed
3 years ago
4
Why don't "always TLS" or similar
#21
ioggstream
closed
3 years ago
1
Clarify refresh token rotation
#20
aaronpk
closed
2 years ago
0
Drop reference to "third-party" from abstract
#19
aaronpk
closed
2 years ago
1
Clean up usage of the term "client identity"
#18
aaronpk
closed
2 years ago
2
Editorial
#17
dickhardt
closed
4 years ago
0
Improve PKCE usage description.
#16
danielfett
closed
4 years ago
0
Consolidate Text on CSRF and Code Replay
#15
tlodderstedt
closed
4 years ago
1
Update redirect URI allowance for port based on Security BCP
#14
aaronpk
closed
3 years ago
1
Name for the third client type
#13
aaronpk
closed
4 years ago
2
Point to existing IANA registries
#12
aaronpk
closed
4 years ago
0
Remove IANA registry section
#11
aaronpk
closed
4 years ago
0
Refresh Token rotation as MUST for public clients?
#10
tlodderstedt
closed
4 years ago
3
Clarify redirect URI comparison
#9
aaronpk
closed
3 years ago
2
Master
#8
tlodderstedt
closed
4 years ago
0
modfied text about client types and PKCEjustificatzionremoved xml2rfc file
#7
tlodderstedt
closed
4 years ago
0
Changes to build --v3 html
#6
tlodderstedt
closed
4 years ago
0
Merge branch 'aaronpk/master'
#5
tlodderstedt
closed
4 years ago
1
corrected affiliation
#4
tlodderstedt
closed
4 years ago
0
V2v3
#3
dickhardt
closed
4 years ago
0
updated intro
#2
dickhardt
closed
4 years ago
0
Master
#1
tlodderstedt
closed
4 years ago
0
Previous