Jörn Franke<p>Check your programming frameworks. For example, this is currently only planned in the upcoming major Version of the Spring framework <a href="https://github.com/spring-projects/spring-security/issues/16391" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/spring-projects/spr</span><span class="invisible">ing-security/issues/16391</span></a></p><p>At least for the Rust crate openidconnect-rs this is included in the default example: <a href="https://docs.rs/openidconnect/latest/openidconnect/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">docs.rs/openidconnect/latest/o</span><span class="invisible">penidconnect/</span></a></p><p><a href="https://mastodon.online/tags/oauth" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>oauth</span></a> <a href="https://mastodon.online/tags/oauth2_1" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>oauth2_1</span></a> <a href="https://mastodon.online/tags/spring" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>spring</span></a> <a href="https://mastodon.online/tags/rust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rust</span></a> <a href="https://mastodon.online/tags/oidc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>oidc</span></a> <a href="https://mastodon.online/tags/pkce" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pkce</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
veganism.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Veganism Social is a welcoming space on the internet for vegans to connect and engage with the broader decentralized social media community.
Administered by:
Server stats:
297active users
veganism.social: About · Status · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.0-alpha.5+vegan
#oauth2_1
0 posts · 0 participants · 0 posts today
Jörn Franke<p>browsing the specs of OAuth 2.1 and found that PKCE is now mandatory for Authorization Code Flow (not only Desktops or frontend-only apps!):<br><a href="https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-12" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">datatracker.ietf.org/doc/html/</span><span class="invisible">draft-ietf-oauth-v2-1-12</span></a></p><p>"The authorization code grant is extended with the functionality from PKCE [RFC7636] such that the default method of using the authorization code grant according to this specification requires the addition of the PKCE parameters"</p><p><a href="https://mastodon.online/tags/oauth" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>oauth</span></a> <a href="https://mastodon.online/tags/oauth2_1" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>oauth2_1</span></a> <a href="https://mastodon.online/tags/pkce" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pkce</span></a> <a href="https://mastodon.online/tags/authorizationcodeflow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>authorizationcodeflow</span></a></p>
VegansExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload