- changed status to resolved
OAuth token only for valid redirect_uri
Issue #43
resolved
The OWIN OAuth library supports only allowing tokens to be issued to valid redirect urls. Add this functionality using an appSetting for the website, then only validate if the website URL is the base of the redirect URL.
Comments (1)
-
reporter - Log in to comment
Resolved in commit e70ca34.