openid / fapi / issues / #328 - FAPI2 and oauth-security-topics — Bitbucket

Issue #328 resolved

Dave Tonge created an issue 2020-10-14

Currently we have this phrase: “shall adhere to [@I-D.ietf-oauth-security-topics]”

I’m not sure about this - I would rather this spec calls out all the specific clauses from the security BCP

Comments (4)

Daniel Fett
We need to update this clause anyway: It should now read “shall implement [OAuth 2.0] and adhere to [security BCP], or implement [OAuth 2.1]”. I’d like to avoid repeating all clauses from the security BCP.
- 2020-10-21T13:25:52+00:00
Daniel Fett
I have updated the FAPI 2 Baseline document in the master branch - please review.
- 2020-11-08T10:44:11+00:00
Daniel Fett
- changed status to resolved
The specific clauses have been incorporated into the text. I'll close this issue for now.
- 2021-01-06T13:20:53+00:00
Nat Sakimura
- changed component to FAPI2: Security Profile
- 2022-12-14T15:35:23+00:00
Log in to comment

Assignee: –

Type: bug

Priority: major

Status: resolved

Component: FAPI2: Security Profile

Milestone: –

Votes: 0

Watchers: 1

Jira: the preferred issue tracker for Bitbucket. Join the team!