- changed status to open
FAPI1 section 8.1: "RS" and "resource server" are used
Issue #372
wontfix
- (Misuse of data) An AS, RS or Client can potentially use the data not according to the purpose that was agreed.
- (Unsolicited personal data from the Resource) Some bad resource server implementations may return more data than was requested. If the data is personal data, then this would be a violation of privacy principles.
- (Data leak from Resource) Some resource servers store personal data. If a resource server is compromised, these data can leak or be modified.
Comments (8)
-
-
That makes sense.
-
- changed status to wontfix
-
- changed component to Part 1: Baseline
-
- changed component to FAPI 1 - Part 1: Baseline
-
- changed component to FAPI 1 – Part 1: Baseline
-
- changed component to FAPI 1 – Baseline
-
- changed component to FAPI 1: Baseline
- Log in to comment
I kind of thing it is ok. It reads better that way. Thoughts?