- changed status to resolved
Applicability of Security BCP to FAPI 2.0
Section “Differences to FAPI 1.0” of FAPI 2.0 says that FAPI 2.0 implementations “shall adhere to Security BCP”, which presumably refers to the “OAuth 2.0 Security Best Current Practice” draft. While some parts of the BCP draft are referenced by FAPI 2.0, it remains unclear whether implementations are required to conform to the full BCP or just the parts explicitly referenced by FAPI 2.0.
Comments (4)
-
-
I clarified the wording in PR https://bitbucket.org/openid/fapi/pull-requests/361 to fix this issue,
-
Merged in danielfett/fapi2/fix-507-comparison-table (pull request #361)
Improve comparison table
-
Improve comparison table
-
Fix Issue
#529as well -
Apply Joseph suggestions
Approved-by: Dima Postnikov Approved-by: Dave Tonge Approved-by: Lukasz Jaromin Approved-by: Filip Skokan
→ <<cset a9facef6105b>>
-
-
- changed component to FAPI2: Security Profile
- Log in to comment
Fix Issue
#529as well→ <<cset 518610f512a5>>