- changed title to oauth2 Profile - 2.1.2 5th paragraph @torsten comment
oauth2 Profile - 2.1.2 5th paragraph @torsten comment [draft-ietf-oauth-security-topics]
Issue #7
resolved
„Dynamically registered native applications MAY use PKCE."
What about PKCE for code replay detection? I suggest you align your draft with https://tools.ietf.org/html/draft-ietf-oauth-security-topics
Comments (7)
-
Account Deactivated reporter -
Agree and should make the change
-
- changed title to oauth2 Profile - 2.1.2 5th paragraph @torsten comment [draft-ietf-oauth-security-topics]
-
-
- marked as blocker
Changed to BLOCKER to filter for v1.05/Implementer’s draft.
-
Resolved in PR#25
https://bitbucket.org/openid/igov/pull-requests/25 -
- changed status to resolved
Resolved by PR#25
- Log in to comment