-Doug Tangren http://lessis.me
For example, a iOS app that is shipped through iTunes certainly has access > to reasonably secure storage via KeyChain for secrets issued to the > application at runtime, such as the referesh_token, but it can’t do a good > job of protecting the client_secret, since this must be embeded in the > binary that is distributed to everyone. > Neither can anything that runs in you browser [1] [1]: https://github.com/cezarsa/silver_bird/commit/6c0c0b439d49f716ba5ea8ae2e13d15f2096c6fa
_______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
