On Aug 28, 2023, at 9:51 AM, Yannick Majoros wrote:
>
> You really have a point about refresh tokens here, but they are a separate,
> real issue. Refresh tokens should be avoided whenever you can do without. Any
> pattern that can keep them safe is on the same level, but their safety is
>
Need this downloaded and install please
___
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
Need this downloaded and install
___
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
Need this downloaded
___
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
Need this downloaded
___
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
Need this down load
On Mon, Aug 28, 2023, 1:35 PM wrote:
> Send OAuth mailing list submissions to
> oauth@ietf.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
> https://www.ietf.org/mailman/listinfo/oauth
> or, via email, send a message with subject or body
Hey Aaron,
*> There is a huge difference between being able to access resources
through the user's browser while it's online vs being able to access
resources without the browser's involvement.*
While there are operational differences, the end result is compromission of
the exposed resources for