I've been reading over various OAuth related specs and resources.
Some interesting things I learned while reading up:
== Clients cannot be trusted with security ==
As far as SSL/TLS goes, this doesn't provide OAuth with as much security
as one might think.
The whole SSL is broken factor aside
On 14 July 2012 11:30, Daniel Friesen li...@nadir-seen-fire.com wrote:
I've been reading over various OAuth related specs and resources.
Some interesting things I learned while reading up:
Can we have TL;DR version too? Anything else than there are many
problems with OAuth?
-Niklas
--
On Sat, 14 Jul 2012 06:09:54 -0700, Niklas Laxström
niklas.laxst...@gmail.com wrote:
On 14 July 2012 11:30, Daniel Friesen li...@nadir-seen-fire.com wrote:
I've been reading over various OAuth related specs and resources.
Some interesting things I learned while reading up:
Can we have