Difference between revisions of "OAuth 2.0"

From MgmtWiki
Jump to: navigation, search
(Problems)
(Problems)
Line 6: Line 6:
  
 
==Problems==
 
==Problems==
* OAuth 2.0 still depends on shared secrets between services on [[Web Site]].<ref>Justin Richer, ''What's Wrong With OAuth 2?'' https://twitter.com/justin__richer/status/1023738139200778240</ref>
+
* OAuth 2.0 still depends on shared secrets between services on [[Web Site]]s and other internet devices.<ref>Justin Richer, ''What's Wrong With OAuth 2?'' https://twitter.com/justin__richer/status/1023738139200778240</ref>
  
 
==Solutions==
 
==Solutions==

Revision as of 10:31, 30 July 2018

Full Title or Meme

The OAuth 2.0 Authorization Framework

Context

In OAuth 2.0

Problems

  • OAuth 2.0 still depends on shared secrets between services on Web Sites and other internet devices.[1]

Solutions

References

  1. RFC 8252 OAuth 2.0 for Native Apps Specification
  2. RFC 6749 The OAuth 2.0 Authorization Framework specification
    1. Justin Richer, What's Wrong With OAuth 2? https://twitter.com/justin__richer/status/1023738139200778240