Web Authorization

From MgmtWiki

Revision as of 22:17, 5 December 2024 by Tom (talk | contribs) (Created page with "==Full Title or Meme== Web Authorization Protocol (OAuth) #The role of any provider that requires getting authentication from a separate Identifier or Attribute Provider...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

Contents

1 Full Title or Meme
2 Context
3 Solution
4 References

Full Title or Meme

Web Authorization Protocol (OAuth)

The role of any provider that requires getting authentication from a separate Identifier or Attribute Provider Role.
The role of a user that seeks to use resources on an internet based server.

Context

OAuth 2.0 really messed with people's minds by calling a Relying Party a client of a user when the user grants it access to user-controlled resources.
- See the wiki page OAuth Client for a discussion about when and whether a computer user should trust such an entity.
current list of documents.

Solution

OAuth WG Virtual Interim - Attestation-Based Client Authentication is just the latest attempt to overcome the misuse of OAuth to preform Authentication on behalf of a user's adversary, which is called the user's client. (2024-05-23)

References

Retrieved from "http://tcwiki.azurewebsites.net/index.php?title=Web_Authorization&oldid=22497"

Authorization