You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Please give us a thumbs up or thumbs down as a reaction to help us prioritize this feature. Feel free to comment if you have a particular need or comment on how this feature should work.
The text was updated successfully, but these errors were encountered:
Support PAR standard
Problem
Support the Pushed Authorization Request IETF standard.
"PAR fosters OAuth security by providing clients a simple means for a confidential and integrity protected authorization request. "
This basically lets a client POST to start the OAuth flow, rather than using the GET.
Solution
Implement the RFC. https://www.rfc-editor.org/rfc/rfc9126.html
Alternatives/workarounds
n/a
Additional context
Just approved as of today: https://datatracker.ietf.org/doc/draft-ietf-oauth-par/ https://mailarchive.ietf.org/arch/msg/oauth/PgPAJq-zrYOXN1l9AAOjEFs_vvY/
Related
Community guidelines
All issues filed in this repository must abide by the FusionAuth community guidelines.
How to vote
Please give us a thumbs up or thumbs down as a reaction to help us prioritize this feature. Feel free to comment if you have a particular need or comment on how this feature should work.
The text was updated successfully, but these errors were encountered: