Torsten Lodderstedt – Medium

Torsten Lodderstedt

Published in
OAuth 2

Pushed Authorization Requests Draft adopted by OAuth Working Group

The OAuth Working Group recently adopted the Pushed Authorization Requests (PAR) draft as working group document, which is an important…

Jan 9, 2020

Pushed Authorization Requests Draft adopted by OAuth Working Group

Jan 9, 2020

Published in
OAuth 2

Rich OAuth 2.0 Authorization Requests

It’s been a while since I blogged about the new challenges arising from open banking and other use cases when it comes to OAuth…

Sep 21, 2019

Sep 21, 2019

Published in
OAuth 2

Transaction Authorization or why we need to re-think OAuth scopes

Have you ever come across limitations of the way OAuth expresses the requested scope of an access token? Well, I have several times in the…

Apr 20, 2019

Transaction Authorization or why we need to re-think OAuth scopes

Apr 20, 2019

Published in
OAuth 2

Why you should stop using the OAuth implicit grant!

No one should any longer use the implicit grant! That’s what IETF’s OAuth working group, the authority for official OAuth specifications…

Nov 9, 2018

Why you should stop using the OAuth implicit grant!

Nov 9, 2018

Torsten Lodderstedt

Torsten Lodderstedt

Torsten is CTO@yes.com, software architect with strong security interest, identity nerd, contributor to OAuth, OpenID, Open Banking & Electronic Signatures

Following

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams