Torsten Lodderstedt – Medium

Torsten Lodderstedt

Published in

Pushed Authorization Requests Draft adopted by OAuth Working Group

The OAuth Working Group recently adopted the Pushed Authorization Requests (PAR) draft as working group document, which is an important…

Jan 9, 2020

Pushed Authorization Requests Draft adopted by OAuth Working Group

Jan 9, 2020

Published in

Rich OAuth 2.0 Authorization Requests

It’s been a while since I blogged about the new challenges arising from open banking and other use cases when it comes to OAuth…

Sep 21, 2019

Sep 21, 2019

Published in

Transaction Authorization or why we need to re-think OAuth scopes

Have you ever come across limitations of the way OAuth expresses the requested scope of an access token? Well, I have several times in the…

Apr 20, 2019

Transaction Authorization or why we need to re-think OAuth scopes

Apr 20, 2019

Published in

Why you should stop using the OAuth implicit grant!

No one should any longer use the implicit grant! That’s what IETF’s OAuth working group, the authority for official OAuth specifications…

Nov 9, 2018

Why you should stop using the OAuth implicit grant!

Nov 9, 2018

Torsten Lodderstedt

Torsten Lodderstedt

Torsten is CTO@yes.com, software architect with strong security interest, identity nerd, contributor to OAuth, OpenID, Open Banking & Electronic Signatures

Following

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech