OAuth2 Topics #11
Description
From @Spomky on February 7, 2017 8:6
| Q | A |
|---|---|
| Project | server-library, server-bundle |
| Bug report? | no |
| Feature request? | yes |
| BC Break report? | no |
| RFC? / Specification | https://tools.ietf.org/html/draft-lodderstedt-oauth-security-topics |
| Library version | 1.0 |
- Exact match for all redirect uris
- At the moment, a fragment is added at the end of the redirection uri to avoid opened redirectors. This library should not append an empty fragment (
#) but a fragment with an arbitrary value such as the one used by facebook (https://developers.facebook.com/blog/post/552/):#_=_
Copied from original issue: OAuth2-Framework/doc#11