•  
      request #14800 Opportunistic PKCE support of OIDC provider
    Infos
    #14800
    Thomas Gerbet (tgerbet)
    2020-04-22 12:31
    2020-04-20 12:41
    15969
    Details
    Opportunistic PKCE support of OIDC provider
    While PKCE is not part of the OIDC spec (a similar protection is added by the state parameter), it becomes more frequent to have authorization servers that support it or even enforce its usage (it makes sense for an authorization server that also support standard OAuth2 clients).
    Since adding PKCE is additive we could add it, authorization servers supporting it while do the verification others will do nothing.



    https://tools.ietf.org/html/rfc7636
    Authentication & LDAP
    All
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Thomas Gerbet (tgerbet)
    Closed
    2020-04-21
    Attachments
    Empty
    References

    Follow-ups