Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
apitman
on May 5, 2020
|
parent
|
context
|
favorite
| on:
OAuth 2.0 Security Best Current Practice
Technically unregistered clients are within spec. IndieAuth is one such implementation, focused on federated services. Aaron Parecki has a good writeup here[0]. Unfortunately that's not going to help you when playing with the big boys.
[0]:
https://aaronparecki.com/2018/07/07/7/oauth-for-the-open-web
Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
[0]: https://aaronparecki.com/2018/07/07/7/oauth-for-the-open-web