New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

New iFrame implicit flow #233

Open
nynymike opened this Issue May 31, 2016 · 2 comments

Comments

Projects
None yet
3 participants
@nynymike
Contributor

nynymike commented May 31, 2016

http://lists.openid.net/pipermail/openid-specs-ab/Week-of-Mon-20151116/005865.html

In this document, we define a new architecture and flow for
JavaScript clients on how to get access tokens and/or ID tokens from
Identity providers (IDP). Instead of getting these tokens from the
IDP Authorization Endpoint (as defined in RFC 6749 [RFC6749] as the
token flow), JavaScript clients now get these tokens from an IFrame
provided by the IDP. This change brings huge performance and
security benefits.

@nynymike nynymike added this to the CE 2.4.5 milestone May 31, 2016

@nynymike nynymike modified the milestones: CE 3.1.0, CE 3.0.0 Nov 29, 2016

@qbert2k

This comment has been minimized.

Contributor

qbert2k commented May 17, 2017

@nynymike

This comment has been minimized.

Contributor

nynymike commented Jun 26, 2017

Perhaps should be moved to 3.2...

@qbert2k qbert2k modified the milestones: CE 3.2.0, CE 3.1.0 Jun 28, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment