[OAUTH-WG] I-D Action: draft-ietf-oauth-browser-based-apps-19.txt
internet-drafts@ietf.org Sun, 20 October 2024 21:04 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: oauth@ietf.org
Delivered-To: oauth@ietfa.amsl.com
Received: from [10.244.8.251] (unknown [104.131.183.230]) by ietfa.amsl.com (Postfix) with ESMTP id EBF48C151710; Sun, 20 Oct 2024 14:04:26 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.25.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <172945826659.1831908.3127349618974218415@dt-datatracker-78dc5ccf94-w8wgc>
Date: Sun, 20 Oct 2024 14:04:26 -0700
Message-ID-Hash: O7TA2OEIOGBLYSSOHWVTGATDBDYTSRWP
X-Message-ID-Hash: O7TA2OEIOGBLYSSOHWVTGATDBDYTSRWP
X-MailFrom: internet-drafts@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: oauth@ietf.org
X-Mailman-Version: 3.3.9rc6
Reply-To: oauth@ietf.org
Subject: [OAUTH-WG] I-D Action: draft-ietf-oauth-browser-based-apps-19.txt
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/wFg4j9v0iH7NRlJCpr0WpjHYtyo>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>
Internet-Draft draft-ietf-oauth-browser-based-apps-19.txt is now available. It
is a work item of the Web Authorization Protocol (OAUTH) WG of the IETF.
Title: OAuth 2.0 for Browser-Based Applications
Authors: Aaron Parecki
David Waite
Philippe De Ryck
Name: draft-ietf-oauth-browser-based-apps-19.txt
Pages: 62
Dates: 2024-10-20
Abstract:
This specification details the threats, attack consequences, security
considerations and best practices that must be taken into account
when developing browser-based applications that use OAuth 2.0.
Discussion Venues
This note is to be removed before publishing as an RFC.
Discussion of this document takes place on the Web Authorization
Protocol Working Group mailing list (oauth@ietf.org) which is
archived at https://mailarchive.ietf.org/arch/browse/oauth/.
Source for this draft and an issue tracker can be found at
https://github.com/oauth-wg/oauth-browser-based-apps.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-oauth-browser-based-apps/
There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-oauth-browser-based-apps-19.html
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-oauth-browser-based-apps-19
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
- [OAUTH-WG] I-D Action: draft-ietf-oauth-browser-b… internet-drafts
- [OAUTH-WG] Re: I-D Action: draft-ietf-oauth-brows… Aaron Parecki