[openstreetmap/openstreetmap-website] Default value for "Confidential application" in OAuth2 client registration seems to be questionable (Issue #3494)
Simon Poole
notifications at github.com
Wed Mar 9 07:51:49 UTC 2022
### Description
According to https://wiki.openstreetmap.org/wiki/OAuth#Registering_your_application_as_OAuth_2.0_consumer the "Confidential application" checkbox should only be checked if the application can keep the key secret, in particular it should not be set for mobile and web apps, with other words for essentially all apps in this age and day.
Shouldn't then the default be to not to check the setting?
@harry-wood
### Screenshots
_No response_
--
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/issues/3494
You are receiving this because you are subscribed to this thread.
Message ID: <openstreetmap/openstreetmap-website/issues/3494 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20220308/3cc37020/attachment-0001.htm>
More information about the rails-dev
mailing list