[openstreetmap/openstreetmap-website] Default value for "Confidential application" in OAuth2 client registration seems to be questionable (Issue #3494)
Tom Hughes
notifications at github.com
Tue Nov 29 11:32:35 UTC 2022
Sorry yes you're right that it's not required, but it's also not important to keep hidden because there is no need for the client to even use it - if the client is not confidential then the `client_secret` parameter can be left out when requesting the access token.
--
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/issues/3494#issuecomment-1330487750
You are receiving this because you are subscribed to this thread.
Message ID: <openstreetmap/openstreetmap-website/issues/3494/1330487750 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20221129/761c0e79/attachment.htm>
More information about the rails-dev
mailing list