@elmiko in my python tests #GeminiAI has been pretty good. So galang doesn't worry me that much. Interestingly multiple AIs struggle with #oauth, eg also #lovable .

There aren't even free standing computers and library employees not respecting documentation standards pisses me off. So i have to check now if another library has a free computer. It's already the second library. In the first ive got #hausverbot because I dont want to be #homeless anymore, see other thread on this masto account.

**OpenSource** @OpenSource@activitypub.awakari.com · 14 apr

14 apr

OpenSource @OpenSource@activitypub.awakari.com

OpenIG: авторизация доступа через OAuth (на примере Яндекс ...

https://habr.com/ru/articles/900576/?utm_source=habrahabr&utm_medium=rss&utm_campaign=900576

#яндекс #openig #api #gateway #gateway #open #source #oauth2 #oauth #2.0

Event Attributes

Ha risposto nella discussione

**Erik Play2Learn** @fallbackerik@mastodon.social · 2 apr

2 apr

Erik Play2Learn @fallbackerik@mastodon.social

@netzpolitik_feed Haben die @EUCommission Kollegen schon mal von #oauth gehört? Ein großer Teil der Anfrage-Verwaltung ist damit technisch schon gelöst.

**Emelia** @thisismissem.bsky.social@bsky.brid.gy · 30 mar

30 mar

Emelia @thisismissem.bsky.social@bsky.brid.gy

Spent the past hour doing some updates to the Client ID Metadata Documents internet draft. Trying to find alignment with the Client ID Prefix internet draft and fix a few open issues. #ietf #oauth

Bluesky SocialBluesky

**PostgreSQL** @PostgreSQL@activitypub.awakari.com · 26 mar

26 mar

PostgreSQL @PostgreSQL@activitypub.awakari.com

https://www.freelancer.com/projects/nodejs/Full-Stack-Next-Marketplace-Development.html

#Next.js #Node.js #OAuth #PostgreSQL #React.js

Event Attributes

FreelancerFull Stack Next.js Marketplace DevelopmentNode.js & React.js Projects for $10000-20000 USD. I'm seeking a skilled developer to create a complete full-stack [login to view URL] application. It's a two-sided market

#nextjs #nodejs #reactjs

**Éric V.** @daks@mamot.fr · 25 mar *

25 mar *

Éric V. @daks@mamot.fr

So it seems that there is no way to register a new app on developers.deezer.com?!
How am I supposed to automatically download my playlists now?
Any idea of what I am missing?

#deezer #app #dev

**damienbod** @damienbod@mastodon.social · 25 mar

25 mar

damienbod @damienbod@mastodon.social

Blogged: ASP.NET Core delegated Microsoft OBO access token management (Entra only)

https://damienbod.com/2025/03/25/asp-net-core-delegated-microsoft-obo-access-token-management-entra-only/

Software Engineering · 25 marASP.NET Core delegated Microsoft OBO access token management (Entra only)This blog shows how to implement a delegated Microsoft On-Behalf-Of flow in ASP.NET Core, and has a focus on access token management. The solution uses Microsoft.Identity.Web to implement the diffe…

#aspnetcore #dotnet #micrsoftidentity

Discussione continua

**Jörn Franke** @jornfranke@mastodon.online · 24 mar

24 mar

Jörn Franke @jornfranke@mastodon.online

Check your programming frameworks. For example, this is currently only planned in the upcoming major Version of the Spring framework https://github.com/spring-projects/spring-security/issues/16391

At least for the Rust crate openidconnect-rs this is included in the default example: https://docs.rs/openidconnect/latest/openidconnect/

PKCE is recommended to prevent CSRF and authorization code injection attacks. We should consider enabling enabling PKCE for authorization_code flows by default to ensure we have secure defaults. In...

GitHubConsider Enabling PKCE for Authorization Code by Default · Issue #16391 · spring-projects/spring-securityDi rwinch

#oauth #oauth2_1 #spring

**Jörn Franke** @jornfranke@mastodon.online · 24 mar *

24 mar *

Jörn Franke @jornfranke@mastodon.online

browsing the specs of OAuth 2.1 and found that PKCE is now mandatory for Authorization Code Flow (not only Desktops or frontend-only apps!):
https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-12

"The authorization code grant is extended with the functionality from PKCE [RFC7636] such that the default method of using the authorization code grant according to this specification requires the addition of the PKCE parameters"

IETF DatatrackerThe OAuth 2.1 Authorization FrameworkThe OAuth 2.1 authorization framework enables an application to obtain limited access to a protected resource, either on behalf of a resource owner by orchestrating an approval interaction between the resource owner and an authorization service, or by allowing the application to obtain access on its own behalf. This specification replaces and obsoletes the OAuth 2.0 Authorization Framework described in RFC 6749 and the Bearer Token Usage in RFC 6750.

#oauth #oauth2_1 #pkce

**Khalid Pro Max️** @khalidabuhakmeh@mastodon.social · 19 mar

19 mar

Khalid Pro Max️ @khalidabuhakmeh@mastodon.social

I got #Duende IdentityServer #OAuth working inside an @avaloniaui app. It's pretty easy, thanks to the Duende.IdentityModel package and the browser abstraction. #dotnet