Settings and activity
3 results found
-
21 votesShackleberry112 supported this idea ·
-
49 votes
An error occurred while saving the comment Shackleberry112 supported this idea · -
18 votesShackleberry112 supported this idea ·
3 results found
Absolutely required, the only options (AFAIK) are to use implicit flow which has inherent risks when using the access token for API calls or to expose the client secret.
PKCE is vital to ensure public client applications can be secured!