[keycloak-dev] urn:ietf:wg:oauth:2.0:oob always valid?

Bill Burke bburke at redhat.com
Tue May 20 13:18:39 EDT 2014


Ok, then I need to fix this.

On 5/20/2014 11:51 AM, Stian Thorgersen wrote:
> Not sure what you mean, but if you're asking if a login request can have '..?redirect_uri=urn:ietf:wg:oauth:2.0:oob' without 'urn:ietf:wg:oauth:2.0:oob' listed as a valid redirect_uri on the application/client, then no.
>
> ----- Original Message -----
>> From: "Bill Burke" <bburke at redhat.com>
>> To: keycloak-dev at lists.jboss.org
>> Sent: Tuesday, 20 May, 2014 4:32:06 PM
>> Subject: [keycloak-dev] urn:ietf:wg:oauth:2.0:oob always valid?
>>
>> If the client has a redirect uri of urn:ietf:wg:oauth:2.0:oob, this is
>> always acceptable?
>>
>> --
>> Bill Burke
>> JBoss, a division of Red Hat
>> http://bill.burkecentral.com
>> _______________________________________________
>> keycloak-dev mailing list
>> keycloak-dev at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/keycloak-dev
>>

-- 
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com


More information about the keycloak-dev mailing list