Is the OAuth 2.0 Implicit Flow Dead?

In this post, we'll look at what's changing in the Implicit Flow and why.

developer.okta.com

Aaron Parecki · May 2, 2019 · 11:31 PM UTC

Aaron Parecki · May 2, 2019 · 11:31 PM UTC

Aaron Parecki @aaronpk

2 May 2019

Replying to @nicokaiser

That's a big assumption (you don't know what browser extensions the user is using) but yes that's one way to be more confident. I wouldn't use absolute terms like "safe" though. "Less risky" maybe.

May 2, 2019 · 11:31 PM UTC