Andrew Millington
Andrew Millington
Hi @StevePorter92 - any updates on this PR? I'm happy to pick this up in your absence if you're snowed under.
It is awaiting review from myself. I will get to it eventually but don't have a firm timeline for this at present sorry.
Will do, thanks @StevePorter92. I should have some free time this evening. Unfortunately @dvdbot, this isn't just a case of reviewing the code. I also need to familiarise myself with...
Yes. Rough plan is to get Device Code in place and then this. January is super busy for me as I need to do tax returns etc but will be...
I'm working on the 9.0 release right now so have added this to the milestone but I don't expect this to be out for at least a month, maybe more...
What is the aud claim returning in the later version. Can you provide a var dump of this please? Thanks
It needs further investigation. If the client is confidential or has been issued auth credentials, it must authenticate with the OAuth2 server. The package first checks for Basic HTTP auth...
Oops, I didn't mean to close this. Clicked the wrong button sorry :)
Documentation has been updated to not advocate the _password grant_ for SPAs. At the moment it states that you should use the implicit grant but I believe current best practices...
@NoelDeMartin good question and apologies for any confusion I've caused. As I had stated in #881, the Auth Code Grant can be used without a secret according to the OAuth2...