Gabriel Corona

icon indicating a website link http://www.gabriel.urdhr.fr/

icon location Nancy, France, Earth, Solar System, Milky Way, Laniakea, material plane

Results 204 comments of Gabriel Corona

Crypto appendix - mention missing mechanisms

@unprovable, any feedback?

proposal/discussion: OAuth - separate requirement for redirect_uri string-match registration and handling

> sent over HTTPS "using the HTTPS scheme"?

proposal: merge 12.3.6 to 10.3.2

> [MODIFIED] Verify that the application only loads or executes code, modules, content or plugins from sources not under the application's direct control/protection if it employs integrity protections, such as...

review V51.4.2

> preferably to a single resource server. FWIW, this condition is less important (sometimes) when using sender-constrained tokens.

review V51.4.2

Proposition of minor rewording: > Verify that the resource server validates that the access token is intended to be usable on that resource server (audience), for example by checking the...

review V51.4.2

Or: > Verify that the resource server rejects the request if the access token was not intended to be usable on that resource server (audience), for example by checking the...

review V51.4.2

OK for the positive one. Is it clear enough?

review V51.4.2

I don't know :) it's probably OK like that.

review V51.4.2

Proposition including token introspection: > Verify that the resource server validates that the access token is intended to be used on that resource server (audience). When the access token is...

review V51.4.2

Nitpicky changes: | # | Description | L1 | L2 | L3 | | :---: | :--- | :---: | :---: | :---: | | **51.4.2** | [ADDED] Verify that...