simeng-li
simeng-li
@evist0 The Implicit Authorization Flow you posted is strongly NOT recommended and has been deprecated by OAuth2.0. It may cause lots of security issues. Back to your requirements, have you...
Yes, M2M only grants authorizations to services, and the "sub" claim in the request token represents the app. Anyway, now I see, it sounds like a valid use case. Still,...
Hi, do you mind putting some more context in your PR? Thx
Hold this PR for a comprehensive testing.
@gao-sun changeset included PTAL
Hi @cesdperez , thanks for your feedback. We actually have a direct sign-in feature that allows users to jump directly to a specific SSO IdP's sign-in page, without needing a...
Glad to hear. It's a new feature we just added. We are working on the documentation. I'll keep you updated once it's released.
@cesdperez please check this [doc](https://docs.logto.io/docs/recipes/openid-connect/authentication-parameters/). Let us know if this helps.
For direct sign-in, you may leave this field empty, it should jump the email domain validation step. Let us know if you met any blockers.
The fix has been released. see https://github.com/logto-io/logto/pull/5774