New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PRISMA-2021-0041 - There is no support for PKCE implementation in the oauthlib client #774
Comments
I also have this issue. It seems there is an (in)active PR on this issue #743 |
Feel free to take over. All contributions are welcome 😄 |
Hi all! I'm running into the same issue with finding |
you can help to address the review comments |
I will do just that! Thanks for pointing me in the right direction. |
@auvipy I saw that the PR related to this issue is merged. Could please provide some info on when is the planned release for this fix? |
we can expect very soon, we just need a license issue fixed and update some release notes #766 |
@auvipy Thanks for the instant update. |
closing in favor of #786 |
PRISMA-2021-0041 - There is no support for PKCE implementation in the oauthlib client. Client-side PKCE for OAuth2 RFC 7636 is required for applications to have secure communication with the authorization server. OAuth 2.0 public clients utilizing the Authorization Code Grant are susceptible to the authorization code interception attack.*Describe the bug
The text was updated successfully, but these errors were encountered: