comparison mod_secure_interfaces/mod_secure_interfaces.lua @ 6281:17d9533f7596

mod_http_oauth2: Reject invalid attempt to register client without credentials The implicit flow works without a client_secret since the token is delivered directly, but all other currently supported grant types require client to authenticate using credentials, so it makes no sense to not issue credentials then.
author Kim Alvefur <zash@zash.se>
date Thu, 03 Jul 2025 15:45:00 +0200
parents 6c806a99f802
children
comparison
equal deleted inserted replaced
6280:6ea80b73d8f2 6281:17d9533f7596