Just sharing, do not shoot the messenger :) http://insanecoding.blogspot.com/2016/04/oauth-why-it-doesnt-work-and-how-to-zero-day-attack.html
and companion website: http://no-oauth.insanecoding.org/ regards antonio _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth