The following errata report has been submitted for RFC8252, "OAuth 2.0 for Native Apps".
-------------------------------------- You may review the report below and at: http://www.rfc-editor.org/errata/eid5149 -------------------------------------- Type: Editorial Reported by: Brian Vosburgh <brian.vosbu...@oracle.com> Section: 8.1 Original Text ------------- Authorization servers SHOULD reject authorization requests from native apps that don't use PKCE by returning an error message, as defined in Section 4.4.1 of PKCE [RFC7636]. Corrected Text -------------- Notes ----- The embedded link for the text "Section 4.4.1" points at Section 4.4.1 of *this* RFC (i.e. https://tools.ietf.org/html/rfc8252#section-4.4.1); but it should point at Section 4.4.1 of *RFC7636* (i.e. https://tools.ietf.org/html/rfc7636#section-4.4.1). Instructions: ------------- This erratum is currently posted as "Reported". If necessary, please use "Reply All" to discuss whether it should be verified or rejected. When a decision is reached, the verifying party can log in to change the status and edit the report, if necessary. -------------------------------------- RFC8252 (draft-ietf-oauth-native-apps-12) -------------------------------------- Title : OAuth 2.0 for Native Apps Publication Date : October 2017 Author(s) : W. Denniss, J. Bradley Category : BEST CURRENT PRACTICE Source : Web Authorization Protocol Area : Security Stream : IETF Verifying Party : IESG _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
