you are right. So the only trustworthy way to enter credentials is an
external browser?
regards,
Torsten.
Am 28.06.2010 20:11, schrieb Marius Scurtescu:
On Fri, Jun 25, 2010 at 10:33 PM, Torsten Lodderstedt
tors...@lodderstedt.net wrote:
comment/question regarding the Embedded Browser
On Fri, Jun 25, 2010 at 10:33 PM, Torsten Lodderstedt
tors...@lodderstedt.net wrote:
comment/question regarding the Embedded Browser scenario: Is the URL bar and
SSL verification symbols (lock + green bar) visible in that scenario?
Otherwise, the user has no chance to verify the identity of the
comment/question regarding the Embedded Browser scenario: Is the URL bar
and SSL verification symbols (lock + green bar) visible in that
scenario? Otherwise, the user has no chance to verify the identity of
the IDP/OAuth server. So there might be problems regarding password
phishing .
Here is the wiki page: http://wiki.oauth.net/OAuth-2-for-Native-Apps
Feel free to edit or comment.
Marius
On Wed, Jun 9, 2010 at 10:59 AM, David Recordon record...@gmail.com wrote:
Want to put this on the wiki http://wiki.oauth.net/?
On Mon, Jun 7, 2010 at 12:25 PM, Marius Scurtescu
Please turn this into a text proposal for section 1.4.3 in -08.
EHL
-Original Message-
From: oauth-boun...@ietf.org [mailto:oauth-boun...@ietf.org] On Behalf
Of Marius Scurtescu
Sent: Monday, June 07, 2010 12:26 PM
To: OAuth WG
Subject: [OAUTH-WG] OAuth 2 for Native Apps
Hi
Sure, will do that.
Marius
On Wed, Jun 9, 2010 at 10:59 AM, David Recordon record...@gmail.com wrote:
Want to put this on the wiki http://wiki.oauth.net/?
On Mon, Jun 7, 2010 at 12:25 PM, Marius Scurtescu mscurte...@google.com
wrote:
Hi,
I attached a document that summaries how native