[Openid-specs-fapi] Issue #402: AS shall require that redirect URIs use the https scheme (openid/fapi)
tlodderstedt
issues-reply at bitbucket.org
Thu Apr 22 16:23:00 UTC 2021
New issue 402: AS shall require that redirect URIs use the https scheme
https://bitbucket.org/openid/fapi/issues/402/as-shall-require-that-redirect-uris-use
Torsten Lodderstedt:
FAPI 2 Baseline requires https redirect urls, this precludes custom schemes and redirects to the loopback device via http.
It seems like this was copied from FAPI 1.
More information about the Openid-specs-fapi
mailing list