[Openid-specs-mobile-profile] Issue #122: Security Considerations (openid/mobile)

Dave Tonge issues-reply at bitbucket.org
Wed Nov 28 08:38:32 UTC 2018

New issue 122: Security Considerations

Dave Tonge:

I've opened this issue so we can get any additional security considerations into the draft.
>From the user_code issue we have the following:

1. user_code should not stored by RP 
2. OP should provide method to change user_code 

(are these security considerations or should they go into the user_code section of the spec)

More information about the Openid-specs-mobile-profile mailing list