Skip to content

Issues: indieweb/indieauth

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
37 Open 58 Closed
37 Open 58 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Should a token grant access to anything more specific than the specified resource? ticketing extension Ticketing for IndieAuth extension
#83 opened Jul 8, 2021 by aaronpk
1
Should the use of explicit app schemes be discouraged as redirectUrls?
#20 opened Jul 3, 2018 by EdwardHinkle
1
Create architecture diagram
#26 opened Oct 17, 2018 by aaronpk
1
Create a Detailed Application Diagram
#27 opened Oct 17, 2018 by aaronpk
Write up Data Flow Enumeration
#28 opened Oct 17, 2018 by aaronpk
Write up threat analysis
#29 opened Oct 17, 2018 by aaronpk
1
Which WWW-Authenticate header to use?
#32 opened Jun 6, 2019 by sebsel
1
Document URL update procedures
#34 opened Oct 19, 2019 by brandonkal
Path component in client_id considered optional
#38 opened Jul 11, 2020 by cjw6k
3
Adopt Pushed Authorization Requests revisit later
#40 opened Jul 23, 2020 by aaronpk
5
IndieAuth needs non-normative Privacy Threat Model documentation
#63 opened Oct 12, 2020 by tantek
Clarify what an AS should display if no app information was discovered at the client ID URL
#64 opened Oct 30, 2020 by aaronpk
1
Link relations in HTTP Link header conflict with RFC 5988.
#17 opened Feb 15, 2018 by Zegnat
5
Adopt Resource Indicators or similar system to limit token access to resources revisit later
#82 opened Jul 5, 2021 by dshanske
7
Do we need to add client_id to ticket auth requests? ticketing extension Ticketing for IndieAuth extension
#85 opened Jul 10, 2021 by aaronpk
3
Standard mechanism for requesting a ticket auth ticket grant? ticketing extension Ticketing for IndieAuth extension
#87 opened Jul 11, 2021 by fluffy-critter
11
Extension to Allow Clients to Get Tokens Secured by Ticket ticketing extension Ticketing for IndieAuth extension
#88 opened Aug 18, 2021 by dshanske
5
Issuing Access Tokens for Introspection
#99 opened Oct 2, 2021 by dshanske
7
Expressly Note a TLS/HTTPS requirement
#103 opened Oct 18, 2021 by dshanske
1
reference RFC 9207 instead of draft-ietf-oauth-iss-auth-resp
#112 opened Mar 20, 2022 by omz13
ticketing + ac-obo
#113 opened Apr 4, 2022 by omz13
Text improvement for §6.2 Access Token Verification Response
#115 opened May 16, 2022 by gRegorLove
Clarify properties in access token grant response description and example
#116 opened Sep 19, 2022 by barnabywalters
1
3
Include Cache-Control and Pragma headers in token exchange response example
#117 opened Oct 23, 2022 by barnabywalters
2
Any testing tools available?
#137 opened May 30, 2024 by anderspitman
2
ProTip! Adding no:label will show everything without a label.