rspec/oauth_pkce.adoc at f26dc7084d4acf81a01fc31d7a1fa9232b044918 - rspec - BuBaQ

ishangsf/rspec

github-actions[bot] 0b279b2bf2

Create rule S7164: Dropbox app credentials should not be disclosed (#4501 )

* Create rule S7164

* Initial content

* Additional content

---------

Co-authored-by: jamie-anderson-sonarsource <jamie-anderson-sonarsource@users.noreply.github.com>
Co-authored-by: Jamie Anderson <127742609+jamie-anderson-sonarsource@users.noreply.github.com>

2024-11-15 16:12:02 +00:00

7 lines

264 B

Plaintext

Raw Blame History

 **Use OAuth 2.0 PKCE**
 Proof Key for Code Exchange (PKCE, RFC 7636) is an extension to OAuth 2.0. It
 helps to protect authentication tokens when the `client_secret` value cannot be
 kept secure, such as mobile applications and JavaScript single page
 applications.