Skip to content

OAuth2 filter: Proof Key for Code Exchange (PKCE) #35230

Closed
#37849
Closed
OAuth2 filter: Proof Key for Code Exchange (PKCE)#35230
#37849
Assignees
zhaohuabing
Labels
area/oauthenhancementFeature requests. Not bugs or questions.no stalebotDisables stalebot from closing an issue
@zhaohuabing

Description

@zhaohuabing
zhaohuabing
opened on Jul 17, 2024

Title: OAuth2 filter: Proof Key for Code Exchange (PKCE)

Description:

Describe the desired behavior, what scenario it enables and how it
would be used.

PKCE (Proof Key for Code Exchange) is an extension to the OAuth 2.0 authorization code flow that can prevent the authorization code interception attack. Implementing it can significantly enhance the security of the OAuth2 filter .

[optional Relevant Links:]

Any extra documentation required to understand the issue.

Proof Key for Code Exchange by OAuth Public Clients

@arkodg @missBerg

Metadata

Metadata

Assignees

Labels

area/oauthenhancementFeature requests. Not bugs or questions.no stalebotDisables stalebot from closing an issue

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions