Jason Nutter

@jasonnutter.com

Freelance web developer in Seattle. Previously: Identity @ $MSFT, frontend @ $PRCH. nuttech.com photos.jasonnutter.com

50
Followers 129
Following 7
Posts 12.05.2023
Joined

Posts Following

Latest posts by Jason Nutter @jasonnutter.com

That doesn't look like a flag to me

11.12.2024 04:46 👍 1 🔁 0 💬 1 📌 0

11.12.2024 03:57 👍 1 🔁 0 💬 1 📌 0

Mobile apps should be public clients, not confidential clients, as they cannot keep secrets.

05.12.2024 01:30 👍 2 🔁 0 💬 0 📌 0

a man in a suit is holding an umbrella and saying `` those who want respect , give respect '' . ALT: a man in a suit is holding an umbrella and saying `` those who want respect , give respect '' .

21.11.2024 03:52 👍 0 🔁 0 💬 0 📌 0

If you use PowerToys FancyZones (which you should), you can enable a setting disable rounded corners for a window when it is "snapped."

15.11.2024 21:51 👍 0 🔁 0 💬 1 📌 0

RFC 9449: OAuth 2.0 Demonstrating Proof of Possession (DPoP) This document describes a mechanism for sender-constraining OAuth 2.0 tokens via a proof-of-possession mechanism on the application level. This mechanism allows for the detection of replay attacks wit...

I would also look at DPoP, a new standard for detecting replay attacks in OAuth2: datatracker.ietf.org/doc/html/rfc...

15.11.2024 01:32 👍 1 🔁 0 💬 0 📌 0

AAD returns a new RT each time an RT is used to get a new AT (and the client SDK removes the previous RT from the cache, which will also naturally expire). If there is a race condition where the user has multiple tabs open, you are simply replacing one new RT with a slightly newer RT.

15.11.2024 01:21 👍 0 🔁 0 💬 1 📌 0