If I can see things go by on the fly I can submit the token late and mess with the user by revoking their session. > > > It closes one door but opens a DOS attack. > > What's the DOS attack? > _______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
- [OAUTH-WG] single use authorization codes Brian Eaton
- Re: [OAUTH-WG] single use authorization codes Eran Hammer-Lahav
- Re: [OAUTH-WG] single use authorization codes Brian Eaton
- Re: [OAUTH-WG] single use authorization codes William Mills
- Re: [OAUTH-WG] single use authorization c... Brian Eaton
- Re: [OAUTH-WG] single use authorizati... William Mills
- Re: [OAUTH-WG] single use author... Brian Eaton
- Re: [OAUTH-WG] single use au... William Mills
- Re: [OAUTH-WG] single us... Torsten Lodderstedt
- Re: [OAUTH-WG] single us... Igor Faynberg
- Re: [OAUTH-WG] single us... Brian Eaton
